$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft File: Qql4rYPdXtKaTl3bYbVvExelpaQ.mft (raw, json) Hash identifier: sVHqJorEC+tGriwAsL6B3fC/eQSgrAkBtgJ7JLoxTps= Subject key identifier: 5D:72:3F:CD:3A:A4:3F:81:49:DE:51:62:0C:53:BD:F5:7F:59:2D:B7 Authority key identifier: 42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 Certificate issuer: /CN=A91D4803/serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Certificate serial: 05F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft Manifest number: 05E7 Signing time: Tue 12 May 2026 23:03:49 +0000 Manifest this update: Tue 12 May 2026 23:03:49 +0000 Manifest next update: Tue 19 May 2026 23:03:49 +0000 Files and hashes: 1: Qql4rYPdXtKaTl3bYbVvExelpaQ.crl (hash: KPvdBwSnZGkuH8JlhhCveht3PisiUZFEmTLlWhMmt/I=) 2: 2B1B8C92F9E511EBBB9B5D22C4F9AE02.roa (hash: fQgQ0VLTGkoR20JE5CrFqxEVCmsrE7jBwatjIG70kMM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 23:03:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1520 (0x5f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4803, serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Validity Not Before: May 12 23:03:49 2026 GMT Not After : May 19 23:03:49 2026 GMT Subject: CN=6a03b1d5-74d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e8:ee:ee:37:9a:fa:8c:bf:97:6b:c1:33:f5: 12:7a:3e:ae:7e:b3:be:b2:5c:8f:76:93:41:f3:95: 24:46:11:3d:d8:87:fc:4a:13:82:69:66:c0:df:ac: d2:e9:d4:2a:f9:12:4e:41:1b:79:41:fa:4d:3a:e4: 06:0a:d3:90:0e:7f:68:2e:f5:e1:7e:c5:fd:1b:6f: 04:ed:fc:21:87:1e:19:31:55:c9:0e:13:2d:29:4e: a8:9e:c8:54:5d:9b:c9:01:33:b6:5f:12:ff:67:0b: bf:77:84:b1:f0:ee:45:bc:81:1c:a3:79:a1:be:bd: a4:fc:8c:aa:1b:ee:62:15:53:02:52:83:b3:ce:d3: e4:9b:56:4a:82:2f:5e:82:d1:1c:91:59:f0:a6:63: e8:aa:61:17:7e:a5:bb:18:e8:5a:b7:47:89:77:a3: e1:70:79:df:c4:e5:e0:9b:ce:d8:f7:66:c3:e9:42: 53:da:a7:29:3a:9f:63:5f:72:84:8c:fb:15:11:a6: 60:c8:d2:a8:ff:50:0c:13:88:3b:74:d6:55:f6:ac: 8f:54:bd:57:36:25:04:5d:e1:ee:4a:92:2e:eb:40: 27:2c:0d:ea:a1:73:95:56:44:e4:ec:04:23:3b:38: 6f:f2:a0:db:d3:f1:ae:d4:88:68:eb:aa:70:a3:18: 63:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:72:3F:CD:3A:A4:3F:81:49:DE:51:62:0C:53:BD:F5:7F:59:2D:B7 X509v3 Authority Key Identifier: keyid:42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:ac:a7:bf:33:25:79:ce:72:a1:7b:39:7f:3b:fb:e5:65:92: 21:de:f8:b9:fb:3b:23:04:98:a0:87:ea:fb:4a:cd:05:46:da: d2:de:a2:a9:e5:ec:0f:57:fb:0c:43:56:23:0f:2c:a3:11:76: b0:8c:98:87:ef:95:82:d1:65:06:39:c3:fb:d9:34:e1:c3:8a: d5:ce:1f:de:72:bc:76:af:45:5d:01:ca:19:ec:35:86:ef:36: c5:87:5e:18:7e:2b:d4:a6:0f:bb:9f:8e:9a:cc:29:32:fc:d6: c4:ba:3a:62:40:bc:cf:ee:56:97:34:94:6a:5b:b8:be:e3:9c: ff:5e:07:a9:40:8b:36:f5:a9:51:1e:d9:a0:bb:11:35:43:a3: 1a:ed:6d:7b:a3:f4:5a:ed:7d:78:82:29:6d:af:c9:16:12:c7: 78:99:3e:ad:49:14:f4:52:01:a4:6d:8c:b1:ca:5e:7f:11:ed: 03:e6:72:7b:ab:81:f0:3a:ab:b6:e1:88:fe:33:a5:84:95:0e: fc:b1:64:79:1e:1d:d9:7d:1f:46:2d:32:e4:fc:9c:2f:02:8e: f9:e8:8b:71:6b:cd:20:8b:bf:56:8b:a0:50:38:77:63:af:f3: 6d:1c:cc:7a:08:e6:d2:a8:72:87:9b:2a:82:25:6a:6b:a4:cf: 8c:76:1c:2c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MDMxMTAvBgNVBAUTKDQyQTk3OEFEODNERDVFRDI5QTRFNUREQjYxQjU2RjEz MTdBNUE1QTQwHhcNMjYwNTEyMjMwMzQ5WhcNMjYwNTE5MjMwMzQ5WjAYMRYwFAYD VQQDEw02YTAzYjFkNS03NGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Oju7jea+oy/l2vBM/USej6ufrO+slyPdpNB85UkRhE92If8ShOCaWbA36zS 6dQq+RJOQRt5QfpNOuQGCtOQDn9oLvXhfsX9G28E7fwhhx4ZMVXJDhMtKU6onshU XZvJATO2XxL/Zwu/d4Sx8O5FvIEco3mhvr2k/IyqG+5iFVMCUoOzztPkm1ZKgi9e gtEckVnwpmPoqmEXfqW7GOhat0eJd6PhcHnfxOXgm87Y92bD6UJT2qcpOp9jX3KE jPsVEaZgyNKo/1AME4g7dNZV9qyPVL1XNiUEXeHuSpIu60AnLA3qoXOVVkTk7AQj Ozhv8qDb0/Gu1Iho66pwoxhjcwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF1yP806 pD+BSd5RYgxTvfV/WS23MB8GA1UdIwQYMBaAFEKpeK2D3V7Smk5d22G1bxMXpaWk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgwMy84MEYwMzRCRUY5 RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0S2FUbDNiWWJWdkV4ZWxw YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FxbDRyWVBkWHRLYVRsM2JZYlZ2RXhlbHBhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgwMy84MEYwMzRCRUY5RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0 S2FUbDNiWWJWdkV4ZWxwYVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAu6ynvzMlec5yoXs5fzv75WWSId74ufs7IwSYoIfq+0rNBUba0t6iqeXsD1f7 DENWIw8soxF2sIyYh++VgtFlBjnD+9k04cOK1c4f3nK8dq9FXQHKGew1hu82xYde GH4r1KYPu5+OmswpMvzWxLo6YkC8z+5WlzSUalu4vuOc/14HqUCLNvWpUR7ZoLsR NUOjGu1te6P0Wu19eIIpba/JFhLHeJk+rUkU9FIBpG2MscpefxHtA+Zye6uB8Dqr tuGI/jOlhJUO/LFkeR4d2X0fRi0y5PycLwKO+eiLcWvNIIu/VougUDh3Y6/zbRzM egjm0qhyh5sqgiVqa6TPjHYcLA== -----END CERTIFICATE-----Generated at Wed May 13 05:15:53 2026 by rpki-client