$ rpki-client -vvf rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft File: QBS8tK-bGBlk17ekDRv51vieCP8.mft (raw, json) Hash identifier: Y3g+S9qxVpZ55P8VMYUSXMcPR2EQVjoNIV2aws/WXII= Subject key identifier: 6C:B3:B5:4E:53:9E:44:AE:10:97:E6:1D:5C:44:A7:79:18:AE:18:4F Authority key identifier: 40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF Certificate issuer: /CN=A91323E4/serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Certificate serial: 0865 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft Manifest number: 085D Signing time: Mon 02 Mar 2026 01:43:16 +0000 Manifest this update: Mon 02 Mar 2026 01:43:13 +0000 Manifest next update: Mon 09 Mar 2026 01:43:13 +0000 Files and hashes: 1: QBS8tK-bGBlk17ekDRv51vieCP8.crl (hash: aBUAdxVicGQA/+EyGRmw2ClHDRa0pa6ApQ/GpKhXEfU=) 2: 6944587246B311F090CDB927C4F9AE02.roa (hash: hGp6bwwFeBV78RfPCjsM5O3StrZUexewSoAPhlPuLdM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:43:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2149 (0x865) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91323E4, serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Validity Not Before: Mar 2 01:43:13 2026 GMT Not After : Mar 9 01:43:13 2026 GMT Subject: CN=69a4eb33-2f73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:69:37:b5:7c:66:7e:f1:5d:2f:c4:08:fb:50: e5:f5:d0:c7:e5:86:08:1b:cc:c3:97:0c:f2:c5:f0: 70:16:d0:30:ef:32:50:6d:46:1b:b6:0f:b8:b0:fb: ce:7f:88:85:c9:8e:c5:a9:90:61:19:aa:6c:16:78: e7:29:70:c2:fa:0d:c4:b2:58:82:ec:9e:50:72:7b: a2:2c:13:ab:83:36:24:b1:0f:43:f8:e1:f9:80:0d: df:09:e8:de:7c:6f:be:1b:df:8c:31:d8:ab:f1:93: 26:76:f7:1e:1d:c4:a3:ef:f9:cf:e3:cf:c4:31:f2: 7d:0f:2a:7d:ce:67:db:1b:f3:8a:38:63:5b:ea:ec: 0a:e6:c5:91:3e:83:bc:79:4b:a2:e1:f4:6e:28:20: c3:d7:c5:ce:8b:d6:c2:ad:f9:72:a0:90:95:0d:7b: 2b:4f:62:32:20:9f:7a:46:cc:1c:1b:81:1f:0e:8a: 9e:97:4c:58:d2:64:11:b0:1e:81:87:3d:cb:72:67: 71:da:c3:32:7a:7d:30:7e:a5:1b:0f:2b:a5:39:fc: cd:27:8e:c4:a2:da:21:96:8f:c2:93:df:49:c5:ed: b6:47:ca:e0:e6:4f:63:a1:09:ff:b1:25:e5:7f:bb: 4c:27:f2:89:27:0a:dd:ca:2d:49:72:e8:5b:be:ca: f2:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:B3:B5:4E:53:9E:44:AE:10:97:E6:1D:5C:44:A7:79:18:AE:18:4F X509v3 Authority Key Identifier: keyid:40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:4c:0c:d2:ca:44:46:fe:d7:90:ee:52:14:7b:77:aa:dc:71: 54:0d:c9:92:cf:af:1a:bb:36:02:15:96:f4:e0:6c:12:06:26: 52:5c:5f:ee:19:2d:01:f9:b0:b4:08:52:3e:9c:41:54:4c:f3: c3:36:82:02:56:a0:31:c5:ac:8f:c2:0a:13:12:22:f4:53:b7: 5a:33:c8:b6:b1:d0:fc:41:14:c9:b6:b1:38:4c:86:7c:c1:9e: c1:3e:4c:14:e3:f4:eb:be:3c:8b:72:e9:d4:f4:08:72:bd:1e: cf:46:90:6d:32:4f:f2:e5:29:5e:6f:c3:cc:df:2e:9c:b7:76: 20:7d:6e:2e:ee:ab:a6:b1:82:06:c8:96:60:2e:cf:ee:82:fc: b5:75:ec:a0:e2:19:1a:74:8b:d7:4a:e0:55:21:c4:20:8b:40: af:ca:be:cc:b1:03:3b:88:88:6c:95:a5:43:b6:93:c4:f1:f8: 89:20:4f:f1:0c:5f:09:c1:11:7f:ba:c9:c3:bd:ea:44:f3:dc: 87:f9:9f:31:01:7c:7c:2d:f0:ea:9c:c6:98:fe:18:86:ce:35: 0e:df:29:15:b7:43:11:96:14:4e:92:60:d2:e6:4d:17:61:91: 2d:09:5f:6e:01:39:8c:a2:9d:45:f3:6f:07:f9:84:5d:86:5b: c6:f7:6a:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzIzRTQxMTAvBgNVBAUTKDQwMTRCQ0I0QUY5QjE4MTk2NEQ3QjdBNDBEMUJGOUQ2 Rjg5RTA4RkYwHhcNMjYwMzAyMDE0MzEzWhcNMjYwMzA5MDE0MzEzWjAYMRYwFAYD VQQDEw02OWE0ZWIzMy0yZjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Wk3tXxmfvFdL8QI+1Dl9dDH5YYIG8zDlwzyxfBwFtAw7zJQbUYbtg+4sPvO f4iFyY7FqZBhGapsFnjnKXDC+g3EsliC7J5QcnuiLBOrgzYksQ9D+OH5gA3fCeje fG++G9+MMdir8ZMmdvceHcSj7/nP48/EMfJ9Dyp9zmfbG/OKOGNb6uwK5sWRPoO8 eUui4fRuKCDD18XOi9bCrflyoJCVDXsrT2IyIJ96RswcG4EfDoqel0xY0mQRsB6B hz3Lcmdx2sMyen0wfqUbDyulOfzNJ47Eotohlo/Ck99Jxe22R8rg5k9joQn/sSXl f7tMJ/KJJwrdyi1Jcuhbvsry3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGyztU5T nkSuEJfmHVxEp3kYrhhPMB8GA1UdIwQYMBaAFEAUvLSvmxgZZNe3pA0b+db4ngj/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjNFNC8xOTBCMEQwNkYy NjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdCbGsxN2VrRFJ2NTF2aWVD UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FCUzh0Sy1iR0JsazE3ZWtEUnY1MXZpZUNQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjNFNC8xOTBCMEQwNkYyNjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdC bGsxN2VrRFJ2NTF2aWVDUDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAc0wM0spERv7XkO5SFHt3qtxxVA3Jks+vGrs2AhWW9OBsEgYmUlxf7hktAfmw tAhSPpxBVEzzwzaCAlagMcWsj8IKExIi9FO3WjPItrHQ/EEUybaxOEyGfMGewT5M FOP06748i3Lp1PQIcr0ez0aQbTJP8uUpXm/DzN8unLd2IH1uLu6rprGCBsiWYC7P 7oL8tXXsoOIZGnSL10rgVSHEIItAr8q+zLEDO4iIbJWlQ7aTxPH4iSBP8QxfCcER f7rJw73qRPPch/mfMQF8fC3w6pzGmP4Yhs41Dt8pFbdDEZYUTpJg0uZNF2GRLQlf bgE5jKKdRfNvB/mEXYZbxvdqyw== -----END CERTIFICATE-----Generated at Mon Mar 2 09:50:55 2026 by rpki-client