$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE334/BC5B4BBEE57911F0836EEAA1416F56BC/rQUyxqhtSiMdAK5R-tgo9qK2qos.mft File: rQUyxqhtSiMdAK5R-tgo9qK2qos.mft (raw, json) Hash identifier: FFtsEqkJt0IknShIFY4uq+XP9thNJnNQrDs5gggKzG0= Subject key identifier: 50:54:A1:CB:B7:87:37:9B:67:42:84:DE:60:23:A1:32:19:A2:FA:D8 Authority key identifier: AD:05:32:C6:A8:6D:4A:23:1D:00:AE:51:FA:D8:28:F6:A2:B6:AA:8B Certificate issuer: /CN=A91DE334/serialNumber=AD0532C6A86D4A231D00AE51FAD828F6A2B6AA8B Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rQUyxqhtSiMdAK5R-tgo9qK2qos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE334/BC5B4BBEE57911F0836EEAA1416F56BC/rQUyxqhtSiMdAK5R-tgo9qK2qos.mft Manifest number: 42 Signing time: Fri 17 Apr 2026 08:14:11 +0000 Manifest this update: Fri 17 Apr 2026 08:14:11 +0000 Manifest next update: Fri 24 Apr 2026 08:14:11 +0000 Files and hashes: 1: rQUyxqhtSiMdAK5R-tgo9qK2qos.crl (hash: X4b+px7PAgtrbZ29oroXnIUCCGK8VhRrzN2OXTkRMR4=) 2: 81346F96F49411F0BFEF52BD746F56BC.roa (hash: KtQdT3wKXi5XLWS0IbUBySou/W4dYxSu83urtoPZVvw=) 3: 38D21898F49411F08DD0DDBA746F56BC.roa (hash: 2TmQLP3BLhtpTJZcn16jZ9UXy19wv2rakTfjxerLpXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE334/BC5B4BBEE57911F0836EEAA1416F56BC/rQUyxqhtSiMdAK5R-tgo9qK2qos.crl rsync://rpki.apnic.net/member_repository/A91DE334/BC5B4BBEE57911F0836EEAA1416F56BC/rQUyxqhtSiMdAK5R-tgo9qK2qos.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rQUyxqhtSiMdAK5R-tgo9qK2qos.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 08:14:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE334, serialNumber=AD0532C6A86D4A231D00AE51FAD828F6A2B6AA8B Validity Not Before: Apr 17 08:14:11 2026 GMT Not After : Apr 24 08:14:11 2026 GMT Subject: CN=69e1ebd3-1a87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2c:a2:bd:42:84:25:f7:db:14:15:5c:a4:93: 27:74:e2:98:ff:4d:72:16:26:f3:8a:68:df:fc:07: d4:d4:6c:1a:05:6b:f8:18:51:15:c1:36:23:2d:6a: 53:e6:c0:1e:d6:79:c7:7d:cd:fd:0a:26:43:38:90: cb:a0:cc:35:43:f0:e3:41:8e:fe:88:d8:1e:a4:aa: 2e:20:4c:3d:6d:23:cc:5d:7f:5d:47:7e:2b:c6:df: fd:42:48:75:70:b2:46:65:fb:f4:bf:32:96:3c:96: b0:88:fa:66:fd:0b:4f:54:34:a0:ed:ea:d2:05:14: a4:9d:be:58:61:e7:98:a3:5e:cb:4c:63:49:62:c5: ce:a6:fa:ec:75:10:f6:51:7f:ea:a9:25:d6:30:c0: a6:14:27:2b:04:d8:73:a2:54:64:e6:a4:45:e2:a2: 43:cc:70:14:43:b1:97:cd:e7:14:db:62:83:71:65: 87:92:63:6f:17:2e:50:71:aa:f8:a6:c7:2f:0c:48: 4c:03:07:6e:df:58:b0:11:b3:ad:99:14:75:ad:c9: cc:15:22:c2:57:71:60:7f:d1:40:a2:71:c3:4a:64: 6a:25:63:04:dd:c4:aa:46:b1:1a:1e:92:88:bb:b3: ff:4a:4a:14:58:c5:30:52:26:21:77:b7:80:1f:02: 09:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:54:A1:CB:B7:87:37:9B:67:42:84:DE:60:23:A1:32:19:A2:FA:D8 X509v3 Authority Key Identifier: keyid:AD:05:32:C6:A8:6D:4A:23:1D:00:AE:51:FA:D8:28:F6:A2:B6:AA:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE334/BC5B4BBEE57911F0836EEAA1416F56BC/rQUyxqhtSiMdAK5R-tgo9qK2qos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rQUyxqhtSiMdAK5R-tgo9qK2qos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE334/BC5B4BBEE57911F0836EEAA1416F56BC/rQUyxqhtSiMdAK5R-tgo9qK2qos.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:e4:8e:cd:36:04:e2:6f:82:93:31:78:56:0b:ed:e4:20:b4: b9:37:4d:b4:5a:4f:05:02:c0:93:c3:c0:4d:fd:ba:98:3b:0e: e8:84:b8:eb:8e:54:c1:30:ae:79:54:ad:76:d1:e9:a1:7d:de: b1:ff:8e:d7:f1:d4:23:c0:90:f2:0d:ec:27:f0:99:6c:73:95: 85:a8:63:2e:94:fd:86:b0:e6:ee:43:4f:63:1a:14:78:0d:8e: 18:1f:c8:cf:b5:da:a0:8a:99:22:1f:e1:3a:c5:7a:f5:7f:0f: 58:54:b6:04:f9:24:fa:d1:ab:f6:72:87:5c:5a:94:29:00:d9: 59:bb:e8:66:78:ea:b1:4e:9a:4f:4d:c3:79:fb:88:24:dd:ba: b8:26:b9:8c:e2:19:df:82:93:65:e7:6c:52:21:89:88:53:19: 8d:46:89:5d:8d:34:65:0b:77:fe:e7:cb:1b:20:d7:6e:09:82: 0c:a1:70:e8:82:54:84:59:c5:83:bc:44:fd:31:58:b5:c2:c3: a1:57:18:9e:a0:e0:bc:49:08:88:5b:9c:38:ad:f2:97:ad:27: e2:ca:16:4b:61:22:e3:88:08:95:c1:2c:eb:68:03:0b:43:9e: 50:77:14:2a:42:65:b5:0f:c7:87:ac:47:ec:f9:5d:47:e6:78: fd:fb:7d:9d -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RTMzNDExMC8GA1UEBRMoQUQwNTMyQzZBODZENEEyMzFEMDBBRTUxRkFEODI4RjZB MkI2QUE4QjAeFw0yNjA0MTcwODE0MTFaFw0yNjA0MjQwODE0MTFaMBgxFjAUBgNV BAMTDTY5ZTFlYmQzLTFhODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/LKK9QoQl99sUFVykkyd04pj/TXIWJvOKaN/8B9TUbBoFa/gYURXBNiMtalPm wB7Wecd9zf0KJkM4kMugzDVD8ONBjv6I2B6kqi4gTD1tI8xdf11HfivG3/1CSHVw skZl+/S/MpY8lrCI+mb9C09UNKDt6tIFFKSdvlhh55ijXstMY0lixc6m+ux1EPZR f+qpJdYwwKYUJysE2HOiVGTmpEXiokPMcBRDsZfN5xTbYoNxZYeSY28XLlBxqvim xy8MSEwDB27fWLARs62ZFHWtycwVIsJXcWB/0UCiccNKZGolYwTdxKpGsRoekoi7 s/9KShRYxTBSJiF3t4AfAgmlAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUUFShy7eH N5tnQoTeYCOhMhmi+tgwHwYDVR0jBBgwFoAUrQUyxqhtSiMdAK5R+tgo9qK2qosw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURFMzM0L0JDNUI0QkJFRTU3 OTExRjA4MzZFRUFBMTQxNkY1NkJDL3JRVXl4cWh0U2lNZEFLNVItdGdvOXFLMnFv cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvclFVeXhxaHRTaU1kQUs1Ui10Z285cUsycW9zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURF MzM0L0JDNUI0QkJFRTU3OTExRjA4MzZFRUFBMTQxNkY1NkJDL3JRVXl4cWh0U2lN ZEFLNVItdGdvOXFLMnFvcy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBh5I7NNgTib4KTMXhWC+3kILS5N020Wk8FAsCTw8BN/bqYOw7ohLjrjlTBMK55 VK120emhfd6x/47X8dQjwJDyDewn8Jlsc5WFqGMulP2GsObuQ09jGhR4DY4YH8jP tdqgipkiH+E6xXr1fw9YVLYE+ST60av2codcWpQpANlZu+hmeOqxTppPTcN5+4gk 3bq4JrmM4hnfgpNl52xSIYmIUxmNRoldjTRlC3f+58sbINduCYIMoXDoglSEWcWD vET9MVi1wsOhVxieoOC8SQiIW5w4rfKXrSfiyhZLYSLjiAiVwSzraAMLQ55QdxQq QmW1D8eHrEfs+V1H5nj9+32d -----END CERTIFICATE-----Generated at Fri Apr 17 20:59:09 2026 by rpki-client