$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft File: q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft (raw, json) Hash identifier: SmLZd+iLW4nzS90uPIUSaxe3PNv4b+lQLBxrxlRZRdU= Subject key identifier: 86:D1:36:12:42:A0:26:3D:BC:E4:8D:FB:A5:9B:64:C8:6E:70:AB:28 Authority key identifier: AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 Certificate issuer: /CN=A91C7E5B/serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft Manifest number: BF Signing time: Mon 11 May 2026 07:14:08 +0000 Manifest this update: Mon 11 May 2026 07:14:08 +0000 Manifest next update: Mon 18 May 2026 07:14:08 +0000 Files and hashes: 1: q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl (hash: H1CaLm0/aeq1KtmhuAId1rDnkQMZu+N7O4rw9QV6sU0=) 2: C3DCFE54EB2911F0BD7173483B6F56BC.roa (hash: GRUkISuSjrdPycV7YoKPvCtNvhdJEKU1KQQr0iDkDpg=) 3: 1FC17CE2EB2D11F0971959663D6F56BC.roa (hash: w/3re6+mcHn3z7mWQlt9gMEkLcEqozWFLvA0qzfndLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 07:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7E5B, serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Validity Not Before: May 11 07:14:08 2026 GMT Not After : May 18 07:14:08 2026 GMT Subject: CN=6a0181c0-28eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:43:b5:62:83:90:ee:b9:ff:71:77:67:6f:79: 88:7c:45:0c:44:ff:19:0c:1f:f5:20:bd:d8:4f:16: 5c:7b:ae:eb:80:36:47:77:0a:81:23:64:d6:22:ab: 26:26:e8:24:f8:86:ef:8f:5c:64:43:20:a1:28:a5: df:73:67:c2:82:1c:a6:e9:9d:01:47:5a:ec:5b:78: ae:e8:05:6d:0c:91:13:f2:46:14:8a:25:5a:3d:78: cb:b6:fa:ec:fe:b9:c5:5e:af:b5:ce:6d:2d:98:ad: 05:dd:c4:e3:51:9b:24:a4:3e:d7:f5:34:60:3d:a1: 5d:1f:17:c6:dd:a2:c2:62:db:c1:ef:95:53:a2:b3: f8:c2:21:da:33:df:78:a4:48:f9:4e:69:46:21:ca: c0:d3:8e:00:b8:67:68:45:1d:fc:4f:58:9e:40:54: d7:d0:dd:29:06:48:89:6f:d2:9a:f7:51:ea:16:ae: df:92:a9:c5:16:57:dc:f3:c0:d8:35:f9:64:58:26: 26:68:7f:9d:69:3f:07:b7:94:da:5f:f2:d8:a6:8d: fa:4c:c9:8a:c9:54:25:66:6d:77:4d:b8:73:2c:2e: 10:b2:9c:ef:e7:34:7b:e9:51:27:ff:cd:06:07:c3: 73:f5:13:71:4b:ab:db:53:17:08:3c:d2:72:7d:1c: dd:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:D1:36:12:42:A0:26:3D:BC:E4:8D:FB:A5:9B:64:C8:6E:70:AB:28 X509v3 Authority Key Identifier: keyid:AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:76:8b:0a:ba:05:3a:34:be:0e:15:09:5c:93:0c:d1:e5:af: 68:aa:3a:5c:30:f9:65:50:ef:15:f4:0b:3d:8d:55:4f:56:cb: 67:5a:f5:b5:51:8b:cf:98:ff:b4:6b:b2:32:7b:f8:89:36:55: 5f:eb:5b:55:3e:79:41:6c:ee:18:3f:65:08:24:22:54:ee:ba: 53:be:d7:f7:9f:71:f6:ce:86:ca:34:13:21:4a:7e:96:bc:83: 99:18:46:72:a0:80:28:54:84:44:68:2e:b0:b5:0d:c4:e9:d3: 95:fb:27:98:2c:52:55:9a:58:4c:07:ea:21:c6:2c:df:a8:5e: 7e:a9:2e:ea:13:35:ea:ff:03:4f:a6:59:48:c5:be:64:aa:38: fd:ad:be:46:54:e0:df:96:bc:a3:56:b2:a3:85:3c:61:28:56: 2b:5a:ec:bf:77:17:40:dd:a1:ec:a1:a1:91:1e:0a:40:65:ff: d6:eb:aa:f8:54:be:a7:2b:2a:65:e4:af:5b:19:a1:77:23:cd: 4d:d8:5c:45:ca:0c:5e:7b:3e:6b:84:64:da:f2:5f:09:ef:ff: a1:0a:74:43:35:9c:35:b3:9b:48:d1:e0:98:38:71:75:44:6c: a5:af:fa:12:57:f9:f5:e9:01:5a:fd:e6:b6:d0:21:05:0c:84: ac:08:ef:d9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdFNUIxMTAvBgNVBAUTKEFCNTNEOTkyODEwMkI5MTlEQjdDNTQ2NUM4REQ1RkYy NjY3NDQzQjMwHhcNMjYwNTExMDcxNDA4WhcNMjYwNTE4MDcxNDA4WjAYMRYwFAYD VQQDEw02YTAxODFjMC0yOGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8UO1YoOQ7rn/cXdnb3mIfEUMRP8ZDB/1IL3YTxZce67rgDZHdwqBI2TWIqsm Jugk+Ibvj1xkQyChKKXfc2fCghym6Z0BR1rsW3iu6AVtDJET8kYUiiVaPXjLtvrs /rnFXq+1zm0tmK0F3cTjUZskpD7X9TRgPaFdHxfG3aLCYtvB75VTorP4wiHaM994 pEj5TmlGIcrA044AuGdoRR38T1ieQFTX0N0pBkiJb9Ka91HqFq7fkqnFFlfc88DY NflkWCYmaH+daT8Ht5TaX/LYpo36TMmKyVQlZm13TbhzLC4Qspzv5zR76VEn/80G B8Nz9RNxS6vbUxcIPNJyfRzduQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIbRNhJC oCY9vOSN+6WbZMhucKsoMB8GA1UdIwQYMBaAFKtT2ZKBArkZ23xUZcjdX/JmdEOz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0U1Qi9EODRFN0JGMjND NkUxMUYwOUQ3NkEyNERDNEY5QUUwMi9xMVBaa29FQ3VSbmJmRlJseU4xZjhtWjBR N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ExUFprb0VDdVJuYmZGUmx5TjFmOG1aMFE3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0U1Qi9EODRFN0JGMjNDNkUxMUYwOUQ3NkEyNERDNEY5QUUwMi9xMVBaa29FQ3VS bmJmRlJseU4xZjhtWjBRN00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoXaLCroFOjS+DhUJXJMM0eWvaKo6XDD5ZVDvFfQLPY1VT1bLZ1r1tVGLz5j/ tGuyMnv4iTZVX+tbVT55QWzuGD9lCCQiVO66U77X959x9s6GyjQTIUp+lryDmRhG cqCAKFSERGgusLUNxOnTlfsnmCxSVZpYTAfqIcYs36hefqku6hM16v8DT6ZZSMW+ ZKo4/a2+RlTg35a8o1ayo4U8YShWK1rsv3cXQN2h7KGhkR4KQGX/1uuq+FS+pysq ZeSvWxmhdyPNTdhcRcoMXns+a4Rk2vJfCe//oQp0QzWcNbObSNHgmDhxdURspa/6 Elf59ekBWv3mttAhBQyErAjv2Q== -----END CERTIFICATE-----Generated at Wed May 13 05:41:41 2026 by rpki-client