$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft File: qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft (raw, json) Hash identifier: cH+7Bz07WFGUUj+fLdhgCtuQg7emMzzhaQQfwaQAM6o= Subject key identifier: 87:BB:09:D1:CE:8A:0B:36:70:60:3E:1B:E1:2E:48:94:06:C5:7A:BC Authority key identifier: A8:9D:0F:D4:F4:8A:BF:69:4F:D9:DF:77:04:E5:96:46:4D:ED:21:79 Certificate issuer: /CN=A91E6CCA/serialNumber=A89D0FD4F48ABF694FD9DF7704E596464DED2179 Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft Manifest number: C2 Signing time: Tue 07 Apr 2026 06:24:18 +0000 Manifest this update: Tue 07 Apr 2026 06:24:18 +0000 Manifest next update: Tue 14 Apr 2026 06:24:18 +0000 Files and hashes: 1: qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl (hash: 6qfSAFn+gjDl5eUDkKx6fg1IG/6+sgptJ25A9a0hGzI=) 2: A94836600F7111F08BC42022C4F9AE02.roa (hash: u576PqO+BtNCnO64DUXQ7ItjcmgVyMNM4SJ3quc5Oh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Apr 2026 06:24:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6CCA, serialNumber=A89D0FD4F48ABF694FD9DF7704E596464DED2179 Validity Not Before: Apr 7 06:24:18 2026 GMT Not After : Apr 14 06:24:18 2026 GMT Subject: CN=69d4a312-bb7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:06:52:10:23:f0:ef:9e:5c:98:6b:b1:92:6a: 45:55:2a:81:5f:e2:99:04:05:39:c3:9b:9c:d6:50: b7:1f:99:80:71:75:1d:2b:61:67:40:ee:c8:4e:5d: df:da:80:da:72:33:9a:08:9e:d3:78:b1:6a:a4:7d: 7a:91:61:c6:88:2c:e9:af:09:85:28:49:e6:c5:8f: 0b:f4:a9:6a:c7:84:ea:ed:7d:c4:02:02:c0:79:4a: 6a:88:b7:88:af:42:3e:d9:46:8f:1e:1e:48:b1:f1: ac:4f:75:f8:85:0b:b0:92:60:df:0e:66:7d:53:67: 28:13:e8:aa:58:e5:71:c3:bf:af:ee:fd:88:ec:50: 8e:42:2f:a1:5d:a3:f6:c2:82:f1:5f:51:5c:a7:79: a7:3d:37:a2:dc:5e:69:ee:b2:fb:69:5a:b2:f9:05: 3e:7d:2f:03:6c:d8:50:a5:f7:d9:50:13:18:2b:4d: b7:97:da:5a:4a:7d:53:d4:ed:b3:27:b7:99:c7:d2: 82:0c:88:c4:5e:43:64:9e:9a:89:9f:78:ef:e9:d8: bd:db:61:ee:55:64:61:9e:1b:ce:59:94:52:97:72: 25:6e:07:b0:81:67:c5:90:4d:08:48:f6:4a:26:a8: 2c:2b:b1:0b:9e:fc:87:cc:5c:1f:9c:96:91:ed:84: 70:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:BB:09:D1:CE:8A:0B:36:70:60:3E:1B:E1:2E:48:94:06:C5:7A:BC X509v3 Authority Key Identifier: keyid:A8:9D:0F:D4:F4:8A:BF:69:4F:D9:DF:77:04:E5:96:46:4D:ED:21:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption db:47:a8:f8:d5:49:66:12:20:c4:5e:51:31:89:0d:72:25:68: f1:10:bf:db:23:2d:7d:87:a5:6c:7c:33:9a:17:55:c4:cc:47: 8d:2e:cb:47:b1:35:dd:ba:26:fd:bf:61:65:e3:97:d4:e8:3f: 21:7e:49:2d:48:d2:0e:23:12:ab:0b:9e:77:62:8b:0a:03:85: 64:2f:0b:2a:f9:02:63:23:b3:35:5e:cf:ce:4f:45:ad:2a:10: 08:a0:24:19:49:96:14:04:45:f8:9b:cf:8c:5d:db:16:44:76: c5:6c:e5:47:1e:1b:22:72:e5:dc:f1:b7:42:92:b4:01:a0:d4: a6:ee:f2:b7:18:79:67:17:38:98:af:55:26:fc:4f:8c:ee:1e: fe:71:bc:a4:88:4e:77:c0:f8:22:c0:53:3b:08:31:81:1e:ac: f6:39:75:6f:3c:d1:97:e7:56:c6:b9:73:d1:3b:ae:b4:fb:48: e9:02:57:4f:1e:6b:e6:e0:4a:ea:27:a8:a5:d4:a0:c3:bc:16: b1:bf:04:e9:ae:d7:b1:7e:66:3b:3e:0f:a6:8f:3b:1c:e3:de: c6:fa:92:1d:e0:d7:ec:7e:fb:11:14:b3:d2:f3:54:42:76:8b: 53:0c:7a:f1:6b:ca:9f:f4:23:a6:c7:1f:7b:ca:be:01:38:19: a7:95:72:33 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZDQ0ExMTAvBgNVBAUTKEE4OUQwRkQ0RjQ4QUJGNjk0RkQ5REY3NzA0RTU5NjQ2 NERFRDIxNzkwHhcNMjYwNDA3MDYyNDE4WhcNMjYwNDE0MDYyNDE4WjAYMRYwFAYD VQQDEw02OWQ0YTMxMi1iYjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1QZSECPw755cmGuxkmpFVSqBX+KZBAU5w5uc1lC3H5mAcXUdK2FnQO7ITl3f 2oDacjOaCJ7TeLFqpH16kWHGiCzprwmFKEnmxY8L9Klqx4Tq7X3EAgLAeUpqiLeI r0I+2UaPHh5IsfGsT3X4hQuwkmDfDmZ9U2coE+iqWOVxw7+v7v2I7FCOQi+hXaP2 woLxX1Fcp3mnPTei3F5p7rL7aVqy+QU+fS8DbNhQpffZUBMYK023l9paSn1T1O2z J7eZx9KCDIjEXkNknpqJn3jv6di922HuVWRhnhvOWZRSl3IlbgewgWfFkE0ISPZK JqgsK7ELnvyHzFwfnJaR7YRwuQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIe7CdHO igs2cGA+G+EuSJQGxXq8MB8GA1UdIwQYMBaAFKidD9T0ir9pT9nfdwTllkZN7SF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkNDQS8xQTdBREVDQTBG NzAxMUYwOUUyRjdEMUZDNEY5QUUwMi9xSjBQMVBTS3YybFAyZDkzQk9XV1JrM3RJ WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FKMFAxUFNLdjJsUDJkOTNCT1dXUmszdElYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkNDQS8xQTdBREVDQTBGNzAxMUYwOUUyRjdEMUZDNEY5QUUwMi9xSjBQMVBTS3Yy bFAyZDkzQk9XV1JrM3RJWGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA20eo+NVJZhIgxF5RMYkNciVo8RC/2yMtfYelbHwzmhdVxMxHjS7LR7E13bom /b9hZeOX1Og/IX5JLUjSDiMSqwued2KLCgOFZC8LKvkCYyOzNV7Pzk9FrSoQCKAk GUmWFARF+JvPjF3bFkR2xWzlRx4bInLl3PG3QpK0AaDUpu7ytxh5Zxc4mK9VJvxP jO4e/nG8pIhOd8D4IsBTOwgxgR6s9jl1bzzRl+dWxrlz0TuutPtI6QJXTx5r5uBK 6ieopdSgw7wWsb8E6a7XsX5mOz4Ppo87HOPexvqSHeDX7H77ERSz0vNUQnaLUwx6 8WvKn/Qjpscfe8q+ATgZp5VyMw== -----END CERTIFICATE-----Generated at Wed Apr 8 16:39:19 2026 by rpki-client