$ rpki-client -vvf rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft File: QgHlq32GvGha8R8C3mhAUVttgFg.mft (raw, json) Hash identifier: 41KOqCc2dmAjAccGhDoMcJdFn0p5gGevTVNrX4uFuSs= Subject key identifier: 74:73:B8:57:30:7D:F0:DF:E2:58:73:DD:40:28:D6:F7:E5:1C:7A:20 Authority key identifier: 42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58 Certificate issuer: /CN=A91454B0/serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058 Certificate serial: 3526 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft Manifest number: 3526 Signing time: Tue 24 Mar 2026 14:38:09 +0000 Manifest this update: Tue 24 Mar 2026 14:38:09 +0000 Manifest next update: Tue 31 Mar 2026 14:38:09 +0000 Files and hashes: 1: QgHlq32GvGha8R8C3mhAUVttgFg.crl (hash: 5Z39PxA2KprMIZZJ9pSjI7cmFLO8IaoTY4RePoUmne8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:38:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13606 (0x3526) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454B0, serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058 Validity Not Before: Mar 24 14:38:09 2026 GMT Not After : Mar 31 14:38:09 2026 GMT Subject: CN=69c2a1d1-7f01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:53:d5:5d:ca:9e:e6:80:6a:91:ef:4f:d2:29: 00:f3:75:a1:77:50:6f:ae:a4:dd:70:4a:3d:08:42: 2f:60:e8:7d:8c:79:1f:d4:e0:45:8d:3e:0b:d6:c9: 6d:89:15:57:99:20:11:1d:ce:de:8b:35:16:4c:45: 06:5b:b8:b6:8e:ea:51:2f:a0:bd:82:b4:16:b0:62: d8:a1:ed:37:1b:a1:f4:8d:ea:ef:72:fa:53:cf:d5: 88:42:61:7e:f0:a7:03:61:2f:7a:0f:00:9d:11:55: 1f:fc:d1:a0:f2:8a:35:92:aa:cf:3c:c2:b3:31:5e: 09:30:59:a9:73:57:c6:c7:c9:13:70:9e:e7:d2:5a: 5c:22:86:27:a8:6d:9c:f3:42:f8:b7:90:05:d8:89: a2:27:0f:cf:9f:29:dd:47:a6:a1:a0:a9:f0:25:14: 83:45:c7:72:fb:60:43:4c:e1:ff:3d:cc:be:f4:1f: 07:13:e4:1a:34:55:ac:fd:b4:7a:16:ac:86:56:c8: 58:6c:20:ad:94:1c:e6:46:a0:16:43:07:75:5c:b1: be:c9:f9:38:d4:2d:9f:81:7c:6a:df:b4:9c:d1:02: 2d:b8:aa:0d:9d:f2:de:17:98:86:75:d5:01:3a:f7: b1:47:b5:2a:2d:ea:5c:30:82:21:85:12:27:1f:05: 5a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:73:B8:57:30:7D:F0:DF:E2:58:73:DD:40:28:D6:F7:E5:1C:7A:20 X509v3 Authority Key Identifier: keyid:42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:95:e9:37:6c:c0:d3:61:26:01:29:5d:9a:ff:41:7b:91:1f: 3a:66:f7:e7:89:54:39:f2:fc:5c:56:82:50:d1:6a:84:07:be: aa:c3:67:a1:dc:fa:4b:50:b9:76:ff:1e:88:33:bf:ef:34:7e: 87:77:d4:fd:9f:d5:7c:74:43:db:d8:5a:5b:ca:df:b9:81:23: 8f:ee:e8:4b:4c:c1:cd:73:88:5a:5c:73:38:90:c2:d1:7c:f8: c0:6c:35:38:fa:85:52:a9:b3:7f:2b:89:1e:26:f0:51:ca:cb: 91:46:87:79:f5:fe:e4:f1:cd:79:67:70:f1:fb:7b:51:f9:e9: 99:67:62:5b:f1:bb:20:60:4e:53:f7:d3:03:55:a7:66:7c:88: 72:a4:fe:4a:9e:af:34:bc:5e:49:ed:3a:42:18:0f:85:f5:3b: 12:c4:63:ee:8e:13:29:c7:b8:54:3b:62:6d:25:0a:7d:51:2e: 0d:61:19:a7:07:37:6d:db:cd:35:5a:1d:d0:a8:8c:4a:8d:fd: 73:05:f2:74:e7:c3:e1:e8:0e:ee:f4:d0:f6:ef:e3:0c:41:b0: 2e:bc:d8:62:93:6c:af:d9:8d:e3:a5:3c:39:01:d0:0e:e8:e3: e8:ac:b5:e7:f3:a1:0f:36:c3:28:f3:10:47:85:cc:57:8a:f9: 84:31:59:fc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0QjAxMTAvBgNVBAUTKDQyMDFFNUFCN0Q4NkJDNjg1QUYxMUYwMkRFNjg0MDUx NUI2RDgwNTgwHhcNMjYwMzI0MTQzODA5WhcNMjYwMzMxMTQzODA5WjAYMRYwFAYD VQQDEw02OWMyYTFkMS03ZjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFPVXcqe5oBqke9P0ikA83Whd1BvrqTdcEo9CEIvYOh9jHkf1OBFjT4L1slt iRVXmSARHc7eizUWTEUGW7i2jupRL6C9grQWsGLYoe03G6H0jervcvpTz9WIQmF+ 8KcDYS96DwCdEVUf/NGg8oo1kqrPPMKzMV4JMFmpc1fGx8kTcJ7n0lpcIoYnqG2c 80L4t5AF2ImiJw/PnyndR6ahoKnwJRSDRcdy+2BDTOH/Pcy+9B8HE+QaNFWs/bR6 FqyGVshYbCCtlBzmRqAWQwd1XLG+yfk41C2fgXxq37Sc0QItuKoNnfLeF5iGddUB OvexR7UqLepcMIIhhRInHwVahQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHRzuFcw ffDf4lhz3UAo1vflHHogMB8GA1UdIwQYMBaAFEIB5at9hrxoWvEfAt5oQFFbbYBY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRCMC8xQ0M0RERCNjFE OEUxMUUyOTAyRTNDRUMwOEIwMkNEMi9RZ0hscTMyR3ZHaGE4UjhDM21oQVVWdHRn RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnSGxxMzJHdkdoYThSOEMzbWhBVVZ0dGdGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTRCMC8xQ0M0RERCNjFEOEUxMUUyOTAyRTNDRUMwOEIwMkNEMi9RZ0hscTMyR3ZH aGE4UjhDM21oQVVWdHRnRmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdpXpN2zA02EmASldmv9Be5EfOmb354lUOfL8XFaCUNFqhAe+qsNnodz6S1C5 dv8eiDO/7zR+h3fU/Z/VfHRD29haW8rfuYEjj+7oS0zBzXOIWlxzOJDC0Xz4wGw1 OPqFUqmzfyuJHibwUcrLkUaHefX+5PHNeWdw8ft7UfnpmWdiW/G7IGBOU/fTA1Wn ZnyIcqT+Sp6vNLxeSe06QhgPhfU7EsRj7o4TKce4VDtibSUKfVEuDWEZpwc3bdvN NVod0KiMSo39cwXydOfD4egO7vTQ9u/jDEGwLrzYYpNsr9mN46U8OQHQDujj6Ky1 5/OhDzbDKPMQR4XMV4r5hDFZ/A== -----END CERTIFICATE-----Generated at Thu Mar 26 00:55:19 2026 by rpki-client