$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft File: qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft (raw, json) Hash identifier: bPBS4+Ntc2Xf/RUUb5TagqOspXOJukWxmVZMiHenFpM= Subject key identifier: 52:72:CE:EB:46:D2:6B:30:15:6F:61:33:B6:F7:C0:B5:D2:93:9D:E6 Authority key identifier: A8:9D:0F:D4:F4:8A:BF:69:4F:D9:DF:77:04:E5:96:46:4D:ED:21:79 Certificate issuer: /CN=A91E6CCA/serialNumber=A89D0FD4F48ABF694FD9DF7704E596464DED2179 Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft Manifest number: D3 Signing time: Mon 11 May 2026 06:53:10 +0000 Manifest this update: Mon 11 May 2026 06:53:10 +0000 Manifest next update: Mon 18 May 2026 06:53:10 +0000 Files and hashes: 1: qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl (hash: zne+IEw4eXHxck9lnpcEi9hHjJwncCC8T7Q7HB8Pin4=) 2: A94836600F7111F08BC42022C4F9AE02.roa (hash: u576PqO+BtNCnO64DUXQ7ItjcmgVyMNM4SJ3quc5Oh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 06:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6CCA, serialNumber=A89D0FD4F48ABF694FD9DF7704E596464DED2179 Validity Not Before: May 11 06:53:10 2026 GMT Not After : May 18 06:53:10 2026 GMT Subject: CN=6a017cd6-6bd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9b:f5:05:5b:ee:56:5d:24:4a:b0:eb:d9:0b: d5:21:80:0a:bb:45:c9:a2:8c:68:82:4d:24:0c:de: 1f:1a:33:62:fa:0a:0e:3b:a5:fc:cf:d3:45:33:9f: 78:91:f3:50:ff:b1:56:5f:96:2d:63:2a:51:54:03: e7:1b:7d:52:fc:58:e0:59:00:8d:2b:f7:6f:73:49: 7d:f9:57:8b:1f:81:52:eb:c6:7f:e3:fd:8f:f7:26: 5a:9f:fb:48:de:a6:f2:48:e1:ee:0e:4a:00:bb:13: 72:53:30:cf:f5:dc:d6:f9:bd:23:91:98:f9:99:d8: 1a:e5:0f:28:3a:7d:14:3b:16:0a:d7:cf:0f:b9:47: 3d:31:cf:19:be:45:fa:9b:06:ee:e0:36:54:72:ee: 70:ff:50:ba:a8:6c:1f:65:7c:42:33:9b:2d:0d:61: 25:3b:cf:95:a9:5a:11:41:66:4b:d0:8a:03:da:fe: e6:78:40:8d:70:77:7b:69:52:aa:a9:aa:37:e0:f9: 46:62:58:90:c8:68:70:93:33:76:74:ef:d7:b1:6f: 4e:f2:0e:35:3d:56:cd:e7:b2:a0:a4:cf:9a:fd:1b: 81:7b:96:35:75:1f:79:7a:cf:fa:7a:0d:1c:27:bf: f4:f9:73:66:1c:23:cf:57:55:f7:41:fb:ea:ac:b4: 08:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:72:CE:EB:46:D2:6B:30:15:6F:61:33:B6:F7:C0:B5:D2:93:9D:E6 X509v3 Authority Key Identifier: keyid:A8:9D:0F:D4:F4:8A:BF:69:4F:D9:DF:77:04:E5:96:46:4D:ED:21:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:05:d4:14:e2:89:77:b4:ce:9e:48:2c:93:66:7c:38:ab:59: c8:dd:bc:3a:66:c8:18:c1:1f:07:6a:ac:2c:22:05:68:c9:e4: 09:0d:33:4d:b8:18:b1:ad:85:aa:cb:93:b9:93:2f:17:19:c3: 97:56:cc:2b:24:ce:24:8f:ff:b9:14:6c:d2:33:a5:09:53:f3: 57:92:d9:be:e9:b6:80:4e:f6:13:86:0d:1e:60:9b:ca:24:79: c8:07:9b:51:ef:5f:b2:16:94:a6:04:cb:f7:de:5f:48:7b:58: 40:a0:b9:97:a3:f0:cd:57:f2:df:f3:b5:47:62:8e:5f:2a:4d: 35:39:88:00:26:83:49:6c:75:26:d6:ba:f5:5d:68:6c:e7:b7: 81:89:09:4d:03:4f:32:5c:37:8f:10:4c:3c:4c:46:83:63:24: 55:bc:e1:e1:60:62:73:93:f4:51:93:1a:7b:56:a7:2d:26:45: 3f:ae:de:57:fd:94:56:a9:65:21:60:13:8a:2e:d1:c5:df:33: 11:aa:15:16:30:ae:32:bc:33:0a:c5:39:98:f2:01:a8:fb:3a: a3:95:f5:8b:c1:a0:cc:4d:e4:e3:cb:5f:4c:9c:60:c8:19:17: 09:00:c2:86:49:b7:50:3a:e7:57:47:18:9b:1a:69:15:2b:21: 2a:54:52:88 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZDQ0ExMTAvBgNVBAUTKEE4OUQwRkQ0RjQ4QUJGNjk0RkQ5REY3NzA0RTU5NjQ2 NERFRDIxNzkwHhcNMjYwNTExMDY1MzEwWhcNMjYwNTE4MDY1MzEwWjAYMRYwFAYD VQQDEw02YTAxN2NkNi02YmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZv1BVvuVl0kSrDr2QvVIYAKu0XJooxogk0kDN4fGjNi+goOO6X8z9NFM594 kfNQ/7FWX5YtYypRVAPnG31S/FjgWQCNK/dvc0l9+VeLH4FS68Z/4/2P9yZan/tI 3qbySOHuDkoAuxNyUzDP9dzW+b0jkZj5mdga5Q8oOn0UOxYK188PuUc9Mc8ZvkX6 mwbu4DZUcu5w/1C6qGwfZXxCM5stDWElO8+VqVoRQWZL0IoD2v7meECNcHd7aVKq qao34PlGYliQyGhwkzN2dO/XsW9O8g41PVbN57KgpM+a/RuBe5Y1dR95es/6eg0c J7/0+XNmHCPPV1X3QfvqrLQILQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFJyzutG 0mswFW9hM7b3wLXSk53mMB8GA1UdIwQYMBaAFKidD9T0ir9pT9nfdwTllkZN7SF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkNDQS8xQTdBREVDQTBG NzAxMUYwOUUyRjdEMUZDNEY5QUUwMi9xSjBQMVBTS3YybFAyZDkzQk9XV1JrM3RJ WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FKMFAxUFNLdjJsUDJkOTNCT1dXUmszdElYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkNDQS8xQTdBREVDQTBGNzAxMUYwOUUyRjdEMUZDNEY5QUUwMi9xSjBQMVBTS3Yy bFAyZDkzQk9XV1JrM3RJWGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHAXUFOKJd7TOnkgsk2Z8OKtZyN28OmbIGMEfB2qsLCIFaMnkCQ0zTbgYsa2F qsuTuZMvFxnDl1bMKyTOJI//uRRs0jOlCVPzV5LZvum2gE72E4YNHmCbyiR5yAeb Ue9fshaUpgTL995fSHtYQKC5l6PwzVfy3/O1R2KOXypNNTmIACaDSWx1Jta69V1o bOe3gYkJTQNPMlw3jxBMPExGg2MkVbzh4WBic5P0UZMae1anLSZFP67eV/2UVqll IWATii7Rxd8zEaoVFjCuMrwzCsU5mPIBqPs6o5X1i8GgzE3k48tfTJxgyBkXCQDC hkm3UDrnV0cYmxppFSshKlRSiA== -----END CERTIFICATE-----Generated at Wed May 13 05:03:27 2026 by rpki-client