$ rpki-client -vvf rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft File: QELW5jee2AQkizYN7Zhe9_VlIBE.mft (raw, json) Hash identifier: WuHOlMKHnOa1lUV/QgJb5O+VIRjeHIOxO8Ttn6ruZyY= Subject key identifier: D4:C9:7C:ED:B6:7D:DB:56:B7:4C:E4:B4:83:35:FA:4B:01:6B:88:0A Authority key identifier: 40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 Certificate issuer: /CN=A9148465/serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Certificate serial: 02D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft Manifest number: 02CE Signing time: Fri 27 Mar 2026 01:08:34 +0000 Manifest this update: Fri 27 Mar 2026 01:08:34 +0000 Manifest next update: Fri 03 Apr 2026 01:08:34 +0000 Files and hashes: 1: QELW5jee2AQkizYN7Zhe9_VlIBE.crl (hash: 3RIv/dAOYvDBBCRoZ3OnbLJpi+VgTQYIQjHH6iqE0F4=) 2: 7777513828C011EDBEC6D287C4F9AE02.roa (hash: uZ2kWd7kpQaiTAnnZXgkNaCLyHsmkWGjAKTYejP6cVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 01:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 723 (0x2d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148465, serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Validity Not Before: Mar 27 01:08:34 2026 GMT Not After : Apr 3 01:08:34 2026 GMT Subject: CN=69c5d892-194a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:c9:bc:2b:ca:85:ca:19:c6:52:8e:80:22:4b: 3f:71:97:a0:57:64:9b:ca:ad:ee:83:a2:cf:fa:09: 6d:9c:f1:10:fb:5e:63:2c:45:1d:42:cb:00:f9:12: 37:db:27:9b:fc:8b:f6:3d:af:c0:d3:99:00:57:9e: 96:62:d5:86:f0:b5:e6:f0:66:0c:01:d4:0a:0a:a1: f4:da:a1:c6:74:47:bf:18:2b:ac:11:79:5a:5b:34: 4c:36:67:64:ab:23:9b:06:d6:92:aa:ff:30:97:9a: eb:e5:1a:12:20:99:46:28:43:38:67:11:34:0c:4c: 53:72:2a:b5:d3:cf:e4:5a:b8:0e:ea:0c:13:e2:72: 13:2c:25:0f:c6:45:79:65:f7:95:98:fe:8b:29:c0: d7:08:09:17:b9:c6:ca:39:03:5c:44:e8:40:f2:43: 91:e2:b9:25:b2:42:81:55:35:f4:c0:a4:3f:37:3c: 10:41:ad:9f:5d:36:e3:5b:75:2b:9d:62:e4:da:be: eb:5d:6d:bd:71:53:58:6c:b6:8c:e0:ac:e4:b0:97: c0:b6:9e:ec:90:e2:ff:49:19:18:cf:09:46:bd:93: db:b4:e6:72:0a:f0:5f:77:ba:42:c2:5f:ef:b0:56: f8:c1:a0:41:82:18:f6:cb:9f:a8:9e:d9:a2:c7:95: ac:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:C9:7C:ED:B6:7D:DB:56:B7:4C:E4:B4:83:35:FA:4B:01:6B:88:0A X509v3 Authority Key Identifier: keyid:40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:a9:cd:5d:e3:b7:20:0b:cf:cf:c8:f6:ca:15:7d:f8:af:74: db:bf:f9:c3:2b:23:92:72:9a:23:c8:3d:48:13:58:84:d1:87: 87:f5:7f:8a:64:5b:7c:92:d5:b9:81:60:f8:ff:df:c2:b3:79: ba:6d:cc:cb:bd:3f:9b:ff:95:13:ba:b8:1e:d4:39:bd:70:de: 87:6f:ac:3e:ce:4c:21:88:dc:9d:9f:6e:c0:91:a1:51:c8:7e: f1:d6:2a:d7:03:55:5a:20:ee:13:d4:58:40:24:9d:4b:07:25: 89:7b:43:14:20:e6:7f:88:0c:9f:e4:86:62:55:28:0e:52:83: a2:09:0d:b0:91:d4:e0:56:02:fa:0a:fc:69:bc:c8:82:41:9c: f6:21:5d:31:b7:eb:e7:8d:8a:89:ef:b2:42:84:f4:bd:86:e5: 8f:b3:18:96:d7:18:be:58:2a:a6:45:61:8b:c9:e0:45:5d:c2: d7:cc:79:78:b2:30:87:99:eb:fe:2f:aa:26:4c:c4:5d:01:5b: 1c:14:26:71:7b:8d:d1:9d:db:cc:b1:6d:0b:fd:68:7c:6a:b0: f8:3f:a7:b3:f2:37:1f:b1:81:8d:03:a3:a4:6a:bd:84:65:bc: f8:33:47:ac:c5:bc:2f:82:25:84:dc:16:d3:45:10:08:24:67: e9:86:82:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0NjUxMTAvBgNVBAUTKDQwNDJENkU2Mzc5RUQ4MDQyNDhCMzYwREVEOTg1RUY3 RjU2NTIwMTEwHhcNMjYwMzI3MDEwODM0WhcNMjYwNDAzMDEwODM0WjAYMRYwFAYD VQQDEw02OWM1ZDg5Mi0xOTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmMm8K8qFyhnGUo6AIks/cZegV2Sbyq3ug6LP+gltnPEQ+15jLEUdQssA+RI3 2yeb/Iv2Pa/A05kAV56WYtWG8LXm8GYMAdQKCqH02qHGdEe/GCusEXlaWzRMNmdk qyObBtaSqv8wl5rr5RoSIJlGKEM4ZxE0DExTciq108/kWrgO6gwT4nITLCUPxkV5 ZfeVmP6LKcDXCAkXucbKOQNcROhA8kOR4rklskKBVTX0wKQ/NzwQQa2fXTbjW3Ur nWLk2r7rXW29cVNYbLaM4KzksJfAtp7skOL/SRkYzwlGvZPbtOZyCvBfd7pCwl/v sFb4waBBghj2y5+ontmix5WsYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNTJfO22 fdtWt0zktIM1+ksBa4gKMB8GA1UdIwQYMBaAFEBC1uY3ntgEJIs2De2YXvf1ZSAR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ2NS9ENjBGMDI3MjI4 QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJBUWtpellON1poZTlfVmxJ QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FFTFc1amVlMkFRa2l6WU43WmhlOV9WbElCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODQ2NS9ENjBGMDI3MjI4QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJB UWtpellON1poZTlfVmxJQkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXqnNXeO3IAvPz8j2yhV9+K9027/5wysjknKaI8g9SBNYhNGHh/V/imRbfJLV uYFg+P/fwrN5um3My70/m/+VE7q4HtQ5vXDeh2+sPs5MIYjcnZ9uwJGhUch+8dYq 1wNVWiDuE9RYQCSdSwcliXtDFCDmf4gMn+SGYlUoDlKDogkNsJHU4FYC+gr8abzI gkGc9iFdMbfr542Kie+yQoT0vYblj7MYltcYvlgqpkVhi8ngRV3C18x5eLIwh5nr /i+qJkzEXQFbHBQmcXuN0Z3bzLFtC/1ofGqw+D+ns/I3H7GBjQOjpGq9hGW8+DNH rMW8L4IlhNwW00UQCCRn6YaCQw== -----END CERTIFICATE-----Generated at Sat Mar 28 15:56:05 2026 by rpki-client