$ rpki-client -vvf rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft File: QN1mK29ul7NNO3WoAH3lOI2SclM.mft (raw, json) Hash identifier: YZavnDW4nWpQaH3Ah4hlNp8/l6EZ1FxnvXXH9jRQWD4= Subject key identifier: 31:9C:39:CB:36:89:2C:77:BF:D6:A2:7E:3B:39:4C:4B:04:26:7E:C6 Authority key identifier: 40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 Certificate issuer: /CN=A911CF44/serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Certificate serial: 06EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft Manifest number: 06E3 Signing time: Tue 24 Mar 2026 21:51:13 +0000 Manifest this update: Tue 24 Mar 2026 21:51:13 +0000 Manifest next update: Tue 31 Mar 2026 21:51:13 +0000 Files and hashes: 1: QN1mK29ul7NNO3WoAH3lOI2SclM.crl (hash: PbLp5w1p9cFX2Uz9U0FS6E3DivP0Q4W6hB8b0jJPgoQ=) 2: 85613B4E8C8411EBB68DD829C4F9AE02.roa (hash: MHi4TFFkjk45IS82Lk1zkWvvF71n/wv3X8tPB3ZA4gQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:51:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1772 (0x6ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CF44, serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Validity Not Before: Mar 24 21:51:13 2026 GMT Not After : Mar 31 21:51:13 2026 GMT Subject: CN=69c30751-a47d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d8:01:e2:3a:2e:7d:b0:02:58:3d:7e:18:64: f6:48:93:d5:cd:87:fc:ee:14:7b:e8:45:4e:c5:74: 05:8a:a9:a4:c4:ed:c3:27:e7:28:6f:17:c1:ec:96: 63:24:7f:63:5c:94:19:a4:5b:60:2c:dc:62:06:78: 5f:41:d6:2d:cb:9b:ee:c8:77:e3:5f:cc:74:30:5c: b1:4b:c5:ae:6a:ab:89:95:5f:6a:ef:7d:a6:cb:13: 3f:b9:c9:47:61:22:f7:9a:e9:25:d4:c2:d2:2e:3b: cf:32:06:cc:e7:e7:5a:db:cb:6f:9e:69:33:4f:2e: 19:ce:3c:ba:eb:f3:72:c8:4b:60:e7:14:0b:99:81: 36:0c:93:98:40:6f:18:dc:5e:9e:c7:f4:2a:30:71: 4f:bd:52:ca:ad:db:93:01:24:7b:8d:66:b4:96:3e: e0:31:58:19:86:d3:e9:b5:9d:0e:2f:dd:0f:56:4b: 28:6e:ec:3b:35:54:85:2d:45:e7:96:0b:13:b6:29: 9f:92:30:d1:c9:71:c8:3f:8d:b7:b4:ff:f8:04:16: 32:04:5c:a5:8d:8d:1b:3e:79:02:47:00:c2:6b:74: f1:e2:ad:82:79:d2:b6:5b:26:79:24:ba:51:8f:71: 88:58:12:fd:21:9b:9b:04:0b:12:cc:65:81:31:0b: a8:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:9C:39:CB:36:89:2C:77:BF:D6:A2:7E:3B:39:4C:4B:04:26:7E:C6 X509v3 Authority Key Identifier: keyid:40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:1b:3f:0a:8e:34:52:b0:04:3e:5e:70:9a:db:04:cb:53:14: 91:6c:7a:85:ce:2f:1e:44:60:36:6e:4c:f2:23:8a:23:81:65: bc:91:96:0a:07:f4:9e:3c:a8:4b:13:3a:92:03:75:ac:2f:77: b2:cc:9d:c6:9c:e8:84:4b:90:e5:d7:04:97:85:94:1e:79:f0: 92:f9:7f:6b:f4:b4:b6:26:eb:26:d4:b8:68:26:7d:7d:1c:6b: 85:3f:00:37:0c:2f:e2:26:57:8e:0e:55:8c:4d:c4:74:83:74: dc:be:2e:09:e5:3c:2d:cf:a7:d9:98:35:df:ba:6d:4e:1c:9e: e9:41:1a:38:0e:5a:96:b6:b0:cf:09:b2:79:9e:ca:13:c2:ae: 34:6a:93:a1:09:2a:87:5c:39:e0:37:52:d7:63:86:10:d3:81: ba:8e:67:fc:da:be:bb:a6:2a:61:28:e8:25:bb:17:9e:33:9b: da:33:87:4b:8b:fa:1e:31:31:21:26:b7:90:9b:e5:c7:6e:7c: b1:c3:ac:10:56:1e:4a:9e:f1:ab:8c:2b:cc:da:ea:84:e4:6c: 6d:3e:c0:de:5c:a3:50:40:d2:25:a4:4a:3b:78:cf:8b:c9:2f: 53:7d:b7:10:6e:9b:06:a4:35:63:df:18:bf:08:1d:b8:3a:dd: 11:bd:bb:9c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNGNDQxMTAvBgNVBAUTKDQwREQ2NjJCNkY2RTk3QjM0RDNCNzVBODAwN0RFNTM4 OEQ5MjcyNTMwHhcNMjYwMzI0MjE1MTEzWhcNMjYwMzMxMjE1MTEzWjAYMRYwFAYD VQQDEw02OWMzMDc1MS1hNDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNgB4joufbACWD1+GGT2SJPVzYf87hR76EVOxXQFiqmkxO3DJ+cobxfB7JZj JH9jXJQZpFtgLNxiBnhfQdYty5vuyHfjX8x0MFyxS8WuaquJlV9q732myxM/uclH YSL3mukl1MLSLjvPMgbM5+da28tvnmkzTy4Zzjy66/NyyEtg5xQLmYE2DJOYQG8Y 3F6ex/QqMHFPvVLKrduTASR7jWa0lj7gMVgZhtPptZ0OL90PVksobuw7NVSFLUXn lgsTtimfkjDRyXHIP423tP/4BBYyBFyljY0bPnkCRwDCa3Tx4q2CedK2WyZ5JLpR j3GIWBL9IZubBAsSzGWBMQuodQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDGcOcs2 iSx3v9aifjs5TEsEJn7GMB8GA1UdIwQYMBaAFEDdZitvbpezTTt1qAB95TiNknJT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0Y0NC82Njc3QkVCNjhD ODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3Tk5PM1dvQUgzbE9JMlNj bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOMW1LMjl1bDdOTk8zV29BSDNsT0kyU2NsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0Y0NC82Njc3QkVCNjhDODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3 Tk5PM1dvQUgzbE9JMlNjbE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUhs/Co40UrAEPl5wmtsEy1MUkWx6hc4vHkRgNm5M8iOKI4FlvJGWCgf0njyo SxM6kgN1rC93ssydxpzohEuQ5dcEl4WUHnnwkvl/a/S0tibrJtS4aCZ9fRxrhT8A Nwwv4iZXjg5VjE3EdIN03L4uCeU8Lc+n2Zg137ptThye6UEaOA5alrawzwmyeZ7K E8KuNGqToQkqh1w54DdS12OGENOBuo5n/Nq+u6YqYSjoJbsXnjOb2jOHS4v6HjEx ISa3kJvlx258scOsEFYeSp7xq4wrzNrqhORsbT7A3lyjUEDSJaRKO3jPi8kvU323 EG6bBqQ1Y98YvwgduDrdEb27nA== -----END CERTIFICATE-----Generated at Thu Mar 26 02:38:14 2026 by rpki-client