$ rpki-client -vvf rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft File: Q2XRedW3PoqX7eBQXynvAMLWPvk.mft (raw, json) Hash identifier: Xt9Obn4JTvPt5gw1py+U3mvRlyKpdPOU4CQY/ULwNOs= Subject key identifier: F6:C9:D9:DC:01:77:CE:87:2C:7A:66:D8:87:7C:88:87:EE:3F:73:6D Authority key identifier: 43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 Certificate issuer: /CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Certificate serial: 0334 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft Manifest number: 032A Signing time: Mon 02 Mar 2026 00:20:12 +0000 Manifest this update: Mon 02 Mar 2026 00:20:11 +0000 Manifest next update: Mon 09 Mar 2026 00:20:11 +0000 Files and hashes: 1: Q2XRedW3PoqX7eBQXynvAMLWPvk.crl (hash: hgHKo3d42P39cTxQDbJw794GsPuJDLU1CjZUldDCYqI=) 2: E9A9531644D611F0ABB89277C4F9AE02.roa (hash: LjrdfU8qKAjg1tNh6QbLgwWJcFgbeivFBKT0rfsVVGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 820 (0x334) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139555, serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Validity Not Before: Mar 2 00:20:11 2026 GMT Not After : Mar 9 00:20:11 2026 GMT Subject: CN=69a4d7bc-58f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:4c:55:11:6d:ae:d8:46:f0:01:e2:cb:ed:66: 66:9d:d5:b2:68:02:66:d8:22:4a:4e:69:c6:a4:84: 28:ef:e6:94:46:e7:68:ae:5e:f9:2e:d6:ca:0c:d5: dd:79:e1:ee:fa:79:1b:8d:f9:b1:85:ff:e9:df:71: 1a:0e:9a:78:73:17:f4:1c:30:05:62:e7:ab:06:fe: 17:22:58:97:f7:62:00:73:bd:d8:ed:1a:2e:21:c2: 52:d6:24:4d:36:37:fb:77:69:ff:41:bf:04:d6:4e: 4f:c8:c1:fc:e3:f7:7d:fb:af:16:2a:e9:b3:f3:3f: d5:6f:22:5b:e2:0d:78:53:27:21:ee:fc:0a:79:43: 58:9c:5f:6b:f7:94:59:80:54:3e:fe:ee:7c:4c:09: 10:88:97:dc:23:74:d5:6a:23:52:17:ac:0f:f8:0b: 7b:55:aa:d1:cd:50:37:e0:c9:2a:81:4c:59:8a:f3: 90:62:24:b5:78:df:d9:85:1b:e4:10:dc:41:ff:e1: 39:89:c0:ca:ce:a6:58:6f:a2:05:e7:65:b0:52:94: ac:b5:21:36:4a:b1:50:cc:a9:59:5d:de:f8:77:a0: 36:4a:8f:97:5b:2c:47:35:e7:80:37:25:e8:0d:f7: e2:14:f0:71:97:40:96:9e:5c:a2:2d:0b:27:ca:47: 5d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:C9:D9:DC:01:77:CE:87:2C:7A:66:D8:87:7C:88:87:EE:3F:73:6D X509v3 Authority Key Identifier: keyid:43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:38:3a:12:5b:75:ec:13:5d:20:10:2a:44:e3:98:91:7a:86: c2:e8:90:00:7c:13:58:66:b2:fb:4c:33:eb:89:8a:ba:1f:98: 66:a6:4c:63:ba:40:06:3e:2a:ab:4a:6d:d5:d0:26:5c:a1:b1: 01:2e:60:87:49:e0:d3:1e:ba:f0:52:06:28:cd:70:ee:97:2b: e4:63:89:60:83:ff:56:cf:1c:e5:a4:32:44:3d:cc:68:42:ab: 1d:d2:e3:36:41:84:1a:0f:d4:9b:47:e1:3a:f8:dd:ce:37:41: 45:85:85:c7:91:c9:33:40:ed:a1:2e:c2:42:b5:2f:78:96:f7: 3a:1f:fc:7d:d6:bd:bb:59:33:34:4a:8f:dd:8a:66:19:03:91: 68:25:e4:e6:71:23:d5:f3:c8:45:f9:17:dc:45:19:08:a8:f6: 40:40:07:66:09:a4:34:9a:88:ac:a3:92:c3:33:4a:d6:67:dd: 2c:25:6a:97:48:52:57:b2:06:0a:e7:41:bd:03:b2:9b:3a:80: e0:a5:b3:f0:85:2a:4a:cc:7b:39:0e:8c:25:3c:7d:c8:7e:ab: f8:54:dd:ba:40:43:da:4d:d5:1f:0f:91:e8:d3:f1:75:80:e1: dc:a3:30:4c:e5:97:69:05:e5:64:c3:46:73:c3:a3:a1:d4:d3: 5c:ef:43:21 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk1NTUxMTAvBgNVBAUTKDQzNjVEMTc5RDVCNzNFOEE5N0VERTA1MDVGMjlFRjAw QzJENjNFRjkwHhcNMjYwMzAyMDAyMDExWhcNMjYwMzA5MDAyMDExWjAYMRYwFAYD VQQDEw02OWE0ZDdiYy01OGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8kxVEW2u2EbwAeLL7WZmndWyaAJm2CJKTmnGpIQo7+aURudorl75LtbKDNXd eeHu+nkbjfmxhf/p33EaDpp4cxf0HDAFYuerBv4XIliX92IAc73Y7RouIcJS1iRN Njf7d2n/Qb8E1k5PyMH84/d9+68WKumz8z/VbyJb4g14Uych7vwKeUNYnF9r95RZ gFQ+/u58TAkQiJfcI3TVaiNSF6wP+At7VarRzVA34MkqgUxZivOQYiS1eN/ZhRvk ENxB/+E5icDKzqZYb6IF52WwUpSstSE2SrFQzKlZXd74d6A2So+XWyxHNeeANyXo DffiFPBxl0CWnlyiLQsnykddvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPbJ2dwB d86HLHpm2Id8iIfuP3NtMB8GA1UdIwQYMBaAFENl0XnVtz6Kl+3gUF8p7wDC1j75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTU1NS9EQzdEMTQ1QTAy MkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1BvcVg3ZUJRWHludkFNTFdQ dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EyWFJlZFczUG9xWDdlQlFYeW52QU1MV1B2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTU1NS9EQzdEMTQ1QTAyMkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1Bv cVg3ZUJRWHludkFNTFdQdmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtTg6Elt17BNdIBAqROOYkXqGwuiQAHwTWGay+0wz64mKuh+YZqZMY7pABj4q q0pt1dAmXKGxAS5gh0ng0x668FIGKM1w7pcr5GOJYIP/Vs8c5aQyRD3MaEKrHdLj NkGEGg/Um0fhOvjdzjdBRYWFx5HJM0DtoS7CQrUveJb3Oh/8fda9u1kzNEqP3Ypm GQORaCXk5nEj1fPIRfkX3EUZCKj2QEAHZgmkNJqIrKOSwzNK1mfdLCVql0hSV7IG CudBvQOymzqA4KWz8IUqSsx7OQ6MJTx9yH6r+FTdukBD2k3VHw+R6NPxdYDh3KMw TOWXaQXlZMNGc8OjodTTXO9DIQ== -----END CERTIFICATE-----Generated at Mon Mar 2 09:06:53 2026 by rpki-client