$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFDF3/757DB7887D7111EB82D3D661C4F9AE02/cnQCOx-0p0kyj11N-DsN0_B_6UI.mft File: cnQCOx-0p0kyj11N-DsN0_B_6UI.mft (raw, json) Hash identifier: /wkhavftv9wReIS1VqMB5elPyFm0GWVR6S5J9f3uvTw= Subject key identifier: 3F:58:4C:4E:65:20:A8:35:BA:3C:78:4E:A1:C6:3B:F2:81:7D:AE:7E Authority key identifier: 72:74:02:3B:1F:B4:A7:49:32:8F:5D:4D:F8:3B:0D:D3:F0:7F:E9:42 Certificate issuer: /CN=A91FFDF3/serialNumber=7274023B1FB4A749328F5D4DF83B0DD3F07FE942 Certificate serial: 070E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnQCOx-0p0kyj11N-DsN0_B_6UI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFDF3/757DB7887D7111EB82D3D661C4F9AE02/cnQCOx-0p0kyj11N-DsN0_B_6UI.mft Manifest number: 070E Signing time: Sat 18 Apr 2026 21:48:28 +0000 Manifest this update: Sat 18 Apr 2026 21:48:27 +0000 Manifest next update: Sat 25 Apr 2026 21:48:27 +0000 Files and hashes: 1: cnQCOx-0p0kyj11N-DsN0_B_6UI.crl (hash: UuIVP6QlghjtAgc2c+HEHpejN6ThCYtiJpkiRyukqfk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFDF3/757DB7887D7111EB82D3D661C4F9AE02/cnQCOx-0p0kyj11N-DsN0_B_6UI.crl rsync://rpki.apnic.net/member_repository/A91FFDF3/757DB7887D7111EB82D3D661C4F9AE02/cnQCOx-0p0kyj11N-DsN0_B_6UI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnQCOx-0p0kyj11N-DsN0_B_6UI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 21:48:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1806 (0x70e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFDF3, serialNumber=7274023B1FB4A749328F5D4DF83B0DD3F07FE942 Validity Not Before: Apr 18 21:48:27 2026 GMT Not After : Apr 25 21:48:27 2026 GMT Subject: CN=69e3fc2c-673c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e8:c6:d4:cf:f7:0d:5c:53:18:37:07:70:77: 19:4f:bf:22:11:31:a1:6c:76:a5:a4:73:7b:6d:b1: 02:2f:e6:20:98:f3:44:9e:fa:4c:e8:a6:56:95:76: 14:bc:b4:83:35:ca:42:bc:bb:c5:94:a5:89:c2:07: 38:2a:7a:68:bd:d6:56:e1:de:16:e9:45:82:49:b9: 30:b9:ef:09:74:bd:d9:9f:a2:e8:67:4b:a0:e6:0f: 01:c6:5f:d0:27:01:8d:8a:5f:0d:a3:6e:6f:c3:18: 17:7f:13:11:f6:42:07:8f:33:86:c4:a9:ff:80:ff: 90:72:06:0f:fc:36:5e:69:21:65:ba:81:fc:8d:d6: a7:66:27:c2:c2:45:42:7f:bc:a5:41:79:d8:a4:bf: 30:73:20:cc:53:74:86:cf:2b:47:7a:8d:db:15:5c: 81:3f:f0:5f:9f:ee:70:88:23:42:13:05:25:75:91: 64:da:f3:d7:52:33:fc:1b:37:09:b6:4d:a3:d3:e4: 7d:76:d6:04:e9:7b:a5:8a:5f:9a:ec:65:c4:1a:37: a9:23:fa:f8:d2:82:ae:5d:3f:06:02:27:29:a4:89: 6e:22:b0:62:e1:97:4a:f7:af:3a:c9:35:a9:45:17: 0b:22:4c:01:8a:8f:b7:c8:80:48:b8:87:1f:ba:54: e3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:58:4C:4E:65:20:A8:35:BA:3C:78:4E:A1:C6:3B:F2:81:7D:AE:7E X509v3 Authority Key Identifier: keyid:72:74:02:3B:1F:B4:A7:49:32:8F:5D:4D:F8:3B:0D:D3:F0:7F:E9:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFDF3/757DB7887D7111EB82D3D661C4F9AE02/cnQCOx-0p0kyj11N-DsN0_B_6UI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnQCOx-0p0kyj11N-DsN0_B_6UI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFDF3/757DB7887D7111EB82D3D661C4F9AE02/cnQCOx-0p0kyj11N-DsN0_B_6UI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:4d:23:e3:55:ff:d0:39:87:5b:86:b9:77:e7:d5:ca:fe:3b: d0:76:43:0a:e0:39:57:e8:02:84:66:47:26:86:03:51:6e:19: 02:a9:f5:c9:86:04:e3:a8:ee:3c:6f:50:45:f9:93:7d:01:b1: 57:6d:a7:3b:3b:30:89:08:2e:f9:83:9c:59:c9:ad:f1:ee:1f: 71:88:0c:53:8b:a0:e0:0f:69:e1:93:d0:22:a4:7b:98:33:d0: 00:f8:65:37:a5:92:59:79:60:b0:21:96:3e:40:ad:e4:e5:e5: 77:20:16:67:3a:e6:23:d6:dd:e1:42:01:af:fa:36:85:66:f4: ab:53:37:30:51:84:45:57:2c:c2:b8:e0:f4:7a:29:9d:19:d3: 46:01:79:22:09:cd:23:27:4b:66:21:ac:0a:20:31:9b:90:de: 03:7e:a8:ec:47:0c:35:ba:35:a1:13:38:8d:aa:bf:93:a4:be: 7b:7c:0b:70:85:fc:e2:0d:de:2c:8a:c0:1b:65:a0:0b:77:87: df:34:83:aa:93:95:8a:50:81:97:68:cc:d3:45:5e:6b:08:83: 32:aa:aa:3d:7f:0c:1a:6f:b0:93:fa:3e:57:e3:fd:72:9e:ea: 6c:59:7f:a3:5b:f4:27:d2:1e:8b:08:66:3e:b9:8d:5f:35:0b: 9a:12:50:d3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZERjMxMTAvBgNVBAUTKDcyNzQwMjNCMUZCNEE3NDkzMjhGNUQ0REY4M0IwREQz RjA3RkU5NDIwHhcNMjYwNDE4MjE0ODI3WhcNMjYwNDI1MjE0ODI3WjAYMRYwFAYD VQQDEw02OWUzZmMyYy02NzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+jG1M/3DVxTGDcHcHcZT78iETGhbHalpHN7bbECL+YgmPNEnvpM6KZWlXYU vLSDNcpCvLvFlKWJwgc4KnpovdZW4d4W6UWCSbkwue8JdL3Zn6LoZ0ug5g8Bxl/Q JwGNil8No25vwxgXfxMR9kIHjzOGxKn/gP+QcgYP/DZeaSFluoH8jdanZifCwkVC f7ylQXnYpL8wcyDMU3SGzytHeo3bFVyBP/Bfn+5wiCNCEwUldZFk2vPXUjP8GzcJ tk2j0+R9dtYE6Xulil+a7GXEGjepI/r40oKuXT8GAicppIluIrBi4ZdK9686yTWp RRcLIkwBio+3yIBIuIcfulTjswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD9YTE5l IKg1ujx4TqHGO/KBfa5+MB8GA1UdIwQYMBaAFHJ0AjsftKdJMo9dTfg7DdPwf+lC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkRGMy83NTdEQjc4ODdE NzExMUVCODJEM0Q2NjFDNEY5QUUwMi9jblFDT3gtMHAwa3lqMTFOLURzTjBfQl82 VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuUUNPeC0wcDBreWoxMU4tRHNOMF9CXzZVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RkRGMy83NTdEQjc4ODdENzExMUVCODJEM0Q2NjFDNEY5QUUwMi9jblFDT3gtMHAw a3lqMTFOLURzTjBfQl82VUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvU0j41X/0DmHW4a5d+fVyv470HZDCuA5V+gChGZHJoYDUW4ZAqn1yYYE46ju PG9QRfmTfQGxV22nOzswiQgu+YOcWcmt8e4fcYgMU4ug4A9p4ZPQIqR7mDPQAPhl N6WSWXlgsCGWPkCt5OXldyAWZzrmI9bd4UIBr/o2hWb0q1M3MFGERVcswrjg9Hop nRnTRgF5IgnNIydLZiGsCiAxm5DeA36o7EcMNbo1oRM4jaq/k6S+e3wLcIX84g3e LIrAG2WgC3eH3zSDqpOVilCBl2jM00VeawiDMqqqPX8MGm+wk/o+V+P9cp7qbFl/ o1v0J9IeiwhmPrmNXzULmhJQ0w== -----END CERTIFICATE-----Generated at Sun Apr 19 11:36:45 2026 by rpki-client