$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft File: q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft (raw, json) Hash identifier: clK3f2UACDRuqjJC9yVqkOR3FF0BuI1mPHZWk0NKYwk= Subject key identifier: 5B:30:7A:11:EC:A1:69:36:FD:9D:EA:C8:F9:0B:64:25:34:7B:0D:59 Authority key identifier: AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 Certificate issuer: /CN=A91C7E5B/serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Certificate serial: B1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft Manifest number: A7 Signing time: Wed 25 Mar 2026 06:35:52 +0000 Manifest this update: Wed 25 Mar 2026 06:35:51 +0000 Manifest next update: Wed 01 Apr 2026 06:35:51 +0000 Files and hashes: 1: q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl (hash: OJ4rEkyEhMkMNiQjuPuQ68uqko9fK6lv31Sq3/cA9kE=) 2: 1FC17CE2EB2D11F0971959663D6F56BC.roa (hash: w/3re6+mcHn3z7mWQlt9gMEkLcEqozWFLvA0qzfndLw=) 3: C3DCFE54EB2911F0BD7173483B6F56BC.roa (hash: GRUkISuSjrdPycV7YoKPvCtNvhdJEKU1KQQr0iDkDpg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:35:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7E5B, serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Validity Not Before: Mar 25 06:35:51 2026 GMT Not After : Apr 1 06:35:51 2026 GMT Subject: CN=69c38247-25ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1c:18:31:c0:bd:77:91:24:14:fd:e0:e4:08: df:73:1b:6a:2d:fb:d0:ed:26:b3:e8:a3:2b:14:44: ce:76:8b:eb:3a:86:e7:2f:ec:ec:cb:74:31:29:48: 8b:18:da:dd:88:43:64:01:3e:77:bf:ce:6d:31:5c: 53:c0:9c:4f:a6:71:6a:f5:8f:89:f0:70:33:eb:f9: db:b7:77:43:88:06:fc:5c:71:61:46:1a:f6:33:09: 0a:13:d4:e9:f4:b4:f2:fb:92:84:35:f9:21:1e:b7: 8d:36:62:d9:48:d9:f5:ad:cf:f3:a9:fd:dc:83:e3: 3d:b8:2d:20:0f:d3:96:57:a5:04:fc:83:86:94:0d: e8:cd:13:5f:64:41:97:b5:49:a0:14:e2:8d:28:29: 98:d1:80:00:ee:22:f9:d9:22:34:53:b5:a0:f7:1c: 1a:0d:e3:ac:37:7a:d3:6e:7a:ae:59:0b:f7:26:75: ea:96:68:19:ee:d2:44:c0:6a:bf:00:86:c9:7c:2d: d6:2e:60:0b:a7:1c:ea:f9:16:d6:54:2e:59:19:f4: 24:7a:c9:98:c9:07:83:25:f6:85:f2:85:6f:f7:3a: 1d:b0:20:a4:40:7c:52:84:f5:f9:04:73:d9:e7:7d: f5:90:bc:9b:4b:dd:8f:9f:b6:87:bb:b6:4c:17:c9: 7c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:30:7A:11:EC:A1:69:36:FD:9D:EA:C8:F9:0B:64:25:34:7B:0D:59 X509v3 Authority Key Identifier: keyid:AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:c3:4a:50:8d:91:84:64:15:b5:db:05:08:8f:cd:04:cb:21: 94:c3:b2:b0:80:6e:9d:f8:6b:7f:14:0b:b5:d5:b8:05:ea:df: a2:d7:3b:14:9c:c9:76:05:05:16:26:80:6c:84:83:1d:b3:82: a3:d9:76:bb:65:13:48:bc:32:4b:e2:6e:fb:3c:17:78:7a:09: b0:02:c3:21:58:11:ff:d4:64:16:aa:ba:8e:f5:75:01:f1:59: e7:36:68:5f:03:f5:07:74:3e:eb:cd:d3:45:25:6f:70:82:3f: 52:e8:68:00:5b:7b:e9:53:19:56:5f:89:55:21:ec:db:55:fa: b5:18:24:e8:2e:be:ba:1d:2a:ee:f8:20:e6:0a:71:a3:e9:01: 7a:cf:17:d1:38:b2:62:41:cc:16:45:13:a2:25:1a:3a:5b:6c: fa:cc:42:09:aa:1f:70:4d:59:29:25:5f:34:71:7d:b6:46:ba: 93:72:f2:da:be:a9:4b:f0:01:2f:7e:93:fa:e1:02:d9:85:b1: d0:49:77:dd:45:3e:85:59:7c:f5:a0:f0:c5:4d:28:d1:b0:96: fc:86:26:f7:a5:11:c4:f1:5f:ab:e6:34:22:16:40:b7:03:03: 8f:1b:97:1c:e1:2a:4a:f2:0c:f0:59:6e:d7:12:b1:27:1d:fb: 9f:0c:df:a6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdFNUIxMTAvBgNVBAUTKEFCNTNEOTkyODEwMkI5MTlEQjdDNTQ2NUM4REQ1RkYy NjY3NDQzQjMwHhcNMjYwMzI1MDYzNTUxWhcNMjYwNDAxMDYzNTUxWjAYMRYwFAYD VQQDEw02OWMzODI0Ny0yNWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRwYMcC9d5EkFP3g5AjfcxtqLfvQ7Saz6KMrFETOdovrOobnL+zsy3QxKUiL GNrdiENkAT53v85tMVxTwJxPpnFq9Y+J8HAz6/nbt3dDiAb8XHFhRhr2MwkKE9Tp 9LTy+5KENfkhHreNNmLZSNn1rc/zqf3cg+M9uC0gD9OWV6UE/IOGlA3ozRNfZEGX tUmgFOKNKCmY0YAA7iL52SI0U7Wg9xwaDeOsN3rTbnquWQv3JnXqlmgZ7tJEwGq/ AIbJfC3WLmALpxzq+RbWVC5ZGfQkesmYyQeDJfaF8oVv9zodsCCkQHxShPX5BHPZ 5331kLybS92Pn7aHu7ZMF8l8gQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFswehHs oWk2/Z3qyPkLZCU0ew1ZMB8GA1UdIwQYMBaAFKtT2ZKBArkZ23xUZcjdX/JmdEOz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0U1Qi9EODRFN0JGMjND NkUxMUYwOUQ3NkEyNERDNEY5QUUwMi9xMVBaa29FQ3VSbmJmRlJseU4xZjhtWjBR N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ExUFprb0VDdVJuYmZGUmx5TjFmOG1aMFE3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0U1Qi9EODRFN0JGMjNDNkUxMUYwOUQ3NkEyNERDNEY5QUUwMi9xMVBaa29FQ3VS bmJmRlJseU4xZjhtWjBRN00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAycNKUI2RhGQVtdsFCI/NBMshlMOysIBunfhrfxQLtdW4Berfotc7FJzJdgUF FiaAbISDHbOCo9l2u2UTSLwyS+Ju+zwXeHoJsALDIVgR/9RkFqq6jvV1AfFZ5zZo XwP1B3Q+683TRSVvcII/UuhoAFt76VMZVl+JVSHs21X6tRgk6C6+uh0q7vgg5gpx o+kBes8X0TiyYkHMFkUToiUaOlts+sxCCaofcE1ZKSVfNHF9tka6k3Ly2r6pS/AB L36T+uEC2YWx0El33UU+hVl89aDwxU0o0bCW/IYm96URxPFfq+Y0IhZAtwMDjxuX HOEqSvIM8Flu1xKxJx37nwzfpg== -----END CERTIFICATE-----Generated at Thu Mar 26 10:15:39 2026 by rpki-client