$ rpki-client -vvf rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.mft File: q2nHQCVImv1hdH_5M1sUfiC7JdQ.mft (raw, json) Hash identifier: BKJqFK/mYIK+ERMB2Xbcjg53xp2sMfNnMD2/WepgEoM= Subject key identifier: 3F:E0:DD:11:88:C5:68:D1:13:7D:6D:5E:1D:CF:34:26:D0:86:3D:D8 Authority key identifier: AB:69:C7:40:25:48:9A:FD:61:74:7F:F9:33:5B:14:7E:20:BB:25:D4 Certificate issuer: /CN=A9172989/serialNumber=AB69C74025489AFD61747FF9335B147E20BB25D4 Certificate serial: 30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2nHQCVImv1hdH_5M1sUfiC7JdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.mft Manifest number: 2C Signing time: Sun 01 Mar 2026 10:10:23 +0000 Manifest this update: Sun 01 Mar 2026 10:10:23 +0000 Manifest next update: Sun 08 Mar 2026 10:10:23 +0000 Files and hashes: 1: q2nHQCVImv1hdH_5M1sUfiC7JdQ.crl (hash: 651R1xINNl7gquy1BX9ACQJf37lR8D5tKDdEc7I4BGU=) 2: 3CBCF5BED6D911F0B064CD5C85D3641D.roa (hash: IXLvInf2Y0MEbEfDAQVICvkTqoIWfV2KIzIJmKaveIA=) 3: 0FB60AEED6D711F085B1D0E884D3641D.roa (hash: zu2J1LZYT0w/3iHjLznZWECGOhdsg6myGC2fCgr+ku8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.crl rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2nHQCVImv1hdH_5M1sUfiC7JdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:10:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172989, serialNumber=AB69C74025489AFD61747FF9335B147E20BB25D4 Validity Not Before: Mar 1 10:10:23 2026 GMT Not After : Mar 8 10:10:23 2026 GMT Subject: CN=69a4108f-d0dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:84:31:10:dc:6a:71:05:15:af:d6:f4:d2:05: f7:a4:97:3b:1c:c9:32:76:36:a5:36:90:f2:c6:78: 7f:dc:ff:39:f1:4c:7d:22:09:da:a2:81:3a:c2:bd: 47:d2:86:01:cb:bb:90:3a:33:83:8c:f2:58:dc:3d: 9e:d4:5e:33:07:35:7a:fb:57:1a:61:34:41:0a:a1: 77:68:33:1e:d9:88:19:c0:5f:21:be:03:9d:b6:bb: d0:b9:7f:72:59:a6:9e:16:5a:8b:59:08:6e:7f:65: af:41:af:ad:9a:a0:47:4e:b3:c9:f5:30:9d:cb:24: 75:d3:08:32:a8:5b:6d:f7:18:51:23:7e:65:df:ad: e5:ab:c9:6e:c2:81:49:fd:f4:2f:00:c4:1e:1a:bb: b2:a7:cd:dc:f9:13:3a:36:e7:32:56:17:fd:81:24: b0:03:08:bd:5d:2c:1c:1e:9e:00:28:1f:6d:96:b6: d1:fb:0e:d9:df:14:2b:78:25:99:49:c7:3f:35:71: e6:a7:63:ee:dd:86:1a:31:76:f5:ac:8a:01:8a:7e: 4a:dd:42:95:c6:0e:8b:2a:53:49:8e:ff:c4:7f:91: 90:47:92:76:2b:76:4a:1c:26:54:ec:9f:f4:b5:58: e0:65:6f:44:39:30:b3:1c:19:e8:5e:6f:cd:ef:81: ef:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:E0:DD:11:88:C5:68:D1:13:7D:6D:5E:1D:CF:34:26:D0:86:3D:D8 X509v3 Authority Key Identifier: keyid:AB:69:C7:40:25:48:9A:FD:61:74:7F:F9:33:5B:14:7E:20:BB:25:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2nHQCVImv1hdH_5M1sUfiC7JdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172989/EFFDD714D6D511F0B06384B581D3641D/q2nHQCVImv1hdH_5M1sUfiC7JdQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:48:a3:d5:c5:b2:07:51:01:e7:65:3f:2a:a1:cf:04:f2:22: a4:54:90:cc:0d:b2:dd:3a:e4:46:e4:2f:ed:89:19:b4:6a:eb: 7c:3f:61:2c:7d:87:8b:f8:35:a7:66:2a:8e:24:eb:94:95:84: 39:f9:8d:1b:34:97:93:ad:30:aa:95:6e:ac:06:f7:42:28:6d: 26:dd:26:68:a7:73:8a:ac:c9:b6:98:7d:4c:83:de:b4:0d:f9: 19:0a:d0:19:f0:c1:ee:d0:b0:94:23:21:9d:34:ca:51:bf:18: 8c:49:21:28:c9:2d:32:5c:5c:66:18:d0:8e:b0:61:6e:57:0d: 17:82:47:f6:63:03:e9:13:e4:72:5b:a7:c3:33:95:46:23:cc: 33:c5:da:49:55:d0:4d:60:67:01:93:dd:a8:70:c1:3a:3c:dc: 01:c3:5b:e0:16:57:dc:79:d6:dc:3a:5f:d6:2e:3c:e7:a1:98: 2b:4d:24:e4:f6:b0:bc:a7:26:59:8e:0b:c7:e4:fe:f1:21:86: d2:7f:12:25:63:3b:d0:c8:b2:b7:94:c7:25:e2:e8:43:9e:17: fe:70:a2:4f:e7:00:60:e7:99:e5:6d:ef:12:af:85:69:71:08: 9c:1a:fa:1a:65:93:03:0b:01:a2:3c:d5:38:e3:77:11:68:75: de:58:d2:2a -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 Mjk4OTExMC8GA1UEBRMoQUI2OUM3NDAyNTQ4OUFGRDYxNzQ3RkY5MzM1QjE0N0Uy MEJCMjVENDAeFw0yNjAzMDExMDEwMjNaFw0yNjAzMDgxMDEwMjNaMBgxFjAUBgNV BAMTDTY5YTQxMDhmLWQwZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCXhDEQ3GpxBRWv1vTSBfeklzscyTJ2NqU2kPLGeH/c/znxTH0iCdqigTrCvUfS hgHLu5A6M4OM8ljcPZ7UXjMHNXr7VxphNEEKoXdoMx7ZiBnAXyG+A522u9C5f3JZ pp4WWotZCG5/Za9Br62aoEdOs8n1MJ3LJHXTCDKoW233GFEjfmXfreWryW7CgUn9 9C8AxB4au7Knzdz5Ezo25zJWF/2BJLADCL1dLBwengAoH22WttH7DtnfFCt4JZlJ xz81ceanY+7dhhoxdvWsigGKfkrdQpXGDosqU0mO/8R/kZBHknYrdkocJlTsn/S1 WOBlb0Q5MLMcGeheb83vge+pAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUP+DdEYjF aNETfW1eHc80JtCGPdgwHwYDVR0jBBgwFoAUq2nHQCVImv1hdH/5M1sUfiC7JdQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyOTg5L0VGRkRENzE0RDZE NTExRjBCMDYzODRCNTgxRDM2NDFEL3EybkhRQ1ZJbXYxaGRIXzVNMXNVZmlDN0pk US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcTJuSFFDVkltdjFoZEhfNU0xc1VmaUM3SmRRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcy OTg5L0VGRkRENzE0RDZENTExRjBCMDYzODRCNTgxRDM2NDFEL3EybkhRQ1ZJbXYx aGRIXzVNMXNVZmlDN0pkUS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCCSKPVxbIHUQHnZT8qoc8E8iKkVJDMDbLdOuRG5C/tiRm0aut8P2EsfYeL+DWn ZiqOJOuUlYQ5+Y0bNJeTrTCqlW6sBvdCKG0m3SZop3OKrMm2mH1Mg960DfkZCtAZ 8MHu0LCUIyGdNMpRvxiMSSEoyS0yXFxmGNCOsGFuVw0Xgkf2YwPpE+RyW6fDM5VG I8wzxdpJVdBNYGcBk92ocME6PNwBw1vgFlfcedbcOl/WLjznoZgrTSTk9rC8pyZZ jgvH5P7xIYbSfxIlYzvQyLK3lMcl4uhDnhf+cKJP5wBg55nlbe8Sr4VpcQicGvoa ZZMDCwGiPNU443cRaHXeWNIq -----END CERTIFICATE-----Generated at Mon Mar 2 06:18:12 2026 by rpki-client