$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft File: QeHsF957pw-MEkF3aWN3AjclGd4.mft (raw, json) Hash identifier: so/iseHqsDwvPqTh+jypfVoBWq1VpjwoQ0kqIzaol2w= Subject key identifier: 62:94:9C:AE:D3:D7:AA:22:D1:33:02:B9:A7:76:F8:56:91:20:58:ED Authority key identifier: 41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE Certificate issuer: /CN=A913AE23/serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft Manifest number: 0143 Signing time: Sun 01 Mar 2026 06:18:00 +0000 Manifest this update: Sun 01 Mar 2026 06:18:00 +0000 Manifest next update: Sun 08 Mar 2026 06:18:00 +0000 Files and hashes: 1: QeHsF957pw-MEkF3aWN3AjclGd4.crl (hash: WMEYBLwSz2/z1KYTSSyouS4V13HRHZGp1Ts9uefzNuk=) 2: 8CF832322C6C11EFB50AD22EC4F9AE02.roa (hash: 2CA+qteNBX78NJxTKhwS/FKIzkSLCeJanQWnrGhStgI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:17:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE23, serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Validity Not Before: Mar 1 06:18:00 2026 GMT Not After : Mar 8 06:18:00 2026 GMT Subject: CN=69a3da18-e060 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7b:3e:81:5a:71:db:a3:84:3d:fd:03:90:2d: 14:89:94:31:fa:0a:6c:f9:be:aa:77:db:0d:e6:6e: 00:8b:cd:96:08:2b:2c:8e:b8:b0:87:de:67:c0:97: 18:54:96:76:0e:dd:84:e3:0b:e5:08:93:84:60:60: 0c:49:8b:88:43:85:84:b5:90:4d:43:b7:ca:02:93: d0:18:57:dc:f5:82:66:b6:79:18:36:50:4a:9d:01: 86:68:8d:f1:93:54:83:12:48:00:97:61:d8:68:e5: f5:57:ad:35:59:17:64:d8:8d:ae:57:64:42:c4:c2: 7a:f4:23:41:4f:9f:13:11:4f:49:bc:8b:5f:f1:15: f4:52:e5:3c:b8:45:6f:c5:21:37:c8:85:54:df:1d: d6:cf:16:23:5d:0f:c0:cc:9d:70:a8:5e:fc:af:81: 45:58:cd:57:6b:e2:32:7f:a0:b8:30:7d:dc:c0:c8: 2b:95:c0:ce:de:1a:c2:70:d6:20:1e:cb:3f:b8:d0: db:7d:f2:b4:41:2c:bb:78:a8:be:47:e5:bc:2d:0b: 44:b2:7a:1a:d5:b7:db:f0:a2:99:78:bf:e5:ee:16: 42:c3:85:0f:f5:5f:91:de:9b:b5:e3:b6:f8:a0:16: ab:dc:f6:a5:59:d7:98:7c:10:21:cb:25:a3:c2:28: e0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:94:9C:AE:D3:D7:AA:22:D1:33:02:B9:A7:76:F8:56:91:20:58:ED X509v3 Authority Key Identifier: keyid:41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:51:d3:47:36:db:18:3a:97:27:da:be:13:74:8b:94:9c:50: fc:3a:c1:89:9a:28:19:b0:65:d3:1b:57:b4:db:40:51:f1:75: ff:43:07:bc:21:60:f1:8a:08:fa:84:ca:64:99:7d:f6:1e:fe: dc:2a:a4:6a:35:62:38:b7:30:07:bf:3d:79:e6:e5:8a:a8:78: d6:56:30:fe:69:ec:f7:6e:7e:fd:c1:05:e7:2f:00:75:a9:5e: d0:14:02:8e:59:a7:30:55:87:f3:00:22:e4:7b:81:01:3d:fb: a5:26:3c:21:4a:16:e3:3d:22:9f:60:5f:da:75:c0:71:7e:fa: cf:6e:86:af:4b:52:e7:41:79:d5:21:ac:1e:90:ae:cc:0d:ce: 0d:00:74:dd:03:e8:bc:8d:1b:41:63:4f:86:d8:4c:b0:50:0f: cd:36:a1:bb:2c:47:1e:02:1b:5b:69:99:74:61:73:79:78:83: 16:b3:c1:19:7c:40:6b:e5:7f:66:66:7c:e9:fa:99:0e:1d:6c: ca:a1:5b:9a:f8:f2:6f:74:cd:97:4b:9b:97:94:f9:9f:cb:25: 09:33:91:4c:d0:8d:dc:20:fd:b7:66:7a:24:e1:6b:35:13:86: 22:c3:7d:47:07:7e:4c:a6:3d:d6:75:92:10:69:ec:fd:8c:68: 4a:a2:78:76 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMjMxMTAvBgNVBAUTKDQxRTFFQzE3REU3QkE3MEY4QzEyNDE3NzY5NjM3NzAy MzcyNTE5REUwHhcNMjYwMzAxMDYxODAwWhcNMjYwMzA4MDYxODAwWjAYMRYwFAYD VQQDEw02OWEzZGExOC1lMDYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXs+gVpx26OEPf0DkC0UiZQx+gps+b6qd9sN5m4Ai82WCCssjriwh95nwJcY VJZ2Dt2E4wvlCJOEYGAMSYuIQ4WEtZBNQ7fKApPQGFfc9YJmtnkYNlBKnQGGaI3x k1SDEkgAl2HYaOX1V601WRdk2I2uV2RCxMJ69CNBT58TEU9JvItf8RX0UuU8uEVv xSE3yIVU3x3WzxYjXQ/AzJ1wqF78r4FFWM1Xa+Iyf6C4MH3cwMgrlcDO3hrCcNYg Hss/uNDbffK0QSy7eKi+R+W8LQtEsnoa1bfb8KKZeL/l7hZCw4UP9V+R3pu147b4 oBar3PalWdeYfBAhyyWjwijgjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGKUnK7T 16oi0TMCuad2+FaRIFjtMB8GA1UdIwQYMBaAFEHh7Bfee6cPjBJBd2ljdwI3JRne MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUyMy8zMDFBMUU0QTJD NkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3LU1Fa0YzYVdOM0FqY2xH ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FlSHNGOTU3cHctTUVrRjNhV04zQWpjbEdkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUyMy8zMDFBMUU0QTJDNkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3 LU1Fa0YzYVdOM0FqY2xHZDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUFHTRzbbGDqXJ9q+E3SLlJxQ/DrBiZooGbBl0xtXtNtAUfF1/0MHvCFg8YoI +oTKZJl99h7+3CqkajViOLcwB789eebliqh41lYw/mns925+/cEF5y8Adale0BQC jlmnMFWH8wAi5HuBAT37pSY8IUoW4z0in2Bf2nXAcX76z26Gr0tS50F51SGsHpCu zA3ODQB03QPovI0bQWNPhthMsFAPzTahuyxHHgIbW2mZdGFzeXiDFrPBGXxAa+V/ ZmZ86fqZDh1syqFbmvjyb3TNl0ubl5T5n8slCTORTNCN3CD9t2Z6JOFrNROGIsN9 Rwd+TKY91nWSEGns/YxoSqJ4dg== -----END CERTIFICATE-----Generated at Mon Mar 2 04:00:23 2026 by rpki-client