$ rpki-client -vvf rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft File: QrsPPBhH5li75BQYSUzonOjjRIg.mft (raw, json) Hash identifier: iTsQPxFN/aTmbJ8FB5lA9+OuOVTsnKDO26BSRjCFExQ= Subject key identifier: 95:A9:37:C7:1E:0A:3D:92:9C:B0:F5:3D:C9:60:5B:E9:5B:75:EF:DF Authority key identifier: 42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 Certificate issuer: /CN=A9172506/serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Certificate serial: 0119 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft Manifest number: 0116 Signing time: Sun 01 Mar 2026 06:55:33 +0000 Manifest this update: Sun 01 Mar 2026 06:55:33 +0000 Manifest next update: Sun 08 Mar 2026 06:55:33 +0000 Files and hashes: 1: QrsPPBhH5li75BQYSUzonOjjRIg.crl (hash: oilFCTRH26WBDuqCHI1r5exp0/IMjKcBgPQLgLE3v0E=) 2: DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa (hash: sLY3A5xo4OWXXroIPD+/NDSIP/DardXda+JcIvGvHgg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:55:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172506, serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Validity Not Before: Mar 1 06:55:33 2026 GMT Not After : Mar 8 06:55:33 2026 GMT Subject: CN=69a3e2e5-e690 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1c:74:50:e5:d0:c1:84:a1:be:4c:cc:c5:b7: d1:98:b0:4b:cc:d0:9a:d1:f7:26:a6:7f:a5:0c:4f: 06:67:2e:b1:a3:03:20:96:fe:e5:42:5a:9f:bf:eb: 3b:c9:46:62:5c:d5:52:64:95:be:fb:9e:d8:01:d2: d9:37:19:52:e8:1d:f6:c2:34:df:3c:22:48:7b:87: 98:be:47:b1:12:7f:10:8e:11:10:c2:7e:d2:ef:8d: 8b:71:9c:94:6b:ac:e7:44:35:e0:6a:b3:f2:12:6a: 5b:a3:fc:9c:97:79:b5:96:cd:05:6f:08:9c:5e:17: 4f:36:2f:0b:e0:09:52:11:e3:08:c6:d9:a1:10:32: fc:86:72:d0:c0:00:66:28:bd:b2:75:b4:b6:f9:f5: 9b:53:90:8b:5b:2b:5d:54:5e:16:20:5f:55:d8:b2: 1a:0b:8b:c0:7d:0c:a9:bd:b7:ec:f6:c3:14:6d:ed: 8e:da:85:4c:bb:47:2f:95:88:1a:9c:04:6b:75:45: 1e:16:26:fd:43:89:17:6b:51:e6:fb:34:df:98:91: bb:cd:2c:37:f6:34:ed:63:c9:a0:d8:84:5b:00:4d: 4c:ca:39:8b:4a:c7:c7:ee:ee:98:5d:f1:22:91:91: 4c:a4:f7:bd:86:7b:b2:75:ac:b6:0e:96:ee:88:d0: 05:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:A9:37:C7:1E:0A:3D:92:9C:B0:F5:3D:C9:60:5B:E9:5B:75:EF:DF X509v3 Authority Key Identifier: keyid:42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:04:b2:da:42:16:fe:f8:76:2e:b5:a9:fc:c4:2e:f7:e0:bb: a6:4e:82:9e:18:3f:09:b7:d1:4e:50:e3:0d:80:37:7b:5b:1f: ba:2b:d5:39:09:c3:26:84:81:37:05:f0:ee:13:2d:62:96:7b: d4:8c:31:89:bb:6e:ac:5d:14:33:2a:31:ab:71:21:bb:bd:ed: 59:03:4c:0a:f3:e0:f1:34:5f:a5:fb:b4:c1:c9:f2:1a:b0:de: 40:f9:01:6a:19:8f:ff:4d:18:e5:28:f3:e4:88:18:82:0f:d5: 54:f6:93:94:5b:4c:56:65:e0:c1:7e:26:43:34:f0:61:da:61: 5f:ec:0c:38:41:e5:f1:81:23:77:14:29:1a:cb:4c:6b:b6:d7: a9:7c:d0:07:f1:78:16:b6:77:2c:84:8d:f8:59:7b:5e:81:6a: 48:1c:69:fc:aa:fa:53:24:7a:6d:34:13:f5:5f:66:f3:3a:a7: d0:51:58:42:ba:d5:6f:91:9e:db:d8:4f:fa:6d:b3:fb:b9:c9: 5c:d4:ed:19:09:87:80:75:e3:3c:64:d3:7e:f8:b3:8d:cb:99: 4f:98:f1:d4:1c:d9:2a:de:33:26:b0:7e:21:07:58:f5:84:4d: 3e:d0:f6:bc:e5:f2:7a:d3:46:2a:54:2b:2c:7a:4c:6c:2c:03: e7:3f:ab:a3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI1MDYxMTAvBgNVBAUTKDQyQkIwRjNDMTg0N0U2NThCQkU0MTQxODQ5NENFODlD RThFMzQ0ODgwHhcNMjYwMzAxMDY1NTMzWhcNMjYwMzA4MDY1NTMzWjAYMRYwFAYD VQQDEw02OWEzZTJlNS1lNjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRx0UOXQwYShvkzMxbfRmLBLzNCa0fcmpn+lDE8GZy6xowMglv7lQlqfv+s7 yUZiXNVSZJW++57YAdLZNxlS6B32wjTfPCJIe4eYvkexEn8QjhEQwn7S742LcZyU a6znRDXgarPyEmpbo/ycl3m1ls0FbwicXhdPNi8L4AlSEeMIxtmhEDL8hnLQwABm KL2ydbS2+fWbU5CLWytdVF4WIF9V2LIaC4vAfQypvbfs9sMUbe2O2oVMu0cvlYga nARrdUUeFib9Q4kXa1Hm+zTfmJG7zSw39jTtY8mg2IRbAE1MyjmLSsfH7u6YXfEi kZFMpPe9hnuyday2DpbuiNAFLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJWpN8ce Cj2SnLD1PclgW+lbde/fMB8GA1UdIwQYMBaAFEK7DzwYR+ZYu+QUGElM6Jzo40SI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjUwNi9CMDQ5MDhDRTZF REUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVsaTc1QlFZU1V6b25PampS SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Fyc1BQQmhINWxpNzVCUVlTVXpvbk9qalJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjUwNi9CMDQ5MDhDRTZFREUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVs aTc1QlFZU1V6b25PampSSWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmgSy2kIW/vh2LrWp/MQu9+C7pk6Cnhg/CbfRTlDjDYA3e1sfuivVOQnDJoSB NwXw7hMtYpZ71IwxibturF0UMyoxq3Ehu73tWQNMCvPg8TRfpfu0wcnyGrDeQPkB ahmP/00Y5Sjz5IgYgg/VVPaTlFtMVmXgwX4mQzTwYdphX+wMOEHl8YEjdxQpGstM a7bXqXzQB/F4FrZ3LISN+Fl7XoFqSBxp/Kr6UyR6bTQT9V9m8zqn0FFYQrrVb5Ge 29hP+m2z+7nJXNTtGQmHgHXjPGTTfvizjcuZT5jx1BzZKt4zJrB+IQdY9YRNPtD2 vOXyetNGKlQrLHpMbCwD5z+row== -----END CERTIFICATE-----Generated at Mon Mar 2 17:08:57 2026 by rpki-client