$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft File: qX6qTW8VW40nxAro4yfZulLDS0I.mft (raw, json) Hash identifier: 93XQj8L1Jhx0r9YNWBFCDZr9FqHAdG7O2BqZSw4bRg8= Subject key identifier: 07:B9:2B:39:03:7D:26:18:76:55:6A:CC:0C:18:98:BA:9B:04:29:31 Authority key identifier: A9:7E:AA:4D:6F:15:5B:8D:27:C4:0A:E8:E3:27:D9:BA:52:C3:4B:42 Certificate issuer: /CN=A91EB4AF/serialNumber=A97EAA4D6F155B8D27C40AE8E327D9BA52C34B42 Certificate serial: 03D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft Manifest number: 03B8 Signing time: Mon 27 Apr 2026 00:41:38 +0000 Manifest this update: Mon 27 Apr 2026 00:41:37 +0000 Manifest next update: Mon 04 May 2026 00:41:37 +0000 Files and hashes: 1: qX6qTW8VW40nxAro4yfZulLDS0I.crl (hash: AsahQZDtcEo329RrxQYPWPZT0B6X6XQILWkjB3EMjlw=) 2: 595774341B6211F0B9733473C4F9AE02.roa (hash: FsghJjQsuRRGpnhop47UMyZjNIpI+E4uxqKOZi0XVJ8=) 3: DCE70C6EF9B911ED8314C10EC4F9AE02.roa (hash: lkd89MpvF6HjrZnQ7+Am4kQJDo7BJMWf79Z8hJQl200=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.crl rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 00:41:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 985 (0x3d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB4AF, serialNumber=A97EAA4D6F155B8D27C40AE8E327D9BA52C34B42 Validity Not Before: Apr 27 00:41:37 2026 GMT Not After : May 4 00:41:37 2026 GMT Subject: CN=69eeb0c1-0372 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:67:34:e5:f1:56:dd:87:f1:2c:0e:b4:87:e1: 67:54:f8:76:40:59:db:d0:4d:59:c9:9d:fe:36:28: 8b:c9:a0:4d:38:61:d7:0f:24:38:bd:7b:a7:41:44: 5a:26:42:d7:f1:ab:0e:2f:1c:44:3f:01:20:0c:a9: 10:17:72:d5:4e:15:59:e1:cc:84:e0:37:5d:30:3f: 5e:f4:11:9f:31:66:b1:f9:30:d2:d9:04:8c:8b:57: 8e:8d:9f:da:54:47:b8:44:bd:b6:ab:58:e1:e4:9d: 19:ee:bb:29:22:44:cb:a8:23:0e:56:f1:87:a2:b9: c2:65:d1:46:8a:f9:0b:fa:d3:22:a0:39:08:3b:4c: 0c:55:e9:9e:46:f9:c9:9d:6b:20:bf:6b:06:15:4b: 2f:8c:c2:01:a4:18:44:43:88:2c:95:bb:b7:86:c1: 06:14:4b:5b:d8:ee:03:60:e0:42:31:ba:e5:a5:75: 22:94:5c:38:e1:43:8d:8a:74:27:97:3d:44:d1:a4: 4b:25:60:c1:93:61:ac:85:40:35:ea:d9:2f:3b:66: 46:11:7c:af:5f:ad:00:ab:c4:e8:4f:55:77:f1:25: 7f:80:8f:95:29:0b:f2:5d:ac:0b:87:da:d8:60:b8: e7:1b:ce:d1:e1:4f:26:56:48:f2:8e:51:a8:35:5a: c0:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:B9:2B:39:03:7D:26:18:76:55:6A:CC:0C:18:98:BA:9B:04:29:31 X509v3 Authority Key Identifier: keyid:A9:7E:AA:4D:6F:15:5B:8D:27:C4:0A:E8:E3:27:D9:BA:52:C3:4B:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:77:aa:0d:3d:29:43:eb:7a:64:1b:10:3a:bf:80:f0:21:14: cb:91:1c:df:fc:78:22:d2:00:fd:4c:7f:3c:37:3b:bc:22:5b: 90:b3:ed:fe:7a:ca:7c:99:40:5d:84:da:21:6e:27:1f:8b:fc: e3:fc:65:30:2e:a0:65:e1:d7:51:c3:8a:eb:c9:1e:4e:8e:d9: 54:0c:93:e4:67:4a:75:47:a1:bb:5e:94:ee:ff:bc:d0:f6:c3: 5b:ca:3f:2d:a5:48:3a:4f:06:73:46:68:99:93:39:7a:11:12: 42:d2:e0:89:13:8d:4e:64:d0:e0:6b:aa:c4:9d:7f:d7:b4:91: 9d:a9:cb:a2:db:b7:34:b9:e2:88:7a:04:e3:ec:46:99:6a:36: 50:4a:ed:58:b0:d3:0e:c3:29:03:19:61:03:20:7f:cb:97:17: 86:9f:e9:2f:fd:91:ba:d2:8b:f0:92:67:f3:4f:ed:6b:82:2b: ca:cd:b3:ad:2d:fe:d3:cd:6e:36:95:db:92:64:2e:14:90:62: 73:b9:e8:ed:cf:15:42:26:40:0a:1d:64:ca:4a:d0:0f:c7:50: 68:5a:e6:ce:80:78:9b:b6:ee:8f:8a:2d:77:8e:ac:f4:f9:0e: 0a:9e:2f:76:03:74:4d:a0:4f:f1:72:b2:f8:8e:fe:c9:ac:8d: 7d:1f:4e:19 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI0QUYxMTAvBgNVBAUTKEE5N0VBQTRENkYxNTVCOEQyN0M0MEFFOEUzMjdEOUJB NTJDMzRCNDIwHhcNMjYwNDI3MDA0MTM3WhcNMjYwNTA0MDA0MTM3WjAYMRYwFAYD VQQDEw02OWVlYjBjMS0wMzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0mc05fFW3YfxLA60h+FnVPh2QFnb0E1ZyZ3+NiiLyaBNOGHXDyQ4vXunQURa JkLX8asOLxxEPwEgDKkQF3LVThVZ4cyE4DddMD9e9BGfMWax+TDS2QSMi1eOjZ/a VEe4RL22q1jh5J0Z7rspIkTLqCMOVvGHornCZdFGivkL+tMioDkIO0wMVemeRvnJ nWsgv2sGFUsvjMIBpBhEQ4gslbu3hsEGFEtb2O4DYOBCMbrlpXUilFw44UONinQn lz1E0aRLJWDBk2GshUA16tkvO2ZGEXyvX60Aq8ToT1V38SV/gI+VKQvyXawLh9rY YLjnG87R4U8mVkjyjlGoNVrAQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAe5KzkD fSYYdlVqzAwYmLqbBCkxMB8GA1UdIwQYMBaAFKl+qk1vFVuNJ8QK6OMn2bpSw0tC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjRBRi9DQzdCMjU1QURD QTkxMUVDOTRFM0UwMjlDNEY5QUUwMi9xWDZxVFc4Vlc0MG54QXJvNHlmWnVsTERT MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FYNnFUVzhWVzQwbnhBcm80eWZadWxMRFMwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjRBRi9DQzdCMjU1QURDQTkxMUVDOTRFM0UwMjlDNEY5QUUwMi9xWDZxVFc4Vlc0 MG54QXJvNHlmWnVsTERTMEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqXeqDT0pQ+t6ZBsQOr+A8CEUy5Ec3/x4ItIA/Ux/PDc7vCJbkLPt/nrKfJlA XYTaIW4nH4v84/xlMC6gZeHXUcOK68keTo7ZVAyT5GdKdUehu16U7v+80PbDW8o/ LaVIOk8Gc0ZomZM5ehESQtLgiRONTmTQ4GuqxJ1/17SRnanLotu3NLniiHoE4+xG mWo2UErtWLDTDsMpAxlhAyB/y5cXhp/pL/2RutKL8JJn80/ta4Irys2zrS3+081u NpXbkmQuFJBic7no7c8VQiZACh1kykrQD8dQaFrmzoB4m7buj4otd46s9PkOCp4v dgN0TaBP8XKy+I7+yayNfR9OGQ== -----END CERTIFICATE-----Generated at Tue Apr 28 04:31:51 2026 by rpki-client