$ rpki-client -vvf rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft File: QgHlq32GvGha8R8C3mhAUVttgFg.mft (raw, json) Hash identifier: ywzSLgh7pjJhwvL2ZN/ssrFOneLd5R9O2C4W8jaVc18= Subject key identifier: E5:9B:AA:F3:41:EC:F7:1E:43:DE:E5:99:F8:F0:EC:AE:4A:80:BA:F3 Authority key identifier: 42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58 Certificate issuer: /CN=A91454B0/serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058 Certificate serial: 353F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft Manifest number: 353F Signing time: Tue 12 May 2026 14:39:19 +0000 Manifest this update: Tue 12 May 2026 14:39:18 +0000 Manifest next update: Tue 19 May 2026 14:39:18 +0000 Files and hashes: 1: QgHlq32GvGha8R8C3mhAUVttgFg.crl (hash: WLsTK/poIdPTDEgwm8/UFPZfRRy6ufBOFUwRzgrhXmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:39:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13631 (0x353f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454B0, serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058 Validity Not Before: May 12 14:39:18 2026 GMT Not After : May 19 14:39:18 2026 GMT Subject: CN=6a033b97-72f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c0:6b:9b:df:d0:9f:fa:f8:17:4d:ba:da:41: 75:19:fa:68:c0:54:62:ff:d7:be:9c:a7:49:3d:65: 47:7a:81:7e:e6:c6:a7:79:93:05:80:f0:e5:db:78: 40:9d:09:0d:30:dc:1e:40:bb:fe:d6:a0:02:b8:3a: 78:85:fb:5f:b0:36:bb:a3:d2:30:c6:e5:2a:76:66: 22:c6:bf:d0:bb:38:b4:b3:ab:35:56:8b:23:9c:d0: 66:1d:a7:e4:cf:e3:45:b0:bf:3a:0c:bc:b1:48:b5: 38:78:ef:6d:3c:38:4f:4f:5a:12:d9:5b:bf:3b:3f: e7:9d:da:94:2f:23:fb:5c:94:21:39:9e:3d:5d:b5: 96:74:8b:ee:0b:55:32:af:75:83:d2:2a:fa:76:e0: 32:3e:dc:26:9c:f5:7e:a7:fb:74:ee:c9:a7:18:8b: 5d:ad:1a:0c:78:5f:c7:2f:8b:04:5f:a1:b5:a2:28: 08:f0:8d:db:6c:5c:68:9f:27:1c:31:12:04:2d:e6: 92:1a:3b:87:e5:88:ef:d2:ae:d0:73:a1:ea:dc:88: f1:91:0f:20:d3:2f:7a:d3:f1:65:53:2c:b5:3e:02: 40:33:d8:d2:d0:7c:08:0d:d7:93:e7:33:33:dc:dc: d6:94:e2:e5:90:46:e4:0d:9c:d8:df:c1:fd:b5:72: 6d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:9B:AA:F3:41:EC:F7:1E:43:DE:E5:99:F8:F0:EC:AE:4A:80:BA:F3 X509v3 Authority Key Identifier: keyid:42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:b7:06:0a:f6:0a:c0:18:41:ef:79:44:9d:17:f3:ec:58:27: 98:2d:45:d8:5b:29:16:78:96:c5:cc:8a:d5:d3:29:26:9a:bd: f1:a1:37:b3:18:02:52:1f:38:a2:9d:15:27:99:31:a7:3f:fd: 89:e8:d2:68:08:01:59:94:43:af:fa:85:da:f5:7b:20:c5:0f: 91:04:d1:ea:98:f4:e8:06:c2:34:00:dd:46:8e:a2:e9:65:74: c2:a9:d8:95:20:3f:e8:97:05:e2:32:57:51:b7:e7:95:77:cf: ed:bf:60:aa:dd:f8:d4:c9:b1:6f:af:78:b4:49:f1:42:e8:87: a1:0b:f5:84:0e:40:22:d1:4a:b2:b4:20:f1:3f:f0:d4:f2:c4: 45:f5:83:7e:e4:81:5f:9a:24:a9:f1:9b:e1:86:96:20:ef:75: 3b:2a:9e:4e:51:b1:cd:35:19:10:a9:74:7a:c2:df:7d:86:d8: c9:87:bd:45:b9:a0:48:ec:fe:1d:41:88:0b:cb:b2:79:7d:ae: ab:15:14:d1:ca:7e:9f:d9:14:75:ee:13:98:17:f8:4d:62:75: 6f:45:1f:2b:c7:5c:f8:36:57:0f:a0:c0:c8:bd:74:8d:de:72: 4c:37:fe:12:fc:22:35:0d:7a:a8:af:c6:21:3e:6b:ab:52:00: b3:dc:13:a0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0QjAxMTAvBgNVBAUTKDQyMDFFNUFCN0Q4NkJDNjg1QUYxMUYwMkRFNjg0MDUx NUI2RDgwNTgwHhcNMjYwNTEyMTQzOTE4WhcNMjYwNTE5MTQzOTE4WjAYMRYwFAYD VQQDEw02YTAzM2I5Ny03MmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMBrm9/Qn/r4F0262kF1GfpowFRi/9e+nKdJPWVHeoF+5saneZMFgPDl23hA nQkNMNweQLv+1qACuDp4hftfsDa7o9IwxuUqdmYixr/Quzi0s6s1VosjnNBmHafk z+NFsL86DLyxSLU4eO9tPDhPT1oS2Vu/Oz/nndqULyP7XJQhOZ49XbWWdIvuC1Uy r3WD0ir6duAyPtwmnPV+p/t07smnGItdrRoMeF/HL4sEX6G1oigI8I3bbFxonycc MRIELeaSGjuH5Yjv0q7Qc6Hq3IjxkQ8g0y960/FlUyy1PgJAM9jS0HwIDdeT5zMz 3NzWlOLlkEbkDZzY38H9tXJtTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOWbqvNB 7PceQ97lmfjw7K5KgLrzMB8GA1UdIwQYMBaAFEIB5at9hrxoWvEfAt5oQFFbbYBY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRCMC8xQ0M0RERCNjFE OEUxMUUyOTAyRTNDRUMwOEIwMkNEMi9RZ0hscTMyR3ZHaGE4UjhDM21oQVVWdHRn RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnSGxxMzJHdkdoYThSOEMzbWhBVVZ0dGdGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTRCMC8xQ0M0RERCNjFEOEUxMUUyOTAyRTNDRUMwOEIwMkNEMi9RZ0hscTMyR3ZH aGE4UjhDM21oQVVWdHRnRmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAULcGCvYKwBhB73lEnRfz7FgnmC1F2FspFniWxcyK1dMpJpq98aE3sxgCUh84 op0VJ5kxpz/9iejSaAgBWZRDr/qF2vV7IMUPkQTR6pj06AbCNADdRo6i6WV0wqnY lSA/6JcF4jJXUbfnlXfP7b9gqt341Mmxb694tEnxQuiHoQv1hA5AItFKsrQg8T/w 1PLERfWDfuSBX5okqfGb4YaWIO91OyqeTlGxzTUZEKl0esLffYbYyYe9RbmgSOz+ HUGIC8uyeX2uqxUU0cp+n9kUde4TmBf4TWJ1b0UfK8dc+DZXD6DAyL10jd5yTDf+ EvwiNQ16qK/GIT5rq1IAs9wToA== -----END CERTIFICATE-----Generated at Wed May 13 10:47:09 2026 by rpki-client