$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft File: -Q4hD858Z6Lysy3hTusFoEsNEOE.mft (raw, json) Hash identifier: iORyEGW0UFFBiFq6QOQvUGflYuMbiNk1TrtJPN1vO/4= Subject key identifier: 29:50:36:20:F1:67:9A:64:F4:AA:A4:2F:09:75:34:70:07:60:6F:DC Authority key identifier: F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 Certificate issuer: /CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Certificate serial: 01DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft Manifest number: 01D6 Signing time: Mon 02 Mar 2026 13:21:22 +0000 Manifest this update: Mon 02 Mar 2026 13:21:22 +0000 Manifest next update: Mon 09 Mar 2026 13:21:22 +0000 Files and hashes: 1: -Q4hD858Z6Lysy3hTusFoEsNEOE.crl (hash: oSuLd3JIt9cfGCdSkEG9YvXMk2ghKK6a5535fDev5OE=) 2: A99E5658488011EE8113A766C4F9AE02.roa (hash: SRaZz8UkrG0xf8PPTUnVH04dIH0Z2Emcacglv7QsArQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:21:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7369, serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Validity Not Before: Mar 2 13:21:22 2026 GMT Not After : Mar 9 13:21:22 2026 GMT Subject: CN=69a58ed2-aef6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:4a:71:57:25:75:78:28:eb:18:7e:40:a4:c2: 68:a0:e2:50:84:cb:bb:fc:62:7e:0b:c0:76:51:1c: 5d:74:e4:64:c0:53:63:7d:cd:50:8f:19:d5:0b:8a: b1:95:41:49:3f:ee:b9:be:bd:d4:6c:3b:2c:82:05: 8f:ca:f0:27:be:13:fd:f0:85:fa:bc:8d:47:04:93: 9a:98:c0:5b:df:ba:72:94:a4:df:e4:0c:a8:ea:38: 1d:d8:d1:95:8c:db:2e:e9:27:10:21:99:79:d0:23: 1c:6e:45:a8:56:3c:0b:be:52:92:80:b0:59:15:70: 02:a8:ae:f4:45:50:c4:9c:75:bc:9e:33:4a:95:21: 30:f4:07:42:38:3c:d5:87:d9:08:02:0f:68:ba:1e: 93:3e:6c:42:cb:32:6f:9d:77:39:4d:ac:78:37:c8: 51:ef:35:0c:f2:40:c1:d5:65:3b:ea:99:1e:b4:d3: 96:1a:ff:1b:b2:04:27:af:c3:98:73:30:93:f8:68: 1f:bd:ef:dd:08:d7:18:09:00:e2:9c:ce:4d:ae:e5: 54:4d:0f:99:b0:7e:9b:36:10:14:74:ae:39:07:8a: fa:75:c9:3f:a6:66:54:c0:6d:47:2f:20:d8:63:9c: 5d:1c:a3:2c:08:dc:6a:24:06:00:9a:11:f2:96:c6: eb:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:50:36:20:F1:67:9A:64:F4:AA:A4:2F:09:75:34:70:07:60:6F:DC X509v3 Authority Key Identifier: keyid:F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:70:83:48:51:97:2e:85:26:4d:cf:49:36:5b:6d:c9:b1:91: 88:14:8c:4a:e3:43:9c:da:6f:30:ab:b3:50:17:15:cf:01:d6: 46:f4:3a:17:db:4a:65:bb:1e:3e:7e:a1:1c:51:c5:2a:c0:69: a3:77:2a:4e:b5:76:ae:6c:66:20:6f:d9:d9:f3:d9:bd:42:9a: d8:89:a3:03:07:67:9b:69:45:77:9f:01:7f:aa:90:6a:19:a6: ed:db:40:8a:f5:c7:66:a2:94:ce:99:e6:48:c1:30:23:31:4f: 2f:22:0e:91:ea:eb:92:b3:20:16:34:79:76:77:47:e7:94:af: 23:f7:a2:f3:8a:64:47:c9:2f:cf:c7:5b:a9:56:8d:8e:19:77: 75:18:2c:1b:86:5a:02:fc:f4:0d:0b:03:32:88:89:bc:e4:bd: 3a:d9:bd:b1:42:df:20:5d:32:79:ed:0e:39:98:df:b9:90:b5: 97:19:ae:f0:73:44:31:4a:91:c5:a9:b7:d9:1e:47:da:64:ba: 4d:bc:5d:b7:3a:2e:c2:d9:4e:2f:1e:5e:e8:33:8a:89:f6:8e: f7:f9:51:d1:a8:fe:a6:c0:a0:a0:82:a5:0d:06:17:4d:fa:48: 54:ec:ab:c0:02:d3:a8:d7:72:6f:3d:ef:81:4c:1f:81:d9:0a: 81:ab:a1:40 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTczNjkxMTAvBgNVBAUTKEY5MEUyMTBGQ0U3QzY3QTJGMkIzMkRFMTRFRUIwNUEw NEIwRDEwRTEwHhcNMjYwMzAyMTMyMTIyWhcNMjYwMzA5MTMyMTIyWjAYMRYwFAYD VQQDEw02OWE1OGVkMi1hZWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkEpxVyV1eCjrGH5ApMJooOJQhMu7/GJ+C8B2URxddORkwFNjfc1QjxnVC4qx lUFJP+65vr3UbDssggWPyvAnvhP98IX6vI1HBJOamMBb37pylKTf5Ayo6jgd2NGV jNsu6ScQIZl50CMcbkWoVjwLvlKSgLBZFXACqK70RVDEnHW8njNKlSEw9AdCODzV h9kIAg9ouh6TPmxCyzJvnXc5Tax4N8hR7zUM8kDB1WU76pketNOWGv8bsgQnr8OY czCT+Ggfve/dCNcYCQDinM5NruVUTQ+ZsH6bNhAUdK45B4r6dck/pmZUwG1HLyDY Y5xdHKMsCNxqJAYAmhHylsbrqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFClQNiDx Z5pk9KqkLwl1NHAHYG/cMB8GA1UdIwQYMBaAFPkOIQ/OfGei8rMt4U7rBaBLDRDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzM2OS9CMUQ2MTk0MjQ4 N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2THlzeTNoVHVzRm9Fc05F T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RNGhEODU4WjZMeXN5M2hUdXNGb0VzTkVPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzM2OS9CMUQ2MTk0MjQ4N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2 THlzeTNoVHVzRm9Fc05FT0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmHCDSFGXLoUmTc9JNlttybGRiBSMSuNDnNpvMKuzUBcVzwHWRvQ6F9tKZbse Pn6hHFHFKsBpo3cqTrV2rmxmIG/Z2fPZvUKa2ImjAwdnm2lFd58Bf6qQahmm7dtA ivXHZqKUzpnmSMEwIzFPLyIOkerrkrMgFjR5dndH55SvI/ei84pkR8kvz8dbqVaN jhl3dRgsG4ZaAvz0DQsDMoiJvOS9Otm9sULfIF0yee0OOZjfuZC1lxmu8HNEMUqR xam32R5H2mS6TbxdtzouwtlOLx5e6DOKifaO9/lR0aj+psCgoIKlDQYXTfpIVOyr wALTqNdybz3vgUwfgdkKgauhQA== -----END CERTIFICATE-----Generated at Mon Mar 2 18:24:41 2026 by rpki-client