$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft File: qHH05sNy2xC2TfOZX6FR77OfmYs.mft (raw, json) Hash identifier: Mm8c/KwEljtO3Paa2ipp7iruIEwAJwV+CJDVw8YcxY4= Subject key identifier: 97:6C:01:80:87:06:6C:E0:02:97:D3:B8:5C:78:2B:84:4B:B8:44:D5 Authority key identifier: A8:71:F4:E6:C3:72:DB:10:B6:4D:F3:99:5F:A1:51:EF:B3:9F:99:8B Certificate issuer: /CN=A9195F49/serialNumber=A871F4E6C372DB10B64DF3995FA151EFB39F998B Certificate serial: 04BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft Manifest number: 04B6 Signing time: Sun 01 Mar 2026 01:21:01 +0000 Manifest this update: Sun 01 Mar 2026 01:21:01 +0000 Manifest next update: Sun 08 Mar 2026 01:21:01 +0000 Files and hashes: 1: qHH05sNy2xC2TfOZX6FR77OfmYs.crl (hash: Tsw2GFB5GNe0OasDs6s5/qwTs8/kuHL8cAKNt0Z3RQ8=) 2: 5FC75DCC66A511EC9C199341C4F9AE02.roa (hash: Zm+lEfHr4vPGoSUZ0V7SJYJldqGmArQzT4Hfe0uWtGU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.crl rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:21:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1214 (0x4be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F49, serialNumber=A871F4E6C372DB10B64DF3995FA151EFB39F998B Validity Not Before: Mar 1 01:21:01 2026 GMT Not After : Mar 8 01:21:01 2026 GMT Subject: CN=69a3947d-420a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6d:44:5c:a9:f4:a0:87:d6:c5:ff:f6:f8:3f: f5:a4:34:ec:12:f4:d7:d4:7b:f8:e8:20:68:39:50: ee:8f:07:a9:63:cb:84:81:2f:f4:79:8d:0a:74:5b: 20:05:8a:aa:f9:c1:b4:3c:0a:22:2c:ee:50:f0:aa: 03:62:78:6b:e7:e8:23:cf:a4:cc:d2:8c:14:05:8d: 9e:27:b3:a3:85:3b:00:3f:e6:ad:ec:68:78:01:cb: 35:53:77:fb:8b:25:20:81:76:e6:4b:80:e5:22:33: 5e:c2:89:cd:ed:af:a5:cf:69:77:e2:5a:48:f7:24: 48:f5:19:07:22:50:95:f5:61:a3:ff:7e:67:17:ed: ae:68:1d:3f:f0:de:a6:71:fa:5d:66:4b:cd:87:ea: 92:9c:9c:a0:6c:7b:0f:0b:7e:c3:8e:38:6b:48:dd: d5:eb:cf:04:bc:43:2a:6e:43:57:7e:bf:96:8f:a1: e6:ed:69:82:9f:ab:4a:84:fd:b4:0f:24:a5:08:b3: fd:ce:b7:26:6e:ad:c5:5e:36:16:8f:4a:ea:aa:07: 69:09:ce:c7:cf:32:12:1d:23:5c:d7:ae:12:e2:40: ed:96:a9:a2:06:08:cf:51:fd:54:87:de:5c:9b:25: 76:90:00:5d:89:82:27:c6:1c:2c:af:31:03:38:8e: 51:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:6C:01:80:87:06:6C:E0:02:97:D3:B8:5C:78:2B:84:4B:B8:44:D5 X509v3 Authority Key Identifier: keyid:A8:71:F4:E6:C3:72:DB:10:B6:4D:F3:99:5F:A1:51:EF:B3:9F:99:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:31:fa:91:dd:45:6e:9c:ff:5a:46:3f:f7:db:96:e6:dd:a8: 5a:c4:22:8e:b0:94:7d:85:e3:b7:b4:2a:34:a1:2b:ba:70:cb: 71:1e:26:9a:fb:57:9e:ad:df:df:4d:8b:1a:c3:9a:4f:e9:87: 22:89:1f:76:54:d9:53:0b:72:f8:13:5c:3d:23:6b:74:d7:0b: bf:68:63:e7:fb:29:98:2c:d9:2e:4a:ad:0f:f9:05:ec:93:5a: 65:9f:30:e4:13:48:b6:d3:02:c3:24:f5:cd:7c:54:56:e9:bc: e6:91:3d:a1:e2:0a:ae:ae:04:0c:f2:f1:49:45:f0:0a:60:7c: 5f:c4:12:33:2c:dd:01:25:01:d5:fa:6f:6b:56:b1:b6:36:eb: e9:b4:f7:1e:5e:84:f9:60:3e:b7:41:70:85:4b:62:9a:74:f7: 14:ce:64:c0:37:b1:13:9c:6f:d1:18:63:e0:36:84:2a:6a:43: eb:3d:9b:5b:ea:34:48:ed:b3:34:0a:8f:0b:f6:74:e6:4f:44: e4:02:29:2b:7f:e3:19:60:7e:ac:c1:18:43:32:90:87:bb:36: f3:c5:2b:9a:bb:56:73:3c:d3:8c:66:44:4f:20:c4:15:42:47: 4c:0b:d8:42:21:8a:37:9c:f7:79:58:fc:2e:1e:c9:63:6d:89: 0a:9b:7a:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGNDkxMTAvBgNVBAUTKEE4NzFGNEU2QzM3MkRCMTBCNjRERjM5OTVGQTE1MUVG QjM5Rjk5OEIwHhcNMjYwMzAxMDEyMTAxWhcNMjYwMzA4MDEyMTAxWjAYMRYwFAYD VQQDDA02OWEzOTQ3ZC00MjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArW1EXKn0oIfWxf/2+D/1pDTsEvTX1Hv46CBoOVDujwepY8uEgS/0eY0KdFsg BYqq+cG0PAoiLO5Q8KoDYnhr5+gjz6TM0owUBY2eJ7OjhTsAP+at7Gh4Acs1U3f7 iyUggXbmS4DlIjNewonN7a+lz2l34lpI9yRI9RkHIlCV9WGj/35nF+2uaB0/8N6m cfpdZkvNh+qSnJygbHsPC37DjjhrSN3V688EvEMqbkNXfr+Wj6Hm7WmCn6tKhP20 DySlCLP9zrcmbq3FXjYWj0rqqgdpCc7HzzISHSNc164S4kDtlqmiBgjPUf1Uh95c myV2kABdiYInxhwsrzEDOI5RrQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJdsAYCH BmzgApfTuFx4K4RLuETVMB8GA1UdIwQYMBaAFKhx9ObDctsQtk3zmV+hUe+zn5mL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUY0OS85RDNDNzQ5MjY2 QTIxMUVDQkI3QTBBM0NDNEY5QUUwMi9xSEgwNXNOeTJ4QzJUZk9aWDZGUjc3T2Zt WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FISDA1c055MnhDMlRmT1pYNkZSNzdPZm1Zcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUY0OS85RDNDNzQ5MjY2QTIxMUVDQkI3QTBBM0NDNEY5QUUwMi9xSEgwNXNOeTJ4 QzJUZk9aWDZGUjc3T2ZtWXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKDH6kd1Fbpz/WkY/99uW5t2oWsQijrCUfYXjt7QqNKErunDLcR4mmvtXnq3f 302LGsOaT+mHIokfdlTZUwty+BNcPSNrdNcLv2hj5/spmCzZLkqtD/kF7JNaZZ8w 5BNIttMCwyT1zXxUVum85pE9oeIKrq4EDPLxSUXwCmB8X8QSMyzdASUB1fpva1ax tjbr6bT3Hl6E+WA+t0FwhUtimnT3FM5kwDexE5xv0Rhj4DaEKmpD6z2bW+o0SO2z NAqPC/Z05k9E5AIpK3/jGWB+rMEYQzKQh7s288UrmrtWczzTjGZETyDEFUJHTAvY QiGKN5z3eVj8Lh7JY22JCpt6kg== -----END CERTIFICATE-----Generated at Sun Mar 1 20:31:26 2026 by rpki-client