$ rpki-client -vvf rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft File: QBS8tK-bGBlk17ekDRv51vieCP8.mft (raw, json) Hash identifier: VAK6S6NNX4s/46uvLMYq44xJBtEU2FTIcF2e12I9Tjc= Subject key identifier: DA:D7:5F:EE:71:90:1F:EA:91:DA:82:A7:29:8C:89:3E:C9:B7:9C:F9 Authority key identifier: 40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF Certificate issuer: /CN=A91323E4/serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Certificate serial: 0871 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft Manifest number: 0869 Signing time: Tue 24 Mar 2026 20:26:15 +0000 Manifest this update: Tue 24 Mar 2026 20:26:15 +0000 Manifest next update: Tue 31 Mar 2026 20:26:15 +0000 Files and hashes: 1: QBS8tK-bGBlk17ekDRv51vieCP8.crl (hash: e2wLiEXJJLEfK3d7Z9DFfXJFUQADnuuAl9CqtxsDJf0=) 2: 6944587246B311F090CDB927C4F9AE02.roa (hash: hGp6bwwFeBV78RfPCjsM5O3StrZUexewSoAPhlPuLdM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:26:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2161 (0x871) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91323E4, serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Validity Not Before: Mar 24 20:26:15 2026 GMT Not After : Mar 31 20:26:15 2026 GMT Subject: CN=69c2f367-fa44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:a7:95:5b:a8:f0:ec:80:09:7a:63:71:e7:23: 57:e5:56:d8:eb:94:d7:c3:d3:af:49:39:5f:26:b4: e6:6c:94:1e:9e:42:57:b9:c9:db:f1:d9:f6:89:ee: 67:ac:4d:34:0d:cc:d0:af:49:9a:ec:82:64:aa:91: dc:09:41:7a:fb:47:fd:ea:65:55:18:5e:cd:a4:47: 56:b1:2d:d1:71:6c:28:d6:4f:69:a8:3c:27:37:3d: c7:94:e0:f9:28:6c:79:f9:fc:77:20:73:57:b1:53: 39:29:2f:3b:92:6a:57:e1:dc:35:f7:17:08:f4:98: f2:e4:44:ab:e8:d0:58:69:1c:6f:cf:a7:24:af:ab: f7:55:c1:1b:a1:80:f4:2f:39:f8:6e:27:a5:8b:44: a3:c6:69:10:53:5e:30:81:11:f2:b1:25:53:07:0e: 03:30:77:9e:96:13:cd:0b:57:91:91:61:f2:b7:91: 91:39:53:a2:de:10:cf:7d:64:5d:96:d0:ea:12:3a: f0:73:ce:e7:8e:65:d9:44:50:32:b2:7c:ca:81:c4: e9:18:86:aa:29:12:72:3f:da:0d:87:68:19:77:22: e1:14:c7:3e:e7:79:1c:23:87:97:ec:a0:80:3a:c7: 66:45:e5:61:8d:92:df:4f:9a:75:9e:7c:3a:c0:e9: 2a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:D7:5F:EE:71:90:1F:EA:91:DA:82:A7:29:8C:89:3E:C9:B7:9C:F9 X509v3 Authority Key Identifier: keyid:40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:50:5e:7e:8d:20:42:27:0b:89:49:0b:81:c9:88:6f:da:ab: 76:85:dd:4a:c3:cf:11:c0:c0:23:0b:ab:ce:d1:60:b9:2d:58: 7e:9c:2f:e2:46:7e:97:80:63:28:0f:1d:f4:eb:66:c5:15:7b: 46:97:4f:1f:df:4c:e0:7a:45:ed:39:7d:5a:ee:8c:bd:d8:8f: d8:ad:1f:31:47:be:96:ca:d9:25:35:61:50:2c:22:b5:2e:f2: 7c:f7:67:6b:d3:3b:95:d7:70:9f:b0:5e:40:ce:ba:c0:45:1e: 0a:c1:22:33:5c:10:3b:22:c8:10:68:c4:87:d9:78:3c:e2:97: 1b:58:d0:a9:57:24:d4:07:7a:af:94:d0:65:8a:6a:b7:4c:36: 52:48:9f:64:2c:e0:de:1d:a8:fb:42:7e:09:6b:20:0e:51:3b: a6:cd:55:c9:ea:c3:08:b7:1c:d5:f7:4b:c9:2e:ca:ab:5f:3e: 00:d0:ad:34:dc:07:7a:4d:01:67:d8:05:f5:f9:17:25:40:9e: 89:35:05:ec:af:5c:73:6d:c1:e2:08:00:86:21:0e:54:d9:0a: b9:90:4d:da:73:7c:fb:3c:b9:72:08:d9:6c:30:7e:e6:c0:43: 16:1b:0c:bd:2c:48:90:95:cb:45:28:93:89:2a:0e:d1:4a:e7: 4d:63:bc:8e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzIzRTQxMTAvBgNVBAUTKDQwMTRCQ0I0QUY5QjE4MTk2NEQ3QjdBNDBEMUJGOUQ2 Rjg5RTA4RkYwHhcNMjYwMzI0MjAyNjE1WhcNMjYwMzMxMjAyNjE1WjAYMRYwFAYD VQQDEw02OWMyZjM2Ny1mYTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjqeVW6jw7IAJemNx5yNX5VbY65TXw9OvSTlfJrTmbJQenkJXucnb8dn2ie5n rE00DczQr0ma7IJkqpHcCUF6+0f96mVVGF7NpEdWsS3RcWwo1k9pqDwnNz3HlOD5 KGx5+fx3IHNXsVM5KS87kmpX4dw19xcI9Jjy5ESr6NBYaRxvz6ckr6v3VcEboYD0 Lzn4bieli0SjxmkQU14wgRHysSVTBw4DMHeelhPNC1eRkWHyt5GROVOi3hDPfWRd ltDqEjrwc87njmXZRFAysnzKgcTpGIaqKRJyP9oNh2gZdyLhFMc+53kcI4eX7KCA OsdmReVhjZLfT5p1nnw6wOkqkQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNrXX+5x kB/qkdqCpymMiT7Jt5z5MB8GA1UdIwQYMBaAFEAUvLSvmxgZZNe3pA0b+db4ngj/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjNFNC8xOTBCMEQwNkYy NjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdCbGsxN2VrRFJ2NTF2aWVD UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FCUzh0Sy1iR0JsazE3ZWtEUnY1MXZpZUNQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjNFNC8xOTBCMEQwNkYyNjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdC bGsxN2VrRFJ2NTF2aWVDUDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJlBefo0gQicLiUkLgcmIb9qrdoXdSsPPEcDAIwurztFguS1Yfpwv4kZ+l4Bj KA8d9OtmxRV7RpdPH99M4HpF7Tl9Wu6MvdiP2K0fMUe+lsrZJTVhUCwitS7yfPdn a9M7lddwn7BeQM66wEUeCsEiM1wQOyLIEGjEh9l4POKXG1jQqVck1Ad6r5TQZYpq t0w2UkifZCzg3h2o+0J+CWsgDlE7ps1VyerDCLcc1fdLyS7Kq18+ANCtNNwHek0B Z9gF9fkXJUCeiTUF7K9cc23B4ggAhiEOVNkKuZBN2nN8+zy5cgjZbDB+5sBDFhsM vSxIkJXLRSiTiSoO0UrnTWO8jg== -----END CERTIFICATE-----Generated at Thu Mar 26 00:57:00 2026 by rpki-client