$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft File: q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft (raw, json) Hash identifier: tqBKbTOaxANM2JvKArCVj3ogsglGu1oO6bINR0449Bg= Subject key identifier: 69:BC:72:26:5C:A3:52:0F:70:E2:4A:19:C0:0A:84:6D:61:51:6A:C3 Authority key identifier: AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 Certificate issuer: /CN=A91C7E5B/serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft Manifest number: B3 Signing time: Fri 17 Apr 2026 06:56:57 +0000 Manifest this update: Fri 17 Apr 2026 06:56:57 +0000 Manifest next update: Fri 24 Apr 2026 06:56:57 +0000 Files and hashes: 1: q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl (hash: BQAKT3oSX/6eFkR6G9pSr3oTGR2B4JJn6G5T24mf39c=) 2: 1FC17CE2EB2D11F0971959663D6F56BC.roa (hash: w/3re6+mcHn3z7mWQlt9gMEkLcEqozWFLvA0qzfndLw=) 3: C3DCFE54EB2911F0BD7173483B6F56BC.roa (hash: GRUkISuSjrdPycV7YoKPvCtNvhdJEKU1KQQr0iDkDpg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7E5B, serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Validity Not Before: Apr 17 06:56:57 2026 GMT Not After : Apr 24 06:56:57 2026 GMT Subject: CN=69e1d9b9-6e7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:82:e5:82:24:0f:39:61:60:03:02:4f:0b:f2: ec:21:42:7b:38:cf:d6:14:65:76:cb:43:7d:7c:ab: 3a:ec:57:8b:ff:85:4d:0e:4e:b6:5a:f6:7c:fd:35: f6:ff:dc:28:35:cd:a6:aa:e9:8d:86:21:95:c1:7c: 12:d9:50:e6:be:fb:c1:5f:75:3d:c9:d4:01:2a:ac: 07:63:34:12:4c:ec:63:fb:ed:01:08:83:66:ad:d8: 34:84:e8:af:65:ba:b9:98:63:40:dc:92:b0:b0:e1: 60:ef:45:b5:21:f8:95:2d:e3:b6:8b:ac:79:9b:59: b4:e0:49:d7:63:a5:f7:31:05:af:94:79:16:14:2d: 61:81:c7:a6:d5:1e:b5:ba:60:17:4f:96:ec:4c:ed: 9d:d6:94:9c:75:c6:1c:20:4b:0e:d2:e5:ef:92:97: 69:10:26:91:38:64:81:6f:03:92:8e:ec:3f:d3:b7: e2:59:b0:41:d4:66:56:5f:40:85:6a:7b:ba:58:fe: bc:f2:56:25:fd:84:f4:b4:17:20:0d:7d:45:78:25: 67:7b:34:e9:80:7c:0a:5e:22:1b:f2:02:55:45:d1: 4c:7a:fc:ee:91:7e:7b:97:19:0e:ae:4d:ad:56:09: 4e:9b:7c:f3:05:4e:9d:47:0f:04:2d:50:df:81:9b: 14:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:BC:72:26:5C:A3:52:0F:70:E2:4A:19:C0:0A:84:6D:61:51:6A:C3 X509v3 Authority Key Identifier: keyid:AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:28:01:e2:c1:34:6d:ef:d0:33:29:68:7e:69:fb:c5:ea:06: 06:ed:19:57:9b:23:d4:49:c3:ec:34:55:8b:fe:46:73:6e:c9: 50:bf:47:ab:1f:fc:07:51:cc:d2:8c:9f:fb:8d:a9:d4:78:dd: 71:59:ee:4b:79:54:6e:c7:e8:2f:33:a7:1b:c8:06:d8:95:14: 73:58:5b:7c:6a:57:6a:72:0f:62:32:d7:3c:78:cd:d8:8c:d5: 6b:e7:d0:66:fe:98:bd:ce:3b:ad:96:cc:aa:e0:a4:bb:01:d1: 2f:28:f9:16:ff:5e:0e:11:63:a8:d9:bd:c2:2e:94:76:ac:c8: 94:6e:bd:07:33:3a:02:c6:ea:cf:b7:c8:93:3d:d5:37:fc:85: e2:69:31:a7:e5:00:ce:04:7b:7a:c5:18:83:ab:5b:78:63:42: 54:2b:92:75:44:33:5b:80:bb:e2:39:8d:36:d9:2b:06:11:8d: db:2b:45:7f:31:e5:27:9c:b5:21:1f:d7:d7:7b:b8:69:58:c9: 8f:39:e9:f3:6a:0f:e7:40:04:ba:ea:5d:de:a4:a6:2f:81:4d: 1d:84:6a:15:62:37:45:c6:00:a0:bb:37:38:d9:d3:d8:a5:2f: 14:f3:4a:88:0c:ce:2d:33:81:38:c5:4d:09:a6:a4:c1:07:28: aa:0a:6d:a4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdFNUIxMTAvBgNVBAUTKEFCNTNEOTkyODEwMkI5MTlEQjdDNTQ2NUM4REQ1RkYy NjY3NDQzQjMwHhcNMjYwNDE3MDY1NjU3WhcNMjYwNDI0MDY1NjU3WjAYMRYwFAYD VQQDEw02OWUxZDliOS02ZTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAooLlgiQPOWFgAwJPC/LsIUJ7OM/WFGV2y0N9fKs67FeL/4VNDk62WvZ8/TX2 /9woNc2mqumNhiGVwXwS2VDmvvvBX3U9ydQBKqwHYzQSTOxj++0BCINmrdg0hOiv Zbq5mGNA3JKwsOFg70W1IfiVLeO2i6x5m1m04EnXY6X3MQWvlHkWFC1hgcem1R61 umAXT5bsTO2d1pScdcYcIEsO0uXvkpdpECaROGSBbwOSjuw/07fiWbBB1GZWX0CF anu6WP688lYl/YT0tBcgDX1FeCVnezTpgHwKXiIb8gJVRdFMevzukX57lxkOrk2t VglOm3zzBU6dRw8ELVDfgZsUGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGm8ciZc o1IPcOJKGcAKhG1hUWrDMB8GA1UdIwQYMBaAFKtT2ZKBArkZ23xUZcjdX/JmdEOz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0U1Qi9EODRFN0JGMjND NkUxMUYwOUQ3NkEyNERDNEY5QUUwMi9xMVBaa29FQ3VSbmJmRlJseU4xZjhtWjBR N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ExUFprb0VDdVJuYmZGUmx5TjFmOG1aMFE3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0U1Qi9EODRFN0JGMjNDNkUxMUYwOUQ3NkEyNERDNEY5QUUwMi9xMVBaa29FQ3VS bmJmRlJseU4xZjhtWjBRN00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqCgB4sE0be/QMylofmn7xeoGBu0ZV5sj1EnD7DRVi/5Gc27JUL9Hqx/8B1HM 0oyf+42p1HjdcVnuS3lUbsfoLzOnG8gG2JUUc1hbfGpXanIPYjLXPHjN2IzVa+fQ Zv6Yvc47rZbMquCkuwHRLyj5Fv9eDhFjqNm9wi6UdqzIlG69BzM6Asbqz7fIkz3V N/yF4mkxp+UAzgR7esUYg6tbeGNCVCuSdUQzW4C74jmNNtkrBhGN2ytFfzHlJ5y1 IR/X13u4aVjJjznp82oP50AEuupd3qSmL4FNHYRqFWI3RcYAoLs3ONnT2KUvFPNK iAzOLTOBOMVNCaakwQcoqgptpA== -----END CERTIFICATE-----Generated at Fri Apr 17 09:59:47 2026 by rpki-client