$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDCF5/5996712CF1E311F0BDEC72B5416F56BC/QwlkOa1FN43F5xIj-HJhJ7EZZe0.mft File: QwlkOa1FN43F5xIj-HJhJ7EZZe0.mft (raw, json) Hash identifier: w3xgLKzmwY8YIWmCnRtKn3OZk+QQ16axxWCq+wIZxAE= Subject key identifier: DC:B4:31:A1:87:03:68:F9:BA:21:81:EF:A7:55:77:F6:3F:75:E7:8B Authority key identifier: 43:09:64:39:AD:45:37:8D:C5:E7:12:23:F8:72:61:27:B1:19:65:ED Certificate issuer: /CN=A91CDCF5/serialNumber=43096439AD45378DC5E71223F8726127B11965ED Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QwlkOa1FN43F5xIj-HJhJ7EZZe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDCF5/5996712CF1E311F0BDEC72B5416F56BC/QwlkOa1FN43F5xIj-HJhJ7EZZe0.mft Manifest number: 28 Signing time: Wed 25 Mar 2026 07:58:13 +0000 Manifest this update: Wed 25 Mar 2026 07:58:12 +0000 Manifest next update: Wed 01 Apr 2026 07:58:12 +0000 Files and hashes: 1: QwlkOa1FN43F5xIj-HJhJ7EZZe0.crl (hash: iZ9yYdOkf5y3IYHj+EpJTVyFkEQ2xqzt6WRA/PLUNzM=) 2: D735EAACF1EF11F0A394FA90446F56BC.roa (hash: Ys/2qaSppEBebOfLXvRLlfClHojsR1MQFiAQ4UPY7vM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDCF5/5996712CF1E311F0BDEC72B5416F56BC/QwlkOa1FN43F5xIj-HJhJ7EZZe0.crl rsync://rpki.apnic.net/member_repository/A91CDCF5/5996712CF1E311F0BDEC72B5416F56BC/QwlkOa1FN43F5xIj-HJhJ7EZZe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QwlkOa1FN43F5xIj-HJhJ7EZZe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:58:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDCF5, serialNumber=43096439AD45378DC5E71223F8726127B11965ED Validity Not Before: Mar 25 07:58:12 2026 GMT Not After : Apr 1 07:58:12 2026 GMT Subject: CN=69c39594-ea26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:85:e0:53:e8:0f:77:bd:59:32:e5:f3:09:80: ae:76:d7:ca:b3:5d:49:e4:45:e4:6a:2f:7e:52:33: cb:95:8e:65:41:52:ce:38:8c:48:83:7a:06:7c:86: a8:be:b7:2c:4a:58:ff:74:3c:46:f2:e8:2c:8e:b3: 1e:11:53:fe:d4:eb:50:82:95:a9:ed:21:b9:8e:a8: d6:bc:bf:db:24:de:88:ce:4b:57:29:f8:1c:c1:13: 79:9f:74:99:46:c0:2f:11:8a:c4:23:aa:ee:09:d8: 6c:09:6c:f7:62:a0:e5:a1:74:68:b5:8a:a3:2e:58: ec:91:ac:b2:ed:ec:a1:8e:ee:d2:43:b7:9a:56:4a: 9d:32:fd:f0:a2:41:c2:39:0e:1b:35:53:38:ea:d1: 2c:4f:cc:51:91:37:aa:57:e8:a2:5d:93:e6:dc:c7: b0:a8:3b:26:5b:c1:1c:f9:bb:91:5e:24:ca:19:31: 61:ab:22:56:2f:fd:67:ac:26:0b:44:09:bb:f8:80: dd:1c:76:62:8f:da:17:11:82:b3:77:ff:5f:69:c6: e1:2c:d0:15:3e:b4:a6:bb:9a:e1:2a:c7:74:fb:83: 91:68:51:af:57:54:a7:27:8d:32:0c:ba:d7:30:d2: 1c:4c:59:5b:6b:51:92:1a:9e:1c:b3:2d:b6:43:38: 1b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:B4:31:A1:87:03:68:F9:BA:21:81:EF:A7:55:77:F6:3F:75:E7:8B X509v3 Authority Key Identifier: keyid:43:09:64:39:AD:45:37:8D:C5:E7:12:23:F8:72:61:27:B1:19:65:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDCF5/5996712CF1E311F0BDEC72B5416F56BC/QwlkOa1FN43F5xIj-HJhJ7EZZe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QwlkOa1FN43F5xIj-HJhJ7EZZe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDCF5/5996712CF1E311F0BDEC72B5416F56BC/QwlkOa1FN43F5xIj-HJhJ7EZZe0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:8c:0d:05:6d:b7:84:24:52:8d:03:8f:31:8b:01:2f:62:39: d3:5e:7e:34:63:3b:39:78:2b:28:83:d2:e2:8f:89:bc:6c:2f: 07:65:fd:84:86:ef:0c:f0:fe:4a:ab:a9:24:fa:aa:e4:18:c1: 9c:fb:3f:52:0c:d2:99:b3:11:4a:b8:8b:4c:4d:d2:3e:c0:ea: 26:1f:a3:bf:85:c2:e5:33:20:af:b7:6b:ba:13:1a:2e:79:ff: 11:4b:90:6c:41:73:32:6b:ec:8b:8d:d5:96:f1:8b:89:0e:94: 10:04:56:e3:b8:54:27:b1:62:61:13:35:00:dc:88:ee:76:e5: bb:ff:9f:df:6b:75:db:29:be:fc:30:c5:07:13:b1:9b:3b:1d: b1:10:0b:d6:1c:7f:28:f5:e3:ae:f8:3c:7f:0b:2e:3d:db:68: c9:cc:43:af:11:4f:2e:37:0d:8a:ac:ff:d3:2f:79:ee:e4:bc: 98:d1:ba:12:1c:e7:6f:d9:f4:40:90:a6:65:ec:ff:96:31:e9: b1:95:e0:36:1c:6b:3a:06:22:3a:bd:15:ed:d8:ed:8d:94:a5: 9c:7f:14:79:9b:2e:c9:e3:5e:26:71:cf:f5:d7:a3:47:28:ba: ab:3e:ad:c7:4a:84:d3:dd:37:1d:db:b0:42:8c:88:4b:4e:bf: 3c:0d:55:e0 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RENGNTExMC8GA1UEBRMoNDMwOTY0MzlBRDQ1Mzc4REM1RTcxMjIzRjg3MjYxMjdC MTE5NjVFRDAeFw0yNjAzMjUwNzU4MTJaFw0yNjA0MDEwNzU4MTJaMBgxFjAUBgNV BAMTDTY5YzM5NTk0LWVhMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvheBT6A93vVky5fMJgK5218qzXUnkReRqL35SM8uVjmVBUs44jEiDegZ8hqi+ tyxKWP90PEby6CyOsx4RU/7U61CClantIbmOqNa8v9sk3ojOS1cp+BzBE3mfdJlG wC8RisQjqu4J2GwJbPdioOWhdGi1iqMuWOyRrLLt7KGO7tJDt5pWSp0y/fCiQcI5 Dhs1Uzjq0SxPzFGRN6pX6KJdk+bcx7CoOyZbwRz5u5FeJMoZMWGrIlYv/WesJgtE Cbv4gN0cdmKP2hcRgrN3/19pxuEs0BU+tKa7muEqx3T7g5FoUa9XVKcnjTIMutcw 0hxMWVtrUZIanhyzLbZDOBu3AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU3LQxoYcD aPm6IYHvp1V39j9154swHwYDVR0jBBgwFoAUQwlkOa1FN43F5xIj+HJhJ7EZZe0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNEQ0Y1LzU5OTY3MTJDRjFF MzExRjBCREVDNzJCNTQxNkY1NkJDL1F3bGtPYTFGTjQzRjV4SWotSEpoSjdFWlpl MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUXdsa09hMUZONDNGNXhJai1ISmhKN0VaWmUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNE Q0Y1LzU5OTY3MTJDRjFFMzExRjBCREVDNzJCNTQxNkY1NkJDL1F3bGtPYTFGTjQz RjV4SWotSEpoSjdFWlplMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCXjA0FbbeEJFKNA48xiwEvYjnTXn40Yzs5eCsog9Lij4m8bC8HZf2Ehu8M8P5K q6kk+qrkGMGc+z9SDNKZsxFKuItMTdI+wOomH6O/hcLlMyCvt2u6Exouef8RS5Bs QXMya+yLjdWW8YuJDpQQBFbjuFQnsWJhEzUA3IjuduW7/5/fa3XbKb78MMUHE7Gb Ox2xEAvWHH8o9eOu+Dx/Cy4922jJzEOvEU8uNw2KrP/TL3nu5LyY0boSHOdv2fRA kKZl7P+WMemxleA2HGs6BiI6vRXt2O2NlKWcfxR5my7J414mcc/116NHKLqrPq3H SoTT3Tcd27BCjIhLTr88DVXg -----END CERTIFICATE-----Generated at Thu Mar 26 16:19:43 2026 by rpki-client