$ rpki-client -vvf rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft File: QIyZnDwewBZElFs0d6nyI061eRw.mft (raw, json) Hash identifier: X8d9qhRDbqDoNL3rdA/azG9+OnsopjfwA+Cjs8Qqk4Y= Subject key identifier: 0C:64:CD:96:52:74:B7:3E:EE:4A:8F:C6:85:B7:BE:25:59:13:6C:E4 Authority key identifier: 40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C Certificate issuer: /CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Certificate serial: 2561 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft Manifest number: 2535 Signing time: Thu 16 Apr 2026 15:43:36 +0000 Manifest this update: Thu 16 Apr 2026 15:43:35 +0000 Manifest next update: Thu 23 Apr 2026 15:43:35 +0000 Files and hashes: 1: QIyZnDwewBZElFs0d6nyI061eRw.crl (hash: JIsImxb3xizwqpgF9UFN4UZBnoqM1bwwCO/zuanE1Yw=) 2: 2486E806F0E311EAA1C58D62C4F9AE02.roa (hash: l+zP+x/ZY9cq3nbV4r5XpYolKqUr/0Lu8hDJSfvQgkI=) 3: 50A2F64264BC11E8ACC7951EC4F9AE02.roa (hash: 6oC3s9zXSmCynBY9z0T8TeaSrJ6gHinauk9Zr2y+ucg=) 4: ABA9F4B8AF8411EABF9F844DC4F9AE02.roa (hash: /w4t5dhbmQEa84JEDJ39VitjjFskPm/mEpnYuZ0T6wQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9569 (0x2561) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650A5, serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Validity Not Before: Apr 16 15:43:35 2026 GMT Not After : Apr 23 15:43:35 2026 GMT Subject: CN=69e103a8-27ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:db:09:e9:fb:b6:c6:af:dc:bf:37:69:19:02: a1:e2:f1:bb:2e:17:34:37:1f:70:9b:e2:4d:3f:c0: e3:e2:cc:d5:25:bb:08:f1:60:92:02:0c:e2:d3:ff: e7:b6:76:41:da:5a:4b:f9:30:c7:74:10:78:21:5c: 00:73:c2:92:cd:2e:2f:64:4d:8b:9d:70:98:5f:97: 01:e3:3e:6a:4d:4e:56:51:e4:ef:0f:93:f9:cc:19: ae:87:b0:8a:9b:9b:cc:75:5f:f9:59:90:5c:51:90: 43:0b:bc:4e:9b:69:c1:32:83:c3:40:6f:b6:c2:5b: 03:c4:7f:85:c4:9d:10:c9:da:79:29:ce:82:03:1e: 23:34:9a:86:3b:4a:62:e5:0d:96:fb:2f:98:52:75: 2b:5f:26:6b:a6:c9:03:94:20:85:4c:3b:f9:02:bd: 8f:78:33:91:fc:51:8d:dd:d2:36:f5:1a:d0:d8:a2: ac:a5:02:cd:44:99:0b:25:6f:90:3f:f1:b6:94:dd: fc:83:4e:5b:6a:76:0a:f0:c3:5c:8c:d5:58:bc:c5: 20:5f:c2:4d:9b:99:74:f4:e3:0a:06:db:a0:06:be: 06:e3:1a:7e:3a:38:b2:6c:0b:e5:d6:8d:3f:4a:08: 26:07:0c:ac:08:e1:a9:3b:e8:45:1c:40:7b:e9:fe: 7c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:64:CD:96:52:74:B7:3E:EE:4A:8F:C6:85:B7:BE:25:59:13:6C:E4 X509v3 Authority Key Identifier: keyid:40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:2a:1a:53:c9:17:b9:07:42:ae:4c:21:b9:29:ac:33:e4:42: 90:c2:f1:75:9e:b3:c1:96:37:d9:0b:66:be:73:7e:a2:97:2c: 67:4f:79:e0:de:d4:f8:32:e0:7b:6a:85:35:ae:f4:d6:f7:6b: a7:3d:cc:92:07:c0:d3:51:a6:3a:c1:3e:0f:23:6c:d8:4e:62: 51:54:49:a0:33:fc:9a:97:35:b6:48:10:1b:77:38:48:de:ed: 59:5c:40:60:71:e6:fa:18:9f:f4:10:88:e7:80:3c:ab:93:90: 5d:37:09:13:e8:64:8a:9f:d8:08:d0:e7:d8:5c:7f:0e:3d:ad: 31:cf:71:6f:e3:45:d0:83:c3:3f:bc:ea:10:c2:ea:86:9e:8e: 5a:fa:b4:b3:27:10:15:66:ac:38:4a:38:0f:ba:f7:b2:9c:8c: 31:9f:e2:23:82:65:66:41:cc:7b:7e:6d:12:57:1b:02:01:2b: df:5a:cd:59:72:97:c7:6c:20:2e:12:84:17:9b:5c:59:6b:8b: fa:fa:8e:ef:1f:f6:9c:3e:03:1c:5d:e4:ea:65:d8:53:f2:6f: 23:95:03:a9:95:db:e2:ca:5a:62:99:03:1e:7f:33:67:ff:51: a8:6c:51:9e:2f:1f:46:88:07:61:c7:d6:de:8c:ed:50:14:94: 04:db:3f:e8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwQTUxMTAvBgNVBAUTKDQwOEM5OTlDM0MxRUMwMTY0NDk0NUIzNDc3QTlGMjIz NEVCNTc5MUMwHhcNMjYwNDE2MTU0MzM1WhcNMjYwNDIzMTU0MzM1WjAYMRYwFAYD VQQDEw02OWUxMDNhOC0yN2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutsJ6fu2xq/cvzdpGQKh4vG7Lhc0Nx9wm+JNP8Dj4szVJbsI8WCSAgzi0//n tnZB2lpL+TDHdBB4IVwAc8KSzS4vZE2LnXCYX5cB4z5qTU5WUeTvD5P5zBmuh7CK m5vMdV/5WZBcUZBDC7xOm2nBMoPDQG+2wlsDxH+FxJ0Qydp5Kc6CAx4jNJqGO0pi 5Q2W+y+YUnUrXyZrpskDlCCFTDv5Ar2PeDOR/FGN3dI29RrQ2KKspQLNRJkLJW+Q P/G2lN38g05banYK8MNcjNVYvMUgX8JNm5l09OMKBtugBr4G4xp+OjiybAvl1o0/ SggmBwysCOGpO+hFHEB76f58UwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAxkzZZS dLc+7kqPxoW3viVZE2zkMB8GA1UdIwQYMBaAFECMmZw8HsAWRJRbNHep8iNOtXkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBBNS8xN0RGQjM1QTQ2 RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdCWkVsRnMwZDZueUkwNjFl UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJeVpuRHdld0JaRWxGczBkNm55STA2MWVSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTBBNS8xN0RGQjM1QTQ2RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdC WkVsRnMwZDZueUkwNjFlUncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsyoaU8kXuQdCrkwhuSmsM+RCkMLxdZ6zwZY32QtmvnN+opcsZ0954N7U+DLg e2qFNa701vdrpz3MkgfA01GmOsE+DyNs2E5iUVRJoDP8mpc1tkgQG3c4SN7tWVxA YHHm+hif9BCI54A8q5OQXTcJE+hkip/YCNDn2Fx/Dj2tMc9xb+NF0IPDP7zqEMLq hp6OWvq0sycQFWasOEo4D7r3spyMMZ/iI4JlZkHMe35tElcbAgEr31rNWXKXx2wg LhKEF5tcWWuL+vqO7x/2nD4DHF3k6mXYU/JvI5UDqZXb4spaYpkDHn8zZ/9RqGxR ni8fRogHYcfW3oztUBSUBNs/6A== -----END CERTIFICATE-----Generated at Fri Apr 17 14:49:30 2026 by rpki-client