$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft File: QoezMyF220hqLLxCVAL6nIa23Eg.mft (raw, json) Hash identifier: RdDLqkfJIJYBtFDK546YeMHWWRQJ62VZFTDu1WL9b1Y= Subject key identifier: 57:F1:ED:52:49:28:C9:08:D1:9A:3C:C0:1B:B6:E3:29:F7:34:2F:BE Authority key identifier: 42:87:B3:33:21:76:DB:48:6A:2C:BC:42:54:02:FA:9C:86:B6:DC:48 Certificate issuer: /CN=A911ABDD/serialNumber=4287B3332176DB486A2CBC425402FA9C86B6DC48 Certificate serial: 1ED9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft Manifest number: 3341 Signing time: Tue 24 Mar 2026 15:36:00 +0000 Manifest this update: Tue 24 Mar 2026 15:36:00 +0000 Manifest next update: Tue 31 Mar 2026 15:36:00 +0000 Files and hashes: 1: QoezMyF220hqLLxCVAL6nIa23Eg.crl (hash: SsdtAja0YKxSW1516lFT65L9jtrEFiUOk+GmZZ/pIKs=) 2: 4EB814BA8F6711E6A509C92DC4F9AE02.roa (hash: XKjx+2JVREc1vEzkeaWV20vVw40lW7PDQ/F2fJTa5K4=) 3: 4BDAE70EB7A911EF9D4E880CC4F9AE02.roa (hash: QJ2Et41ySjmnzE4MdkYD7xXGqC9BJjzlZL6AqK+pncY=) 4: 4FA6792A8F6711E6A509C92DC4F9AE02.roa (hash: a2YIRJWcOj/2F2QJjwyVL+lBSin617P7TaoPIuqLmpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.crl rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:35:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7897 (0x1ed9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABDD, serialNumber=4287B3332176DB486A2CBC425402FA9C86B6DC48 Validity Not Before: Mar 24 15:36:00 2026 GMT Not After : Mar 31 15:36:00 2026 GMT Subject: CN=69c2af60-2432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:1a:f6:a4:0f:30:71:34:a6:ea:66:57:d8:41: a7:5b:f9:a7:c7:a3:40:d1:f4:fe:ff:8e:37:13:af: 92:9b:cf:eb:b2:8e:45:3d:8a:5c:9a:14:92:5c:c5: 67:d2:38:1a:53:38:4c:62:08:1d:6a:c5:86:6e:01: 8a:f5:8b:a5:ec:22:a5:25:60:8d:93:58:e4:c2:da: fc:00:8d:e4:a6:11:1b:05:44:bd:be:c6:d9:3b:c2: 8f:1a:cd:d6:3e:3b:81:d9:c1:4d:8f:99:9a:f4:04: 7f:ab:3a:d1:2f:79:fc:4a:51:2d:a1:c8:c6:b0:1f: e2:26:eb:55:28:70:bd:a4:be:98:c0:9d:35:bd:6f: 97:0a:2f:cd:f6:6e:dc:3c:c9:de:d0:4c:03:17:74: 97:c0:02:c3:19:b4:34:80:06:eb:a0:31:1e:bc:a4: 47:f8:22:40:f0:ae:56:5f:8c:48:59:87:a9:9b:d3: ce:85:01:6d:24:26:6a:3d:7d:30:ac:67:0e:4c:5c: 3e:3b:ef:e5:7e:4f:48:fb:22:21:1e:9f:84:39:57: c5:c3:cb:c3:2c:c8:2f:d2:d7:78:46:6d:cb:e3:6f: 9c:95:e5:36:fd:57:f9:08:81:f1:60:d6:2b:d7:22: 98:b4:fb:20:bc:01:8d:c1:9f:78:78:1b:78:4b:2b: da:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:F1:ED:52:49:28:C9:08:D1:9A:3C:C0:1B:B6:E3:29:F7:34:2F:BE X509v3 Authority Key Identifier: keyid:42:87:B3:33:21:76:DB:48:6A:2C:BC:42:54:02:FA:9C:86:B6:DC:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:13:56:60:66:c8:ac:0d:42:0c:2e:1a:87:73:c1:dc:4f:4f: 6c:58:73:b2:2a:d3:55:21:7d:56:08:0c:a5:3f:09:d5:82:e4: ec:6c:29:2b:d9:73:34:e7:d2:c4:c3:5e:5d:a1:e3:15:7b:ff: be:83:30:d9:d9:66:e9:6e:db:2d:ce:da:f9:ed:d5:c3:2e:ec: 0d:6a:81:01:76:e7:4c:e2:fa:fd:8f:e8:2b:c7:a8:26:1c:a8: f5:d8:b2:2a:5a:25:25:09:43:99:e2:a1:4a:f6:d6:30:b1:51: 02:ec:ca:aa:2f:f9:61:5b:64:87:d6:cb:fa:89:dd:08:39:bc: b6:84:b4:9c:69:97:aa:78:04:9e:a6:85:55:31:17:f3:58:e6: 9e:72:ed:8b:a7:82:33:d3:c5:5b:de:dc:64:08:51:77:8c:e8: bf:70:c0:d1:3b:38:01:8e:6e:2c:d9:2a:91:7f:c3:c5:53:50: 77:85:16:6d:4f:ba:c9:f1:79:5e:ff:5e:b0:a8:28:b1:bb:cb: 7c:f7:d0:93:4a:0b:98:d5:21:90:6d:66:43:3d:a4:3c:26:37: d0:e8:06:27:bb:0c:30:c8:c6:0b:bf:c3:be:bc:34:3c:41:84: d3:ac:93:6e:92:98:70:6d:75:78:e0:83:18:cd:06:21:28:bf: a3:80:c8:a8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCREQxMTAvBgNVBAUTKDQyODdCMzMzMjE3NkRCNDg2QTJDQkM0MjU0MDJGQTlD ODZCNkRDNDgwHhcNMjYwMzI0MTUzNjAwWhcNMjYwMzMxMTUzNjAwWjAYMRYwFAYD VQQDEw02OWMyYWY2MC0yNDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Rr2pA8wcTSm6mZX2EGnW/mnx6NA0fT+/443E6+Sm8/rso5FPYpcmhSSXMVn 0jgaUzhMYggdasWGbgGK9Yul7CKlJWCNk1jkwtr8AI3kphEbBUS9vsbZO8KPGs3W PjuB2cFNj5ma9AR/qzrRL3n8SlEtocjGsB/iJutVKHC9pL6YwJ01vW+XCi/N9m7c PMne0EwDF3SXwALDGbQ0gAbroDEevKRH+CJA8K5WX4xIWYepm9POhQFtJCZqPX0w rGcOTFw+O+/lfk9I+yIhHp+EOVfFw8vDLMgv0td4Rm3L42+cleU2/Vf5CIHxYNYr 1yKYtPsgvAGNwZ94eBt4SyvanwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFfx7VJJ KMkI0Zo8wBu24yn3NC++MB8GA1UdIwQYMBaAFEKHszMhdttIaiy8QlQC+pyGttxI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUJERC8zQUUwMDRCNEQ3 NzgxMUU0QjM3NzhCNzJDNEY5QUUwMi9Rb2V6TXlGMjIwaHFMTHhDVkFMNm5JYTIz RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FvZXpNeUYyMjBocUxMeENWQUw2bklhMjNFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUJERC8zQUUwMDRCNEQ3NzgxMUU0QjM3NzhCNzJDNEY5QUUwMi9Rb2V6TXlGMjIw aHFMTHhDVkFMNm5JYTIzRWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGhNWYGbIrA1CDC4ah3PB3E9PbFhzsirTVSF9VggMpT8J1YLk7GwpK9lzNOfS xMNeXaHjFXv/voMw2dlm6W7bLc7a+e3Vwy7sDWqBAXbnTOL6/Y/oK8eoJhyo9diy KlolJQlDmeKhSvbWMLFRAuzKqi/5YVtkh9bL+ondCDm8toS0nGmXqngEnqaFVTEX 81jmnnLti6eCM9PFW97cZAhRd4zov3DA0Ts4AY5uLNkqkX/DxVNQd4UWbU+6yfF5 Xv9esKgosbvLfPfQk0oLmNUhkG1mQz2kPCY30OgGJ7sMMMjGC7/Dvrw0PEGE06yT bpKYcG11eOCDGM0GISi/o4DIqA== -----END CERTIFICATE-----Generated at Thu Mar 26 15:20:15 2026 by rpki-client