$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft File: -qIKGvsgkct_URR4g_NkpFMJQTE.mft (raw, json) Hash identifier: aQATm64W3oimBaUqGhyqcHtn6rQCdObVYAkDIcgoeT4= Subject key identifier: 87:B6:4C:4C:83:F4:76:6F:BA:57:08:06:FC:06:75:C2:2A:6D:19:BA Authority key identifier: FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 Certificate issuer: /CN=A91AF0E8/serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Certificate serial: 3544 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft Manifest number: 3537 Signing time: Thu 16 Apr 2026 15:05:45 +0000 Manifest this update: Thu 16 Apr 2026 15:05:45 +0000 Manifest next update: Thu 23 Apr 2026 15:05:45 +0000 Files and hashes: 1: -qIKGvsgkct_URR4g_NkpFMJQTE.crl (hash: 7FX6MG8tVT/Vz7chC73QQAXG8/WpETdJbbB4G8MLk4s=) 2: 0A956A80B48711EC83327546C4F9AE02.roa (hash: DWDLfS9VFoRUspo4gPt0SLH/400cssY5io0TF9oRBK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:05:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13636 (0x3544) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF0E8, serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Validity Not Before: Apr 16 15:05:45 2026 GMT Not After : Apr 23 15:05:45 2026 GMT Subject: CN=69e0fac9-df28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:93:55:58:05:f3:31:12:1b:f1:29:f0:78:55: 93:d3:df:f4:d2:cc:fd:ca:a9:24:16:67:c0:ad:f6: 97:d7:e1:fd:96:0c:e2:7b:67:ab:b5:78:8c:e3:d0: 9a:83:e3:75:c7:34:c2:80:86:77:bb:46:ad:e6:82: f9:a3:e0:d9:e8:9e:90:c0:a7:ad:8b:c4:f0:df:7f: 10:35:31:3b:c1:05:fd:47:9d:0b:ed:db:52:0e:c0: e7:4e:e9:8b:fe:e8:a3:e8:bf:41:69:b8:a7:b4:17: b7:3f:c2:7f:d3:50:07:49:23:1e:2e:ca:13:ed:41: a3:a9:7e:90:fa:54:b4:56:98:79:8f:56:ea:ac:1f: 22:6e:9f:2f:f9:5a:58:9c:d5:03:b5:16:b9:c3:ef: 87:3a:8d:8a:a5:15:28:6a:7a:65:ac:18:d9:b0:5f: 5b:6c:ee:b0:27:9c:2b:0a:a0:0b:d4:db:c0:c5:34: 36:b8:34:21:50:6c:c4:5c:67:76:61:5a:51:19:28: 0a:49:61:09:57:0d:4a:03:60:af:e7:40:15:68:ed: 4d:04:59:91:80:c1:1e:6d:5a:19:0a:83:37:3d:fe: 45:68:83:56:7d:1c:f1:24:3f:23:f9:54:3d:bf:ab: 0a:53:75:d9:cc:d7:e4:e0:bf:4e:ba:d6:73:cd:ea: 2f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:B6:4C:4C:83:F4:76:6F:BA:57:08:06:FC:06:75:C2:2A:6D:19:BA X509v3 Authority Key Identifier: keyid:FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:97:19:4b:43:48:3d:19:ba:2c:22:6f:82:e5:74:1e:c3:0b: 33:f9:ce:d0:5a:31:c0:76:ff:d0:a5:71:ad:dc:7d:c2:60:4f: 9d:37:70:9a:ec:92:1f:d7:a7:c0:ac:fe:b4:8e:9c:43:ea:17: 93:af:06:d9:4b:82:ac:09:f5:7c:14:41:4e:f3:f6:c1:c6:6b: c5:ae:b1:2e:fc:3a:05:02:7a:4d:dc:38:e8:ca:f3:a6:5a:1a: 61:3d:ac:91:67:71:4e:71:95:22:92:17:ef:c5:ec:8f:3b:79: 29:86:12:cb:10:cd:01:b5:e3:f2:6d:d8:5f:17:b6:54:ab:25: 77:96:a1:13:2f:ef:bc:cb:e6:95:c3:7e:3a:e7:3c:df:01:3a: 62:33:22:48:c8:8c:40:b1:c2:73:dd:7f:38:c4:1f:0c:01:c4: 0f:35:37:6f:ef:89:4d:22:1a:a9:c9:1e:fc:fe:32:09:e0:5b: 74:a3:e1:d6:ce:f9:a6:ee:db:a8:7d:31:01:94:c7:72:c5:cb: f1:50:fd:70:8a:12:f8:cd:53:f3:fc:4d:b6:07:d8:17:02:7f: a3:12:0c:fc:3e:7a:87:c3:01:04:95:da:71:b8:ca:ae:73:ad: 07:1a:ad:2a:2e:d0:d9:67:a3:4a:d4:dc:af:c8:0d:1e:2a:92: 85:85:32:ec -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwRTgxMTAvBgNVBAUTKEZBQTIwQTFBRkIyMDkxQ0I3RjUxMTQ3ODgzRjM2NEE0 NTMwOTQxMzEwHhcNMjYwNDE2MTUwNTQ1WhcNMjYwNDIzMTUwNTQ1WjAYMRYwFAYD VQQDEw02OWUwZmFjOS1kZjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5NVWAXzMRIb8SnweFWT09/00sz9yqkkFmfArfaX1+H9lgzie2ertXiM49Ca g+N1xzTCgIZ3u0at5oL5o+DZ6J6QwKeti8Tw338QNTE7wQX9R50L7dtSDsDnTumL /uij6L9BabintBe3P8J/01AHSSMeLsoT7UGjqX6Q+lS0Vph5j1bqrB8ibp8v+VpY nNUDtRa5w++HOo2KpRUoanplrBjZsF9bbO6wJ5wrCqAL1NvAxTQ2uDQhUGzEXGd2 YVpRGSgKSWEJVw1KA2Cv50AVaO1NBFmRgMEebVoZCoM3Pf5FaINWfRzxJD8j+VQ9 v6sKU3XZzNfk4L9OutZzzeovXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIe2TEyD 9HZvulcIBvwGdcIqbRm6MB8GA1UdIwQYMBaAFPqiChr7IJHLf1EUeIPzZKRTCUEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjBFOC80NTc5NkFEMjFE QTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tjdF9VUlI0Z19Oa3BGTUpR VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1xSUtHdnNna2N0X1VSUjRnX05rcEZNSlFURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjBFOC80NTc5NkFEMjFEQTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tj dF9VUlI0Z19Oa3BGTUpRVEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWJcZS0NIPRm6LCJvguV0HsMLM/nO0FoxwHb/0KVxrdx9wmBPnTdwmuySH9en wKz+tI6cQ+oXk68G2UuCrAn1fBRBTvP2wcZrxa6xLvw6BQJ6Tdw46MrzploaYT2s kWdxTnGVIpIX78Xsjzt5KYYSyxDNAbXj8m3YXxe2VKsld5ahEy/vvMvmlcN+Ouc8 3wE6YjMiSMiMQLHCc91/OMQfDAHEDzU3b++JTSIaqcke/P4yCeBbdKPh1s75pu7b qH0xAZTHcsXL8VD9cIoS+M1T8/xNtgfYFwJ/oxIM/D56h8MBBJXacbjKrnOtBxqt Ki7Q2WejStTcr8gNHiqShYUy7A== -----END CERTIFICATE-----Generated at Fri Apr 17 14:35:19 2026 by rpki-client