$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft File: QoezMyF220hqLLxCVAL6nIa23Eg.mft (raw, json) Hash identifier: AQBan4BxTj0DWpcrsvEF9hOeWgAllrpEXRl4bH7kKMM= Subject key identifier: 90:A6:1B:6D:09:1E:8B:EB:21:E3:14:E2:F4:5A:B4:DA:90:17:B8:96 Authority key identifier: 42:87:B3:33:21:76:DB:48:6A:2C:BC:42:54:02:FA:9C:86:B6:DC:48 Certificate issuer: /CN=A911ABDD/serialNumber=4287B3332176DB486A2CBC425402FA9C86B6DC48 Certificate serial: 1ECD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft Manifest number: 3335 Signing time: Mon 02 Mar 2026 02:36:28 +0000 Manifest this update: Mon 02 Mar 2026 02:36:25 +0000 Manifest next update: Mon 09 Mar 2026 02:36:25 +0000 Files and hashes: 1: QoezMyF220hqLLxCVAL6nIa23Eg.crl (hash: kFmal5VR5+QqRAn93uAn5Xm2IOlwYCTkqWQ0cjFnDY8=) 2: 4FA6792A8F6711E6A509C92DC4F9AE02.roa (hash: a2YIRJWcOj/2F2QJjwyVL+lBSin617P7TaoPIuqLmpo=) 3: 4EB814BA8F6711E6A509C92DC4F9AE02.roa (hash: XKjx+2JVREc1vEzkeaWV20vVw40lW7PDQ/F2fJTa5K4=) 4: 4BDAE70EB7A911EF9D4E880CC4F9AE02.roa (hash: QJ2Et41ySjmnzE4MdkYD7xXGqC9BJjzlZL6AqK+pncY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.crl rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:36:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7885 (0x1ecd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABDD, serialNumber=4287B3332176DB486A2CBC425402FA9C86B6DC48 Validity Not Before: Mar 2 02:36:25 2026 GMT Not After : Mar 9 02:36:25 2026 GMT Subject: CN=69a4f7ab-df60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:89:20:a1:82:b5:46:bd:24:47:41:bc:86:b9: aa:b4:48:b3:4f:73:a6:49:b1:7a:af:fe:8d:32:86: 3f:a2:03:24:1a:e9:77:9b:88:91:e1:ad:17:f5:6d: 70:98:36:60:98:31:c6:38:ba:d6:99:02:25:a4:6a: 18:49:3a:92:28:7e:44:9c:24:d1:15:e7:48:e4:fd: e4:d0:cd:07:d5:eb:47:24:62:ae:7d:f0:42:4b:2b: ab:be:84:ee:b7:f5:ed:3c:7e:86:39:c0:b2:33:a9: 0c:04:f1:ae:13:5b:a5:73:a0:50:d1:08:19:e2:07: 4e:68:f4:5b:9b:85:1d:cb:30:2e:0e:c5:9b:03:bc: ee:11:a9:11:e8:1f:e2:bc:f4:39:55:3f:ba:cc:0f: 15:a3:99:6d:63:92:5c:65:af:3b:77:88:e7:43:53: e3:e4:0d:28:aa:fc:50:e1:94:48:f9:ea:5b:24:1d: 36:51:a1:e6:43:4c:d2:6b:8e:ec:bb:99:e2:d9:b2: 3a:ca:3e:27:e1:2c:da:67:f3:29:01:d4:a6:2b:6c: d4:e7:c1:e3:8e:43:e6:cb:1f:1c:5c:d4:cd:7d:a8: 4a:87:11:1d:4f:5e:74:c4:98:c9:a0:cf:e8:aa:d6: 51:e9:f8:3e:ac:5d:46:a6:ee:ab:0d:74:24:5a:bb: a6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:A6:1B:6D:09:1E:8B:EB:21:E3:14:E2:F4:5A:B4:DA:90:17:B8:96 X509v3 Authority Key Identifier: keyid:42:87:B3:33:21:76:DB:48:6A:2C:BC:42:54:02:FA:9C:86:B6:DC:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:8f:eb:05:5e:5a:8d:32:c7:08:4b:9f:44:42:3a:91:74:c9: b7:9c:46:f2:2e:9f:73:d5:cf:16:d8:02:f7:6d:b3:70:29:ed: 7b:7e:a6:1b:25:06:91:7d:03:1f:d5:dd:9d:a9:09:54:7d:68: e7:25:d8:e7:a9:a8:ce:eb:34:c8:ed:92:7f:c0:07:40:90:4e: b7:58:18:d1:20:49:73:8e:54:3c:6b:a0:af:49:f5:63:8c:8d: 66:48:9e:cc:5f:00:f7:18:4e:01:71:19:b7:a5:c9:57:e0:86: 0f:fd:d9:00:6e:b3:f3:b8:f1:4f:4e:14:19:a5:1a:d1:88:d2: 08:d1:bc:cd:6b:89:3b:4d:dc:7c:1c:84:7f:e1:38:47:d9:45: 7f:7f:f8:c8:d9:01:aa:65:00:15:7d:23:9b:95:c9:49:82:9e: ae:1d:6d:e6:d7:6c:4e:26:96:0e:63:14:2d:b3:60:80:07:20: ff:ce:b9:01:b4:a8:ca:ae:5d:5e:1e:4c:cd:0a:01:d0:4a:26: b2:e9:57:fb:d5:94:05:e8:0d:5b:cf:31:29:5c:56:0a:0b:35: dd:b7:a2:5e:f0:a5:a7:29:0f:c7:7a:be:39:ac:fe:f3:6d:43: 7a:6d:8d:59:0a:ee:bb:cd:b5:d8:9b:2d:6e:b0:40:d2:31:39: aa:02:af:f6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCREQxMTAvBgNVBAUTKDQyODdCMzMzMjE3NkRCNDg2QTJDQkM0MjU0MDJGQTlD ODZCNkRDNDgwHhcNMjYwMzAyMDIzNjI1WhcNMjYwMzA5MDIzNjI1WjAYMRYwFAYD VQQDEw02OWE0ZjdhYi1kZjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0YkgoYK1Rr0kR0G8hrmqtEizT3OmSbF6r/6NMoY/ogMkGul3m4iR4a0X9W1w mDZgmDHGOLrWmQIlpGoYSTqSKH5EnCTRFedI5P3k0M0H1etHJGKuffBCSyurvoTu t/XtPH6GOcCyM6kMBPGuE1ulc6BQ0QgZ4gdOaPRbm4UdyzAuDsWbA7zuEakR6B/i vPQ5VT+6zA8Vo5ltY5JcZa87d4jnQ1Pj5A0oqvxQ4ZRI+epbJB02UaHmQ0zSa47s u5ni2bI6yj4n4SzaZ/MpAdSmK2zU58HjjkPmyx8cXNTNfahKhxEdT150xJjJoM/o qtZR6fg+rF1Gpu6rDXQkWrum1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJCmG20J HovrIeMU4vRatNqQF7iWMB8GA1UdIwQYMBaAFEKHszMhdttIaiy8QlQC+pyGttxI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUJERC8zQUUwMDRCNEQ3 NzgxMUU0QjM3NzhCNzJDNEY5QUUwMi9Rb2V6TXlGMjIwaHFMTHhDVkFMNm5JYTIz RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FvZXpNeUYyMjBocUxMeENWQUw2bklhMjNFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUJERC8zQUUwMDRCNEQ3NzgxMUU0QjM3NzhCNzJDNEY5QUUwMi9Rb2V6TXlGMjIw aHFMTHhDVkFMNm5JYTIzRWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGo/rBV5ajTLHCEufREI6kXTJt5xG8i6fc9XPFtgC922zcCnte36mGyUGkX0D H9XdnakJVH1o5yXY56mozus0yO2Sf8AHQJBOt1gY0SBJc45UPGugr0n1Y4yNZkie zF8A9xhOAXEZt6XJV+CGD/3ZAG6z87jxT04UGaUa0YjSCNG8zWuJO03cfByEf+E4 R9lFf3/4yNkBqmUAFX0jm5XJSYKerh1t5tdsTiaWDmMULbNggAcg/865AbSoyq5d Xh5MzQoB0EomsulX+9WUBegNW88xKVxWCgs13beiXvClpykPx3q+Oaz+821Dem2N WQruu8212JstbrBA0jE5qgKv9g== -----END CERTIFICATE-----Generated at Mon Mar 2 10:42:19 2026 by rpki-client