$ rpki-client -vvf rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft File: QIyZnDwewBZElFs0d6nyI061eRw.mft (raw, json) Hash identifier: DtRdQHnU7hgLv8hnZkqnj96aiiTLELAMY5aamdrd7xg= Subject key identifier: 82:17:60:0C:23:DD:BE:68:4B:26:08:6E:B2:9D:03:2A:9E:6F:62:01 Authority key identifier: 40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C Certificate issuer: /CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Certificate serial: 2549 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft Manifest number: 251D Signing time: Mon 02 Mar 2026 00:09:18 +0000 Manifest this update: Mon 02 Mar 2026 00:09:17 +0000 Manifest next update: Mon 09 Mar 2026 00:09:17 +0000 Files and hashes: 1: QIyZnDwewBZElFs0d6nyI061eRw.crl (hash: rMsnNPk4ik+OpMASLawY7D4CiDj4gJLe1SudSV4sCSI=) 2: ABA9F4B8AF8411EABF9F844DC4F9AE02.roa (hash: /w4t5dhbmQEa84JEDJ39VitjjFskPm/mEpnYuZ0T6wQ=) 3: 2486E806F0E311EAA1C58D62C4F9AE02.roa (hash: l+zP+x/ZY9cq3nbV4r5XpYolKqUr/0Lu8hDJSfvQgkI=) 4: 50A2F64264BC11E8ACC7951EC4F9AE02.roa (hash: 6oC3s9zXSmCynBY9z0T8TeaSrJ6gHinauk9Zr2y+ucg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9545 (0x2549) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650A5, serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Validity Not Before: Mar 2 00:09:17 2026 GMT Not After : Mar 9 00:09:17 2026 GMT Subject: CN=69a4d52e-bc60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a8:da:67:be:28:4f:50:49:88:63:17:0b:63: 4a:df:d0:68:8c:44:2a:ec:81:d2:a7:cd:48:3f:74: c1:7a:44:ff:8e:2e:4a:77:70:5f:53:12:fc:7e:13: f7:a7:41:b4:ba:b8:2a:0c:7d:12:19:17:99:9f:7f: 4f:b2:12:9a:4c:10:0a:2a:2a:f0:a4:14:41:4b:7d: 2b:1a:04:ac:ef:e0:32:b3:16:ef:ad:5e:a4:c0:7d: cb:03:17:bc:9d:38:49:e8:43:66:04:4d:35:94:31: 7b:b8:3e:bc:bb:89:49:a0:6d:ce:98:e7:67:f3:31: 89:2b:ea:5f:1f:d1:6c:b0:cc:ac:0f:b2:4b:5b:f3: 04:7d:2a:4e:f8:5b:fa:a9:c3:6f:b8:9e:f4:7c:a0: e3:b3:5d:4b:35:35:2b:95:12:ce:5f:ce:a3:38:6f: 9a:bc:e6:d2:ec:33:a9:46:56:41:b5:23:8d:61:f3: 96:08:06:5e:12:61:fb:79:4d:0f:99:f1:38:3a:6a: b4:d8:26:08:1c:b1:bd:bb:77:3c:6c:fa:a3:ed:28: 49:2f:57:f8:9a:a4:14:9e:4c:f8:9f:0b:4d:d4:1d: 95:37:6e:15:d0:9b:96:23:7c:c0:cc:bd:5f:fd:cd: b2:62:bf:b9:0d:e7:fe:da:e6:da:36:5a:2a:86:76: fc:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:17:60:0C:23:DD:BE:68:4B:26:08:6E:B2:9D:03:2A:9E:6F:62:01 X509v3 Authority Key Identifier: keyid:40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:09:b8:57:09:89:b0:72:6b:77:67:60:b0:c9:81:35:97:2e: 06:58:7f:fc:40:23:5d:ab:f5:6a:9d:99:88:44:6f:1b:03:aa: f5:50:ad:9e:0e:e6:f5:3c:c2:a1:d5:a7:68:7b:20:29:07:19: ce:0f:7a:ac:89:e3:18:c1:89:4c:8d:95:57:fc:be:df:02:72: 51:c3:98:d1:8e:1b:30:2d:84:76:c4:06:bb:f8:12:b3:95:08: 7a:bd:98:08:f7:e7:18:56:97:f3:a6:71:c5:ab:e2:6b:04:c7: 3d:d8:14:84:8c:45:6b:f5:15:43:cf:a1:38:82:ed:5d:c5:0e: d0:1a:06:85:80:76:91:e6:10:a7:88:92:cf:36:a5:0c:02:cb: 99:19:95:0d:82:68:de:22:1e:f2:98:64:74:b0:ae:4e:a3:43: b2:db:41:55:0d:8e:74:31:1c:da:ac:2e:13:04:5e:66:42:bc: 3e:bf:b9:94:bb:38:18:fd:8b:8e:2d:d8:54:e8:59:f4:39:4e: 7d:c5:21:02:d7:77:75:4a:a9:67:8e:f1:88:9f:94:11:20:da: 44:64:2f:b8:f3:60:d1:9a:b5:f3:f4:b5:59:6c:d2:94:69:75: ed:02:95:20:03:e5:1f:2e:b6:f6:9e:4d:f5:6f:6e:d7:c5:02: 84:5a:06:9a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwQTUxMTAvBgNVBAUTKDQwOEM5OTlDM0MxRUMwMTY0NDk0NUIzNDc3QTlGMjIz NEVCNTc5MUMwHhcNMjYwMzAyMDAwOTE3WhcNMjYwMzA5MDAwOTE3WjAYMRYwFAYD VQQDEw02OWE0ZDUyZS1iYzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1KjaZ74oT1BJiGMXC2NK39BojEQq7IHSp81IP3TBekT/ji5Kd3BfUxL8fhP3 p0G0urgqDH0SGReZn39PshKaTBAKKirwpBRBS30rGgSs7+AysxbvrV6kwH3LAxe8 nThJ6ENmBE01lDF7uD68u4lJoG3OmOdn8zGJK+pfH9FssMysD7JLW/MEfSpO+Fv6 qcNvuJ70fKDjs11LNTUrlRLOX86jOG+avObS7DOpRlZBtSONYfOWCAZeEmH7eU0P mfE4Omq02CYIHLG9u3c8bPqj7ShJL1f4mqQUnkz4nwtN1B2VN24V0JuWI3zAzL1f /c2yYr+5Def+2ubaNloqhnb81QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIIXYAwj 3b5oSyYIbrKdAyqeb2IBMB8GA1UdIwQYMBaAFECMmZw8HsAWRJRbNHep8iNOtXkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBBNS8xN0RGQjM1QTQ2 RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdCWkVsRnMwZDZueUkwNjFl UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJeVpuRHdld0JaRWxGczBkNm55STA2MWVSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTBBNS8xN0RGQjM1QTQ2RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdC WkVsRnMwZDZueUkwNjFlUncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABQm4VwmJsHJrd2dgsMmBNZcuBlh//EAjXav1ap2ZiERvGwOq9VCtng7m9TzC odWnaHsgKQcZzg96rInjGMGJTI2VV/y+3wJyUcOY0Y4bMC2EdsQGu/gSs5UIer2Y CPfnGFaX86ZxxaviawTHPdgUhIxFa/UVQ8+hOILtXcUO0BoGhYB2keYQp4iSzzal DALLmRmVDYJo3iIe8phkdLCuTqNDsttBVQ2OdDEc2qwuEwReZkK8Pr+5lLs4GP2L ji3YVOhZ9DlOfcUhAtd3dUqpZ47xiJ+UESDaRGQvuPNg0Zq18/S1WWzSlGl17QKV IAPlHy629p5N9W9u18UChFoGmg== -----END CERTIFICATE-----Generated at Mon Mar 2 08:08:02 2026 by rpki-client