$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.mft File: QNg3fKpabquREz6WLv9-IbURPbk.mft (raw, json) Hash identifier: sHd3g2Bv8VCwlY/FMmQcaJnU7nBc56t7O4zEgn5q+FE= Subject key identifier: B3:95:74:BA:CD:BB:4D:72:A2:20:07:10:CE:3C:9B:A2:66:7F:1E:7C Authority key identifier: 40:D8:37:7C:AA:5A:6E:AB:91:13:3E:96:2E:FF:7E:21:B5:11:3D:B9 Certificate issuer: /CN=A9145D4C/serialNumber=40D8377CAA5A6EAB91133E962EFF7E21B5113DB9 Certificate serial: 02BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNg3fKpabquREz6WLv9-IbURPbk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.mft Manifest number: 02B2 Signing time: Mon 02 Mar 2026 00:12:13 +0000 Manifest this update: Mon 02 Mar 2026 00:12:11 +0000 Manifest next update: Mon 09 Mar 2026 00:12:11 +0000 Files and hashes: 1: QNg3fKpabquREz6WLv9-IbURPbk.crl (hash: /ll9bF7Hr1ptECoxAQyH8nLCn/R2ZFjOIzwbDq0v8yU=) 2: 5E24BEAADA7C11ED8156D867C4F9AE02.roa (hash: 8pnF8r5Xhn3OD85TXM+iL6QbA+jKGQalG5vIFE6zqm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.crl rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNg3fKpabquREz6WLv9-IbURPbk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:12:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 701 (0x2bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D4C, serialNumber=40D8377CAA5A6EAB91133E962EFF7E21B5113DB9 Validity Not Before: Mar 2 00:12:11 2026 GMT Not After : Mar 9 00:12:11 2026 GMT Subject: CN=69a4d5dc-dcf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ae:ed:5b:98:02:af:41:f8:7f:fa:25:e3:6a: a6:57:9c:c8:5f:dc:bd:18:66:f4:f3:03:ae:f5:a5: 02:d3:8a:89:7c:79:1c:18:1f:89:83:0d:93:c6:b6: 90:4b:8a:88:88:b1:b3:2b:f0:2e:32:cb:a7:23:9a: 51:ea:67:e3:a1:33:94:b5:5c:8b:8b:f4:45:f0:e2: 35:99:64:bd:5d:28:2f:b5:7c:80:a1:24:4f:92:4d: 39:e3:34:4e:67:62:b5:52:c5:b8:90:32:49:39:00: 8d:a8:f3:e5:24:18:97:31:a4:c5:b9:a3:c6:c1:0f: 53:39:da:a9:4c:05:a7:1c:ff:a0:d9:b2:a3:0d:b6: cb:2a:32:eb:be:58:b4:6e:4f:89:ad:84:5b:47:b3: 72:fa:76:c8:07:89:54:dd:63:c2:f0:74:c6:70:52: e7:8b:73:ba:99:61:15:3e:15:be:97:e1:58:4f:2d: da:6d:7b:a0:3f:d4:81:05:36:90:c8:94:f8:5a:2e: 31:17:fa:bf:81:97:5a:58:90:ea:5e:bd:b3:93:fc: a8:04:24:50:88:cb:1b:68:54:93:dc:a0:c6:17:d4: 3b:0f:19:27:db:90:fa:1f:0e:d1:dc:eb:d1:83:bc: b2:14:e7:7d:31:6a:ee:12:a6:98:5b:50:99:73:70: fb:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:95:74:BA:CD:BB:4D:72:A2:20:07:10:CE:3C:9B:A2:66:7F:1E:7C X509v3 Authority Key Identifier: keyid:40:D8:37:7C:AA:5A:6E:AB:91:13:3E:96:2E:FF:7E:21:B5:11:3D:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNg3fKpabquREz6WLv9-IbURPbk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:bd:44:02:01:05:42:71:18:08:89:dc:0a:24:6f:22:7a:d3: 16:f3:3c:12:1d:28:e0:07:af:64:4c:4c:de:e6:cd:a0:ba:80: 28:dc:e2:51:d9:af:40:4d:8e:88:e4:ea:29:86:4f:2d:ee:60: a0:7c:b7:e9:34:60:68:77:e8:83:01:c3:aa:d3:f5:0a:1b:6b: 5c:c9:ae:e8:a8:5c:e8:0c:e3:c5:1a:ff:f8:56:91:d5:af:b7: cb:d8:2a:2e:42:66:19:f7:c0:26:84:e7:58:46:db:ea:17:fa: e0:68:73:92:22:ff:b7:d5:1c:14:b1:6d:f6:24:4a:64:b6:e0: e5:14:ef:a9:b1:1a:82:1b:fb:91:9b:50:cb:f9:f1:a5:0a:49: d2:ce:2e:34:c4:d7:fa:9a:b8:ec:e1:58:82:ad:67:1f:95:cd: 93:03:40:e5:62:b7:69:c8:86:ac:75:37:dd:ee:72:26:d4:13: db:b5:7c:6b:bc:3d:c3:6a:5e:28:70:b4:8a:86:61:26:b1:16: e5:db:ab:8c:6e:47:43:f3:fa:cb:95:14:a8:97:cf:1e:09:25: 0c:6e:7a:c5:a2:c9:3f:e7:ce:16:00:70:5c:91:ac:1d:02:64: c5:6a:24:f9:b1:3f:b8:27:08:f3:e4:ec:8c:a7:66:26:1b:4e: b0:55:b4:c3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVENEMxMTAvBgNVBAUTKDQwRDgzNzdDQUE1QTZFQUI5MTEzM0U5NjJFRkY3RTIx QjUxMTNEQjkwHhcNMjYwMzAyMDAxMjExWhcNMjYwMzA5MDAxMjExWjAYMRYwFAYD VQQDEw02OWE0ZDVkYy1kY2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvq7tW5gCr0H4f/ol42qmV5zIX9y9GGb08wOu9aUC04qJfHkcGB+Jgw2TxraQ S4qIiLGzK/AuMsunI5pR6mfjoTOUtVyLi/RF8OI1mWS9XSgvtXyAoSRPkk054zRO Z2K1UsW4kDJJOQCNqPPlJBiXMaTFuaPGwQ9TOdqpTAWnHP+g2bKjDbbLKjLrvli0 bk+JrYRbR7Ny+nbIB4lU3WPC8HTGcFLni3O6mWEVPhW+l+FYTy3abXugP9SBBTaQ yJT4Wi4xF/q/gZdaWJDqXr2zk/yoBCRQiMsbaFST3KDGF9Q7Dxkn25D6Hw7R3OvR g7yyFOd9MWruEqaYW1CZc3D7OQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLOVdLrN u01yoiAHEM48m6Jmfx58MB8GA1UdIwQYMBaAFEDYN3yqWm6rkRM+li7/fiG1ET25 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQ0Qy9GNDIyRkQxMjMy NTgxMUVEQkQxNkQ2MjRDNEY5QUUwMi9RTmczZktwYWJxdVJFejZXTHY5LUliVVJQ YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOZzNmS3BhYnF1UkV6NldMdjktSWJVUlBiay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUQ0Qy9GNDIyRkQxMjMyNTgxMUVEQkQxNkQ2MjRDNEY5QUUwMi9RTmczZktwYWJx dVJFejZXTHY5LUliVVJQYmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACb1EAgEFQnEYCIncCiRvInrTFvM8Eh0o4AevZExM3ubNoLqAKNziUdmvQE2O iOTqKYZPLe5goHy36TRgaHfogwHDqtP1ChtrXMmu6Khc6AzjxRr/+FaR1a+3y9gq LkJmGffAJoTnWEbb6hf64GhzkiL/t9UcFLFt9iRKZLbg5RTvqbEaghv7kZtQy/nx pQpJ0s4uNMTX+pq47OFYgq1nH5XNkwNA5WK3aciGrHU33e5yJtQT27V8a7w9w2pe KHC0ioZhJrEW5durjG5HQ/P6y5UUqJfPHgklDG56xaLJP+fOFgBwXJGsHQJkxWok +bE/uCcI8+TsjKdmJhtOsFW0ww== -----END CERTIFICATE-----Generated at Mon Mar 2 16:27:48 2026 by rpki-client