$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft File: QSPpAOai7I_ptdcDt5KA7yFAfIE.mft (raw, json) Hash identifier: HjDMQIbL/4lk+wry9N9tck2ZOBPJyI/+/pDIMT23oD8= Subject key identifier: A0:7A:08:52:7E:3A:48:9E:E0:82:76:73:94:9E:45:B2:01:C7:2A:96 Authority key identifier: 41:23:E9:00:E6:A2:EC:8F:E9:B5:D7:03:B7:92:80:EF:21:40:7C:81 Certificate issuer: /CN=A91F3B2E/serialNumber=4123E900E6A2EC8FE9B5D703B79280EF21407C81 Certificate serial: 0268 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft Manifest number: 024E Signing time: Sun 05 Apr 2026 02:11:13 +0000 Manifest this update: Sun 05 Apr 2026 02:11:12 +0000 Manifest next update: Sun 12 Apr 2026 02:11:12 +0000 Files and hashes: 1: QSPpAOai7I_ptdcDt5KA7yFAfIE.crl (hash: RiybJmGepLIjfBob/UI1IcEQ1wbZlF9YM4VxyyGHv+8=) 2: 2B8EF9AA083911F0A051CE72C4F9AE02.roa (hash: L0al7k74eWiWJ3CDPsdhftXr9mpgHroxqH7auSGrGNY=) 3: A91AF6A8CE7811EF89FA3944C4F9AE02.roa (hash: /XptYTwhi0uVDIVVDFau7tevix2taawngS3ewC7+5mA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.crl rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:11:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 616 (0x268) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B2E, serialNumber=4123E900E6A2EC8FE9B5D703B79280EF21407C81 Validity Not Before: Apr 5 02:11:12 2026 GMT Not After : Apr 12 02:11:12 2026 GMT Subject: CN=69d1c4c0-9e04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f2:9d:0d:ef:1f:2a:e7:3b:22:58:e4:6a:23: b5:3d:58:e9:24:71:f6:fa:b0:c5:e6:2f:4a:a5:f5: 74:3c:6e:d3:6f:33:d7:30:e5:bd:e0:20:3d:21:ff: f4:69:4d:78:99:4c:6d:17:f3:d7:b2:00:14:a9:ba: 2c:c6:a4:b8:9c:e8:db:a2:fa:63:b1:c4:84:46:89: 09:22:5e:8c:2e:b4:6d:0d:ae:1d:8b:a5:ae:0f:c3: 4a:cd:6a:7a:e3:2c:a6:16:32:0a:77:98:71:5a:03: 98:0e:3e:bd:45:b1:e1:cc:bd:ca:56:d6:73:10:ae: 38:4c:f8:ee:2d:38:7a:ee:28:ce:3e:e2:83:16:5b: c2:c2:71:03:9e:5a:94:ec:74:3f:2b:e7:fa:49:34: b2:c6:32:59:79:8d:1b:70:23:d4:d8:39:aa:59:c5: 7b:37:da:aa:99:b0:2d:d7:46:8b:7a:c5:9e:34:9d: 2e:fd:10:c9:51:14:46:84:00:82:bd:32:5c:df:55: b3:e4:c6:ff:76:47:4b:d8:6d:03:82:91:2e:11:64: 24:78:ba:01:e0:04:ac:f3:6b:65:81:13:07:f9:ff: c9:e5:61:1e:c5:fe:6b:de:cd:d8:7c:91:85:e5:6b: 78:5b:9d:0d:d2:75:ea:d3:fb:a4:2c:14:05:f9:c2: 4d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:7A:08:52:7E:3A:48:9E:E0:82:76:73:94:9E:45:B2:01:C7:2A:96 X509v3 Authority Key Identifier: keyid:41:23:E9:00:E6:A2:EC:8F:E9:B5:D7:03:B7:92:80:EF:21:40:7C:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSPpAOai7I_ptdcDt5KA7yFAfIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B2E/0F55C696D67D11ED86D33750C4F9AE02/QSPpAOai7I_ptdcDt5KA7yFAfIE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:f7:19:ad:8d:8f:88:a2:84:28:9d:e2:e0:81:ed:23:26:22: c3:6f:ab:90:9f:1f:a8:bc:d8:f0:4c:14:e7:be:4c:9f:f0:33: 84:f1:04:81:73:4d:ed:46:59:1e:e8:12:53:10:07:64:f0:4f: 66:8d:df:50:77:c3:2d:0f:6b:66:d5:b9:a4:85:bf:b9:3b:b6: 80:64:8f:16:4a:23:d0:65:45:cf:66:d4:fe:2f:6b:b6:02:83: 08:71:16:0e:17:62:4d:0a:c7:b6:8f:6b:de:a3:9c:ef:66:d0: 5d:27:0c:66:8b:44:f6:4d:83:3e:f6:8f:35:61:72:97:f3:c5: 72:0c:06:be:5d:e9:d7:86:1c:a0:97:b1:61:00:8a:00:1f:08: fe:fa:4a:c4:a5:ae:93:ac:ec:3b:c9:c5:a8:a4:e2:c1:bb:6e: 6f:fc:74:99:55:fb:d9:9d:8b:2c:40:62:d9:21:ef:53:ba:9c: b7:b9:bd:a2:7a:60:69:42:46:9f:90:e0:b2:64:59:29:5d:a3: d6:47:d7:6b:32:75:c4:12:ea:79:7d:75:b6:fd:37:f1:a3:dc: 9b:93:45:0c:52:dc:58:c8:59:77:f7:d3:0a:f7:dd:cf:ed:c2: 77:d7:2f:28:59:e9:e9:6c:9d:4c:77:cd:1c:06:44:55:b2:d7: c7:63:07:60 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCMkUxMTAvBgNVBAUTKDQxMjNFOTAwRTZBMkVDOEZFOUI1RDcwM0I3OTI4MEVG MjE0MDdDODEwHhcNMjYwNDA1MDIxMTEyWhcNMjYwNDEyMDIxMTEyWjAYMRYwFAYD VQQDEw02OWQxYzRjMC05ZTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/KdDe8fKuc7IljkaiO1PVjpJHH2+rDF5i9KpfV0PG7TbzPXMOW94CA9If/0 aU14mUxtF/PXsgAUqbosxqS4nOjbovpjscSERokJIl6MLrRtDa4di6WuD8NKzWp6 4yymFjIKd5hxWgOYDj69RbHhzL3KVtZzEK44TPjuLTh67ijOPuKDFlvCwnEDnlqU 7HQ/K+f6STSyxjJZeY0bcCPU2DmqWcV7N9qqmbAt10aLesWeNJ0u/RDJURRGhACC vTJc31Wz5Mb/dkdL2G0DgpEuEWQkeLoB4ASs82tlgRMH+f/J5WEexf5r3s3YfJGF 5Wt4W50N0nXq0/ukLBQF+cJNHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKB6CFJ+ Okie4IJ2c5SeRbIBxyqWMB8GA1UdIwQYMBaAFEEj6QDmouyP6bXXA7eSgO8hQHyB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0IyRS8wRjU1QzY5NkQ2 N0QxMUVEODZEMzM3NTBDNEY5QUUwMi9RU1BwQU9haTdJX3B0ZGNEdDVLQTd5RkFm SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTUHBBT2FpN0lfcHRkY0R0NUtBN3lGQWZJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0IyRS8wRjU1QzY5NkQ2N0QxMUVEODZEMzM3NTBDNEY5QUUwMi9RU1BwQU9haTdJ X3B0ZGNEdDVLQTd5RkFmSUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQvcZrY2PiKKEKJ3i4IHtIyYiw2+rkJ8fqLzY8EwU575Mn/AzhPEEgXNN7UZZ HugSUxAHZPBPZo3fUHfDLQ9rZtW5pIW/uTu2gGSPFkoj0GVFz2bU/i9rtgKDCHEW DhdiTQrHto9r3qOc72bQXScMZotE9k2DPvaPNWFyl/PFcgwGvl3p14YcoJexYQCK AB8I/vpKxKWuk6zsO8nFqKTiwbtub/x0mVX72Z2LLEBi2SHvU7qct7m9onpgaUJG n5DgsmRZKV2j1kfXazJ1xBLqeX11tv038aPcm5NFDFLcWMhZd/fTCvfdz+3Cd9cv KFnp6WydTHfNHAZEVbLXx2MHYA== -----END CERTIFICATE-----Generated at Mon Apr 6 09:01:21 2026 by rpki-client