$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft File: a-Q-axOWQ8tMGebfcyO1A8STEds.mft (raw, json) Hash identifier: 2io/2RCNT7j9p16pU3/u4Oj7tD4KHgNtynKsi9aB6dg= Subject key identifier: CE:27:D9:5B:8C:C6:4C:72:10:F9:78:56:06:6A:03:20:86:61:30:C8 Authority key identifier: 6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB Certificate issuer: /CN=A91E8D27/serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Certificate serial: 34BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft Manifest number: 3497 Signing time: Thu 16 Apr 2026 15:17:51 +0000 Manifest this update: Thu 16 Apr 2026 15:17:51 +0000 Manifest next update: Thu 23 Apr 2026 15:17:51 +0000 Files and hashes: 1: a-Q-axOWQ8tMGebfcyO1A8STEds.crl (hash: wJo3+pPYFEDzCo4DP89nA8yQa4TfGPgwSXJ/CnRDEfk=) 2: 56C3DC822B0B11EF97C4A74AC4F9AE02.roa (hash: NHHqtoWG+gwaIC084o2r9OLvOpqSCVAznqovXmjnsXg=) 3: A634576635D511F1A68BE981A0833773.roa (hash: 4ZRG+jBKDkZrZQYJ33ftXyXhm7MnH5udmfkKK13Boew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13499 (0x34bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D27, serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Validity Not Before: Apr 16 15:17:51 2026 GMT Not After : Apr 23 15:17:51 2026 GMT Subject: CN=69e0fd9f-2861 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bf:66:9f:b6:1e:f2:3b:1f:55:1e:ec:fc:90: b2:05:24:00:6d:38:71:79:19:5e:e9:b1:d6:af:55: 52:b9:03:90:b9:6d:a0:1d:20:5c:d4:5b:e7:c9:7b: d9:7d:d8:18:ee:57:68:97:43:f3:d5:27:cf:8b:a9: 11:70:8a:ee:97:02:7c:3a:00:f7:53:6a:78:64:84: 80:65:9c:3b:50:c1:ec:ba:7f:61:25:99:32:d5:e4: f5:66:65:dc:b2:54:56:47:77:7e:ac:0a:5e:60:d7: 62:58:0b:93:94:68:5e:f1:ca:12:58:65:64:a0:cd: e5:f8:11:35:f0:9e:b9:0c:ff:bb:72:f5:4e:90:49: fb:dc:11:72:99:db:db:dc:ad:f7:95:09:02:38:9b: e6:d6:98:7a:1f:a0:3d:80:6a:56:ec:46:5d:47:af: 07:3b:6b:56:95:63:78:ec:94:5d:08:1c:07:4d:bb: b9:c0:58:86:77:f4:4e:7b:52:4e:c4:5b:72:7f:c3: 9a:f8:44:e5:82:28:74:ca:9c:6a:d1:3a:2d:24:42: a5:90:7e:3a:d0:01:70:2f:2d:09:68:ba:f1:41:e3: 28:db:2d:50:3d:fc:27:1b:7a:cf:18:ab:9e:cd:10: 6b:5e:17:8f:ac:f0:d3:2d:d9:30:42:ea:72:fc:a5: 35:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:27:D9:5B:8C:C6:4C:72:10:F9:78:56:06:6A:03:20:86:61:30:C8 X509v3 Authority Key Identifier: keyid:6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:48:c6:34:c9:54:82:59:64:c5:7f:5a:9c:bf:8b:c2:c9:53: 0e:d7:84:7d:4a:ad:b7:c2:ac:38:95:75:b4:be:66:d2:96:03: d1:9f:98:10:db:ec:03:17:4e:1c:ad:7b:3a:42:3b:06:a7:ef: a1:2b:cb:a6:17:5f:78:ac:3c:ad:3b:17:d6:2c:a2:39:7d:48: bd:0e:c8:94:54:02:4d:72:8c:e4:2a:84:51:b8:e5:5e:7c:02: 14:64:a2:e5:58:ef:03:cf:45:0f:fa:1d:ce:b9:ac:ff:fa:02: 71:a8:c3:ab:46:c9:f8:f8:d0:51:e9:74:9c:69:2f:a7:fa:f7: 64:5e:bf:26:25:18:63:11:13:e3:ec:53:8b:6a:9e:c5:f4:92: e3:17:ac:c1:8b:71:d3:bd:bd:13:ba:38:5a:fa:da:dc:47:13: 05:47:ae:58:33:98:81:e6:bf:3a:50:10:12:38:35:bf:e4:8b: a9:84:62:73:f5:eb:cb:88:f3:e4:05:1c:9b:38:c0:d6:4c:d7: a0:35:7b:a3:dc:57:07:05:78:57:88:70:18:67:3d:8f:3f:39: d0:f6:06:00:d7:df:0e:09:39:bb:68:c2:6b:76:47:cf:14:2e: 85:8c:0b:5e:49:08:75:70:0e:bd:76:85:e7:7d:fb:2c:91:50: 21:88:42:d0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjcxMTAvBgNVBAUTKDZCRTQzRTZCMTM5NjQzQ0I0QzE5RTZERjczMjNCNTAz QzQ5MzExREIwHhcNMjYwNDE2MTUxNzUxWhcNMjYwNDIzMTUxNzUxWjAYMRYwFAYD VQQDEw02OWUwZmQ5Zi0yODYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsr9mn7Ye8jsfVR7s/JCyBSQAbThxeRle6bHWr1VSuQOQuW2gHSBc1FvnyXvZ fdgY7ldol0Pz1SfPi6kRcIrulwJ8OgD3U2p4ZISAZZw7UMHsun9hJZky1eT1ZmXc slRWR3d+rApeYNdiWAuTlGhe8coSWGVkoM3l+BE18J65DP+7cvVOkEn73BFymdvb 3K33lQkCOJvm1ph6H6A9gGpW7EZdR68HO2tWlWN47JRdCBwHTbu5wFiGd/ROe1JO xFtyf8Oa+ETlgih0ypxq0TotJEKlkH460AFwLy0JaLrxQeMo2y1QPfwnG3rPGKue zRBrXhePrPDTLdkwQupy/KU1GQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM4n2VuM xkxyEPl4VgZqAyCGYTDIMB8GA1UdIwQYMBaAFGvkPmsTlkPLTBnm33MjtQPEkxHb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyNy9DMEM1ODA3MDQy RTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4dE1HZWJmY3lPMUE4U1RF ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EtUS1heE9XUTh0TUdlYmZjeU8xQThTVEVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyNy9DMEM1ODA3MDQyRTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4 dE1HZWJmY3lPMUE4U1RFZHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAskjGNMlUgllkxX9anL+LwslTDteEfUqtt8KsOJV1tL5m0pYD0Z+YENvsAxdO HK17OkI7BqfvoSvLphdfeKw8rTsX1iyiOX1IvQ7IlFQCTXKM5CqEUbjlXnwCFGSi 5VjvA89FD/odzrms//oCcajDq0bJ+PjQUel0nGkvp/r3ZF6/JiUYYxET4+xTi2qe xfSS4xeswYtx0729E7o4Wvra3EcTBUeuWDOYgea/OlAQEjg1v+SLqYRic/Xry4jz 5AUcmzjA1kzXoDV7o9xXBwV4V4hwGGc9jz850PYGANffDgk5u2jCa3ZHzxQuhYwL XkkIdXAOvXaF5337LJFQIYhC0A== -----END CERTIFICATE-----Generated at Fri Apr 17 23:03:52 2026 by rpki-client