$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDCF5/5996712CF1E311F0BDEC72B5416F56BC/QwlkOa1FN43F5xIj-HJhJ7EZZe0.mft File: QwlkOa1FN43F5xIj-HJhJ7EZZe0.mft (raw, json) Hash identifier: m0iCuQSZdUiGSvlafbS2YUv3KPx7uwL3DBbApZoRa4Q= Subject key identifier: 17:D5:F6:8E:14:25:41:FD:6F:81:0F:E1:02:3F:74:28:59:63:18:D1 Authority key identifier: 43:09:64:39:AD:45:37:8D:C5:E7:12:23:F8:72:61:27:B1:19:65:ED Certificate issuer: /CN=A91CDCF5/serialNumber=43096439AD45378DC5E71223F8726127B11965ED Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QwlkOa1FN43F5xIj-HJhJ7EZZe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDCF5/5996712CF1E311F0BDEC72B5416F56BC/QwlkOa1FN43F5xIj-HJhJ7EZZe0.mft Manifest number: 40 Signing time: Mon 11 May 2026 08:39:16 +0000 Manifest this update: Mon 11 May 2026 08:39:16 +0000 Manifest next update: Mon 18 May 2026 08:39:16 +0000 Files and hashes: 1: QwlkOa1FN43F5xIj-HJhJ7EZZe0.crl (hash: qH2gipbDtcZrGS47+d2eK+t+VfD+Q9Zk8YN66jdI5Wk=) 2: D735EAACF1EF11F0A394FA90446F56BC.roa (hash: Ys/2qaSppEBebOfLXvRLlfClHojsR1MQFiAQ4UPY7vM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDCF5/5996712CF1E311F0BDEC72B5416F56BC/QwlkOa1FN43F5xIj-HJhJ7EZZe0.crl rsync://rpki.apnic.net/member_repository/A91CDCF5/5996712CF1E311F0BDEC72B5416F56BC/QwlkOa1FN43F5xIj-HJhJ7EZZe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QwlkOa1FN43F5xIj-HJhJ7EZZe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 08:39:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDCF5, serialNumber=43096439AD45378DC5E71223F8726127B11965ED Validity Not Before: May 11 08:39:16 2026 GMT Not After : May 18 08:39:16 2026 GMT Subject: CN=6a0195b4-601d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9d:28:b1:00:f4:06:27:b8:65:00:db:a2:6b: d6:e6:dc:b5:cd:c7:b3:fd:5a:d2:48:1f:8d:93:21: 45:94:6f:09:f4:6c:02:9e:11:56:a1:af:36:27:69: be:46:15:3f:a9:a6:ce:a5:fc:d8:5b:17:1d:4f:16: 58:76:c6:44:7b:78:a9:fa:7b:c7:de:fb:09:33:6d: c1:d7:a4:a3:bf:e0:4a:97:29:e2:51:05:f7:fa:d0: 7e:ea:ca:f4:6b:50:31:ea:18:83:a8:1c:ae:c8:3a: fa:5a:a4:52:07:4b:c7:22:a5:e1:18:27:c0:d5:8a: d6:ac:53:ef:14:f5:14:93:cd:34:32:b9:bc:71:75: 31:3b:72:07:6b:a1:f6:25:3d:aa:7e:59:19:58:fd: 64:22:3d:44:f3:3a:a4:b7:50:43:07:68:5b:95:98: 24:a8:69:c4:09:a2:71:10:84:9a:65:34:a8:f3:6f: 3a:b0:9d:80:80:d9:dd:73:86:59:f2:f5:5a:ff:c3: 68:3c:3a:54:b1:fe:bc:3e:da:c0:9b:ec:6c:d3:50: b4:63:54:f4:30:0c:41:73:e8:a3:01:93:9f:e7:20: 6e:04:5a:b6:b0:7e:4e:2e:0d:1c:c5:19:2a:f0:80: 83:e9:c3:6f:94:ee:2d:dd:9e:96:da:0c:8f:1b:f5: d0:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:D5:F6:8E:14:25:41:FD:6F:81:0F:E1:02:3F:74:28:59:63:18:D1 X509v3 Authority Key Identifier: keyid:43:09:64:39:AD:45:37:8D:C5:E7:12:23:F8:72:61:27:B1:19:65:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDCF5/5996712CF1E311F0BDEC72B5416F56BC/QwlkOa1FN43F5xIj-HJhJ7EZZe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QwlkOa1FN43F5xIj-HJhJ7EZZe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDCF5/5996712CF1E311F0BDEC72B5416F56BC/QwlkOa1FN43F5xIj-HJhJ7EZZe0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:a4:dd:c1:cb:b7:97:d1:10:16:61:95:c0:e9:97:0b:a8:6e: 10:84:21:c1:be:20:9d:6e:09:8a:bb:3c:f2:0c:c6:06:4b:bd: ad:9c:46:df:b0:f9:44:f6:99:a6:39:79:78:93:99:00:30:20: d8:3e:b6:dd:ce:ef:46:ef:88:17:89:74:ef:19:f8:fc:ae:4d: 77:3b:14:db:a2:b1:2c:ef:e3:60:a4:df:f9:4e:95:f2:ba:eb: ab:f7:a6:9d:3e:70:26:6e:e6:11:9b:7d:91:20:8a:9f:58:49: 49:30:ae:f7:cc:eb:9e:ee:2e:0a:27:4f:5b:19:cf:00:bd:ce: 16:48:44:2a:fd:c1:ba:00:22:7f:2b:16:96:e4:aa:3c:c0:3d: 9f:86:24:44:af:3a:36:c1:0b:cf:17:1a:93:0a:d3:c2:bb:b8: 61:fd:ea:b3:78:40:3b:e9:2b:4d:50:ff:5c:ca:c5:a0:58:76: 20:1e:88:c4:e5:5e:8d:44:aa:c2:ad:43:ec:43:13:11:c2:8b: 13:30:9a:93:9c:1d:db:33:df:40:d5:a6:ea:c8:60:66:fd:d4: 67:1a:cb:da:a2:48:3f:c3:e0:e4:7e:53:9a:54:bb:e4:5c:c7: 5a:c9:4d:07:20:93:4d:91:d5:28:ec:d5:cb:c3:05:93:55:8c: ff:d3:35:ce -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RENGNTExMC8GA1UEBRMoNDMwOTY0MzlBRDQ1Mzc4REM1RTcxMjIzRjg3MjYxMjdC MTE5NjVFRDAeFw0yNjA1MTEwODM5MTZaFw0yNjA1MTgwODM5MTZaMBgxFjAUBgNV BAMTDTZhMDE5NWI0LTYwMWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9nSixAPQGJ7hlANuia9bm3LXNx7P9WtJIH42TIUWUbwn0bAKeEVahrzYnab5G FT+pps6l/NhbFx1PFlh2xkR7eKn6e8fe+wkzbcHXpKO/4EqXKeJRBff60H7qyvRr UDHqGIOoHK7IOvpapFIHS8cipeEYJ8DVitasU+8U9RSTzTQyubxxdTE7cgdrofYl Pap+WRlY/WQiPUTzOqS3UEMHaFuVmCSoacQJonEQhJplNKjzbzqwnYCA2d1zhlny 9Vr/w2g8OlSx/rw+2sCb7GzTULRjVPQwDEFz6KMBk5/nIG4EWrawfk4uDRzFGSrw gIPpw2+U7i3dnpbaDI8b9dBvAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUF9X2jhQl Qf1vgQ/hAj90KFljGNEwHwYDVR0jBBgwFoAUQwlkOa1FN43F5xIj+HJhJ7EZZe0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNEQ0Y1LzU5OTY3MTJDRjFF MzExRjBCREVDNzJCNTQxNkY1NkJDL1F3bGtPYTFGTjQzRjV4SWotSEpoSjdFWlpl MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUXdsa09hMUZONDNGNXhJai1ISmhKN0VaWmUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNE Q0Y1LzU5OTY3MTJDRjFFMzExRjBCREVDNzJCNTQxNkY1NkJDL1F3bGtPYTFGTjQz RjV4SWotSEpoSjdFWlplMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAApN3By7eX0RAWYZXA6ZcLqG4QhCHBviCdbgmKuzzyDMYGS72tnEbfsPlE9pmm OXl4k5kAMCDYPrbdzu9G74gXiXTvGfj8rk13OxTborEs7+NgpN/5TpXyuuur96ad PnAmbuYRm32RIIqfWElJMK73zOue7i4KJ09bGc8Avc4WSEQq/cG6ACJ/KxaW5Ko8 wD2fhiRErzo2wQvPFxqTCtPCu7hh/eqzeEA76StNUP9cysWgWHYgHojE5V6NRKrC rUPsQxMRwosTMJqTnB3bM99A1abqyGBm/dRnGsvaokg/w+DkflOaVLvkXMdayU0H IJNNkdUo7NXLwwWTVYz/0zXO -----END CERTIFICATE-----Generated at Wed May 13 09:58:57 2026 by rpki-client