$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft File: q2JivH0C7BrUi3HamLc9IqNi2vA.mft (raw, json) Hash identifier: bBOQUgZqi3rNY8GHjV31JPsGucM2GMSPhc2pgKIZNDE= Subject key identifier: 84:99:8A:7A:9D:CB:84:DF:B4:C3:2A:17:2A:73:7E:6B:60:B7:4A:66 Authority key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 Certificate issuer: /CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Certificate serial: 36AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft Manifest number: 35C0 Signing time: Sun 01 Mar 2026 22:19:12 +0000 Manifest this update: Sun 01 Mar 2026 22:19:11 +0000 Manifest next update: Sun 08 Mar 2026 22:19:11 +0000 Files and hashes: 1: q2JivH0C7BrUi3HamLc9IqNi2vA.crl (hash: vqbMz+t+m29hgh48gyW8FL6nh7iYy9Zjy8JN/lvGOyo=) 2: 4D5247EEA4C911E782854F50C4F9AE02.roa (hash: rEfB0wTEVedizbjd1aa4stNP7Lpi5g6RaGy1a4umZiM=) 3: 7F4D30ACB0CD11E58B55FC73C4F9AE02.roa (hash: N79DDK5pn6TCAon8GJdsX02x5/pCsRg1kmXulJOa3DU=) 4: 4BF67550A4C911E782854F50C4F9AE02.roa (hash: f3qU6tlwehhcmw+j9t9F4SExzXSKSjEABu7b7Oi3kuk=) 5: 78123422B0CD11E58B55FC73C4F9AE02.roa (hash: w/xkPDWtvjzhfQW3Zf8fDbO/CqBdGqSzN3GtrP1PUo8=) 6: 9C193BAC08C511EDBC862E48C4F9AE02.roa (hash: SJVE7ZBsoRSsliTmJf9TKg9PsayamV5jFN7WqlX3xvc=) 7: 7D920C1AB0CD11E58B55FC73C4F9AE02.roa (hash: knSiwSZTuJB5L8civuaUh8rAh8cmbNdU18vutdd1ebk=) 8: 4C9925F2A4C911E782854F50C4F9AE02.roa (hash: NUP0co51SrQ7MBIOUbm3rcePgeq0Qam5xEhiKSlEwl4=) 9: 7B938024B0CD11E58B55FC73C4F9AE02.roa (hash: /QQiHNO+P4zS7clMch+1xG2dmlltL/7vNQJGue0Q24E=) 10: F1F087928C6B11F0B1A50E82C4F9AE02.roa (hash: kuzwCvIHtKelM7oshMzAb2U462l4e0HmxA10PXja6PA=) 11: 8207CCA0906C11EC86E8B711C4F9AE02.roa (hash: HGBUZghw2mrH37viSTYGdL7UxbtP3kpsrCzGnWhLnVU=) 12: D4B25B928C6B11F09545B981C4F9AE02.roa (hash: Vuo+8i5V4Znap+Qs1dOcHdE1nAFejMLQYP5EDIvQcjU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:19:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13998 (0x36ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2454, serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Validity Not Before: Mar 1 22:19:11 2026 GMT Not After : Mar 8 22:19:11 2026 GMT Subject: CN=69a4bb60-8573 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9a:30:86:85:1e:aa:3e:4b:57:0d:6f:ac:59: ba:70:1e:00:c8:01:4a:8d:ba:c3:6b:01:6e:b2:d9: 18:ef:86:f4:c3:07:4a:9c:05:54:c5:bc:f8:15:1e: d9:f1:4e:33:18:56:68:ce:11:8c:51:40:ae:3f:50: 83:ab:63:f9:29:35:0f:bf:74:7c:6e:31:c1:48:fa: 0e:29:b9:77:4e:f0:28:bb:2b:ee:19:e5:47:30:9d: 92:5b:4c:7a:55:ed:a1:43:aa:7e:52:24:af:2c:d8: 99:a0:f8:ed:22:1c:8b:5f:c0:09:d7:16:65:6e:c0: 4b:77:4f:67:41:72:a4:0f:92:9f:ea:84:90:ce:1b: 84:84:f1:e6:c6:c6:13:af:0b:88:90:24:c4:32:24: f8:94:63:0f:d6:f0:82:06:ee:eb:0b:5b:95:6a:b8: f4:43:ea:ac:5e:64:06:31:f3:cf:30:9f:49:cb:61: 2a:2a:d2:92:48:01:aa:09:e5:19:72:e0:96:03:64: 87:33:69:45:d7:06:45:d9:2c:49:75:25:76:38:79: 5b:7b:d8:95:bd:d2:9e:50:46:83:d3:a3:4f:e3:cb: 7a:35:42:2c:9b:56:d3:ed:5b:a7:26:f7:09:d5:f7: f3:61:a1:7a:b6:96:88:18:c6:27:36:f8:cc:37:d9: 16:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:99:8A:7A:9D:CB:84:DF:B4:C3:2A:17:2A:73:7E:6B:60:B7:4A:66 X509v3 Authority Key Identifier: keyid:AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:56:60:f7:e6:df:68:52:20:69:f5:6f:43:b1:04:01:f8:19: f2:4d:b1:d7:f1:1f:c6:d8:fb:20:ab:b0:b3:49:8b:ac:82:5a: dc:10:44:63:3c:4d:7d:2b:0b:15:d2:d1:0b:9d:41:df:f0:ee: 33:4b:f5:82:ce:d3:26:5d:9d:fc:44:08:1c:9c:af:4c:ed:7d: cb:04:57:66:0c:c9:35:80:70:68:0e:bd:a7:e7:b0:55:ee:af: 9f:a8:3b:46:26:19:be:01:76:5d:b4:5b:65:37:e6:9f:13:91: e5:87:6f:2f:34:6a:42:b5:df:75:88:11:2d:6f:04:22:3e:5f: 2f:7a:50:ed:50:e4:b9:d6:93:6f:f6:4f:15:80:b0:14:80:51: 98:98:c8:2d:07:36:11:c8:a1:8d:98:b3:9a:0f:3c:0c:bc:04: 0c:03:f3:f6:1a:a4:1a:c0:18:89:09:d0:e8:43:35:88:bb:91: ad:a4:3a:b9:ae:1a:4c:4f:b9:c0:07:e4:d3:65:f6:30:2f:02: 09:1f:9a:d3:ef:0b:b9:c8:ed:71:ce:53:31:dc:16:b2:5d:b9: ca:72:8e:fd:ce:26:bf:8a:68:3a:a8:5c:0b:ba:fb:2c:30:24: 51:76:b2:97:eb:0a:db:41:7c:00:9f:83:65:5b:d1:2b:da:f6: 01:d5:13:fa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI0NTQxMTAvBgNVBAUTKEFCNjI2MkJDN0QwMkVDMUFENDhCNzFEQTk4QjczRDIy QTM2MkRBRjAwHhcNMjYwMzAxMjIxOTExWhcNMjYwMzA4MjIxOTExWjAYMRYwFAYD VQQDEw02OWE0YmI2MC04NTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZowhoUeqj5LVw1vrFm6cB4AyAFKjbrDawFustkY74b0wwdKnAVUxbz4FR7Z 8U4zGFZozhGMUUCuP1CDq2P5KTUPv3R8bjHBSPoOKbl3TvAouyvuGeVHMJ2SW0x6 Ve2hQ6p+UiSvLNiZoPjtIhyLX8AJ1xZlbsBLd09nQXKkD5Kf6oSQzhuEhPHmxsYT rwuIkCTEMiT4lGMP1vCCBu7rC1uVarj0Q+qsXmQGMfPPMJ9Jy2EqKtKSSAGqCeUZ cuCWA2SHM2lF1wZF2SxJdSV2OHlbe9iVvdKeUEaD06NP48t6NUIsm1bT7VunJvcJ 1ffzYaF6tpaIGMYnNvjMN9kW5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFISZinqd y4TftMMqFypzfmtgt0pmMB8GA1UdIwQYMBaAFKtiYrx9Auwa1Itx2pi3PSKjYtrw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjQ1NC9ENEMzMEI0MjFE ODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdCclVpM0hhbUxjOUlxTmky dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EySml2SDBDN0JyVWkzSGFtTGM5SXFOaTJ2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjQ1NC9ENEMzMEI0MjFEODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdC clVpM0hhbUxjOUlxTmkydkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXlZg9+bfaFIgafVvQ7EEAfgZ8k2x1/Efxtj7IKuws0mLrIJa3BBEYzxNfSsL FdLRC51B3/DuM0v1gs7TJl2d/EQIHJyvTO19ywRXZgzJNYBwaA69p+ewVe6vn6g7 RiYZvgF2XbRbZTfmnxOR5YdvLzRqQrXfdYgRLW8EIj5fL3pQ7VDkudaTb/ZPFYCw FIBRmJjILQc2EcihjZizmg88DLwEDAPz9hqkGsAYiQnQ6EM1iLuRraQ6ua4aTE+5 wAfk02X2MC8CCR+a0+8Lucjtcc5TMdwWsl25ynKO/c4mv4poOqhcC7r7LDAkUXay l+sK20F8AJ+DZVvRK9r2AdUT+g== -----END CERTIFICATE-----Generated at Mon Mar 2 14:42:26 2026 by rpki-client