$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft File: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft (raw, json) Hash identifier: +eJpBoUhV9wGZ7j14tbFAFgyaa2QawbgjB/jtdnRp4A= Subject key identifier: 25:F3:CF:95:B6:CC:8D:C4:2A:0D:2A:ED:6B:BA:D6:00:F8:A6:A5:8A Authority key identifier: 40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 Certificate issuer: /CN=A91BB492/serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft Manifest number: CA Signing time: Fri 17 Apr 2026 06:34:05 +0000 Manifest this update: Fri 17 Apr 2026 06:34:05 +0000 Manifest next update: Fri 24 Apr 2026 06:34:05 +0000 Files and hashes: 1: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl (hash: kXfA3b+ZERUNtPBnBeZJ39vZHxqMb/M4rAyKn+YDl38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:34:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB492, serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Validity Not Before: Apr 17 06:34:05 2026 GMT Not After : Apr 24 06:34:05 2026 GMT Subject: CN=69e1d45d-19f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:aa:bd:45:db:79:06:f7:c1:e2:34:5f:a3:dd: 05:21:e6:2e:c4:22:f4:af:b1:d5:98:b7:e5:c4:92: 44:37:aa:99:50:9a:5b:16:fb:8d:83:a5:ee:5d:a4: 65:ce:9b:4b:52:32:93:58:97:70:6d:3e:45:fa:6e: 6a:fa:93:b9:36:df:e0:88:bc:64:89:27:28:b5:de: e2:9a:d0:48:0d:1d:2f:f1:3a:c6:ad:35:6c:7f:7f: be:97:53:2e:21:02:ab:36:53:87:bb:40:ca:c9:83: 7c:92:c3:14:cb:6a:92:3c:ae:bb:1d:0a:c1:bc:0a: c4:72:04:56:e3:f3:62:77:c2:1b:90:d9:a2:3d:5d: a7:9b:b3:03:7b:04:c5:0a:92:3b:a2:d6:df:76:e4: d5:03:4d:c9:41:ec:51:30:85:cf:48:e6:6b:cd:87: 06:06:c4:02:a4:fb:35:31:d6:30:34:22:52:f3:29: 7a:fc:16:c3:56:ff:50:f1:eb:57:64:d5:07:ba:1c: 52:5f:6d:c5:f4:10:47:36:bd:2e:83:9c:52:c9:84: 2e:55:c3:44:f1:be:77:9a:13:20:35:17:76:10:60: ef:bb:b7:81:66:5c:4a:0c:36:30:6b:6a:4b:c5:70: cc:c3:0d:79:a2:68:c6:ea:2f:b4:69:80:8c:80:a7: c4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:F3:CF:95:B6:CC:8D:C4:2A:0D:2A:ED:6B:BA:D6:00:F8:A6:A5:8A X509v3 Authority Key Identifier: keyid:40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:56:47:fe:50:81:89:17:7a:87:84:3d:d6:3f:18:16:7e:74: 25:54:59:ce:56:c8:cb:fc:ae:ae:69:09:37:14:13:dd:c8:70: 8b:75:ad:f5:73:c3:5f:05:28:75:0f:96:8c:ef:06:b2:37:75: 06:cd:0e:a0:35:00:0e:80:d3:d9:f2:2a:26:46:c1:28:3e:39: f6:5e:58:74:6e:97:da:23:ed:55:e4:2f:f9:64:84:3c:3b:2b: 5e:0c:87:3b:65:f0:26:1c:6f:f8:0f:45:f9:a3:06:0d:9a:f7: e4:44:63:67:4e:39:72:17:24:85:5e:11:67:70:87:2a:91:e0: 27:15:6b:d7:b6:e3:04:0b:39:a2:19:71:94:b7:67:b7:b3:15: 7b:89:14:03:1f:67:57:7b:2e:d8:fc:55:ca:45:74:c1:ff:df: df:5f:fb:52:d8:92:ea:74:49:81:56:25:23:6b:71:7a:5c:3e: 8d:0d:f8:68:17:b1:e7:6e:d5:05:46:c0:55:00:6d:a3:49:c8: 8c:e3:73:ff:51:5d:d3:db:17:42:4f:e8:53:4c:22:d8:c6:7c: 4c:b4:8c:91:ba:ef:92:59:67:1b:1f:c3:99:b6:d4:9f:81:f4: 1e:a7:4c:f3:3f:25:72:28:13:97:7d:3e:10:38:5a:73:aa:88: da:be:fb:de -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTIxMTAvBgNVBAUTKDQwRTRCRDM2QUUxNTA3N0ZFNTk5ODVEMTM3MEQ1RDY0 NjcwQTg4RDkwHhcNMjYwNDE3MDYzNDA1WhcNMjYwNDI0MDYzNDA1WjAYMRYwFAYD VQQDEw02OWUxZDQ1ZC0xOWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwaq9Rdt5BvfB4jRfo90FIeYuxCL0r7HVmLflxJJEN6qZUJpbFvuNg6XuXaRl zptLUjKTWJdwbT5F+m5q+pO5Nt/giLxkiScotd7imtBIDR0v8TrGrTVsf3++l1Mu IQKrNlOHu0DKyYN8ksMUy2qSPK67HQrBvArEcgRW4/Nid8IbkNmiPV2nm7MDewTF CpI7otbfduTVA03JQexRMIXPSOZrzYcGBsQCpPs1MdYwNCJS8yl6/BbDVv9Q8etX ZNUHuhxSX23F9BBHNr0ug5xSyYQuVcNE8b53mhMgNRd2EGDvu7eBZlxKDDYwa2pL xXDMww15omjG6i+0aYCMgKfEKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCXzz5W2 zI3EKg0q7Wu61gD4pqWKMB8GA1UdIwQYMBaAFEDkvTauFQd/5ZmF0TcNXWRnCojZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5Mi8yQzBCMzJEODA5 MzYxMUYwQTI4NDJENTdDNEY5QUUwMi9RT1M5TnE0VkIzX2xtWVhSTncxZFpHY0tp TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPUzlOcTRWQjNfbG1ZWFJOdzFkWkdjS2lOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjQ5Mi8yQzBCMzJEODA5MzYxMUYwQTI4NDJENTdDNEY5QUUwMi9RT1M5TnE0VkIz X2xtWVhSTncxZFpHY0tpTmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJVZH/lCBiRd6h4Q91j8YFn50JVRZzlbIy/yurmkJNxQT3chwi3Wt9XPDXwUo dQ+WjO8Gsjd1Bs0OoDUADoDT2fIqJkbBKD459l5YdG6X2iPtVeQv+WSEPDsrXgyH O2XwJhxv+A9F+aMGDZr35ERjZ045chckhV4RZ3CHKpHgJxVr17bjBAs5ohlxlLdn t7MVe4kUAx9nV3su2PxVykV0wf/f31/7UtiS6nRJgVYlI2txelw+jQ34aBex527V BUbAVQBto0nIjONz/1Fd09sXQk/oU0wi2MZ8TLSMkbrvkllnGx/DmbbUn4H0HqdM 8z8lcigTl30+EDhac6qI2r773g== -----END CERTIFICATE-----Generated at Fri Apr 17 11:27:37 2026 by rpki-client