$ rpki-client -vvf rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft File: JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft (raw, json) Hash identifier: +HcoRswSPJhg23nfaLkiFbaNxl6HyoTc4+OLrawyMds= Subject key identifier: 35:55:E8:46:8E:EA:B9:CA:92:E3:87:F7:8E:A7:BF:9D:AD:6E:F1:17 Authority key identifier: 25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 Certificate issuer: /CN=A9128918/serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Certificate serial: 0D6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft Manifest number: 0D40 Signing time: Mon 02 Mar 2026 02:06:07 +0000 Manifest this update: Mon 02 Mar 2026 02:06:05 +0000 Manifest next update: Mon 09 Mar 2026 02:06:05 +0000 Files and hashes: 1: JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl (hash: BOFgp1cw0LYJ+esyIK+HsyLX1dnsQ6UNxIyUEZBkQEg=) 2: DA0A5C9280BE11EB88ED2418C4F9AE02.roa (hash: 2j8ZEZZDC+v0AsplIrNRFX86JLUI1D1lZouNpF7eL1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:06:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3434 (0xd6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128918, serialNumber=2503775FAC3A6F47234CB832A637FC1082A47C44 Validity Not Before: Mar 2 02:06:05 2026 GMT Not After : Mar 9 02:06:05 2026 GMT Subject: CN=69a4f08e-0d14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:12:86:8b:b5:1f:d9:39:b6:59:03:b0:8d:0b: 78:04:53:5b:02:73:39:97:71:fb:75:1d:f0:f8:2b: b0:c7:67:3e:cb:68:6c:44:df:ec:7a:3d:18:48:0f: 0d:19:ca:b9:ff:cf:db:cb:c5:b6:3c:6d:00:6d:25: f2:5c:27:79:bb:7f:5b:cb:e6:50:8a:79:05:d2:65: 94:0a:2e:48:b1:18:24:91:b4:6a:81:e6:e7:cf:be: 76:9e:c6:99:ed:41:73:9e:3c:fd:39:24:0e:10:16: cb:d7:52:dd:72:33:1d:85:f7:c8:2b:63:5d:92:77: 12:3f:a6:31:39:90:7d:c2:e0:f9:57:64:06:02:35: cf:85:9d:06:16:a2:87:93:9d:a8:b8:81:4e:c4:dd: 72:c8:07:f7:b6:3c:f8:8e:5a:1e:33:8a:2a:84:ac: 0d:8b:01:0e:cd:62:de:9a:eb:a9:dc:e3:9b:2c:ef: 50:fc:2d:0d:ae:5d:93:50:0a:45:3e:18:da:e9:fa: 56:f9:6b:59:11:5d:88:09:ae:b5:59:4c:06:4a:6f: 2f:4d:b6:63:f1:99:8d:29:6d:0c:56:62:47:85:3a: fa:f4:6e:5e:98:ff:fa:23:58:d6:28:bd:49:ed:7a: 89:c3:a8:f0:2e:11:70:e3:9e:8e:7e:44:04:2d:b3: 52:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:55:E8:46:8E:EA:B9:CA:92:E3:87:F7:8E:A7:BF:9D:AD:6E:F1:17 X509v3 Authority Key Identifier: keyid:25:03:77:5F:AC:3A:6F:47:23:4C:B8:32:A6:37:FC:10:82:A4:7C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JQN3X6w6b0cjTLgypjf8EIKkfEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128918/E98FDFD4F67211E991ED0B16C4F9AE02/JQN3X6w6b0cjTLgypjf8EIKkfEQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:8a:de:7b:de:64:f4:39:e8:21:f3:35:77:02:7f:41:4f:98: f1:bd:8c:29:ba:db:f5:78:f5:a2:2f:b8:1c:95:14:2c:ab:a4: fa:15:8a:d2:23:fc:76:6f:0f:e9:49:eb:a3:d4:81:3e:93:0c: f4:fd:3b:d7:fb:65:e5:81:14:55:17:f9:4c:ca:89:4a:83:fb: 73:e4:b0:04:a1:38:c9:f4:f5:ad:3e:88:8f:84:8f:a8:5d:51: 94:b9:e0:34:c5:bf:47:d3:ff:ed:89:1a:9b:bf:3d:8b:d0:80: 3b:e7:43:4c:b4:ac:00:6c:15:81:3b:37:c2:5f:42:f4:9e:70: 3d:a8:65:b2:b7:6c:62:e4:11:3d:1b:b0:e7:50:ab:f0:c9:4c: 6d:8c:12:e9:e7:3e:2e:39:ce:01:ac:20:b5:c6:60:64:d6:d9: 5f:22:c1:42:5f:ee:18:90:99:02:c1:48:7e:8e:50:f8:29:e0: ab:88:ad:ae:2a:8c:d2:b8:11:a5:f0:d5:c0:a4:8d:ca:d6:15: f1:c0:9f:84:5c:69:e8:49:76:5c:36:ff:bd:bb:8a:5b:6d:5b: 76:d9:20:17:c6:45:7b:bf:f5:53:94:87:20:0f:13:9a:b3:3f: 19:9c:5b:7f:72:24:ed:17:b0:b6:19:df:cc:68:c8:b3:3b:69: 91:03:e0:c8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5MTgxMTAvBgNVBAUTKDI1MDM3NzVGQUMzQTZGNDcyMzRDQjgzMkE2MzdGQzEw ODJBNDdDNDQwHhcNMjYwMzAyMDIwNjA1WhcNMjYwMzA5MDIwNjA1WjAYMRYwFAYD VQQDEw02OWE0ZjA4ZS0wZDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8RKGi7Uf2Tm2WQOwjQt4BFNbAnM5l3H7dR3w+Cuwx2c+y2hsRN/sej0YSA8N Gcq5/8/by8W2PG0AbSXyXCd5u39by+ZQinkF0mWUCi5IsRgkkbRqgebnz752nsaZ 7UFznjz9OSQOEBbL11LdcjMdhffIK2NdkncSP6YxOZB9wuD5V2QGAjXPhZ0GFqKH k52ouIFOxN1yyAf3tjz4jloeM4oqhKwNiwEOzWLemuup3OObLO9Q/C0Nrl2TUApF Phja6fpW+WtZEV2ICa61WUwGSm8vTbZj8ZmNKW0MVmJHhTr69G5emP/6I1jWKL1J 7XqJw6jwLhFw456OfkQELbNS3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDVV6EaO 6rnKkuOH946nv52tbvEXMB8GA1UdIwQYMBaAFCUDd1+sOm9HI0y4MqY3/BCCpHxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODkxOC9FOThGREZENEY2 NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIwY2pUTGd5cGpmOEVJS2tm RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pRTjNYNnc2YjBjalRMZ3lwamY4RUlLa2ZFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODkxOC9FOThGREZENEY2NzIxMUU5OTFFRDBCMTZDNEY5QUUwMi9KUU4zWDZ3NmIw Y2pUTGd5cGpmOEVJS2tmRVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApIree95k9DnoIfM1dwJ/QU+Y8b2MKbrb9Xj1oi+4HJUULKuk+hWK0iP8dm8P 6Unro9SBPpMM9P071/tl5YEUVRf5TMqJSoP7c+SwBKE4yfT1rT6Ij4SPqF1RlLng NMW/R9P/7Ykam789i9CAO+dDTLSsAGwVgTs3wl9C9J5wPahlsrdsYuQRPRuw51Cr 8MlMbYwS6ec+LjnOAawgtcZgZNbZXyLBQl/uGJCZAsFIfo5Q+Cngq4itriqM0rgR pfDVwKSNytYV8cCfhFxp6El2XDb/vbuKW21bdtkgF8ZFe7/1U5SHIA8TmrM/GZxb f3Ik7RewthnfzGjIsztpkQPgyA== -----END CERTIFICATE-----Generated at Mon Mar 2 07:51:41 2026 by rpki-client