$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft File: QeHsF957pw-MEkF3aWN3AjclGd4.mft (raw, json) Hash identifier: 3oEjYKSZs1Ul/9siY+n82nrw0aYR6gPV4CLnnWYhT04= Subject key identifier: EA:54:91:59:5C:7E:5D:FD:0E:4D:EF:8A:DB:47:4A:80:7B:2F:3C:68 Authority key identifier: 41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE Certificate issuer: /CN=A913AE23/serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft Manifest number: 0151 Signing time: Wed 25 Mar 2026 04:22:18 +0000 Manifest this update: Wed 25 Mar 2026 04:22:17 +0000 Manifest next update: Wed 01 Apr 2026 04:22:17 +0000 Files and hashes: 1: QeHsF957pw-MEkF3aWN3AjclGd4.crl (hash: G0s1wsykz+h0O6qw5v24TdpKa8ssTblda3F0gI0a1k8=) 2: 8CF832322C6C11EFB50AD22EC4F9AE02.roa (hash: xbXyHpLgHt9b+54jlb0N3LzfXI2w4v845p/L4pO7oxk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:22:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE23, serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Validity Not Before: Mar 25 04:22:17 2026 GMT Not After : Apr 1 04:22:17 2026 GMT Subject: CN=69c362f9-06b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a1:7a:91:8c:98:a3:ea:cc:9e:83:6e:03:a9: f3:0a:f8:02:ff:4a:82:23:df:a0:23:fe:28:49:5f: 07:a5:13:f8:38:94:79:f3:0e:8d:77:3d:4a:03:2c: 53:2b:70:5b:c1:e7:77:03:aa:1d:37:a6:8c:ee:a6: 9a:fa:99:1d:69:52:79:7e:79:82:f7:85:45:cd:0e: e3:85:3b:e8:c2:84:7d:dc:47:ce:05:d0:6e:94:ac: f5:a1:00:17:2b:42:d7:98:56:bd:ae:ce:3e:d3:bb: b2:f4:e9:8f:f0:de:67:ce:37:eb:a7:b8:e1:0a:19: cf:06:b4:ae:68:1c:59:e4:9b:ca:49:5f:9d:df:e4: 4d:0e:35:35:30:cf:26:fc:32:79:b4:a6:93:6c:3e: 0a:4a:11:7c:fe:16:a4:4b:c4:4f:d3:ec:3d:4d:67: cc:cd:56:56:12:d2:e5:73:29:ab:04:88:a9:2b:24: 09:14:d5:e7:00:86:84:37:63:9b:f9:44:ea:69:8e: ec:63:3b:a2:d5:72:47:0d:89:78:5c:e2:22:36:ab: 3b:41:ab:a8:8f:46:71:f0:56:ca:f3:9c:45:30:ca: ad:a5:5a:87:2a:5d:63:2b:af:44:09:cc:25:78:36: c9:02:80:5c:53:a0:c6:a1:00:16:42:32:dc:58:91: 5e:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:54:91:59:5C:7E:5D:FD:0E:4D:EF:8A:DB:47:4A:80:7B:2F:3C:68 X509v3 Authority Key Identifier: keyid:41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:d6:13:0f:ce:9c:dd:61:06:46:f1:5d:1d:c3:c0:e0:59:a7: f1:3d:e1:44:9a:3c:35:07:b1:ec:84:6f:83:25:bc:c7:b1:69: 06:1f:83:b1:dc:49:cb:41:54:99:ad:9d:c6:7a:ec:f4:8b:5d: cd:35:a0:89:e3:60:ea:3d:b0:87:0a:69:1e:60:81:e8:6c:d8: b1:53:16:26:e8:39:23:ce:82:df:7d:dc:51:f1:02:13:40:fd: 9d:08:bf:ce:d7:6f:14:23:d4:5c:0b:91:b6:13:6b:90:25:25: e6:d0:c8:e4:32:4e:63:ea:19:c2:b9:52:6d:57:1f:2c:2e:3d: 50:ee:a3:d1:89:21:2b:49:3f:31:d9:a9:6b:14:e5:4c:6e:b1: b9:d0:f6:16:e7:09:91:0b:41:a3:ce:97:ce:66:4b:9e:b6:f1: 0b:f0:df:74:da:d8:8a:12:b6:89:58:b1:7f:55:70:4f:0e:5a: 50:77:8b:76:aa:20:60:cf:39:0f:b2:db:c7:26:cb:64:ad:61: 4e:fd:15:a2:2c:e4:0b:ee:2a:fb:7e:2e:c3:9f:01:f2:48:06: 58:c5:fa:30:9f:68:d2:86:7b:2c:d2:70:ef:56:7b:e7:08:51: ae:f4:91:17:33:7d:7f:7b:2f:f4:7a:fe:66:da:db:40:31:2b: eb:12:e8:02 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMjMxMTAvBgNVBAUTKDQxRTFFQzE3REU3QkE3MEY4QzEyNDE3NzY5NjM3NzAy MzcyNTE5REUwHhcNMjYwMzI1MDQyMjE3WhcNMjYwNDAxMDQyMjE3WjAYMRYwFAYD VQQDEw02OWMzNjJmOS0wNmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqF6kYyYo+rMnoNuA6nzCvgC/0qCI9+gI/4oSV8HpRP4OJR58w6Ndz1KAyxT K3Bbwed3A6odN6aM7qaa+pkdaVJ5fnmC94VFzQ7jhTvowoR93EfOBdBulKz1oQAX K0LXmFa9rs4+07uy9OmP8N5nzjfrp7jhChnPBrSuaBxZ5JvKSV+d3+RNDjU1MM8m /DJ5tKaTbD4KShF8/hakS8RP0+w9TWfMzVZWEtLlcymrBIipKyQJFNXnAIaEN2Ob +UTqaY7sYzui1XJHDYl4XOIiNqs7Qauoj0Zx8FbK85xFMMqtpVqHKl1jK69ECcwl eDbJAoBcU6DGoQAWQjLcWJFe7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOpUkVlc fl39Dk3vittHSoB7LzxoMB8GA1UdIwQYMBaAFEHh7Bfee6cPjBJBd2ljdwI3JRne MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUyMy8zMDFBMUU0QTJD NkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3LU1Fa0YzYVdOM0FqY2xH ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FlSHNGOTU3cHctTUVrRjNhV04zQWpjbEdkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUyMy8zMDFBMUU0QTJDNkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3 LU1Fa0YzYVdOM0FqY2xHZDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYdYTD86c3WEGRvFdHcPA4Fmn8T3hRJo8NQex7IRvgyW8x7FpBh+DsdxJy0FU ma2dxnrs9ItdzTWgieNg6j2whwppHmCB6GzYsVMWJug5I86C333cUfECE0D9nQi/ ztdvFCPUXAuRthNrkCUl5tDI5DJOY+oZwrlSbVcfLC49UO6j0YkhK0k/MdmpaxTl TG6xudD2FucJkQtBo86XzmZLnrbxC/DfdNrYihK2iVixf1VwTw5aUHeLdqogYM85 D7LbxybLZK1hTv0VoizkC+4q+34uw58B8kgGWMX6MJ9o0oZ7LNJw71Z75whRrvSR FzN9f3sv9Hr+ZtrbQDEr6xLoAg== -----END CERTIFICATE-----Generated at Thu Mar 26 20:23:54 2026 by rpki-client