$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft File: -qIKGvsgkct_URR4g_NkpFMJQTE.mft (raw, json) Hash identifier: 2bSX3enmxFDKr/HN5eR74kVoIAnIy/2npYcbq2tZ78E= Subject key identifier: 16:4B:01:9C:77:64:AD:BF:BA:9D:1E:6B:23:BD:79:69:81:6D:88:E0 Authority key identifier: FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 Certificate issuer: /CN=A91AF0E8/serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Certificate serial: 3529 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft Manifest number: 351D Signing time: Mon 02 Mar 2026 01:00:51 +0000 Manifest this update: Mon 02 Mar 2026 01:00:49 +0000 Manifest next update: Mon 09 Mar 2026 01:00:49 +0000 Files and hashes: 1: -qIKGvsgkct_URR4g_NkpFMJQTE.crl (hash: sZD5exZrTocg8xsjRG2n36XW3E0UArs9Lrpy2g2900w=) 2: 0A956A80B48711EC83327546C4F9AE02.roa (hash: GPyqF4lcwtD6AdIeBU1ABlfe+75GnU6EPreFafng/Eo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13609 (0x3529) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF0E8, serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Validity Not Before: Mar 2 01:00:49 2026 GMT Not After : Mar 9 01:00:49 2026 GMT Subject: CN=69a4e142-8864 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:18:5f:e2:5c:e0:d1:02:d0:b7:bf:67:f5:e0: b6:3e:17:60:64:ec:78:67:6a:33:d7:de:1e:72:b5: ba:91:25:37:45:f6:40:8b:b9:20:b4:e3:76:a3:95: 10:82:fd:88:d0:9c:8d:6d:28:a7:b2:a4:37:13:60: 97:52:7d:48:00:7f:76:5c:90:40:ae:38:5c:a9:21: 98:71:0e:10:5b:33:01:39:6a:5e:ce:97:69:f3:a9: 7b:af:1b:c9:bc:95:3f:1d:d3:ba:ca:c8:90:8c:17: 2f:37:1e:33:89:f3:42:96:68:82:0e:1b:1d:17:e0: 00:29:12:3b:21:ad:81:f3:75:b6:b1:0b:6f:74:3b: 60:3f:2e:f3:33:b2:dd:94:1a:b9:08:a7:1c:e1:dc: dc:9a:ba:99:bb:f8:23:f4:c8:09:1f:0c:78:7a:90: 0f:c8:3c:d8:20:a7:01:94:6a:e1:e6:30:9e:91:ca: e8:01:42:84:1d:8f:88:33:f2:3d:e3:8c:ab:3c:b0: f1:45:61:86:cd:8b:89:d3:00:08:60:0c:78:e8:d1: b7:51:c3:8d:ad:1b:81:41:5b:43:d4:87:b4:ef:8f: 30:2a:93:53:7f:20:57:df:71:8b:3b:2e:8e:e6:af: 2f:58:79:a1:98:00:49:8f:ec:7c:68:7d:48:c3:59: c9:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:4B:01:9C:77:64:AD:BF:BA:9D:1E:6B:23:BD:79:69:81:6D:88:E0 X509v3 Authority Key Identifier: keyid:FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:46:7a:b3:94:2d:5b:1b:40:21:b2:50:d3:3f:1b:e4:cc:dc: e1:81:c0:3e:db:c7:72:f6:dd:cc:bf:28:3e:30:67:5c:ce:aa: ef:cc:b0:10:38:a5:0b:f5:55:e5:20:f9:d0:b2:5a:49:d3:87: 24:42:e2:74:fa:7c:92:ed:13:11:3e:f2:e2:5e:19:c8:89:0a: 89:1e:c5:a1:7c:dd:b9:90:dc:b4:a3:80:fa:2f:3c:34:a7:21: b2:79:e7:de:63:fd:5a:ae:ae:7b:21:a6:28:75:b7:cd:23:be: 82:a7:34:b8:47:4e:3b:76:c8:61:72:ef:39:14:c4:75:65:61: f8:5a:71:e1:37:51:23:5d:e4:33:01:b8:8f:b3:05:d1:da:da: d9:1b:de:d0:b8:f8:7f:22:92:f1:b1:28:a4:97:7e:65:b2:c9: 5a:68:78:9b:91:08:45:ef:41:f2:d7:95:73:e5:b1:de:1a:8e: 2b:45:85:7a:ff:2e:6a:cd:bc:14:20:02:1e:6f:ae:eb:c8:71: 73:d9:7c:5d:14:fd:7c:a8:ea:e7:f2:99:16:9f:07:79:ac:5f: c4:87:0a:de:73:7b:4c:31:a4:fd:37:46:be:1a:84:51:0e:9f: 63:7a:94:c2:8a:1d:37:b8:7c:27:e5:96:c7:c2:be:6d:b4:e7: ea:2d:1f:4c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwRTgxMTAvBgNVBAUTKEZBQTIwQTFBRkIyMDkxQ0I3RjUxMTQ3ODgzRjM2NEE0 NTMwOTQxMzEwHhcNMjYwMzAyMDEwMDQ5WhcNMjYwMzA5MDEwMDQ5WjAYMRYwFAYD VQQDEw02OWE0ZTE0Mi04ODY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBhf4lzg0QLQt79n9eC2PhdgZOx4Z2oz194ecrW6kSU3RfZAi7kgtON2o5UQ gv2I0JyNbSinsqQ3E2CXUn1IAH92XJBArjhcqSGYcQ4QWzMBOWpezpdp86l7rxvJ vJU/HdO6ysiQjBcvNx4zifNClmiCDhsdF+AAKRI7Ia2B83W2sQtvdDtgPy7zM7Ld lBq5CKcc4dzcmrqZu/gj9MgJHwx4epAPyDzYIKcBlGrh5jCekcroAUKEHY+IM/I9 44yrPLDxRWGGzYuJ0wAIYAx46NG3UcONrRuBQVtD1Ie0748wKpNTfyBX33GLOy6O 5q8vWHmhmABJj+x8aH1Iw1nJwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBZLAZx3 ZK2/up0eayO9eWmBbYjgMB8GA1UdIwQYMBaAFPqiChr7IJHLf1EUeIPzZKRTCUEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjBFOC80NTc5NkFEMjFE QTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tjdF9VUlI0Z19Oa3BGTUpR VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1xSUtHdnNna2N0X1VSUjRnX05rcEZNSlFURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjBFOC80NTc5NkFEMjFEQTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tj dF9VUlI0Z19Oa3BGTUpRVEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGEZ6s5QtWxtAIbJQ0z8b5Mzc4YHAPtvHcvbdzL8oPjBnXM6q78ywEDilC/VV 5SD50LJaSdOHJELidPp8ku0TET7y4l4ZyIkKiR7FoXzduZDctKOA+i88NKchsnnn 3mP9Wq6ueyGmKHW3zSO+gqc0uEdOO3bIYXLvORTEdWVh+Fpx4TdRI13kMwG4j7MF 0dra2Rve0Lj4fyKS8bEopJd+ZbLJWmh4m5EIRe9B8teVc+Wx3hqOK0WFev8uas28 FCACHm+u68hxc9l8XRT9fKjq5/KZFp8HeaxfxIcK3nN7TDGk/TdGvhqEUQ6fY3qU woodN7h8J+WWx8K+bbTn6i0fTA== -----END CERTIFICATE-----Generated at Mon Mar 2 11:58:42 2026 by rpki-client