$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE334/BC5B4BBEE57911F0836EEAA1416F56BC/rQUyxqhtSiMdAK5R-tgo9qK2qos.mft File: rQUyxqhtSiMdAK5R-tgo9qK2qos.mft (raw, json) Hash identifier: UUK/wq1iyGSD0nKknD/6KseT+eo7X+G/vNU5PlkmH70= Subject key identifier: 1C:D5:91:67:EF:01:42:D3:35:A5:F3:B2:05:FE:08:FB:DD:5F:29:67 Authority key identifier: AD:05:32:C6:A8:6D:4A:23:1D:00:AE:51:FA:D8:28:F6:A2:B6:AA:8B Certificate issuer: /CN=A91DE334/serialNumber=AD0532C6A86D4A231D00AE51FAD828F6A2B6AA8B Certificate serial: 32 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rQUyxqhtSiMdAK5R-tgo9qK2qos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE334/BC5B4BBEE57911F0836EEAA1416F56BC/rQUyxqhtSiMdAK5R-tgo9qK2qos.mft Manifest number: 2A Signing time: Sun 01 Mar 2026 10:18:45 +0000 Manifest this update: Sun 01 Mar 2026 10:18:45 +0000 Manifest next update: Sun 08 Mar 2026 10:18:45 +0000 Files and hashes: 1: rQUyxqhtSiMdAK5R-tgo9qK2qos.crl (hash: f+81Vo1HwI3WuAEP40Kw/14YpOPIsAB3cAS2lSKUWRY=) 2: 81346F96F49411F0BFEF52BD746F56BC.roa (hash: KtQdT3wKXi5XLWS0IbUBySou/W4dYxSu83urtoPZVvw=) 3: 38D21898F49411F08DD0DDBA746F56BC.roa (hash: 2TmQLP3BLhtpTJZcn16jZ9UXy19wv2rakTfjxerLpXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE334/BC5B4BBEE57911F0836EEAA1416F56BC/rQUyxqhtSiMdAK5R-tgo9qK2qos.crl rsync://rpki.apnic.net/member_repository/A91DE334/BC5B4BBEE57911F0836EEAA1416F56BC/rQUyxqhtSiMdAK5R-tgo9qK2qos.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rQUyxqhtSiMdAK5R-tgo9qK2qos.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:18:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE334, serialNumber=AD0532C6A86D4A231D00AE51FAD828F6A2B6AA8B Validity Not Before: Mar 1 10:18:45 2026 GMT Not After : Mar 8 10:18:45 2026 GMT Subject: CN=69a41285-d1d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9c:68:7c:2b:64:19:1f:aa:f1:11:57:a9:d3: a6:0b:7b:5a:af:da:d3:08:66:05:6f:e8:65:bc:45: b5:6b:d0:4f:d9:f5:43:e2:d6:de:b8:43:a1:b8:40: 96:7d:6a:e5:09:ca:ac:42:70:3a:db:b3:47:6f:67: 80:a4:d2:ad:86:fb:2d:c7:0f:60:37:b3:82:a9:17: 1e:df:86:6c:24:be:c7:b0:3e:92:ea:7d:44:f4:14: 8f:28:c4:91:88:1c:56:de:13:bb:76:19:04:3f:b0: 3d:a3:4f:e4:0f:49:f0:45:29:6f:76:9f:97:48:14: 76:8d:3e:48:13:a6:91:3f:03:f4:55:0a:eb:d7:86: eb:67:db:18:bd:2f:b8:1c:b0:33:93:34:48:85:21: 35:d8:86:cd:ba:2d:fb:52:48:c5:26:d0:5f:f7:ad: 56:e9:39:1d:25:46:98:a1:54:67:d0:af:d8:86:cc: a1:a8:cd:78:76:a7:6e:27:4f:65:a8:3a:d7:1c:e1: d0:fc:f9:e2:ad:38:b5:65:8b:34:d3:ec:a2:f2:25: 2d:6c:8e:e4:5c:3c:ee:75:36:da:6f:e8:47:2e:81: 32:e3:73:ee:e9:82:6d:8b:88:e8:b0:b9:7d:b1:2c: 9d:c1:da:9d:f6:9f:dd:7c:d9:a0:c3:81:0f:b7:4f: ce:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:D5:91:67:EF:01:42:D3:35:A5:F3:B2:05:FE:08:FB:DD:5F:29:67 X509v3 Authority Key Identifier: keyid:AD:05:32:C6:A8:6D:4A:23:1D:00:AE:51:FA:D8:28:F6:A2:B6:AA:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE334/BC5B4BBEE57911F0836EEAA1416F56BC/rQUyxqhtSiMdAK5R-tgo9qK2qos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rQUyxqhtSiMdAK5R-tgo9qK2qos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE334/BC5B4BBEE57911F0836EEAA1416F56BC/rQUyxqhtSiMdAK5R-tgo9qK2qos.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:a8:a5:29:32:55:72:42:bc:fd:ff:ae:c3:2d:f8:13:c5:ce: f6:2c:34:cd:d4:dc:18:cd:49:34:a8:41:50:44:3c:4f:d8:79: 8d:3d:2c:c8:61:22:6c:f3:ae:01:da:c6:bb:15:45:9a:c0:00: 3e:e5:a0:c7:82:a5:99:82:8d:16:dd:03:00:a3:0b:bf:a8:ac: 7f:f6:ae:6c:c3:e7:3b:fe:27:69:d3:72:a4:d8:35:e5:ee:21: b1:28:51:12:f4:31:db:4e:b5:fc:bd:3b:96:97:9a:7b:34:0b: 40:6e:cd:84:47:e2:76:f3:1c:e6:9e:80:e9:f2:76:96:5f:dd: ca:1e:14:3b:47:dd:b3:be:e9:91:f3:5e:45:8d:3c:b1:88:dc: 26:80:15:0c:5f:29:d8:62:af:91:d1:6a:af:2d:19:42:f5:8b: 89:f1:b2:69:2f:5f:c0:68:26:ad:73:fa:e8:96:ec:3a:dc:e1: eb:a2:45:89:9c:c5:42:17:fd:24:05:8c:2c:67:e0:64:da:d7: 07:af:8b:47:d0:e3:53:4e:c9:c5:76:0a:aa:e2:04:4e:90:14: 90:0f:26:b0:b9:ff:5c:81:fa:71:83:38:ba:6d:52:53:ef:fb: 13:4e:2a:13:7b:e5:79:d4:58:b6:53:9d:84:00:8c:d4:be:bb: fa:74:0e:23 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RTMzNDExMC8GA1UEBRMoQUQwNTMyQzZBODZENEEyMzFEMDBBRTUxRkFEODI4RjZB MkI2QUE4QjAeFw0yNjAzMDExMDE4NDVaFw0yNjAzMDgxMDE4NDVaMBgxFjAUBgNV BAMTDTY5YTQxMjg1LWQxZDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5nGh8K2QZH6rxEVep06YLe1qv2tMIZgVv6GW8RbVr0E/Z9UPi1t64Q6G4QJZ9 auUJyqxCcDrbs0dvZ4Ck0q2G+y3HD2A3s4KpFx7fhmwkvsewPpLqfUT0FI8oxJGI HFbeE7t2GQQ/sD2jT+QPSfBFKW92n5dIFHaNPkgTppE/A/RVCuvXhutn2xi9L7gc sDOTNEiFITXYhs26LftSSMUm0F/3rVbpOR0lRpihVGfQr9iGzKGozXh2p24nT2Wo Otcc4dD8+eKtOLVlizTT7KLyJS1sjuRcPO51Ntpv6EcugTLjc+7pgm2LiOiwuX2x LJ3B2p32n9182aDDgQ+3T87DAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUHNWRZ+8B QtM1pfOyBf4I+91fKWcwHwYDVR0jBBgwFoAUrQUyxqhtSiMdAK5R+tgo9qK2qosw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURFMzM0L0JDNUI0QkJFRTU3 OTExRjA4MzZFRUFBMTQxNkY1NkJDL3JRVXl4cWh0U2lNZEFLNVItdGdvOXFLMnFv cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvclFVeXhxaHRTaU1kQUs1Ui10Z285cUsycW9zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURF MzM0L0JDNUI0QkJFRTU3OTExRjA4MzZFRUFBMTQxNkY1NkJDL3JRVXl4cWh0U2lN ZEFLNVItdGdvOXFLMnFvcy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAcqKUpMlVyQrz9/67DLfgTxc72LDTN1NwYzUk0qEFQRDxP2HmNPSzIYSJs864B 2sa7FUWawAA+5aDHgqWZgo0W3QMAowu/qKx/9q5sw+c7/idp03Kk2DXl7iGxKFES 9DHbTrX8vTuWl5p7NAtAbs2ER+J28xzmnoDp8naWX93KHhQ7R92zvumR815FjTyx iNwmgBUMXynYYq+R0WqvLRlC9YuJ8bJpL1/AaCatc/roluw63OHrokWJnMVCF/0k BYwsZ+Bk2tcHr4tH0ONTTsnFdgqq4gROkBSQDyawuf9cgfpxgzi6bVJT7/sTTioT e+V51Fi2U52EAIzUvrv6dA4j -----END CERTIFICATE-----Generated at Mon Mar 2 21:27:32 2026 by rpki-client