$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft File: qkHKgdI-9YhhkyqtErMWkNvPEAM.mft (raw, json) Hash identifier: GaK6D3JsFl0Yyr0jOI43zihRNw7lRENvm3HraSplXy4= Subject key identifier: 4D:52:A8:24:B8:95:6B:7A:37:67:FB:EC:D7:E9:FA:2C:7C:FB:1D:86 Authority key identifier: AA:41:CA:81:D2:3E:F5:88:61:93:2A:AD:12:B3:16:90:DB:CF:10:03 Certificate issuer: /CN=A91A5744/serialNumber=AA41CA81D23EF58861932AAD12B31690DBCF1003 Certificate serial: 0CFC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkHKgdI-9YhhkyqtErMWkNvPEAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft Manifest number: 0CF4 Signing time: Tue 12 May 2026 18:16:31 +0000 Manifest this update: Tue 12 May 2026 18:16:31 +0000 Manifest next update: Tue 19 May 2026 18:16:31 +0000 Files and hashes: 1: qkHKgdI-9YhhkyqtErMWkNvPEAM.crl (hash: +kYVDOCEruiTyhSf0/04ub+4dHnHdWDnrEiUo8NLksA=) 2: 220DBB66054011EA90A20C7EC4F9AE02.roa (hash: yHmDa4+sZL/pjlW06ii7KVBbPXMP7FrwSa8y+N4oSFo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.crl rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkHKgdI-9YhhkyqtErMWkNvPEAM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:16:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3324 (0xcfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5744, serialNumber=AA41CA81D23EF58861932AAD12B31690DBCF1003 Validity Not Before: May 12 18:16:31 2026 GMT Not After : May 19 18:16:31 2026 GMT Subject: CN=6a036e7f-aff8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ce:3a:2d:82:62:e9:d2:3e:59:cc:a2:7c:f5: 6b:ea:da:69:4e:7e:27:a0:60:d9:56:7a:6b:70:8e: 6c:f7:91:8b:f2:45:25:a1:ff:eb:84:53:65:ac:e3: 86:d6:67:70:43:91:d0:c1:e8:b8:83:40:85:bd:9e: 7c:c5:74:01:11:05:bb:b5:91:6b:9a:ea:44:ed:a0: 18:7c:f8:22:c9:ab:25:49:fd:c1:a4:14:e6:3a:34: 5e:7a:4b:aa:00:44:09:1e:34:8f:11:3c:4e:75:79: 3d:22:26:e3:a7:4a:bd:08:f4:05:96:15:a0:ef:e2: 82:d8:2f:62:6f:73:8f:0e:18:dc:6b:5a:8f:2a:ff: 5d:d6:aa:68:ff:8a:ce:80:59:25:33:8b:fe:ba:65: 76:8c:0e:42:43:ea:b0:35:44:57:a7:d1:70:f1:54: 1e:34:ac:a2:2d:2e:bb:17:b4:a7:04:a2:a8:ce:5e: d9:b0:ed:b0:21:38:f9:e8:ec:e1:d0:a3:69:ba:2a: 5a:4a:a5:d8:a7:30:47:6f:2e:5a:98:7a:1c:c4:58: 79:9b:74:db:ef:c3:48:47:62:0a:2b:fb:3a:62:a1: 6b:73:18:bb:5d:1c:3e:5d:89:12:ba:4f:15:5d:6d: 97:ae:b4:da:3b:9e:f2:21:ad:a1:cf:da:7a:e3:6e: 24:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:52:A8:24:B8:95:6B:7A:37:67:FB:EC:D7:E9:FA:2C:7C:FB:1D:86 X509v3 Authority Key Identifier: keyid:AA:41:CA:81:D2:3E:F5:88:61:93:2A:AD:12:B3:16:90:DB:CF:10:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkHKgdI-9YhhkyqtErMWkNvPEAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:3a:ff:05:82:66:a1:1d:36:1e:51:d1:0e:dc:0f:72:74:25: bf:9d:01:ce:01:e5:87:75:db:cd:95:7f:0a:a2:59:4c:23:3a: 88:dc:63:3d:6a:a4:f1:37:80:60:5b:53:cc:78:7d:b3:fe:c8: 46:bc:00:f1:72:b8:c0:fb:53:2f:84:09:2d:c7:d5:9e:aa:49: e5:7d:91:11:0b:99:a2:25:c3:23:3d:86:b4:64:0d:4f:0e:e4: 88:0d:49:f0:d4:49:d6:9e:8e:57:4e:86:66:02:a9:35:29:56: 4d:b3:29:d9:4d:18:d0:4c:d5:01:1c:74:63:3b:07:6f:36:8f: 72:b0:76:25:47:0b:16:ae:a7:15:6e:73:e1:ff:e8:82:ca:b1: a3:d0:df:e0:8f:60:6c:aa:d8:08:c4:64:1b:94:69:93:c2:02: 7a:27:e8:5f:d9:25:b8:0c:a3:2e:70:db:c6:cc:bd:5a:cd:0a: 00:ce:fd:bd:f2:5b:ea:05:eb:97:c6:32:95:5d:24:dd:ca:8e: e1:f6:7d:12:38:8d:22:35:f5:c7:27:fe:8f:b9:fd:f5:a4:bc: b8:0c:18:fd:62:7a:c4:23:05:74:a3:ec:0c:c8:0a:4e:00:6b: e6:9f:a0:72:8d:08:a8:46:e3:f1:fc:34:a7:1c:4e:23:68:5a: 5a:e2:e5:45 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU3NDQxMTAvBgNVBAUTKEFBNDFDQTgxRDIzRUY1ODg2MTkzMkFBRDEyQjMxNjkw REJDRjEwMDMwHhcNMjYwNTEyMTgxNjMxWhcNMjYwNTE5MTgxNjMxWjAYMRYwFAYD VQQDEw02YTAzNmU3Zi1hZmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtM46LYJi6dI+WcyifPVr6tppTn4noGDZVnprcI5s95GL8kUlof/rhFNlrOOG 1mdwQ5HQwei4g0CFvZ58xXQBEQW7tZFrmupE7aAYfPgiyaslSf3BpBTmOjReekuq AEQJHjSPETxOdXk9Iibjp0q9CPQFlhWg7+KC2C9ib3OPDhjca1qPKv9d1qpo/4rO gFklM4v+umV2jA5CQ+qwNURXp9Fw8VQeNKyiLS67F7SnBKKozl7ZsO2wITj56Ozh 0KNpuipaSqXYpzBHby5amHocxFh5m3Tb78NIR2IKK/s6YqFrcxi7XRw+XYkSuk8V XW2XrrTaO57yIa2hz9p6424kOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE1SqCS4 lWt6N2f77Nfp+ix8+x2GMB8GA1UdIwQYMBaAFKpByoHSPvWIYZMqrRKzFpDbzxAD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTc0NC8zOTdGNkNENDA1 MkUxMUVBOUQzMTQxNDVDNEY5QUUwMi9xa0hLZ2RJLTlZaGhreXF0RXJNV2tOdlBF QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FrSEtnZEktOVloaGt5cXRFck1Xa052UEVBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTc0NC8zOTdGNkNENDA1MkUxMUVBOUQzMTQxNDVDNEY5QUUwMi9xa0hLZ2RJLTlZ aGhreXF0RXJNV2tOdlBFQU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArDr/BYJmoR02HlHRDtwPcnQlv50BzgHlh3XbzZV/CqJZTCM6iNxjPWqk8TeA YFtTzHh9s/7IRrwA8XK4wPtTL4QJLcfVnqpJ5X2REQuZoiXDIz2GtGQNTw7kiA1J 8NRJ1p6OV06GZgKpNSlWTbMp2U0Y0EzVARx0YzsHbzaPcrB2JUcLFq6nFW5z4f/o gsqxo9Df4I9gbKrYCMRkG5Rpk8ICeifoX9kluAyjLnDbxsy9Ws0KAM79vfJb6gXr l8YylV0k3cqO4fZ9EjiNIjX1xyf+j7n99aS8uAwY/WJ6xCMFdKPsDMgKTgBr5p+g co0IqEbj8fw0pxxOI2haWuLlRQ== -----END CERTIFICATE-----Generated at Wed May 13 19:07:12 2026 by rpki-client