$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft File: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft (raw, json) Hash identifier: gfN76OC+/EIvzGk/FshbOPjPe+yyswcojiYzfk7IUNk= Subject key identifier: 34:B0:88:06:FD:75:3F:CB:00:15:59:8B:11:0E:4A:5D:DE:5E:55:BA Authority key identifier: 41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 Certificate issuer: /CN=A91E5D61/serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Certificate serial: 1344 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft Manifest number: 489A Signing time: Thu 16 Apr 2026 14:21:09 +0000 Manifest this update: Thu 16 Apr 2026 14:21:08 +0000 Manifest next update: Thu 23 Apr 2026 14:21:08 +0000 Files and hashes: 1: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl (hash: OQ4CDFqRdPkFmnjKtbxUC3zOOk+14DIcfuE6BtgG1T8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:21:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4932 (0x1344) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61, serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Validity Not Before: Apr 16 14:21:08 2026 GMT Not After : Apr 23 14:21:08 2026 GMT Subject: CN=69e0f055-5207 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:86:5f:79:ca:31:cb:93:5e:f9:8d:c9:de:35: a7:8c:68:7e:6b:be:b8:2e:d0:2e:17:0d:b8:d1:88: a2:16:c0:b1:c8:71:e1:0e:e9:5e:73:12:23:be:d5: fd:6f:b6:d5:1e:e8:03:2c:88:fe:e4:09:b5:2c:80: 7a:31:1d:f0:5d:d5:2e:e9:99:40:65:21:10:ae:b5: d7:ce:58:c6:81:56:2a:7c:78:81:26:67:24:73:86: 99:19:01:8e:94:43:22:e3:c6:96:4c:1b:5c:23:a2: 35:f4:1c:dd:43:ff:f6:e1:b8:e0:86:ec:da:2a:79: c0:23:d1:db:39:50:de:b0:e8:fb:35:f9:ce:e2:ae: ba:fb:f3:89:20:c0:ac:4c:48:8e:77:96:da:d3:1f: de:dd:b1:28:97:e4:23:d3:04:e6:8e:a6:30:db:83: a3:0a:0e:71:06:5d:36:28:bd:6c:65:c2:78:51:e9: 49:18:b4:cd:5f:93:a1:b7:70:7e:50:af:b2:59:2d: 84:57:b8:f3:e7:a5:5c:96:10:d8:9a:77:4b:de:9e: 9b:69:95:84:05:51:2a:1f:a4:be:27:7c:78:e0:6b: 3c:45:aa:52:32:c7:9e:b6:4f:6b:20:a5:03:be:77: 5f:c1:c4:6c:04:f2:6d:15:7e:96:3b:28:b0:2d:5b: d4:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:B0:88:06:FD:75:3F:CB:00:15:59:8B:11:0E:4A:5D:DE:5E:55:BA X509v3 Authority Key Identifier: keyid:41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:c3:8f:4c:95:ed:d2:a2:01:b6:ef:01:ba:d6:43:3d:e0:4e: f4:12:31:2f:82:bd:42:93:04:d5:8f:cd:05:e9:c9:d3:99:ba: 30:37:fc:9a:fc:2a:1a:bb:1d:b8:5b:9c:c7:f9:43:8e:de:49: 28:21:84:60:ea:4d:e1:c9:53:21:ef:13:f4:de:e9:30:07:76: ba:88:35:62:72:5a:90:e9:90:32:56:91:db:f0:b9:68:48:1c: 5b:46:d5:60:e8:17:96:29:3e:ff:c5:b7:95:5c:e2:e2:70:b1: 5c:96:95:f8:48:72:44:04:9a:79:77:f8:32:25:71:63:e0:7e: 25:55:42:e3:17:e2:46:d6:84:42:ef:d5:30:8d:75:30:d3:2f: 85:79:09:40:a5:f5:f6:d0:48:6e:80:4d:b6:bc:e9:63:d8:f6: 77:e6:09:9e:e5:c0:d4:0f:74:d5:af:d4:7c:ba:87:3b:31:81: 83:14:b6:2b:3a:72:fc:12:4b:1a:29:be:13:61:f9:4c:b9:89: ea:a3:78:5a:54:7f:19:3e:06:53:4c:bd:05:08:5b:6e:ee:ed: 84:be:50:c2:b8:38:bf:44:ac:3d:7a:f0:7c:28:dd:80:2f:a3: db:27:e1:4b:0c:55:cd:3f:ea:7c:a0:d9:41:2a:93:6d:13:d6: eb:f5:e7:1e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE0QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDQxNkQ2Q0Q2MDM5MEZCN0M5NkVENzlENzhDRTc2RjU0 QUZDRjQ0NTgwHhcNMjYwNDE2MTQyMTA4WhcNMjYwNDIzMTQyMTA4WjAYMRYwFAYD VQQDEw02OWUwZjA1NS01MjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnYZfecoxy5Ne+Y3J3jWnjGh+a764LtAuFw240YiiFsCxyHHhDulecxIjvtX9 b7bVHugDLIj+5Am1LIB6MR3wXdUu6ZlAZSEQrrXXzljGgVYqfHiBJmckc4aZGQGO lEMi48aWTBtcI6I19BzdQ//24bjghuzaKnnAI9HbOVDesOj7NfnO4q66+/OJIMCs TEiOd5ba0x/e3bEol+Qj0wTmjqYw24OjCg5xBl02KL1sZcJ4UelJGLTNX5Oht3B+ UK+yWS2EV7jz56VclhDYmndL3p6baZWEBVEqH6S+J3x44Gs8RapSMseetk9rIKUD vndfwcRsBPJtFX6WOyiwLVvUPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDSwiAb9 dT/LABVZixEOSl3eXlW6MB8GA1UdIwQYMBaAFEFtbNYDkPt8lu1514znb1Svz0RY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8yQTdDN0Q5ODFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0zeVc3WG5Yak9kdlZLX1BS RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1FXMXMxZ09RLTN5VzdYblhqT2R2VktfUFJGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQ2MS8yQTdDN0Q5ODFENzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0z eVc3WG5Yak9kdlZLX1BSRmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAosOPTJXt0qIBtu8ButZDPeBO9BIxL4K9QpME1Y/NBenJ05m6MDf8mvwqGrsd uFucx/lDjt5JKCGEYOpN4clTIe8T9N7pMAd2uog1YnJakOmQMlaR2/C5aEgcW0bV YOgXlik+/8W3lVzi4nCxXJaV+EhyRASaeXf4MiVxY+B+JVVC4xfiRtaEQu/VMI11 MNMvhXkJQKX19tBIboBNtrzpY9j2d+YJnuXA1A901a/UfLqHOzGBgxS2Kzpy/BJL Gim+E2H5TLmJ6qN4WlR/GT4GU0y9BQhbbu7thL5Qwrg4v0SsPXrwfCjdgC+j2yfh SwxVzT/qfKDZQSqTbRPW6/XnHg== -----END CERTIFICATE-----Generated at Fri Apr 17 12:33:02 2026 by rpki-client