$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.mft File: rQWVkiI-gWrFPEM7llhG950wUjQ.mft (raw, json) Hash identifier: CXFQulnhqGpz8Wmm9Yb8Xi0N8v1pX5+xerSXnDN8yVs= Subject key identifier: E0:49:A7:94:22:3D:C4:39:0F:95:6A:AA:EE:81:25:0B:7B:9F:60:2D Authority key identifier: AD:05:95:92:22:3E:81:6A:C5:3C:43:3B:96:58:46:F7:9D:30:52:34 Certificate issuer: /CN=A91BAEDC/serialNumber=AD059592223E816AC53C433B965846F79D305234 Certificate serial: 1C46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQWVkiI-gWrFPEM7llhG950wUjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.mft Manifest number: 1C29 Signing time: Sat 18 Apr 2026 16:08:47 +0000 Manifest this update: Sat 18 Apr 2026 16:08:46 +0000 Manifest next update: Sat 25 Apr 2026 16:08:46 +0000 Files and hashes: 1: rQWVkiI-gWrFPEM7llhG950wUjQ.crl (hash: YIJi+RZ/0M9XtvnyQJKbfg/iDQByjRYdwBIDkaU95b4=) 2: C98708BE477711EBB4044E31C4F9AE02.roa (hash: Bq4dDyNuryVKgCHn3kt6G7S6oGEDro1j46GJUBDoNaA=) 3: C85D0F7E477711EBB4044E31C4F9AE02.roa (hash: fQDDLLVpB7tlhKbTchUr+f8pc87eehWOolUlYcKucho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.crl rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQWVkiI-gWrFPEM7llhG950wUjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 16:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7238 (0x1c46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAEDC, serialNumber=AD059592223E816AC53C433B965846F79D305234 Validity Not Before: Apr 18 16:08:46 2026 GMT Not After : Apr 25 16:08:46 2026 GMT Subject: CN=69e3ac8e-b753 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:cd:78:ef:fe:59:0d:5c:7e:4b:b0:a0:25:a8: 83:75:63:03:e7:ba:fc:d3:57:2f:3f:46:94:91:b8: 46:35:19:85:34:91:ea:01:6f:8d:9d:ff:eb:e6:7d: f7:81:5f:6f:12:51:0d:ac:f9:9a:5e:c1:3c:81:47: 29:31:f8:85:21:54:e4:b9:6e:2c:c7:c1:a3:a1:6c: c1:f3:61:92:29:4f:61:19:ed:8f:42:07:69:ae:69: ce:d8:56:1f:3f:7d:a2:b4:4a:ea:57:5a:32:ab:fa: 4c:68:07:7e:61:a6:15:3d:3b:52:71:dd:ab:82:44: 05:02:d0:93:69:ba:24:08:38:ad:4f:0e:e9:ed:19: 6a:ad:3f:f1:9f:84:9b:56:17:de:d0:65:56:53:a1: a4:87:43:29:b1:3c:e2:71:70:af:5d:c6:4a:6f:63: d3:59:f4:33:c8:7e:de:ff:89:97:a6:f9:f5:68:7b: 28:75:21:f8:db:3c:94:9d:33:97:65:f0:f6:b6:27: be:93:df:b7:eb:81:50:49:27:2d:9f:b5:2f:b3:05: 17:c4:5c:33:4b:5f:2e:a0:d1:bf:11:6c:80:e6:5f: 6f:ed:ef:a0:fa:d8:a9:b8:22:c0:8c:b8:c0:1d:95: 6e:3e:ab:37:be:e7:2e:f5:45:d2:04:85:31:07:d2: 98:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:49:A7:94:22:3D:C4:39:0F:95:6A:AA:EE:81:25:0B:7B:9F:60:2D X509v3 Authority Key Identifier: keyid:AD:05:95:92:22:3E:81:6A:C5:3C:43:3B:96:58:46:F7:9D:30:52:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQWVkiI-gWrFPEM7llhG950wUjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:fd:f0:f7:c0:b3:ae:fc:8d:db:e6:ac:67:00:58:56:11:c6: ec:e0:af:f5:57:1d:45:69:68:0f:33:7e:3e:33:ed:ce:6b:d7: 9c:d9:fc:01:15:d5:4f:e2:70:c9:21:3b:7e:25:b7:79:fe:cf: 77:b2:65:b8:93:3a:52:23:50:59:c5:2c:77:fb:b9:64:75:3d: 77:58:59:80:cc:c0:61:11:82:f1:52:5f:84:17:f2:8b:c2:25: f3:a0:7c:d0:ce:39:14:78:92:92:53:07:b5:13:6c:8d:a7:02: d8:fe:bf:62:ca:88:29:ab:ef:a9:fd:ab:a4:a5:fb:60:f1:ff: df:b3:f5:f6:51:d6:56:e1:86:a3:d1:53:99:d1:66:1f:84:19: 3a:9e:78:e9:78:ba:2f:f5:8f:cd:50:25:4d:26:43:ac:af:35: 2c:5b:89:71:76:53:a4:32:26:47:97:d4:de:09:1e:84:11:ca: cb:1c:48:a3:74:93:6e:30:88:67:c3:f8:50:0a:32:3e:3a:20: 51:bc:5f:b8:56:38:c8:ad:6a:d9:92:81:8a:b9:38:d2:ee:c2: cd:57:e6:57:e2:3c:35:94:ac:d0:5a:3e:ed:51:3d:27:7c:aa: 79:c4:ac:8d:87:4c:8c:c0:73:70:62:e4:64:e6:08:ea:3e:03: 49:bb:d7:b7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFREMxMTAvBgNVBAUTKEFEMDU5NTkyMjIzRTgxNkFDNTNDNDMzQjk2NTg0NkY3 OUQzMDUyMzQwHhcNMjYwNDE4MTYwODQ2WhcNMjYwNDI1MTYwODQ2WjAYMRYwFAYD VQQDEw02OWUzYWM4ZS1iNzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8147/5ZDVx+S7CgJaiDdWMD57r801cvP0aUkbhGNRmFNJHqAW+Nnf/r5n33 gV9vElENrPmaXsE8gUcpMfiFIVTkuW4sx8GjoWzB82GSKU9hGe2PQgdprmnO2FYf P32itErqV1oyq/pMaAd+YaYVPTtScd2rgkQFAtCTabokCDitTw7p7RlqrT/xn4Sb Vhfe0GVWU6Gkh0MpsTzicXCvXcZKb2PTWfQzyH7e/4mXpvn1aHsodSH42zyUnTOX ZfD2tie+k9+364FQSSctn7UvswUXxFwzS18uoNG/EWyA5l9v7e+g+tipuCLAjLjA HZVuPqs3vucu9UXSBIUxB9KYIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOBJp5Qi PcQ5D5Vqqu6BJQt7n2AtMB8GA1UdIwQYMBaAFK0FlZIiPoFqxTxDO5ZYRvedMFI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUVEQy8yREMxQkFGMjA5 ODUxMUU3QjFGRkMyM0ZDNEY5QUUwMi9yUVdWa2lJLWdXckZQRU03bGxoRzk1MHdV alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JRV1ZraUktZ1dyRlBFTTdsbGhHOTUwd1VqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUVEQy8yREMxQkFGMjA5ODUxMUU3QjFGRkMyM0ZDNEY5QUUwMi9yUVdWa2lJLWdX ckZQRU03bGxoRzk1MHdValEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMf3w98CzrvyN2+asZwBYVhHG7OCv9VcdRWloDzN+PjPtzmvXnNn8ARXVT+Jw ySE7fiW3ef7Pd7JluJM6UiNQWcUsd/u5ZHU9d1hZgMzAYRGC8VJfhBfyi8Il86B8 0M45FHiSklMHtRNsjacC2P6/YsqIKavvqf2rpKX7YPH/37P19lHWVuGGo9FTmdFm H4QZOp546Xi6L/WPzVAlTSZDrK81LFuJcXZTpDImR5fU3gkehBHKyxxIo3STbjCI Z8P4UAoyPjogUbxfuFY4yK1q2ZKBirk40u7CzVfmV+I8NZSs0Fo+7VE9J3yqecSs jYdMjMBzcGLkZOYI6j4DSbvXtw== -----END CERTIFICATE-----Generated at Sun Apr 19 11:17:20 2026 by rpki-client