$ rpki-client -vvf rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft File: QgBM9ryh-lZCT17qJPYqkrJc3s8.mft (raw, json) Hash identifier: Yl43IZ+SisSZ0ck1zOgT68OnHPPC51F5pJvo6c3xqWE= Subject key identifier: 0C:FD:27:75:EF:59:A6:09:4F:FD:A0:A8:0F:40:69:1B:2B:9B:45:1F Authority key identifier: 42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF Certificate issuer: /CN=A919960D/serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF Certificate serial: 0280 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft Manifest number: 0278 Signing time: Wed 13 May 2026 02:04:28 +0000 Manifest this update: Wed 13 May 2026 02:04:28 +0000 Manifest next update: Wed 20 May 2026 02:04:28 +0000 Files and hashes: 1: QgBM9ryh-lZCT17qJPYqkrJc3s8.crl (hash: f1e87SlYPzgK+kyVyHsxFWl1TNTo9dqtWusCaCJExcE=) 2: BE9174768DDE11ED97AFDA82C4F9AE02.roa (hash: lWqXr9OCi9y8igTWAmlmDXkw3mBGBTPXv9Xm5W9NawI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:04:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 640 (0x280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919960D, serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF Validity Not Before: May 13 02:04:28 2026 GMT Not After : May 20 02:04:28 2026 GMT Subject: CN=6a03dc2c-c4d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:a4:b2:bb:65:a2:5e:6b:1f:67:ed:d6:fc:24: 6f:97:e5:50:cb:56:d0:36:3e:30:c5:a5:e9:27:0f: 3f:69:a8:6b:5d:cd:8c:e0:b6:dd:3f:e4:ec:c5:a7: 89:d7:f0:9c:e0:02:fe:0b:54:9b:3e:54:ba:03:c8: 75:c7:03:2d:fa:cb:50:c1:9e:4d:89:5a:7c:2a:8d: 0b:99:fc:56:6a:5f:de:42:19:6f:d1:8c:d1:52:b5: 9e:07:ab:48:1b:f0:f7:3f:e8:a6:0d:92:c5:a0:78: 48:32:bb:25:f9:13:f6:31:b9:24:c0:7b:e2:f5:f8: 2c:b5:13:cf:05:77:c9:77:95:1c:f5:af:12:0f:82: da:a7:51:f1:25:42:23:fb:1c:f5:0b:8a:33:83:e2: f6:53:f2:a8:7b:a1:dd:94:b2:e0:08:69:9d:d9:d2: 3e:83:bc:1b:0f:d8:c3:fd:7c:02:17:a8:00:03:7f: 5e:66:f4:a2:eb:e5:28:f2:c8:be:48:52:f1:a8:75: 6e:80:02:e9:18:00:a0:8c:32:cd:60:7d:b5:24:dc: ff:13:ae:82:0d:27:34:30:77:00:21:81:ca:87:59: ee:ca:f4:b8:23:8c:dd:fb:e8:61:88:29:71:8e:49: 0e:07:d6:9f:1d:cd:fd:f8:10:ec:5c:56:8c:ae:ce: 10:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:FD:27:75:EF:59:A6:09:4F:FD:A0:A8:0F:40:69:1B:2B:9B:45:1F X509v3 Authority Key Identifier: keyid:42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:66:97:fa:0d:32:51:a1:03:22:50:2d:c5:9d:81:d2:e2:6d: 3a:50:6f:1a:09:8b:a0:7b:2d:9c:14:99:53:c4:dd:5a:df:28: 0e:c9:5a:a4:db:1f:2a:fc:ea:12:a1:52:1e:3e:d5:96:c6:c6: 9e:19:61:af:6b:13:56:cf:5a:70:04:8c:4d:e3:b2:53:23:f8: 98:ed:5e:a8:d1:dc:c8:c4:62:09:9d:f5:27:7a:bf:4b:db:67: 36:a9:9e:b4:19:1b:e4:73:cf:62:8c:28:8b:71:fd:ef:c6:14: 18:3f:07:74:e6:92:6f:27:39:8d:19:8a:cf:6f:d1:4f:12:83: 92:55:2f:45:e1:5d:5b:60:c0:68:6a:91:bb:1c:d6:14:bf:a5: 36:9a:50:fd:71:b7:f2:b8:ff:d8:1f:15:4d:f4:45:41:64:5f: 3e:d8:01:b6:dc:62:88:f5:e0:55:a9:ba:e3:ef:fa:2d:7e:c2: 9b:d7:2b:c0:d6:07:7a:6f:ca:ba:d8:a2:79:49:09:2b:df:8e: 8f:58:4d:be:3e:78:83:8b:f7:b5:62:a7:1d:b0:97:a9:42:eb: d7:4b:c1:6e:25:fe:93:b0:58:7b:ee:ad:1c:b1:09:8d:ee:f8: 12:36:67:c8:26:01:02:0d:35:af:6a:e2:08:bc:c9:e8:a3:5f: bd:56:83:e9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk2MEQxMTAvBgNVBAUTKDQyMDA0Q0Y2QkNBMUZBNTY0MjRGNUVFQTI0RjYyQTky QjI1Q0RFQ0YwHhcNMjYwNTEzMDIwNDI4WhcNMjYwNTIwMDIwNDI4WjAYMRYwFAYD VQQDEw02YTAzZGMyYy1jNGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh6Syu2WiXmsfZ+3W/CRvl+VQy1bQNj4wxaXpJw8/aahrXc2M4LbdP+TsxaeJ 1/Cc4AL+C1SbPlS6A8h1xwMt+stQwZ5NiVp8Ko0LmfxWal/eQhlv0YzRUrWeB6tI G/D3P+imDZLFoHhIMrsl+RP2MbkkwHvi9fgstRPPBXfJd5Uc9a8SD4Lap1HxJUIj +xz1C4ozg+L2U/Koe6HdlLLgCGmd2dI+g7wbD9jD/XwCF6gAA39eZvSi6+Uo8si+ SFLxqHVugALpGACgjDLNYH21JNz/E66CDSc0MHcAIYHKh1nuyvS4I4zd++hhiClx jkkOB9afHc39+BDsXFaMrs4QawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAz9J3Xv WaYJT/2gqA9AaRsrm0UfMB8GA1UdIwQYMBaAFEIATPa8ofpWQk9e6iT2KpKyXN7P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTYwRC9CRDBCNjRDNjhE REExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1sWkNUMTdxSlBZcWtySmMz czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnQk05cnloLWxaQ1QxN3FKUFlxa3JKYzNzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTYwRC9CRDBCNjRDNjhEREExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1s WkNUMTdxSlBZcWtySmMzczgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACGaX+g0yUaEDIlAtxZ2B0uJtOlBvGgmLoHstnBSZU8TdWt8oDslapNsfKvzq EqFSHj7VlsbGnhlhr2sTVs9acASMTeOyUyP4mO1eqNHcyMRiCZ31J3q/S9tnNqme tBkb5HPPYowoi3H978YUGD8HdOaSbyc5jRmKz2/RTxKDklUvReFdW2DAaGqRuxzW FL+lNppQ/XG38rj/2B8VTfRFQWRfPtgBttxiiPXgVam64+/6LX7Cm9crwNYHem/K utiieUkJK9+Oj1hNvj54g4v3tWKnHbCXqULr10vBbiX+k7BYe+6tHLEJje74EjZn yCYBAg01r2riCLzJ6KNfvVaD6Q== -----END CERTIFICATE-----Generated at Wed May 13 13:37:21 2026 by rpki-client