$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft File: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft (raw, json) Hash identifier: 9ycks/BnpHHE3q54/1bvb/ZkLlRsK/n3Cy1jqfN0Eik= Subject key identifier: 5C:56:EE:16:D6:BF:34:56:60:E0:E6:C0:26:A5:01:A3:31:77:F9:97 Authority key identifier: 43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 Certificate issuer: /CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Certificate serial: 0B5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft Manifest number: 0AAD Signing time: Sat 28 Feb 2026 19:58:29 +0000 Manifest this update: Sat 28 Feb 2026 19:58:29 +0000 Manifest next update: Sat 07 Mar 2026 19:58:29 +0000 Files and hashes: 1: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl (hash: Mma1lMDJMSsT1AK5HrdZavEfAnjkfmrFj0w51MV9j+k=) 2: DCF88EAE5ED811EBAB677671C4F9AE02.roa (hash: HSmuGZlq2yjbC7oby/mLDwMQgWOMUuKo8bggRUwHe8s=) 3: 8626FFC65AE511EBA452D33EC4F9AE02.roa (hash: 9X7I+brkK/zM7IstcmQqkt3f3WU83UlUm6djQdlHWFo=) 4: 84023C06D24611EABDDF5344C4F9AE02.roa (hash: ejIz9Yuuvy/Lj5GU8AUntC0tFJ+QHqAuBe5ozlZ4Gxw=) 5: 61EFB2ACAC3611EDA5995F3FC4F9AE02.roa (hash: dOCznw/J4c94cUvosSW/kOC2oIL6jbmFAL2+O7rkhag=) 6: C3E2252E205F11EE8117111CC4F9AE02.roa (hash: 5nE372F+0IwqYdLJZogWsDWbHc80At5gKYtw/eBlXZE=) 7: 553170245AC511EBA052F663C4F9AE02.roa (hash: 1WjAWoIgFya9zcz3aaAfAZPj3TaOx48UOEMbOt7aBvY=) 8: 0DE32D9C2B1E11F0AFEB852DC4F9AE02.roa (hash: UfxAxapspNfCULgapde2dhkYeQjgb9Bzqtz/tQtQdPw=) 9: 0EA44D4E5ADD11EBB9CEE568C4F9AE02.roa (hash: L+W6w2B2/2JqZHEEy+XRZ0tQqm2y+76IdcVbyBsuS1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 19:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2909 (0xb5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Validity Not Before: Feb 28 19:58:29 2026 GMT Not After : Mar 7 19:58:29 2026 GMT Subject: CN=69a348e5-2115 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:39:a4:5a:85:e0:e6:59:3f:97:a8:36:59:90: 3a:ec:60:00:45:e8:5f:8c:21:eb:41:7b:4c:15:e1: af:6c:57:8b:84:ee:36:a0:06:6d:4c:c9:d9:fa:78: 90:aa:48:9f:fe:79:32:dc:b7:f5:8c:0f:bf:e8:78: a7:89:29:85:6f:50:f3:46:14:4c:56:52:fe:78:20: 10:0d:43:1a:76:fe:3b:c1:53:0a:62:db:6f:ab:b7: e3:bc:21:60:e2:e1:af:5b:e6:39:9c:c3:5e:fb:0f: 2e:f5:c8:c0:d4:a9:8d:95:e8:c0:be:d5:7a:06:c8: 6b:b1:a2:83:4e:91:b0:e1:49:e8:20:fe:d9:8b:5f: c5:b8:f4:64:33:c4:35:8e:6a:6b:53:e5:1d:3f:af: de:b1:f1:6e:15:d2:3b:c0:ba:bc:f1:2f:a7:5d:d4: 81:e8:66:b3:07:59:fe:3f:64:e3:76:67:d6:1c:ef: 57:a6:b1:7d:c2:3c:f9:52:36:88:b9:3f:f5:78:59: 0b:16:4d:59:04:a8:7f:c9:0f:24:b0:c3:2e:5d:a6: 7a:df:06:ff:b4:e9:ad:7b:41:31:80:b2:74:7f:c7: 67:90:79:66:40:9e:47:79:e7:63:eb:97:24:9e:14: c6:f7:07:f6:05:87:50:9c:03:16:88:16:7e:89:95: 16:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:56:EE:16:D6:BF:34:56:60:E0:E6:C0:26:A5:01:A3:31:77:F9:97 X509v3 Authority Key Identifier: keyid:43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:95:88:48:bf:b2:23:82:72:82:a9:2c:1d:30:0b:cd:d9:63: 9e:fd:41:74:5c:44:24:ef:d3:18:5b:e2:36:6c:6b:8a:70:3f: 5f:4f:cb:fd:67:79:2f:6b:e3:51:22:e3:38:4f:07:76:ca:ff: 6f:1c:01:c0:6b:35:71:d6:2a:21:7c:15:79:05:5c:ae:88:c9: 4f:96:b1:8f:32:8f:bb:5f:a0:f2:11:d4:c5:dd:c8:e9:9b:f8: ba:e5:e7:f4:e3:78:47:1d:cf:7b:b3:10:fc:d0:2a:2b:76:1b: bf:4b:f1:1c:1c:36:dd:72:a3:8f:63:1a:b1:0c:fb:cb:76:e1: a6:46:fa:1a:8f:fa:90:c3:fe:1a:8c:b4:7b:11:d1:54:32:a3: 2f:d7:af:20:02:09:f8:16:30:63:95:a4:e9:03:97:dd:a0:94: 80:39:03:20:5b:3b:11:b5:91:3f:e6:eb:35:c5:0a:a3:05:52: 50:9c:0f:e8:d5:25:1c:d5:64:16:a6:06:c9:f2:6a:2f:72:a3: e4:5f:d1:e5:7d:19:78:99:7c:6c:0f:ee:d0:fb:7f:1a:86:cd: 37:39:cd:16:01:cc:11:a8:43:e5:ed:cb:9c:d2:32:d0:e3:d9: 12:cc:50:a7:fe:8d:d3:71:17:15:f9:f2:2d:4f:ab:df:65:ad: 34:de:93:6e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDQzNkIyQzVGMDNGOTFDQTc0MUM2QTI0OURDMDE1QTZE NTQ0QTYyQTYwHhcNMjYwMjI4MTk1ODI5WhcNMjYwMzA3MTk1ODI5WjAYMRYwFAYD VQQDDA02OWEzNDhlNS0yMTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzmkWoXg5lk/l6g2WZA67GAARehfjCHrQXtMFeGvbFeLhO42oAZtTMnZ+niQ qkif/nky3Lf1jA+/6HiniSmFb1DzRhRMVlL+eCAQDUMadv47wVMKYttvq7fjvCFg 4uGvW+Y5nMNe+w8u9cjA1KmNlejAvtV6BshrsaKDTpGw4UnoIP7Zi1/FuPRkM8Q1 jmprU+UdP6/esfFuFdI7wLq88S+nXdSB6GazB1n+P2TjdmfWHO9XprF9wjz5UjaI uT/1eFkLFk1ZBKh/yQ8ksMMuXaZ63wb/tOmte0ExgLJ0f8dnkHlmQJ5Heedj65ck nhTG9wf2BYdQnAMWiBZ+iZUWtwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFxW7hbW vzRWYODmwCalAaMxd/mXMB8GA1UdIwQYMBaAFENrLF8D+RynQcaiSdwBWm1USmKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy80MzdDQzQwNjg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhLZEJ4cUpKM0FGYWJWUktZ cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Eyc3NYd1A1SEtkQnhxSkozQUZhYlZSS1lxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjQ3Qy80MzdDQzQwNjg1MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhL ZEJ4cUpKM0FGYWJWUktZcVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAb5WISL+yI4JygqksHTALzdljnv1BdFxEJO/TGFviNmxrinA/X0/L/Wd5L2vj USLjOE8Hdsr/bxwBwGs1cdYqIXwVeQVcrojJT5axjzKPu1+g8hHUxd3I6Zv4uuXn 9ON4Rx3Pe7MQ/NAqK3Ybv0vxHBw23XKjj2MasQz7y3bhpkb6Go/6kMP+Goy0exHR VDKjL9evIAIJ+BYwY5Wk6QOX3aCUgDkDIFs7EbWRP+brNcUKowVSUJwP6NUlHNVk FqYGyfJqL3Kj5F/R5X0ZeJl8bA/u0Pt/GobNNznNFgHMEahD5e3LnNIy0OPZEsxQ p/6N03EXFfnyLU+r32WtNN6Tbg== -----END CERTIFICATE-----Generated at Mon Mar 2 00:48:42 2026 by rpki-client