$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft File: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft (raw, json) Hash identifier: Hp+R276B0yAzM/icMTd3fEZdHab9o73Yn0dqPzM0gJI= Subject key identifier: 01:21:A2:89:D1:A5:EA:F5:D4:5C:A6:0D:26:F4:23:45:D1:7C:75:A4 Authority key identifier: 41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 Certificate issuer: /CN=A91E5D61/serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Certificate serial: 1351 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft Manifest number: 48B4 Signing time: Tue 12 May 2026 14:21:26 +0000 Manifest this update: Tue 12 May 2026 14:21:25 +0000 Manifest next update: Tue 19 May 2026 14:21:25 +0000 Files and hashes: 1: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl (hash: C9YQoSKBWxdJ3A03/DbRzvQsuIlq6SWsJu6yo1mHjPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4945 (0x1351) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61, serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Validity Not Before: May 12 14:21:25 2026 GMT Not After : May 19 14:21:25 2026 GMT Subject: CN=6a033766-e6fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:cc:c3:99:4b:09:d8:ea:a2:0c:1e:b3:43:25: ca:a0:0d:7c:58:17:d0:09:69:31:4c:97:fd:c7:38: 48:c4:e6:36:1c:65:0d:f7:d8:f0:0f:93:1f:01:f1: 6b:d8:a5:e1:d5:d1:e0:15:26:ee:61:82:95:20:14: 3c:be:9c:44:34:1c:b7:b1:87:01:af:d9:7b:32:59: 87:a3:35:40:ab:95:08:c0:9a:de:de:91:2d:29:fd: b1:01:68:d5:14:e5:92:d0:70:b6:84:44:a2:7c:9d: a6:b2:f6:51:37:32:52:99:bf:22:59:62:67:11:0c: 9c:11:b0:02:52:77:e8:d4:5c:59:1b:a6:75:4b:f4: bc:aa:c7:92:8c:53:26:30:f1:9c:7d:45:47:9e:49: 86:7f:c5:f7:75:ab:29:91:c6:5a:a1:ae:fd:2f:3f: 67:ad:25:c1:b1:89:ab:02:30:d0:bd:b9:89:21:4d: da:65:7b:f3:67:0e:11:d5:25:77:e2:8c:3b:82:6b: 8c:7e:22:14:1c:2b:6a:19:96:4d:9a:a9:b8:19:4f: 67:3c:dc:43:db:11:8e:fc:49:ab:8b:5e:75:85:fe: 8b:69:88:58:e6:e8:5d:95:8a:33:fb:ae:fe:20:e0: 70:86:b6:f4:3c:d7:ef:48:61:d8:b3:f4:a2:be:3c: a4:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:21:A2:89:D1:A5:EA:F5:D4:5C:A6:0D:26:F4:23:45:D1:7C:75:A4 X509v3 Authority Key Identifier: keyid:41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:87:dc:9a:8f:66:da:f8:cc:55:7b:d0:61:d9:8e:e6:bc:0f: f2:c4:f3:c0:3f:91:d3:2d:cc:28:4a:47:79:c4:f4:2c:08:0e: be:56:3e:cc:a2:25:91:44:56:46:20:aa:07:92:1e:49:7b:60: 47:00:92:62:7b:c0:bd:ce:c9:94:3d:c7:22:ef:f6:cc:b7:7a: a7:8e:7e:2e:73:f4:3d:98:bb:64:9f:44:b5:98:a5:8d:38:cb: 4e:a2:73:79:20:49:33:09:e5:e6:fe:4e:5e:c3:73:11:8f:e2: e7:ac:d8:f9:4d:f9:db:ef:8f:c0:d3:52:b7:1f:08:ab:a8:96: 98:ea:4b:82:58:66:61:c0:8f:78:40:ee:3a:1a:12:16:99:8b: 46:d5:b9:21:a3:85:9d:b0:62:34:2f:0c:cd:c2:e7:82:6d:0d: 98:ce:a3:f9:9a:fc:fe:5f:2c:a6:da:6e:ec:91:fb:f2:4a:8a: 9d:96:b1:72:64:89:df:aa:d0:fb:70:72:f3:14:72:57:25:ce: 4b:96:cd:fd:1b:65:f6:de:c8:d4:6a:aa:0b:8c:c3:10:53:02: 2c:e1:45:a3:85:a5:40:c4:cc:74:a2:0a:7a:4c:ba:8c:8a:a3: 3c:7e:d6:7f:49:8f:44:c8:5c:b6:f3:f2:49:1f:73:2a:b9:eb: c1:16:a5:f2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDQxNkQ2Q0Q2MDM5MEZCN0M5NkVENzlENzhDRTc2RjU0 QUZDRjQ0NTgwHhcNMjYwNTEyMTQyMTI1WhcNMjYwNTE5MTQyMTI1WjAYMRYwFAYD VQQDEw02YTAzMzc2Ni1lNmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhszDmUsJ2OqiDB6zQyXKoA18WBfQCWkxTJf9xzhIxOY2HGUN99jwD5MfAfFr 2KXh1dHgFSbuYYKVIBQ8vpxENBy3sYcBr9l7MlmHozVAq5UIwJre3pEtKf2xAWjV FOWS0HC2hESifJ2msvZRNzJSmb8iWWJnEQycEbACUnfo1FxZG6Z1S/S8qseSjFMm MPGcfUVHnkmGf8X3daspkcZaoa79Lz9nrSXBsYmrAjDQvbmJIU3aZXvzZw4R1SV3 4ow7gmuMfiIUHCtqGZZNmqm4GU9nPNxD2xGO/Emri151hf6LaYhY5uhdlYoz+67+ IOBwhrb0PNfvSGHYs/Sivjyk4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAEhoonR per11FymDSb0I0XRfHWkMB8GA1UdIwQYMBaAFEFtbNYDkPt8lu1514znb1Svz0RY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8yQTdDN0Q5ODFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0zeVc3WG5Yak9kdlZLX1BS RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1FXMXMxZ09RLTN5VzdYblhqT2R2VktfUFJGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQ2MS8yQTdDN0Q5ODFENzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0z eVc3WG5Yak9kdlZLX1BSRmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArIfcmo9m2vjMVXvQYdmO5rwP8sTzwD+R0y3MKEpHecT0LAgOvlY+zKIlkURW RiCqB5IeSXtgRwCSYnvAvc7JlD3HIu/2zLd6p45+LnP0PZi7ZJ9EtZiljTjLTqJz eSBJMwnl5v5OXsNzEY/i56zY+U352++PwNNStx8Iq6iWmOpLglhmYcCPeEDuOhoS FpmLRtW5IaOFnbBiNC8MzcLngm0NmM6j+Zr8/l8sptpu7JH78kqKnZaxcmSJ36rQ +3By8xRyVyXOS5bN/Rtl9t7I1GqqC4zDEFMCLOFFo4WlQMTMdKIKeky6jIqjPH7W f0mPRMhctvPySR9zKrnrwRal8g== -----END CERTIFICATE-----Generated at Wed May 13 03:39:07 2026 by rpki-client