$ rpki-client -vvf rpki.apnic.net/member_repository/A91988EB/018E1F6CE48B11F083D11E6B446F56BC/Q-rzDCMMbu5uNU3AN3Km7lPVBoU.mft File: Q-rzDCMMbu5uNU3AN3Km7lPVBoU.mft (raw, json) Hash identifier: ekgvgdHeLNXG0Ku78N2kQJITKRGRNa33ls7XCmFRuJw= Subject key identifier: A9:F4:CA:B1:26:40:6F:62:1C:3C:8C:B4:CF:31:6F:E1:D0:FB:1E:17 Authority key identifier: 43:EA:F3:0C:23:0C:6E:EE:6E:35:4D:C0:37:72:A6:EE:53:D5:06:85 Certificate issuer: /CN=A91988EB/serialNumber=43EAF30C230C6EEE6E354DC03772A6EE53D50685 Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-rzDCMMbu5uNU3AN3Km7lPVBoU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91988EB/018E1F6CE48B11F083D11E6B446F56BC/Q-rzDCMMbu5uNU3AN3Km7lPVBoU.mft Manifest number: 24 Signing time: Sun 01 Mar 2026 10:17:57 +0000 Manifest this update: Sun 01 Mar 2026 10:17:57 +0000 Manifest next update: Sun 08 Mar 2026 10:17:57 +0000 Files and hashes: 1: Q-rzDCMMbu5uNU3AN3Km7lPVBoU.crl (hash: OhC3RtIrSSEXW2DrXIxtn+ykkZgyn/xEZCzt9GJU1uw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91988EB/018E1F6CE48B11F083D11E6B446F56BC/Q-rzDCMMbu5uNU3AN3Km7lPVBoU.crl rsync://rpki.apnic.net/member_repository/A91988EB/018E1F6CE48B11F083D11E6B446F56BC/Q-rzDCMMbu5uNU3AN3Km7lPVBoU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-rzDCMMbu5uNU3AN3Km7lPVBoU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:17:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91988EB, serialNumber=43EAF30C230C6EEE6E354DC03772A6EE53D50685 Validity Not Before: Mar 1 10:17:57 2026 GMT Not After : Mar 8 10:17:57 2026 GMT Subject: CN=69a41255-0b95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:10:d4:7f:01:ec:0d:5c:08:64:25:78:59:9a: 9e:c8:0d:e4:01:f5:9a:d5:f2:2e:a1:a0:9b:aa:aa: 65:c6:66:0e:c8:b2:3c:64:74:f8:95:8a:2f:09:ea: 62:43:87:5a:8e:7e:b6:1b:3a:b2:16:ca:e0:69:8d: be:09:5e:59:53:69:03:9d:84:b7:9b:03:1e:c1:dd: be:99:3f:1b:09:08:3c:0f:a6:88:35:60:f8:92:39: 43:73:6c:0a:3a:c9:d2:30:df:6b:8c:de:04:18:75: f8:8a:33:e2:68:91:d7:39:30:b3:5e:62:e3:9e:d3: 95:c3:b8:ef:ae:c1:68:9a:d3:2a:43:c3:8e:d8:14: 69:7d:f8:c6:4d:2c:10:3d:4f:7d:ae:f2:c6:82:6b: 31:ff:02:48:6f:59:17:d4:b3:12:41:d9:38:48:93: cb:ff:a3:17:97:3c:b0:d8:7a:a3:c4:d4:fa:cf:27: 9a:24:f3:ce:b0:03:68:37:de:a4:00:0c:07:5b:62: 39:08:d3:85:76:71:4a:06:69:4b:88:48:41:f1:46: 68:0b:27:77:ae:62:30:c5:81:b6:51:d3:b9:cf:c6: f6:d1:41:42:9a:c5:35:2a:59:04:2a:a8:f5:2d:2a: b7:2f:02:d3:f8:86:55:66:a0:28:c6:ed:6b:3d:f8: 11:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:F4:CA:B1:26:40:6F:62:1C:3C:8C:B4:CF:31:6F:E1:D0:FB:1E:17 X509v3 Authority Key Identifier: keyid:43:EA:F3:0C:23:0C:6E:EE:6E:35:4D:C0:37:72:A6:EE:53:D5:06:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91988EB/018E1F6CE48B11F083D11E6B446F56BC/Q-rzDCMMbu5uNU3AN3Km7lPVBoU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-rzDCMMbu5uNU3AN3Km7lPVBoU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91988EB/018E1F6CE48B11F083D11E6B446F56BC/Q-rzDCMMbu5uNU3AN3Km7lPVBoU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:7e:98:c0:54:ab:af:2b:ed:3a:79:2b:d7:21:ce:ab:0a:1a: 0b:d6:59:ff:0b:05:53:03:2c:ee:ff:49:95:aa:24:e8:4d:e9: 14:9d:0b:c1:c2:77:0b:b8:71:89:81:d8:10:6f:3d:f1:f7:c0: 1a:14:10:13:3c:14:94:02:61:96:63:a7:38:3f:7b:d7:29:8a: a2:00:09:c4:ac:3d:65:e0:6a:b5:9e:08:4a:a0:70:c3:b2:32: 9d:3f:f4:33:d3:90:dd:bb:98:fe:9a:f2:50:95:5d:80:84:d0: 28:79:b4:af:6a:f9:ad:d0:77:ce:54:f2:6b:0f:c4:57:6b:cc: 39:ed:1c:7e:59:53:41:38:c3:8e:ca:20:79:f8:bc:cc:e3:f2: ae:5c:45:1c:56:d2:ab:6b:f0:a4:8d:c3:61:a9:72:b3:58:ad: a5:a4:d9:de:45:7e:86:3f:6f:ae:81:bb:c8:e0:f5:f5:1f:ac: a3:b4:5c:6d:b2:81:33:52:6d:19:06:f3:83:ab:3b:26:c1:98: 9b:10:64:0e:73:4d:90:89:d5:5d:f0:0f:db:5d:b6:eb:99:f5: ee:79:fb:cf:f6:01:74:63:4e:8f:4f:d9:84:5b:dd:5d:d0:22: c2:56:e8:56:da:ae:d9:bf:4f:02:d6:2b:32:d5:b1:9b:b9:0f: ac:e2:aa:37 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODhFQjExMC8GA1UEBRMoNDNFQUYzMEMyMzBDNkVFRTZFMzU0REMwMzc3MkE2RUU1 M0Q1MDY4NTAeFw0yNjAzMDExMDE3NTdaFw0yNjAzMDgxMDE3NTdaMBgxFjAUBgNV BAMTDTY5YTQxMjU1LTBiOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3ENR/AewNXAhkJXhZmp7IDeQB9ZrV8i6hoJuqqmXGZg7IsjxkdPiVii8J6mJD h1qOfrYbOrIWyuBpjb4JXllTaQOdhLebAx7B3b6ZPxsJCDwPpog1YPiSOUNzbAo6 ydIw32uM3gQYdfiKM+Jokdc5MLNeYuOe05XDuO+uwWia0ypDw47YFGl9+MZNLBA9 T32u8saCazH/AkhvWRfUsxJB2ThIk8v/oxeXPLDYeqPE1PrPJ5ok886wA2g33qQA DAdbYjkI04V2cUoGaUuISEHxRmgLJ3euYjDFgbZR07nPxvbRQUKaxTUqWQQqqPUt KrcvAtP4hlVmoCjG7Ws9+BFhAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUqfTKsSZA b2IcPIy0zzFv4dD7HhcwHwYDVR0jBBgwFoAUQ+rzDCMMbu5uNU3AN3Km7lPVBoUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4OEVCLzAxOEUxRjZDRTQ4 QjExRjA4M0QxMUU2QjQ0NkY1NkJDL1EtcnpEQ01NYnU1dU5VM0FOM0ttN2xQVkJv VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUS1yekRDTU1idTV1TlUzQU4zS203bFBWQm9VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4 OEVCLzAxOEUxRjZDRTQ4QjExRjA4M0QxMUU2QjQ0NkY1NkJDL1EtcnpEQ01NYnU1 dU5VM0FOM0ttN2xQVkJvVS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQABfpjAVKuvK+06eSvXIc6rChoL1ln/CwVTAyzu/0mVqiToTekUnQvBwncLuHGJ gdgQbz3x98AaFBATPBSUAmGWY6c4P3vXKYqiAAnErD1l4Gq1nghKoHDDsjKdP/Qz 05Ddu5j+mvJQlV2AhNAoebSvavmt0HfOVPJrD8RXa8w57Rx+WVNBOMOOyiB5+LzM 4/KuXEUcVtKra/CkjcNhqXKzWK2lpNneRX6GP2+ugbvI4PX1H6yjtFxtsoEzUm0Z BvODqzsmwZibEGQOc02QidVd8A/bXbbrmfXuefvP9gF0Y06PT9mEW91d0CLCVuhW 2q7Zv08C1isy1bGbuQ+s4qo3 -----END CERTIFICATE-----Generated at Mon Mar 2 10:09:43 2026 by rpki-client