$ rpki-client -vvf rpki.apnic.net/member_repository/A91988EB/018E1F6CE48B11F083D11E6B446F56BC/Q-rzDCMMbu5uNU3AN3Km7lPVBoU.mft File: Q-rzDCMMbu5uNU3AN3Km7lPVBoU.mft (raw, json) Hash identifier: 2lJ+29paC4M0HF2OvR+e5EfY57RROvxuqlN8ZyxzYjo= Subject key identifier: 0C:0D:6C:95:1C:1A:BC:97:61:B5:EC:6D:6A:A9:65:06:7A:D4:2F:26 Authority key identifier: 43:EA:F3:0C:23:0C:6E:EE:6E:35:4D:C0:37:72:A6:EE:53:D5:06:85 Certificate issuer: /CN=A91988EB/serialNumber=43EAF30C230C6EEE6E354DC03772A6EE53D50685 Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-rzDCMMbu5uNU3AN3Km7lPVBoU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91988EB/018E1F6CE48B11F083D11E6B446F56BC/Q-rzDCMMbu5uNU3AN3Km7lPVBoU.mft Manifest number: 3C Signing time: Fri 17 Apr 2026 08:13:27 +0000 Manifest this update: Fri 17 Apr 2026 08:13:26 +0000 Manifest next update: Fri 24 Apr 2026 08:13:26 +0000 Files and hashes: 1: Q-rzDCMMbu5uNU3AN3Km7lPVBoU.crl (hash: tf3Se9UJqIotGshgWp//ETECBPDaztqdVWj1lo7DHFs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91988EB/018E1F6CE48B11F083D11E6B446F56BC/Q-rzDCMMbu5uNU3AN3Km7lPVBoU.crl rsync://rpki.apnic.net/member_repository/A91988EB/018E1F6CE48B11F083D11E6B446F56BC/Q-rzDCMMbu5uNU3AN3Km7lPVBoU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-rzDCMMbu5uNU3AN3Km7lPVBoU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 08:13:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91988EB, serialNumber=43EAF30C230C6EEE6E354DC03772A6EE53D50685 Validity Not Before: Apr 17 08:13:26 2026 GMT Not After : Apr 24 08:13:26 2026 GMT Subject: CN=69e1eba7-5e96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4b:8b:46:5b:db:28:5c:80:b0:7a:54:bb:c0: 13:2a:48:18:dd:6a:e1:b4:6c:43:5c:08:78:b1:a5: d0:10:95:9d:8a:65:ad:3d:dc:b8:09:e4:4e:f9:39: 1a:c6:53:d5:3d:c4:47:b6:5d:b9:bb:3a:e3:5b:c6: 1d:59:36:2c:0e:e7:30:e3:00:7b:7f:1d:a2:87:e4: 4f:b9:1b:31:44:e4:f8:f7:ac:a5:4d:b2:ac:e6:6a: bb:46:1a:32:7a:4b:5c:78:07:61:52:d0:11:e6:94: 7a:ab:b6:69:33:c9:95:a6:03:a9:45:42:bc:1e:dd: 8b:9c:91:d7:9f:59:7f:ce:b4:f2:47:02:c5:ba:7a: f2:fa:09:34:ee:58:1d:57:3e:ba:9b:a2:9e:27:ad: e6:2c:cf:f2:fc:15:39:e7:1e:3e:d0:b7:c0:ac:bf: 06:7f:6d:25:9f:7b:7b:ed:4f:1a:d2:26:52:80:d4: 2c:fe:83:68:26:b2:eb:7a:49:36:10:7c:39:6a:39: b8:6a:3f:01:e4:b7:c4:22:43:71:d2:72:2f:45:20: 26:35:83:a7:1c:e2:df:3f:32:c4:7e:2b:0f:37:2c: fb:7f:e0:b7:fe:0d:a7:d4:0e:ca:83:43:26:d0:e9: d7:61:77:fe:4d:23:62:58:10:02:e0:92:63:20:29: f5:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:0D:6C:95:1C:1A:BC:97:61:B5:EC:6D:6A:A9:65:06:7A:D4:2F:26 X509v3 Authority Key Identifier: keyid:43:EA:F3:0C:23:0C:6E:EE:6E:35:4D:C0:37:72:A6:EE:53:D5:06:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91988EB/018E1F6CE48B11F083D11E6B446F56BC/Q-rzDCMMbu5uNU3AN3Km7lPVBoU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-rzDCMMbu5uNU3AN3Km7lPVBoU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91988EB/018E1F6CE48B11F083D11E6B446F56BC/Q-rzDCMMbu5uNU3AN3Km7lPVBoU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:6a:a9:87:ea:b5:39:74:f3:a0:1c:de:ef:5b:c5:f2:60:30: 4f:c7:bd:e8:ee:6c:4d:a9:54:8f:34:4d:b3:27:e1:13:b2:c5: 42:86:6b:3f:ed:26:36:a3:93:b1:18:ba:fa:cd:be:18:17:c2: da:5a:dd:1d:f9:17:c1:ab:10:92:22:71:c0:00:87:65:4a:18: a6:0a:96:09:96:06:a9:9c:17:3b:20:e3:cb:8d:d2:ec:6d:16: dc:2f:a6:d9:57:7e:66:5c:52:5c:05:c4:37:d2:4a:59:41:27: 0d:cc:99:f6:b5:59:22:25:f6:41:19:eb:6f:c3:80:7d:05:09: e4:7e:44:9c:35:4b:92:37:56:02:50:1e:08:3b:c6:66:1a:b5: 70:d7:f5:ae:ec:c4:44:4d:e0:e1:69:13:39:6c:62:99:6c:e2: b3:78:1b:68:f4:9c:16:27:af:4f:88:d3:25:36:f3:bb:67:76: be:e9:4d:5f:fb:60:62:d0:f3:da:1e:55:09:f5:a8:41:45:3c: 9d:40:9a:3b:c4:d3:f2:e5:f7:ba:c9:8f:70:a9:74:29:c6:d8: 44:3c:85:02:6b:0f:3e:9f:06:5a:b6:23:2a:a0:97:d6:3a:4e: 13:2e:7e:9e:52:fa:51:9f:60:94:ac:51:90:34:07:26:0d:cd: 1b:30:96:53 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODhFQjExMC8GA1UEBRMoNDNFQUYzMEMyMzBDNkVFRTZFMzU0REMwMzc3MkE2RUU1 M0Q1MDY4NTAeFw0yNjA0MTcwODEzMjZaFw0yNjA0MjQwODEzMjZaMBgxFjAUBgNV BAMTDTY5ZTFlYmE3LTVlOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJS4tGW9soXICwelS7wBMqSBjdauG0bENcCHixpdAQlZ2KZa093LgJ5E75ORrG U9U9xEe2Xbm7OuNbxh1ZNiwO5zDjAHt/HaKH5E+5GzFE5Pj3rKVNsqzmartGGjJ6 S1x4B2FS0BHmlHqrtmkzyZWmA6lFQrwe3YuckdefWX/OtPJHAsW6evL6CTTuWB1X Prqbop4nreYsz/L8FTnnHj7Qt8CsvwZ/bSWfe3vtTxrSJlKA1Cz+g2gmsut6STYQ fDlqObhqPwHkt8QiQ3HSci9FICY1g6cc4t8/MsR+Kw83LPt/4Lf+DafUDsqDQybQ 6ddhd/5NI2JYEALgkmMgKfVVAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUDA1slRwa vJdhtextaqllBnrULyYwHwYDVR0jBBgwFoAUQ+rzDCMMbu5uNU3AN3Km7lPVBoUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4OEVCLzAxOEUxRjZDRTQ4 QjExRjA4M0QxMUU2QjQ0NkY1NkJDL1EtcnpEQ01NYnU1dU5VM0FOM0ttN2xQVkJv VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUS1yekRDTU1idTV1TlUzQU4zS203bFBWQm9VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4 OEVCLzAxOEUxRjZDRTQ4QjExRjA4M0QxMUU2QjQ0NkY1NkJDL1EtcnpEQ01NYnU1 dU5VM0FOM0ttN2xQVkJvVS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBbaqmH6rU5dPOgHN7vW8XyYDBPx73o7mxNqVSPNE2zJ+ETssVChms/7SY2o5Ox GLr6zb4YF8LaWt0d+RfBqxCSInHAAIdlShimCpYJlgapnBc7IOPLjdLsbRbcL6bZ V35mXFJcBcQ30kpZQScNzJn2tVkiJfZBGetvw4B9BQnkfkScNUuSN1YCUB4IO8Zm GrVw1/Wu7MRETeDhaRM5bGKZbOKzeBto9JwWJ69PiNMlNvO7Z3a+6U1f+2Bi0PPa HlUJ9ahBRTydQJo7xNPy5fe6yY9wqXQpxthEPIUCaw8+nwZatiMqoJfWOk4TLn6e UvpRn2CUrFGQNAcmDc0bMJZT -----END CERTIFICATE-----Generated at Fri Apr 17 20:51:45 2026 by rpki-client