$ rpki-client -vvf rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft File: QN1mK29ul7NNO3WoAH3lOI2SclM.mft (raw, json) Hash identifier: m83G1R2H9w41rCCMyLQgOAYM5PanFJzw5nwYUowxrYE= Subject key identifier: 32:52:FB:1C:95:F3:AA:42:13:E2:17:25:BA:D9:8D:F9:51:F5:89:17 Authority key identifier: 40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 Certificate issuer: /CN=A911CF44/serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Certificate serial: 0705 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft Manifest number: 06FC Signing time: Tue 12 May 2026 22:09:17 +0000 Manifest this update: Tue 12 May 2026 22:09:17 +0000 Manifest next update: Tue 19 May 2026 22:09:17 +0000 Files and hashes: 1: QN1mK29ul7NNO3WoAH3lOI2SclM.crl (hash: HzpYFewoa66SHOs0lRwbGiN5CuLAzb2T9Q6uq0Nvwdw=) 2: 85613B4E8C8411EBB68DD829C4F9AE02.roa (hash: MHi4TFFkjk45IS82Lk1zkWvvF71n/wv3X8tPB3ZA4gQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 22:09:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1797 (0x705) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CF44, serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Validity Not Before: May 12 22:09:17 2026 GMT Not After : May 19 22:09:17 2026 GMT Subject: CN=6a03a50d-3e4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:8c:5f:c1:47:42:5e:7f:fd:69:07:ce:7b:19: 67:b9:90:70:9e:c9:9e:ae:ae:2e:1c:26:2d:71:7a: 8b:a1:1b:4d:0e:8a:d6:c3:0f:aa:f5:6e:32:9b:28: b9:3d:1f:7b:00:69:7a:dc:22:69:68:c3:54:17:05: e8:2b:44:dc:58:92:15:8f:b6:91:ff:ed:fc:cc:31: 36:c6:39:a7:e4:07:37:e9:9f:bb:8d:8c:74:19:40: 8c:da:56:34:03:12:cf:39:cd:4a:2e:df:40:39:58: 4f:af:0d:c3:5d:0b:25:93:6c:bd:30:74:7d:e7:5e: 93:ec:15:c3:e3:ac:79:89:ff:8d:d3:13:69:34:5c: ab:62:03:87:fc:4d:1a:6e:38:2a:6d:89:06:71:a3: 23:92:70:70:18:ba:9b:02:65:40:61:f9:3d:a2:dc: 65:38:e7:8d:03:84:1e:6f:4c:4d:b9:6f:9b:95:dc: 02:3b:ab:f9:c3:7d:88:58:3d:e3:3c:93:64:ea:59: 89:79:56:d8:35:4d:ff:2f:28:cf:8c:7e:7b:40:21: 99:7c:71:12:0c:65:11:17:8c:9a:4f:f4:3b:83:a2: 1d:c3:51:c4:15:a1:c5:ff:b2:79:c6:d6:74:a1:3e: 08:e6:41:86:eb:5b:3e:de:1a:38:77:71:36:b7:1b: 85:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:52:FB:1C:95:F3:AA:42:13:E2:17:25:BA:D9:8D:F9:51:F5:89:17 X509v3 Authority Key Identifier: keyid:40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:6c:61:36:38:b3:be:df:15:81:ef:11:95:c6:bf:f1:92:a6: 33:99:77:7d:e4:8d:67:46:89:ae:d0:b7:1b:e3:ba:87:f3:74: 1e:4e:fc:0d:2f:f1:aa:f6:84:49:7b:ba:49:41:04:1b:48:7c: 4f:a1:55:35:89:54:17:d1:c7:26:e8:fd:64:23:2e:56:5c:8e: 46:97:16:0a:53:bc:b3:9f:a3:3f:cc:21:b6:2b:c5:79:8f:68: 44:69:a0:00:65:b8:28:29:97:db:54:e3:81:05:ee:c4:64:e4: 03:20:c9:62:3c:2b:6d:33:36:88:b2:db:d6:1a:61:1e:86:93: f7:eb:8c:fe:2c:6f:47:13:61:30:81:10:b1:e3:8b:4b:f6:09: 14:a3:90:b9:0c:df:db:d9:80:5d:a2:8a:b3:ab:8d:28:06:7d: cc:a2:23:ea:b0:b5:23:22:99:2d:83:fa:63:bb:c0:be:6b:52: 33:d0:04:d2:a1:25:a5:ea:24:bb:d9:04:65:ad:de:44:10:d8: 13:82:17:ec:b5:44:21:b7:c5:94:5a:4e:50:f1:7c:68:de:f1: d9:db:04:b3:7a:10:d3:69:35:43:a6:7b:e0:0d:b6:be:73:36: 63:62:69:43:0a:9b:47:40:12:46:2d:79:44:25:c8:f3:13:e5: fa:44:57:d9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNGNDQxMTAvBgNVBAUTKDQwREQ2NjJCNkY2RTk3QjM0RDNCNzVBODAwN0RFNTM4 OEQ5MjcyNTMwHhcNMjYwNTEyMjIwOTE3WhcNMjYwNTE5MjIwOTE3WjAYMRYwFAYD VQQDEw02YTAzYTUwZC0zZTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn4xfwUdCXn/9aQfOexlnuZBwnsmerq4uHCYtcXqLoRtNDorWww+q9W4ymyi5 PR97AGl63CJpaMNUFwXoK0TcWJIVj7aR/+38zDE2xjmn5Ac36Z+7jYx0GUCM2lY0 AxLPOc1KLt9AOVhPrw3DXQslk2y9MHR9516T7BXD46x5if+N0xNpNFyrYgOH/E0a bjgqbYkGcaMjknBwGLqbAmVAYfk9otxlOOeNA4Qeb0xNuW+bldwCO6v5w32IWD3j PJNk6lmJeVbYNU3/LyjPjH57QCGZfHESDGURF4yaT/Q7g6Idw1HEFaHF/7J5xtZ0 oT4I5kGG61s+3ho4d3E2txuFlwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDJS+xyV 86pCE+IXJbrZjflR9YkXMB8GA1UdIwQYMBaAFEDdZitvbpezTTt1qAB95TiNknJT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0Y0NC82Njc3QkVCNjhD ODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3Tk5PM1dvQUgzbE9JMlNj bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOMW1LMjl1bDdOTk8zV29BSDNsT0kyU2NsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0Y0NC82Njc3QkVCNjhDODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3 Tk5PM1dvQUgzbE9JMlNjbE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEmxhNjizvt8Vge8Rlca/8ZKmM5l3feSNZ0aJrtC3G+O6h/N0Hk78DS/xqvaE SXu6SUEEG0h8T6FVNYlUF9HHJuj9ZCMuVlyORpcWClO8s5+jP8whtivFeY9oRGmg AGW4KCmX21TjgQXuxGTkAyDJYjwrbTM2iLLb1hphHoaT9+uM/ixvRxNhMIEQseOL S/YJFKOQuQzf29mAXaKKs6uNKAZ9zKIj6rC1IyKZLYP6Y7vAvmtSM9AE0qElpeok u9kEZa3eRBDYE4IX7LVEIbfFlFpOUPF8aN7x2dsEs3oQ02k1Q6Z74A22vnM2Y2Jp QwqbR0ASRi15RCXI8xPl+kRX2Q== -----END CERTIFICATE-----Generated at Wed May 13 06:53:43 2026 by rpki-client