$ rpki-client -vvf rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft File: QrsPPBhH5li75BQYSUzonOjjRIg.mft (raw, json) Hash identifier: cVY+f88iVl8ZRTKou3KU/OqUcdiAXAVTBjpo0j+25cM= Subject key identifier: 86:BB:78:36:2B:3D:38:D5:A2:93:54:5E:31:D4:67:62:DD:25:54:AF Authority key identifier: 42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 Certificate issuer: /CN=A9172506/serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Certificate serial: 0125 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft Manifest number: 0122 Signing time: Wed 25 Mar 2026 04:55:55 +0000 Manifest this update: Wed 25 Mar 2026 04:55:55 +0000 Manifest next update: Wed 01 Apr 2026 04:55:55 +0000 Files and hashes: 1: QrsPPBhH5li75BQYSUzonOjjRIg.crl (hash: DbIaiYG/aHuyLnVmxRygi6IJOPOcUGeVsN0/eTFUzX8=) 2: DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa (hash: sLY3A5xo4OWXXroIPD+/NDSIP/DardXda+JcIvGvHgg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:55:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172506, serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Validity Not Before: Mar 25 04:55:55 2026 GMT Not After : Apr 1 04:55:55 2026 GMT Subject: CN=69c36adb-686c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:bb:d1:0a:99:70:7f:34:41:8e:4f:ae:e2:af: 0c:15:ea:fc:71:e1:45:1d:fe:0d:17:e3:59:a6:8f: d7:3b:89:d3:cf:94:15:dd:73:3a:a7:be:42:46:06: 7f:47:47:78:e5:35:cf:a8:ca:c4:25:b7:41:72:32: ed:f4:a4:56:ab:9f:fd:96:f8:99:9c:95:ee:2e:04: fa:14:52:98:45:0d:61:0e:8a:46:dc:45:dd:87:56: 67:ba:35:52:3d:2e:38:2c:a8:0c:99:4f:77:bd:eb: 82:6a:50:e0:78:a4:4e:e3:e9:34:1f:03:39:50:62: b9:ae:c1:a3:70:fc:fc:99:f8:a7:c5:29:f6:9f:1d: b2:ff:9c:6d:75:3e:ca:6e:b0:22:08:b6:7a:64:81: 11:4c:69:49:98:03:ea:b1:07:c3:ce:93:70:fb:d6: bd:16:a6:55:9c:b1:fb:ab:96:a8:58:e5:28:13:cd: 83:bd:34:02:c4:64:6a:a4:45:64:3a:50:93:88:4f: a4:97:8f:f9:c7:ed:4b:03:2b:97:0b:89:41:3c:b9: ec:cf:b9:e0:eb:ee:be:13:ad:8f:d5:15:34:3d:51: f3:da:35:a6:6f:cc:49:ac:1c:92:9c:f4:d7:0b:8d: 73:1e:83:90:db:55:06:94:37:90:5b:11:47:a2:2f: 18:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:BB:78:36:2B:3D:38:D5:A2:93:54:5E:31:D4:67:62:DD:25:54:AF X509v3 Authority Key Identifier: keyid:42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:35:9f:3e:b3:1a:09:3c:52:24:2b:ad:ea:71:18:d9:36:be: d8:ad:3e:81:ec:b4:01:e6:da:4a:eb:e1:bc:ea:32:22:40:d3: 80:48:75:85:30:48:6d:59:ed:3e:e2:61:1f:6d:39:9b:f5:bd: 6f:11:0c:9e:86:6e:66:60:de:7d:48:5b:14:f9:45:03:26:88: 2c:84:4d:37:a8:7c:b9:2e:4b:5a:fc:7e:44:e0:77:e1:ca:38: 66:d7:85:42:56:ad:83:56:12:a1:a2:7d:c3:47:b0:a0:99:24: 51:4f:df:52:b9:50:10:0f:90:2f:e0:82:44:60:65:34:fb:07: f5:9d:d6:cd:eb:7b:5c:6a:e9:e9:f2:26:bd:6e:cf:ee:d5:2f: 7b:f4:f0:38:4e:2f:03:b3:51:70:7c:32:6c:43:40:64:6e:0d: d9:e3:3d:fd:5d:0c:12:e4:76:25:58:77:13:f1:ad:0d:9d:da: e3:d8:2f:28:5e:1e:b0:a9:57:d2:bd:6f:db:0b:66:0c:82:ca: 0c:5e:aa:c7:bd:36:4d:47:48:49:c8:cf:44:b5:31:2a:99:34: f7:20:a1:40:6f:dc:01:71:d6:ff:20:04:f6:f4:30:71:87:c8: 2a:dc:70:1c:51:cc:4e:54:23:b0:95:be:be:44:14:0e:23:74: 7d:12:ea:6d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI1MDYxMTAvBgNVBAUTKDQyQkIwRjNDMTg0N0U2NThCQkU0MTQxODQ5NENFODlD RThFMzQ0ODgwHhcNMjYwMzI1MDQ1NTU1WhcNMjYwNDAxMDQ1NTU1WjAYMRYwFAYD VQQDEw02OWMzNmFkYi02ODZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxrvRCplwfzRBjk+u4q8MFer8ceFFHf4NF+NZpo/XO4nTz5QV3XM6p75CRgZ/ R0d45TXPqMrEJbdBcjLt9KRWq5/9lviZnJXuLgT6FFKYRQ1hDopG3EXdh1ZnujVS PS44LKgMmU93veuCalDgeKRO4+k0HwM5UGK5rsGjcPz8mfinxSn2nx2y/5xtdT7K brAiCLZ6ZIERTGlJmAPqsQfDzpNw+9a9FqZVnLH7q5aoWOUoE82DvTQCxGRqpEVk OlCTiE+kl4/5x+1LAyuXC4lBPLnsz7ng6+6+E62P1RU0PVHz2jWmb8xJrBySnPTX C41zHoOQ21UGlDeQWxFHoi8YxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIa7eDYr PTjVopNUXjHUZ2LdJVSvMB8GA1UdIwQYMBaAFEK7DzwYR+ZYu+QUGElM6Jzo40SI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjUwNi9CMDQ5MDhDRTZF REUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVsaTc1QlFZU1V6b25PampS SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Fyc1BQQmhINWxpNzVCUVlTVXpvbk9qalJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjUwNi9CMDQ5MDhDRTZFREUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVs aTc1QlFZU1V6b25PampSSWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMDWfPrMaCTxSJCut6nEY2Ta+2K0+gey0AebaSuvhvOoyIkDTgEh1hTBIbVnt PuJhH205m/W9bxEMnoZuZmDefUhbFPlFAyaILIRNN6h8uS5LWvx+ROB34co4ZteF Qlatg1YSoaJ9w0ewoJkkUU/fUrlQEA+QL+CCRGBlNPsH9Z3Wzet7XGrp6fImvW7P 7tUve/TwOE4vA7NRcHwybENAZG4N2eM9/V0MEuR2JVh3E/GtDZ3a49gvKF4esKlX 0r1v2wtmDILKDF6qx702TUdIScjPRLUxKpk09yChQG/cAXHW/yAE9vQwcYfIKtxw HFHMTlQjsJW+vkQUDiN0fRLqbQ== -----END CERTIFICATE-----Generated at Thu Mar 26 06:30:10 2026 by rpki-client