$ rpki-client -vvf rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft File: sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft (raw, json) Hash identifier: KeDtKLaOwgRb/KwSUnuWY/aTaB+bMpVZ1TiAYzkOBrs= Subject key identifier: BE:47:86:D1:B6:67:0C:44:24:AE:BA:45:A4:E3:CD:A2:30:54:45:6D Authority key identifier: B2:AD:50:F3:57:1B:DA:1E:EC:07:CC:48:DA:01:D3:F3:75:45:8D:24 Certificate issuer: /CN=A917E7C7/serialNumber=B2AD50F3571BDA1EEC07CC48DA01D3F375458D24 Certificate serial: 015B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sq1Q81cb2h7sB8xI2gHT83VFjSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft Manifest number: 0154 Signing time: Mon 02 Mar 2026 13:32:19 +0000 Manifest this update: Mon 02 Mar 2026 13:32:19 +0000 Manifest next update: Mon 09 Mar 2026 13:32:19 +0000 Files and hashes: 1: sq1Q81cb2h7sB8xI2gHT83VFjSQ.crl (hash: 9owPad060LhrkF6OxkVhoVch3cl6LauYmzAdSIzr+Do=) 2: 031A090A5C2C11F0A1180E20C4F9AE02.roa (hash: xUoZT7vuFUFMxxXgURJ7tl9II1Hg1jXwleAc2UHXW1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.crl rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sq1Q81cb2h7sB8xI2gHT83VFjSQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:32:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 347 (0x15b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E7C7, serialNumber=B2AD50F3571BDA1EEC07CC48DA01D3F375458D24 Validity Not Before: Mar 2 13:32:19 2026 GMT Not After : Mar 9 13:32:19 2026 GMT Subject: CN=69a59163-8320 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:34:e0:e7:64:a5:fe:d8:61:d4:fb:0a:18:37: 9a:fd:4c:27:1e:54:b4:60:b2:3f:13:f4:2c:d9:e6: 20:39:c2:b4:61:9a:b7:fe:52:b1:54:36:5f:83:64: 3c:9e:ed:71:8f:75:59:98:a8:fb:d7:e4:35:bb:51: e4:9f:8f:30:00:5d:53:cc:e0:0c:a8:fd:61:51:7d: a7:10:d2:e7:f8:5a:a3:51:40:1f:58:7f:2c:28:3f: aa:58:40:0d:bc:e2:28:cd:d0:76:cb:6a:97:ba:20: 00:a0:87:77:03:1e:95:09:99:c8:c7:6c:18:f5:e7: a2:fb:52:a4:f8:36:25:a1:cb:04:ed:11:e4:7b:c8: 01:df:6a:f9:3e:21:b6:42:07:e2:2b:9b:94:6e:7e: 95:05:3c:9b:1b:0c:f0:0e:9d:31:1e:7b:e2:a2:b9: a6:a9:99:5d:ae:24:1d:44:a0:e0:a8:49:4b:6d:3b: 65:03:16:e3:c9:93:9d:45:17:4c:3c:74:3e:6a:dd: e4:f7:a4:01:b9:df:66:db:5f:06:ce:a0:af:e4:3c: 3a:aa:30:df:a9:dc:a1:04:9a:33:38:8f:de:c9:32: 94:94:81:e7:52:3f:65:3d:69:b5:e0:95:2a:d5:27: 7c:e7:3e:06:4d:04:e8:7e:de:ef:6b:3a:96:81:ad: 64:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:47:86:D1:B6:67:0C:44:24:AE:BA:45:A4:E3:CD:A2:30:54:45:6D X509v3 Authority Key Identifier: keyid:B2:AD:50:F3:57:1B:DA:1E:EC:07:CC:48:DA:01:D3:F3:75:45:8D:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sq1Q81cb2h7sB8xI2gHT83VFjSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E7C7/1A59F78E16B311EF89CFE30EC4F9AE02/sq1Q81cb2h7sB8xI2gHT83VFjSQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:90:97:05:95:e3:2a:49:d4:ce:38:c0:40:71:cb:a6:ac:68: b8:c3:98:ad:43:02:ae:bb:dc:39:36:55:a1:ff:5f:a6:d2:52: ab:f9:9b:ba:6d:a6:c3:d5:b4:e0:11:37:30:02:97:93:aa:5e: 16:7f:37:23:a0:d4:a7:a2:f8:6c:8c:8d:64:72:d6:bb:d3:61: 21:9e:8a:ab:5e:09:8c:b5:0f:24:0c:19:f4:07:6e:e9:19:25: de:ef:ea:05:ac:d5:94:11:74:a1:2e:b1:3f:17:2d:92:31:7e: 98:ba:21:e6:42:3b:5e:26:ff:7a:1d:36:e9:56:3b:b3:7a:84: 27:dc:e7:24:26:ed:bd:7e:26:1a:91:09:97:51:51:37:9e:fb: 85:e5:e8:11:5d:32:59:bf:b0:8c:55:e2:bf:19:a9:20:0b:ac: 8a:35:76:c2:80:63:c9:9b:48:85:44:61:98:e6:1e:2f:9b:09: d7:a4:2d:69:42:3d:cb:3e:d5:de:37:27:8f:41:75:ef:bb:91: 88:fd:5e:bc:d9:61:9c:90:c6:be:21:54:b9:85:84:0f:26:c6: 12:fb:f4:e0:10:c3:58:91:13:a9:6f:7c:de:97:da:19:c5:64: d5:c0:f3:12:cc:f1:ac:19:49:69:ae:97:fe:df:1c:6d:05:9e: 0c:fc:b8:cc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3QzcxMTAvBgNVBAUTKEIyQUQ1MEYzNTcxQkRBMUVFQzA3Q0M0OERBMDFEM0Yz NzU0NThEMjQwHhcNMjYwMzAyMTMzMjE5WhcNMjYwMzA5MTMzMjE5WjAYMRYwFAYD VQQDEw02OWE1OTE2My04MzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApTTg52Sl/thh1PsKGDea/UwnHlS0YLI/E/Qs2eYgOcK0YZq3/lKxVDZfg2Q8 nu1xj3VZmKj71+Q1u1Hkn48wAF1TzOAMqP1hUX2nENLn+FqjUUAfWH8sKD+qWEAN vOIozdB2y2qXuiAAoId3Ax6VCZnIx2wY9eei+1Kk+DYlocsE7RHke8gB32r5PiG2 QgfiK5uUbn6VBTybGwzwDp0xHnviormmqZldriQdRKDgqElLbTtlAxbjyZOdRRdM PHQ+at3k96QBud9m218GzqCv5Dw6qjDfqdyhBJozOI/eyTKUlIHnUj9lPWm14JUq 1Sd85z4GTQToft7vazqWga1k2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL5HhtG2 ZwxEJK66RaTjzaIwVEVtMB8GA1UdIwQYMBaAFLKtUPNXG9oe7AfMSNoB0/N1RY0k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTdDNy8xQTU5Rjc4RTE2 QjMxMUVGODlDRkUzMEVDNEY5QUUwMi9zcTFRODFjYjJoN3NCOHhJMmdIVDgzVkZq U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NxMVE4MWNiMmg3c0I4eEkyZ0hUODNWRmpTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTdDNy8xQTU5Rjc4RTE2QjMxMUVGODlDRkUzMEVDNEY5QUUwMi9zcTFRODFjYjJo N3NCOHhJMmdIVDgzVkZqU1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAK5CXBZXjKknUzjjAQHHLpqxouMOYrUMCrrvcOTZVof9fptJSq/mbum2mw9W0 4BE3MAKXk6peFn83I6DUp6L4bIyNZHLWu9NhIZ6Kq14JjLUPJAwZ9Adu6Rkl3u/q BazVlBF0oS6xPxctkjF+mLoh5kI7Xib/eh026VY7s3qEJ9znJCbtvX4mGpEJl1FR N577heXoEV0yWb+wjFXivxmpIAusijV2woBjyZtIhURhmOYeL5sJ16QtaUI9yz7V 3jcnj0F177uRiP1evNlhnJDGviFUuYWEDybGEvv04BDDWJETqW983pfaGcVk1cDz EszxrBlJaa6X/t8cbQWeDPy4zA== -----END CERTIFICATE-----Generated at Tue Mar 3 00:40:36 2026 by rpki-client