$ rpki-client -vvf rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft File: QIyZnDwewBZElFs0d6nyI061eRw.mft (raw, json) Hash identifier: fcBkXgU5vZEVuoyZn7TlEDCDA8GEHi9+N6b67QgqNcI= Subject key identifier: E7:D0:93:2F:67:E9:58:18:87:9E:2D:90:17:57:5F:FF:95:69:4D:45 Authority key identifier: 40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C Certificate issuer: /CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Certificate serial: 2555 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft Manifest number: 2529 Signing time: Tue 24 Mar 2026 15:42:08 +0000 Manifest this update: Tue 24 Mar 2026 15:42:08 +0000 Manifest next update: Tue 31 Mar 2026 15:42:08 +0000 Files and hashes: 1: QIyZnDwewBZElFs0d6nyI061eRw.crl (hash: RqBGjQG7TTI3qp2mRs2yaCGeYN3ymdbMgiEz+XFmE6M=) 2: ABA9F4B8AF8411EABF9F844DC4F9AE02.roa (hash: /w4t5dhbmQEa84JEDJ39VitjjFskPm/mEpnYuZ0T6wQ=) 3: 50A2F64264BC11E8ACC7951EC4F9AE02.roa (hash: 6oC3s9zXSmCynBY9z0T8TeaSrJ6gHinauk9Zr2y+ucg=) 4: 2486E806F0E311EAA1C58D62C4F9AE02.roa (hash: l+zP+x/ZY9cq3nbV4r5XpYolKqUr/0Lu8hDJSfvQgkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:42:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9557 (0x2555) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650A5, serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Validity Not Before: Mar 24 15:42:08 2026 GMT Not After : Mar 31 15:42:08 2026 GMT Subject: CN=69c2b0d0-1311 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7f:fc:31:a6:29:26:b6:4f:c7:9a:19:b7:25: 63:04:8d:6b:19:ed:55:0a:a5:26:09:96:5d:be:6a: ca:62:0d:e7:45:13:c2:c3:b8:3a:50:1f:bd:a8:8d: e6:79:2a:65:7d:af:0d:98:0a:7b:b8:86:ba:37:5b: a3:be:0e:b0:b5:41:00:19:b2:62:a9:d0:bb:cc:e6: 71:96:ef:c2:8f:a9:ab:ea:75:0e:89:2a:39:ac:37: e1:98:47:33:1c:be:4a:08:db:5f:b1:8a:4e:ed:5e: 17:3e:87:5e:f1:ae:10:7c:15:79:fc:cd:d9:90:b3: a4:78:74:f2:a2:9f:58:30:43:77:f5:00:24:51:0d: 9d:c9:5e:ea:14:17:48:55:d3:8f:a3:f8:6b:c6:74: a6:0e:75:16:80:6e:99:41:1f:3f:8a:e4:72:63:6b: 48:d8:f6:e1:01:5d:26:d4:41:40:27:f2:d3:97:26: 39:70:ec:a6:66:57:7f:3d:cb:26:ca:55:b8:9a:48: 06:e9:b5:cd:c1:36:fe:db:da:2a:9d:ca:64:e7:98: 32:b7:5e:11:ce:47:d1:58:0e:29:bc:eb:fe:d6:4a: 75:2b:57:b8:65:39:23:41:eb:68:e0:ac:d7:9c:77: 5c:db:91:cf:3a:9b:cf:4c:eb:65:c1:70:88:eb:cf: f9:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:D0:93:2F:67:E9:58:18:87:9E:2D:90:17:57:5F:FF:95:69:4D:45 X509v3 Authority Key Identifier: keyid:40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:c7:6f:10:95:a3:4d:c1:be:2a:b6:d9:43:31:dc:e1:57:26: c0:df:5f:3b:59:52:00:7e:ca:d7:89:40:e8:ed:df:46:18:29: bd:63:91:e8:9f:ff:15:7f:1f:c4:b0:e5:8f:e1:db:12:fd:54: ea:11:9d:ce:62:78:79:58:7b:fc:a7:19:78:a9:fa:48:f5:b8: ab:9a:ba:78:11:b1:f3:2f:5f:9b:54:0e:55:a7:87:34:1c:60: ad:50:dd:29:8e:a1:fd:51:c8:91:53:fb:1d:0e:8c:8f:b7:e2: 9d:c7:69:f4:85:66:9a:59:c5:3b:60:95:d3:e9:31:61:18:c0: 60:85:e3:1c:72:b3:69:80:eb:e4:34:00:85:c0:c8:4d:78:3c: f3:50:4a:33:61:e0:a8:2e:78:22:f0:b6:a8:4a:d3:8f:63:a2: b4:69:dd:4c:14:f7:fd:31:e6:83:3c:4a:84:e9:d6:df:cf:a7: eb:eb:66:1b:69:42:e0:2f:06:0d:a0:d3:7c:97:11:d3:86:1d: ee:5d:e6:b1:22:a2:32:41:45:06:f1:ba:ef:f1:9f:d8:64:84: 8b:d1:a8:b6:62:22:de:b4:fe:2a:47:98:b5:77:0f:b3:e2:16: 54:49:97:57:df:c4:b3:a6:b3:f1:b8:6b:a1:64:79:17:dc:fb: 94:b8:35:10 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwQTUxMTAvBgNVBAUTKDQwOEM5OTlDM0MxRUMwMTY0NDk0NUIzNDc3QTlGMjIz NEVCNTc5MUMwHhcNMjYwMzI0MTU0MjA4WhcNMjYwMzMxMTU0MjA4WjAYMRYwFAYD VQQDEw02OWMyYjBkMC0xMzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqH/8MaYpJrZPx5oZtyVjBI1rGe1VCqUmCZZdvmrKYg3nRRPCw7g6UB+9qI3m eSplfa8NmAp7uIa6N1ujvg6wtUEAGbJiqdC7zOZxlu/Cj6mr6nUOiSo5rDfhmEcz HL5KCNtfsYpO7V4XPode8a4QfBV5/M3ZkLOkeHTyop9YMEN39QAkUQ2dyV7qFBdI VdOPo/hrxnSmDnUWgG6ZQR8/iuRyY2tI2PbhAV0m1EFAJ/LTlyY5cOymZld/Pcsm ylW4mkgG6bXNwTb+29oqncpk55gyt14RzkfRWA4pvOv+1kp1K1e4ZTkjQeto4KzX nHdc25HPOpvPTOtlwXCI68/5bQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOfQky9n 6VgYh54tkBdXX/+VaU1FMB8GA1UdIwQYMBaAFECMmZw8HsAWRJRbNHep8iNOtXkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBBNS8xN0RGQjM1QTQ2 RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdCWkVsRnMwZDZueUkwNjFl UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJeVpuRHdld0JaRWxGczBkNm55STA2MWVSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTBBNS8xN0RGQjM1QTQ2RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdC WkVsRnMwZDZueUkwNjFlUncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAesdvEJWjTcG+KrbZQzHc4VcmwN9fO1lSAH7K14lA6O3fRhgpvWOR6J//FX8f xLDlj+HbEv1U6hGdzmJ4eVh7/KcZeKn6SPW4q5q6eBGx8y9fm1QOVaeHNBxgrVDd KY6h/VHIkVP7HQ6Mj7fincdp9IVmmlnFO2CV0+kxYRjAYIXjHHKzaYDr5DQAhcDI TXg881BKM2HgqC54IvC2qErTj2OitGndTBT3/THmgzxKhOnW38+n6+tmG2lC4C8G DaDTfJcR04Yd7l3msSKiMkFFBvG67/Gf2GSEi9GotmIi3rT+KkeYtXcPs+IWVEmX V9/Es6az8bhroWR5F9z7lLg1EA== -----END CERTIFICATE-----Generated at Thu Mar 26 16:05:13 2026 by rpki-client