$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft File: QZ8npM_s9GHbgvb5BnZPttZfI88.mft (raw, json) Hash identifier: zXhSEnLESYy4H6Ebf4jJxzWBd/ExOsrTliSZ+Wo5Iq8= Subject key identifier: 7C:50:61:C6:FB:AF:90:CA:BD:3F:49:39:16:49:A0:E1:E5:2C:1A:AF Authority key identifier: 41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF Certificate issuer: /CN=A9140BED/serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Certificate serial: 0152 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft Manifest number: 014C Signing time: Sun 01 Mar 2026 06:12:33 +0000 Manifest this update: Sun 01 Mar 2026 06:12:32 +0000 Manifest next update: Sun 08 Mar 2026 06:12:32 +0000 Files and hashes: 1: QZ8npM_s9GHbgvb5BnZPttZfI88.crl (hash: afmTOaoa0oudJ76JNFvEL82QD7QoANe8tMbm+oIi0QU=) 2: ED7C0BCC287211EFA1483A2FC4F9AE02.roa (hash: SNdFFgbNj8G/zNTVCnmByHJjfzC5p20PH2d/HShK4p8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:12:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BED, serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Validity Not Before: Mar 1 06:12:32 2026 GMT Not After : Mar 8 06:12:32 2026 GMT Subject: CN=69a3d8d0-e218 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a3:8d:a1:2c:80:3b:fc:ae:96:4b:8d:13:a9: f3:5c:b9:3c:65:aa:0a:f3:dc:e8:3c:09:c5:78:c4: 7f:e9:43:92:78:2f:39:99:dd:7e:bb:d0:7c:0b:76: cb:fe:42:34:c2:92:aa:2c:8c:d9:e9:ec:cc:25:08: 0d:aa:c0:27:49:be:6b:8b:18:f3:ac:76:9c:27:ad: e8:3d:b1:58:ea:08:4f:93:b9:0e:16:67:2c:fe:d4: 82:2c:e4:f2:1f:3e:35:bb:ba:0a:4f:93:ea:fa:af: 0d:16:37:ae:f5:8c:39:68:81:88:03:ce:00:ba:a8: 08:40:da:f9:5e:c6:05:b3:0b:5b:77:14:89:5d:1b: 72:c3:64:dc:15:27:7b:e5:07:fc:4f:f4:85:7c:ec: ad:c1:8d:c3:1a:3d:45:e0:22:c5:76:5b:e4:6e:74: 57:42:17:2f:a8:77:76:81:4b:55:8f:12:78:05:33: 59:ff:af:63:be:bd:62:63:36:a4:b0:1f:26:e2:07: c2:09:58:ab:03:ed:bb:08:a6:51:7c:26:c3:3c:5c: b2:d6:3e:36:ba:64:5c:8d:4f:7f:37:d2:11:08:96: 72:cd:01:9d:f5:55:69:7c:07:10:fd:bc:b8:5b:64: 59:c4:05:85:d6:e4:cd:9d:65:74:e5:b0:a1:13:81: 28:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:50:61:C6:FB:AF:90:CA:BD:3F:49:39:16:49:A0:E1:E5:2C:1A:AF X509v3 Authority Key Identifier: keyid:41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:bd:a7:11:97:0c:13:56:14:ea:c2:1c:ab:b2:ad:89:15:11: 51:57:b8:30:c2:25:ba:cb:ac:3c:de:72:a4:b6:e9:3c:64:1d: a0:88:9e:d7:0b:83:4c:61:07:4e:e5:a9:21:06:36:92:44:f4: 47:66:8d:1d:de:aa:06:99:c1:83:7a:9c:b9:03:66:78:1f:b6: 26:f5:d4:8a:13:7d:e4:1e:8d:58:cf:89:04:8a:c0:65:ef:d1: d8:6d:60:13:16:9c:89:d0:ee:69:b1:1b:3c:95:e2:7e:15:c8: a9:8a:1a:ba:98:ef:04:20:f2:f6:ce:c6:9e:aa:9d:49:67:33: 1f:b9:0e:f7:54:42:d1:2b:a8:f4:db:18:2d:2d:23:1e:1a:d2: 2d:96:73:3b:fc:d5:0f:67:61:cd:08:7d:ed:07:40:08:c5:ed: 59:09:bc:d1:1b:e1:88:b9:81:f4:e9:15:11:9c:b6:b1:7e:6e: c8:a4:38:59:ce:a0:b8:25:e8:ad:06:94:cf:b2:2a:0c:4c:77: 16:fa:6e:ed:07:f4:b5:a6:3d:fa:da:5f:3b:5b:02:5c:e9:05: be:25:59:e6:44:64:bf:59:55:6c:19:1f:d8:30:f6:77:06:f3: 98:4f:24:d5:13:de:24:eb:7d:ba:2c:d1:c3:b4:b6:71:d8:0c: ee:16:ce:b9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCRUQxMTAvBgNVBAUTKDQxOUYyN0E0Q0ZFQ0Y0NjFEQjgyRjZGOTA2NzY0RkI2 RDY1RjIzQ0YwHhcNMjYwMzAxMDYxMjMyWhcNMjYwMzA4MDYxMjMyWjAYMRYwFAYD VQQDEw02OWEzZDhkMC1lMjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx6ONoSyAO/yulkuNE6nzXLk8ZaoK89zoPAnFeMR/6UOSeC85md1+u9B8C3bL /kI0wpKqLIzZ6ezMJQgNqsAnSb5rixjzrHacJ63oPbFY6ghPk7kOFmcs/tSCLOTy Hz41u7oKT5Pq+q8NFjeu9Yw5aIGIA84AuqgIQNr5XsYFswtbdxSJXRtyw2TcFSd7 5Qf8T/SFfOytwY3DGj1F4CLFdlvkbnRXQhcvqHd2gUtVjxJ4BTNZ/69jvr1iYzak sB8m4gfCCVirA+27CKZRfCbDPFyy1j42umRcjU9/N9IRCJZyzQGd9VVpfAcQ/by4 W2RZxAWF1uTNnWV05bChE4Eo6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHxQYcb7 r5DKvT9JORZJoOHlLBqvMB8GA1UdIwQYMBaAFEGfJ6TP7PRh24L2+QZ2T7bWXyPP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJFRC8wOEUwRTA2NjFG MzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlHSGJndmI1Qm5aUHR0WmZJ ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FaOG5wTV9zOUdIYmd2YjVCblpQdHRaZkk4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEJFRC8wOEUwRTA2NjFGMzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlH SGJndmI1Qm5aUHR0WmZJODgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgL2nEZcME1YU6sIcq7KtiRURUVe4MMIlususPN5ypLbpPGQdoIie1wuDTGEH TuWpIQY2kkT0R2aNHd6qBpnBg3qcuQNmeB+2JvXUihN95B6NWM+JBIrAZe/R2G1g ExacidDuabEbPJXifhXIqYoaupjvBCDy9s7GnqqdSWczH7kO91RC0Suo9NsYLS0j HhrSLZZzO/zVD2dhzQh97QdACMXtWQm80RvhiLmB9OkVEZy2sX5uyKQ4Wc6guCXo rQaUz7IqDEx3Fvpu7Qf0taY9+tpfO1sCXOkFviVZ5kRkv1lVbBkf2DD2dwbzmE8k 1RPeJOt9uizRw7S2cdgM7hbOuQ== -----END CERTIFICATE-----Generated at Sun Mar 1 22:35:43 2026 by rpki-client