$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft File: q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft (raw, json) Hash identifier: 7aI0ffGK3nQMcyK1HDbFljGKFPgj594ZqWR/PmHQj/s= Subject key identifier: 1D:3B:62:F2:13:AD:1C:D8:BF:E2:0A:7A:9F:4D:41:A2:76:81:84:18 Authority key identifier: AB:67:E8:2F:C8:6A:AC:A8:2A:CF:F8:DC:36:45:CD:71:61:01:3F:76 Certificate issuer: /CN=A91D1E4C/serialNumber=AB67E82FC86AACA82ACFF8DC3645CD7161013F76 Certificate serial: 03A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft Manifest number: 0C48 Signing time: Thu 16 Apr 2026 20:20:07 +0000 Manifest this update: Thu 16 Apr 2026 20:20:07 +0000 Manifest next update: Thu 23 Apr 2026 20:20:07 +0000 Files and hashes: 1: q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl (hash: wZugUtvtIqSLhqvS0q2d3h9x/QpKswcUwsoj2a+NA7Y=) 2: 2AD1C746940111F0B07D7068C4F9AE02.roa (hash: AIsLYj1Q0Ri7p3sC6uZCzxYzj0O4+4SA75lfHau1SqU=) 3: 3DD8C628940111F09204AF71C4F9AE02.roa (hash: rKjGeR3bW3KsKLNlokaXVqhFpQOnZispIcGW123rOaY=) 4: FC358296CFA011EDA4AC5B18C4F9AE02.roa (hash: XL/ZcgALP761TCI8hEan3K78GIrb6EiGTeA4Vn2wUJI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:20:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 934 (0x3a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1E4C, serialNumber=AB67E82FC86AACA82ACFF8DC3645CD7161013F76 Validity Not Before: Apr 16 20:20:07 2026 GMT Not After : Apr 23 20:20:07 2026 GMT Subject: CN=69e14477-3819 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:42:4a:75:a9:c3:85:d5:94:d7:74:d4:39:f8: 20:2a:91:39:17:57:96:29:74:21:b0:b2:e5:7c:6a: 64:ee:b4:07:fe:fb:b6:07:01:00:a5:5a:5b:03:e3: 0c:85:45:cd:47:19:a8:e7:2c:c9:b0:f0:ec:04:15: ab:97:60:11:90:c8:fc:5d:44:07:94:06:2d:fb:64: b4:ce:ef:8a:e5:10:c8:6e:16:c4:25:b4:b5:ee:c1: 5a:b8:20:b4:61:c0:66:c6:fa:c7:90:41:48:3a:0a: f8:a5:7e:0a:e6:e7:e4:4c:31:21:79:ba:7f:59:72: 52:03:96:6d:55:89:15:c7:95:33:02:7d:d2:a8:c2: 04:66:ab:32:99:53:c2:da:6a:a3:a4:95:4c:12:75: ad:b1:d3:d3:45:9c:ab:aa:f4:b4:c1:2e:9e:e4:cc: 9b:6d:75:b0:ca:0e:0b:00:90:4e:47:fe:db:0b:74: 8c:57:a8:3c:ec:76:c7:04:16:31:c2:e1:5b:22:b0: 97:71:74:20:18:a8:6d:63:37:60:31:64:9d:8b:41: 11:5a:08:b6:25:2c:00:25:aa:5b:bb:99:41:e0:d5: 43:58:e6:a1:73:ce:73:04:fa:68:bf:2a:2b:c1:43: d0:8e:78:5b:96:99:bf:62:6c:6d:65:16:42:0d:c3: 71:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:3B:62:F2:13:AD:1C:D8:BF:E2:0A:7A:9F:4D:41:A2:76:81:84:18 X509v3 Authority Key Identifier: keyid:AB:67:E8:2F:C8:6A:AC:A8:2A:CF:F8:DC:36:45:CD:71:61:01:3F:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:57:d8:1d:74:49:f4:9b:28:70:f1:27:5a:3e:48:db:ae:e1: 59:08:93:f1:52:da:19:d5:03:53:b5:c4:e1:d4:bd:aa:25:15: 49:3d:5f:dd:70:61:95:61:f2:15:f9:cb:d3:c1:f0:46:31:21: d1:dc:5c:84:37:20:6e:5f:25:0e:d5:b6:04:af:6c:0c:12:1d: 45:3b:53:8d:b5:92:41:a2:f6:42:80:ef:ee:1c:40:27:ff:b5: 80:92:05:17:49:c2:f7:19:f7:1c:91:2d:76:83:54:0d:6b:1e: 50:4e:4c:a3:59:16:32:ea:a1:cf:15:bf:81:d1:e3:41:bb:cf: 6e:9e:b7:cc:83:e9:a4:1c:e7:37:c6:3a:0a:e0:10:c6:c6:5c: b4:c6:0d:0b:b3:9d:e8:f1:ed:d3:1b:5f:05:c0:0d:d0:b4:83: 30:79:32:76:f8:cf:87:5d:b8:a2:54:23:d9:ca:83:2d:78:ca: bf:99:c7:a9:92:0d:4f:61:7a:76:32:81:93:8d:67:03:b6:20: 4e:ff:b7:c5:9b:a4:8b:b0:4b:26:d0:8e:0b:21:9a:b4:c6:5a: 7b:4f:94:e0:29:a0:04:d5:1c:68:49:40:d6:a2:95:7c:2a:82: ad:72:8f:a5:8e:bb:b9:28:66:92:b2:16:a9:65:de:5f:82:26: 04:68:84:41 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFNEMxMTAvBgNVBAUTKEFCNjdFODJGQzg2QUFDQTgyQUNGRjhEQzM2NDVDRDcx NjEwMTNGNzYwHhcNMjYwNDE2MjAyMDA3WhcNMjYwNDIzMjAyMDA3WjAYMRYwFAYD VQQDEw02OWUxNDQ3Ny0zODE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEJKdanDhdWU13TUOfggKpE5F1eWKXQhsLLlfGpk7rQH/vu2BwEApVpbA+MM hUXNRxmo5yzJsPDsBBWrl2ARkMj8XUQHlAYt+2S0zu+K5RDIbhbEJbS17sFauCC0 YcBmxvrHkEFIOgr4pX4K5ufkTDEhebp/WXJSA5ZtVYkVx5UzAn3SqMIEZqsymVPC 2mqjpJVMEnWtsdPTRZyrqvS0wS6e5MybbXWwyg4LAJBOR/7bC3SMV6g87HbHBBYx wuFbIrCXcXQgGKhtYzdgMWSdi0ERWgi2JSwAJapbu5lB4NVDWOahc85zBPpovyor wUPQjnhblpm/YmxtZRZCDcNxYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB07YvIT rRzYv+IKep9NQaJ2gYQYMB8GA1UdIwQYMBaAFKtn6C/IaqyoKs/43DZFzXFhAT92 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUU0Qy83REFEQTU2Q0Q5 NEQxMUVBQTYwNEFDNTNDNEY5QUUwMi9xMmZvTDhocXJLZ3F6X2pjTmtYTmNXRUJQ M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EyZm9MOGhxcktncXpfamNOa1hOY1dFQlAzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUU0Qy83REFEQTU2Q0Q5NEQxMUVBQTYwNEFDNTNDNEY5QUUwMi9xMmZvTDhocXJL Z3F6X2pjTmtYTmNXRUJQM1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAY1fYHXRJ9JsocPEnWj5I267hWQiT8VLaGdUDU7XE4dS9qiUVST1f3XBhlWHy FfnL08HwRjEh0dxchDcgbl8lDtW2BK9sDBIdRTtTjbWSQaL2QoDv7hxAJ/+1gJIF F0nC9xn3HJEtdoNUDWseUE5Mo1kWMuqhzxW/gdHjQbvPbp63zIPppBznN8Y6CuAQ xsZctMYNC7Od6PHt0xtfBcAN0LSDMHkydvjPh124olQj2cqDLXjKv5nHqZINT2F6 djKBk41nA7YgTv+3xZuki7BLJtCOCyGatMZae0+U4CmgBNUcaElA1qKVfCqCrXKP pY67uShmkrIWqWXeX4ImBGiEQQ== -----END CERTIFICATE-----Generated at Fri Apr 17 19:28:14 2026 by rpki-client