$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft File: a-Q-axOWQ8tMGebfcyO1A8STEds.mft (raw, json) Hash identifier: 2gZ9hNgDoEzvac/REgsDog47gPbdqqDTwjeclpkQbPg= Subject key identifier: 89:EA:12:A3:B7:DC:2F:40:4D:22:DD:17:EE:B5:C9:BC:E7:8A:5C:4F Authority key identifier: 6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB Certificate issuer: /CN=A91E8D27/serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Certificate serial: 34AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft Manifest number: 348D Signing time: Sat 04 Apr 2026 15:16:46 +0000 Manifest this update: Sat 04 Apr 2026 15:16:45 +0000 Manifest next update: Sat 11 Apr 2026 15:16:45 +0000 Files and hashes: 1: a-Q-axOWQ8tMGebfcyO1A8STEds.crl (hash: uUrgz3ixY9ToR6SET0F+wqMVuGphJIsHV1LZgZStNhQ=) 2: 56C3DC822B0B11EF97C4A74AC4F9AE02.roa (hash: BfM+WJCATCxDvSbNYj9etC2USnC2s+RFYfsw7w+QlP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:16:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13485 (0x34ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D27, serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Validity Not Before: Apr 4 15:16:45 2026 GMT Not After : Apr 11 15:16:45 2026 GMT Subject: CN=69d12b5e-a59b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:31:f0:18:37:9c:8a:db:c2:67:33:dc:78:25: 2b:ea:bb:e3:64:69:55:7b:59:ac:dc:72:5a:c9:5b: 43:29:ff:70:96:50:89:1c:6a:90:8e:bf:17:69:6e: 65:ee:f3:db:e7:3d:46:87:1c:c7:61:ec:9f:17:9c: 97:e7:77:e6:be:06:93:34:80:e5:b2:37:a3:83:37: 16:98:24:ef:d3:54:ce:0f:30:aa:19:d9:b6:52:0e: 8d:00:d1:7b:67:af:9a:dc:dc:cc:d3:1f:7f:06:80: 5a:3c:1a:8e:d9:12:a9:f2:b5:86:13:3c:67:9f:5c: 00:a5:70:a6:32:f6:ea:69:ca:3b:cd:39:44:d8:49: 5d:f8:30:57:0e:7d:2a:4f:82:f8:cc:d1:05:b0:57: e9:1c:9b:d7:7b:71:eb:66:4d:19:7e:e0:94:8d:ab: 2c:22:c7:52:0c:77:5e:08:0c:05:35:7e:45:69:7d: c4:0a:18:e9:34:57:b6:70:8c:f9:ae:92:2b:e4:ae: 09:2f:56:47:3b:18:38:11:ba:5d:4b:64:72:db:05: ad:5d:9e:54:35:80:70:3f:26:63:ed:5c:9d:57:d6: d4:5d:be:a6:9a:6d:c4:0f:13:69:43:50:3c:71:73: 61:85:1d:c9:2c:40:d6:c4:9b:01:f1:6b:15:ad:98: f4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:EA:12:A3:B7:DC:2F:40:4D:22:DD:17:EE:B5:C9:BC:E7:8A:5C:4F X509v3 Authority Key Identifier: keyid:6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:6b:53:eb:2f:32:3a:df:9e:93:5e:62:d1:e1:00:6e:3d:b3: e9:30:65:11:31:54:d0:db:bd:ad:88:b9:71:9f:ba:68:f6:18: 5b:f8:5e:7a:b5:00:e2:16:4e:9e:65:04:08:88:d5:a4:9b:54: bd:98:8b:18:60:75:d5:20:24:5a:7b:07:82:99:6f:b1:1f:52: 0f:0b:ba:9d:4e:76:35:cb:16:6a:2c:d1:65:ab:00:2d:2a:13: 4d:15:83:a9:c7:84:80:41:87:8e:a6:7c:f2:37:aa:64:ae:6a: ea:14:db:26:16:89:02:6f:2c:ab:3d:73:f4:bb:73:82:3e:f7: 34:99:63:fa:86:b1:22:43:d7:b1:0c:8c:11:e0:77:bf:d6:98: cd:37:53:a3:a4:30:d9:90:1b:8c:f7:79:80:5b:f4:93:5e:db: de:4d:17:2a:4d:3f:66:d0:4f:2c:01:bd:4a:97:45:51:e5:98: ad:50:de:28:61:5c:0d:f7:63:b9:55:fd:0a:7b:38:a4:ea:c1: 05:cb:4a:e2:94:a1:26:cd:0a:d1:c2:88:e4:97:9b:37:c3:d8: f6:f2:3a:82:23:51:6a:ee:c8:f4:0b:cd:1d:f6:d8:d6:5a:3d: 76:30:c5:dd:c3:0f:48:cb:95:1e:94:ef:87:28:a4:4c:8b:5e: 3e:59:fc:9e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjcxMTAvBgNVBAUTKDZCRTQzRTZCMTM5NjQzQ0I0QzE5RTZERjczMjNCNTAz QzQ5MzExREIwHhcNMjYwNDA0MTUxNjQ1WhcNMjYwNDExMTUxNjQ1WjAYMRYwFAYD VQQDEw02OWQxMmI1ZS1hNTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0zHwGDecitvCZzPceCUr6rvjZGlVe1ms3HJayVtDKf9wllCJHGqQjr8XaW5l 7vPb5z1GhxzHYeyfF5yX53fmvgaTNIDlsjejgzcWmCTv01TODzCqGdm2Ug6NANF7 Z6+a3NzM0x9/BoBaPBqO2RKp8rWGEzxnn1wApXCmMvbqaco7zTlE2Eld+DBXDn0q T4L4zNEFsFfpHJvXe3HrZk0ZfuCUjassIsdSDHdeCAwFNX5FaX3EChjpNFe2cIz5 rpIr5K4JL1ZHOxg4EbpdS2Ry2wWtXZ5UNYBwPyZj7VydV9bUXb6mmm3EDxNpQ1A8 cXNhhR3JLEDWxJsB8WsVrZj0kQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFInqEqO3 3C9ATSLdF+61ybznilxPMB8GA1UdIwQYMBaAFGvkPmsTlkPLTBnm33MjtQPEkxHb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyNy9DMEM1ODA3MDQy RTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4dE1HZWJmY3lPMUE4U1RF ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EtUS1heE9XUTh0TUdlYmZjeU8xQThTVEVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyNy9DMEM1ODA3MDQyRTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4 dE1HZWJmY3lPMUE4U1RFZHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASmtT6y8yOt+ek15i0eEAbj2z6TBlETFU0Nu9rYi5cZ+6aPYYW/heerUA4hZO nmUECIjVpJtUvZiLGGB11SAkWnsHgplvsR9SDwu6nU52NcsWaizRZasALSoTTRWD qceEgEGHjqZ88jeqZK5q6hTbJhaJAm8sqz1z9Ltzgj73NJlj+oaxIkPXsQyMEeB3 v9aYzTdTo6Qw2ZAbjPd5gFv0k17b3k0XKk0/ZtBPLAG9SpdFUeWYrVDeKGFcDfdj uVX9Cns4pOrBBctK4pShJs0K0cKI5JebN8PY9vI6giNRau7I9AvNHfbY1lo9djDF 3cMPSMuVHpTvhyikTItePln8ng== -----END CERTIFICATE-----Generated at Mon Apr 6 09:57:55 2026 by rpki-client