$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft File: q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft (raw, json) Hash identifier: YVBf+zZikUEBcMpkhclIL0s8gslx/BFwQcGr9KWYhec= Subject key identifier: 90:17:31:2B:7A:9B:9A:BF:FA:A6:F3:5D:6D:EF:3F:D5:B1:A5:49:8D Authority key identifier: AB:67:E8:2F:C8:6A:AC:A8:2A:CF:F8:DC:36:45:CD:71:61:01:3F:76 Certificate issuer: /CN=A91D1E4C/serialNumber=AB67E82FC86AACA82ACFF8DC3645CD7161013F76 Certificate serial: 038E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft Manifest number: 0C18 Signing time: Sun 01 Mar 2026 23:47:07 +0000 Manifest this update: Sun 01 Mar 2026 23:47:05 +0000 Manifest next update: Sun 08 Mar 2026 23:47:05 +0000 Files and hashes: 1: q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl (hash: AFfvrf0+9PEoEezS/s6oWkE/OPLB8q53KpICXyCJ5fY=) 2: 3DD8C628940111F09204AF71C4F9AE02.roa (hash: rKjGeR3bW3KsKLNlokaXVqhFpQOnZispIcGW123rOaY=) 3: 2AD1C746940111F0B07D7068C4F9AE02.roa (hash: AIsLYj1Q0Ri7p3sC6uZCzxYzj0O4+4SA75lfHau1SqU=) 4: FC358296CFA011EDA4AC5B18C4F9AE02.roa (hash: XL/ZcgALP761TCI8hEan3K78GIrb6EiGTeA4Vn2wUJI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:47:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 910 (0x38e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1E4C, serialNumber=AB67E82FC86AACA82ACFF8DC3645CD7161013F76 Validity Not Before: Mar 1 23:47:05 2026 GMT Not After : Mar 8 23:47:05 2026 GMT Subject: CN=69a4cffb-9435 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:0a:25:43:3a:90:c2:c4:8b:b7:98:91:d8:f4: a8:65:57:ce:6f:d4:b3:ad:97:09:c3:69:78:32:47: 9b:b3:28:29:0e:16:69:32:74:85:10:ad:ad:5f:3b: 1f:90:ba:93:a9:f2:fb:6e:92:05:c1:47:9d:f4:5d: 95:f1:a8:c1:fe:ca:bc:81:f2:56:a0:89:50:77:eb: 02:81:ed:51:65:4b:0d:fc:d9:ce:cd:b3:7a:7e:8c: b1:a3:32:e1:ea:96:10:2f:87:39:77:47:a2:17:98: 42:22:53:47:fb:63:a9:12:48:b2:7f:ff:4b:c0:ba: 0a:fa:c7:06:82:ca:f6:a0:ab:82:3d:2a:db:90:eb: 97:e5:a8:b4:75:48:65:b2:0e:26:18:85:89:b5:11: bf:f3:2e:79:08:ba:9f:9e:97:cc:65:6a:8d:ea:7c: 56:c4:16:07:cc:b7:7e:55:35:45:2e:b8:84:da:9c: 9d:3c:e6:9a:33:0d:4d:6d:70:b8:95:0c:a7:33:29: f9:02:e3:89:bd:bd:23:f1:b2:7a:73:79:8b:4f:d2: 05:e4:7e:8d:0a:19:0f:87:99:45:72:1f:51:60:69: 13:06:55:39:35:79:29:37:f9:6d:e6:e6:8e:b9:79: dd:bf:7d:85:fb:92:86:da:20:df:d3:a7:4c:59:c6: d0:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:17:31:2B:7A:9B:9A:BF:FA:A6:F3:5D:6D:EF:3F:D5:B1:A5:49:8D X509v3 Authority Key Identifier: keyid:AB:67:E8:2F:C8:6A:AC:A8:2A:CF:F8:DC:36:45:CD:71:61:01:3F:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:ef:b2:91:52:6c:db:a1:35:59:35:71:35:58:d2:c3:9f:2b: d6:5c:a5:a2:7a:18:a7:91:4c:0e:ad:f2:37:16:9f:df:1c:99: 0f:f8:c6:ec:2a:07:f2:00:b7:f9:97:88:8b:c1:cd:b1:77:a9: 5f:29:0d:ba:40:ab:25:ec:76:b6:28:86:9b:82:9a:59:50:dd: 61:a0:6f:65:e1:34:3c:ba:df:93:3e:be:0f:53:64:a0:82:1c: 65:54:1a:ad:9c:30:a7:b2:88:df:fc:76:cb:ce:98:8f:11:da: 06:50:bd:6c:76:64:34:b3:c8:df:3f:c0:81:8c:62:84:db:a5: be:d4:5a:ba:ea:40:6f:92:7a:58:41:6d:2d:d6:d4:ff:e1:65: 23:1f:53:df:73:c0:9f:e5:f3:29:4f:7e:d2:aa:a2:c8:71:1f: 3f:1c:0f:2d:c9:f8:58:4e:22:e5:90:2f:e1:80:22:dd:80:08: 9f:7a:1e:24:77:52:c6:b4:df:55:50:48:05:07:67:f4:90:85: 29:e1:5e:0b:21:93:8a:7f:32:4c:8a:d9:d6:72:8d:e8:3a:5c: 8c:b1:31:92:08:bf:8d:2a:a8:1c:05:29:b3:cc:cb:1e:b4:40: 31:d2:4e:4b:7e:cc:eb:ec:d1:a6:9e:87:a3:a1:8a:4a:fc:53: 89:c6:1e:be -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFNEMxMTAvBgNVBAUTKEFCNjdFODJGQzg2QUFDQTgyQUNGRjhEQzM2NDVDRDcx NjEwMTNGNzYwHhcNMjYwMzAxMjM0NzA1WhcNMjYwMzA4MjM0NzA1WjAYMRYwFAYD VQQDEw02OWE0Y2ZmYi05NDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzgolQzqQwsSLt5iR2PSoZVfOb9SzrZcJw2l4MkebsygpDhZpMnSFEK2tXzsf kLqTqfL7bpIFwUed9F2V8ajB/sq8gfJWoIlQd+sCge1RZUsN/NnOzbN6foyxozLh 6pYQL4c5d0eiF5hCIlNH+2OpEkiyf/9LwLoK+scGgsr2oKuCPSrbkOuX5ai0dUhl sg4mGIWJtRG/8y55CLqfnpfMZWqN6nxWxBYHzLd+VTVFLriE2pydPOaaMw1NbXC4 lQynMyn5AuOJvb0j8bJ6c3mLT9IF5H6NChkPh5lFch9RYGkTBlU5NXkpN/lt5uaO uXndv32F+5KG2iDf06dMWcbQFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJAXMSt6 m5q/+qbzXW3vP9WxpUmNMB8GA1UdIwQYMBaAFKtn6C/IaqyoKs/43DZFzXFhAT92 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUU0Qy83REFEQTU2Q0Q5 NEQxMUVBQTYwNEFDNTNDNEY5QUUwMi9xMmZvTDhocXJLZ3F6X2pjTmtYTmNXRUJQ M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EyZm9MOGhxcktncXpfamNOa1hOY1dFQlAzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUU0Qy83REFEQTU2Q0Q5NEQxMUVBQTYwNEFDNTNDNEY5QUUwMi9xMmZvTDhocXJL Z3F6X2pjTmtYTmNXRUJQM1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABO+ykVJs26E1WTVxNVjSw58r1lylonoYp5FMDq3yNxaf3xyZD/jG7CoH8gC3 +ZeIi8HNsXepXykNukCrJex2tiiGm4KaWVDdYaBvZeE0PLrfkz6+D1NkoIIcZVQa rZwwp7KI3/x2y86YjxHaBlC9bHZkNLPI3z/AgYxihNulvtRauupAb5J6WEFtLdbU /+FlIx9T33PAn+XzKU9+0qqiyHEfPxwPLcn4WE4i5ZAv4YAi3YAIn3oeJHdSxrTf VVBIBQdn9JCFKeFeCyGTin8yTIrZ1nKN6DpcjLExkgi/jSqoHAUps8zLHrRAMdJO S37M6+zRpp6Ho6GKSvxTicYevg== -----END CERTIFICATE-----Generated at Mon Mar 2 10:22:29 2026 by rpki-client