$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft File: qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft (raw, json) Hash identifier: uQEN4/qOWWmnlVSQvtyC8vy4g1xNetfT/vGQ3g05QBo= Subject key identifier: E7:DF:5D:4E:27:71:72:A4:39:58:1C:74:FC:92:CF:E5:61:C9:28:01 Authority key identifier: AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 Certificate issuer: /CN=A91C0BE1/serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Certificate serial: 0683 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft Manifest number: 067E Signing time: Sat 28 Feb 2026 23:02:21 +0000 Manifest this update: Sat 28 Feb 2026 23:02:21 +0000 Manifest next update: Sat 07 Mar 2026 23:02:21 +0000 Files and hashes: 1: qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl (hash: OXzszEPVBjaRfxxDMVkCSP4GmsIXHAQXu5rPJ8TV/m0=) 2: 0C3EAFF6F84111EC926CBF53C4F9AE02.roa (hash: QP4syOi96y5XvL9Sdw2J+adgOyFXDCa3foh8bqHg19c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 23:02:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1667 (0x683) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0BE1, serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Validity Not Before: Feb 28 23:02:21 2026 GMT Not After : Mar 7 23:02:21 2026 GMT Subject: CN=69a373fd-db40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:52:32:da:6c:1a:c1:a2:9e:28:70:72:43:e0: 74:3d:a2:25:bc:b2:5e:7e:1f:cf:d7:ee:94:4d:07: ab:01:21:d3:3e:d1:a1:0a:3b:96:68:a1:d1:c3:c3: 09:e3:ab:cf:87:cc:de:c0:7b:31:23:fc:ea:d2:ee: 59:1d:73:e8:90:eb:3b:a5:7f:53:f5:f7:ae:3f:de: fe:5d:c4:de:33:15:bb:58:0e:66:81:67:c2:16:5e: 35:07:64:f5:1a:39:9b:b2:ad:39:bf:81:fc:26:c5: 49:bd:5b:08:c1:36:0c:f5:2d:cd:b5:dc:bf:a5:a9: 2b:5c:24:11:0b:18:68:58:74:3b:79:92:96:27:43: 0a:e5:c6:5b:4b:98:c5:47:1e:d4:df:ab:17:19:e4: b5:15:72:c0:3a:c4:80:1d:4f:be:f0:ec:2d:6e:84: ab:c7:8e:af:2a:9f:9c:14:80:38:37:46:af:c5:c8: 34:17:c6:5b:7d:9e:ed:e3:de:01:cf:2d:71:45:2d: eb:67:cb:21:18:83:fb:c0:5d:ef:21:1d:50:64:20: 14:22:fc:86:5a:d0:27:d7:aa:f6:b1:1c:00:0a:c9: 8f:58:2b:93:23:96:96:d5:19:15:7e:85:8e:b9:42: 33:5c:76:33:1f:cd:b4:9d:02:20:6d:1f:a1:43:8f: a8:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:DF:5D:4E:27:71:72:A4:39:58:1C:74:FC:92:CF:E5:61:C9:28:01 X509v3 Authority Key Identifier: keyid:AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:a6:49:e4:c7:63:04:2a:90:2f:3d:22:ff:1d:93:18:c1:5d: ab:c9:b6:45:54:25:87:fb:dd:c8:78:62:b4:b7:74:26:d7:97: 28:0e:5e:02:7c:f1:2d:22:12:5f:cf:0b:87:f9:cb:e4:44:66: c3:41:1a:85:ad:42:7e:fd:eb:eb:9b:a4:fd:04:47:a0:09:35: 62:8f:6f:54:46:85:47:d9:4b:e8:25:35:ba:d9:45:77:16:14: 99:78:70:79:9d:e7:da:59:1d:c7:40:76:af:62:30:17:8a:ac: 1e:60:8b:fa:cf:15:68:3c:02:0a:04:d3:30:c5:e0:a7:57:1a: f2:37:2d:c7:9b:95:01:42:d8:e7:18:94:cd:a4:c9:a1:cf:b4: 8b:0d:72:f3:04:42:a4:c3:74:6d:2b:1f:f5:96:e0:21:a2:98: 90:0a:fc:fc:94:8f:7d:bc:54:ec:3c:8e:82:43:88:0f:0d:57: 97:21:cf:5d:57:01:4d:43:0b:51:8c:6b:4c:c2:89:52:3f:f8: 39:37:25:64:d0:ce:a5:41:31:5f:0c:75:06:10:e6:4a:9d:7a: 7b:e4:3c:c7:02:ae:90:24:db:b7:45:1f:26:45:ba:a9:16:44: b1:50:22:0d:ea:1b:80:89:f3:b3:e9:13:eb:f0:76:be:f5:fc: 83:de:85:8a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBCRTExMTAvBgNVBAUTKEFBMjFCNjkwQzFENjNDQkY0NDFBQTNCRDExN0VEOEI3 ODY4ODIyMjkwHhcNMjYwMjI4MjMwMjIxWhcNMjYwMzA3MjMwMjIxWjAYMRYwFAYD VQQDDA02OWEzNzNmZC1kYjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVIy2mwawaKeKHByQ+B0PaIlvLJefh/P1+6UTQerASHTPtGhCjuWaKHRw8MJ 46vPh8zewHsxI/zq0u5ZHXPokOs7pX9T9feuP97+XcTeMxW7WA5mgWfCFl41B2T1 Gjmbsq05v4H8JsVJvVsIwTYM9S3Ntdy/pakrXCQRCxhoWHQ7eZKWJ0MK5cZbS5jF Rx7U36sXGeS1FXLAOsSAHU++8OwtboSrx46vKp+cFIA4N0avxcg0F8ZbfZ7t494B zy1xRS3rZ8shGIP7wF3vIR1QZCAUIvyGWtAn16r2sRwACsmPWCuTI5aW1RkVfoWO uUIzXHYzH820nQIgbR+hQ4+oaQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOffXU4n cXKkOVgcdPySz+VhySgBMB8GA1UdIwQYMBaAFKohtpDB1jy/RBqjvRF+2LeGiCIp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEJFMS9FNDZGRjQ5MEFF MkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BMOUVHcU85RVg3WXQ0YUlJ aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FpRzJrTUhXUEw5RUdxTzlFWDdZdDRhSUlpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEJFMS9FNDZGRjQ5MEFFMkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BM OUVHcU85RVg3WXQ0YUlJaWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsKZJ5MdjBCqQLz0i/x2TGMFdq8m2RVQlh/vdyHhitLd0JteXKA5eAnzxLSIS X88Lh/nL5ERmw0Eaha1Cfv3r65uk/QRHoAk1Yo9vVEaFR9lL6CU1utlFdxYUmXhw eZ3n2lkdx0B2r2IwF4qsHmCL+s8VaDwCCgTTMMXgp1ca8jctx5uVAULY5xiUzaTJ oc+0iw1y8wRCpMN0bSsf9ZbgIaKYkAr8/JSPfbxU7DyOgkOIDw1XlyHPXVcBTUML UYxrTMKJUj/4OTclZNDOpUExXwx1BhDmSp16e+Q8xwKukCTbt0UfJkW6qRZEsVAi DeobgInzs+kT6/B2vvX8g96Fig== -----END CERTIFICATE-----Generated at Sun Mar 1 22:28:12 2026 by rpki-client