$ rpki-client -vvf rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft File: QJ0BHok_2Mjws-isFGkqp7udAlk.mft (raw, json) Hash identifier: ORyk+gPWGXwD/ckDmd5SVrjmyI0ddqHhGAbzBKCn+Mw= Subject key identifier: 79:58:78:05:78:56:91:7A:C5:C2:B9:88:46:ED:BF:63:6B:35:C8:9D Authority key identifier: 40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 Certificate issuer: /CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Certificate serial: 0490 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft Manifest number: 0487 Signing time: Thu 26 Mar 2026 23:48:55 +0000 Manifest this update: Thu 26 Mar 2026 23:48:54 +0000 Manifest next update: Thu 02 Apr 2026 23:48:54 +0000 Files and hashes: 1: QJ0BHok_2Mjws-isFGkqp7udAlk.crl (hash: LPsJvKvK9MeYsd9uSZcQeOE20iaaF3UeefzY/TW4T/w=) 2: E7FE45667E8311ECA552B67FC4F9AE02.roa (hash: UDGIexCjWZjf9oWBoZsn81ywHvMY4QFQvNjug6FA+Yo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 23:48:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1168 (0x490) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91808E1, serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Validity Not Before: Mar 26 23:48:54 2026 GMT Not After : Apr 2 23:48:54 2026 GMT Subject: CN=69c5c5e6-01c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:57:fe:0e:e0:9c:bd:d8:74:69:90:b3:ba:e1: 4d:f2:63:da:ce:9f:b2:b1:a7:83:bb:82:a1:e9:91: 94:aa:25:09:a1:7b:56:a9:65:00:08:55:cb:ac:14: 06:ce:df:eb:1c:47:0a:23:7c:31:f0:d7:da:0d:6d: df:dc:25:1f:e2:fd:71:a3:41:14:00:d1:5a:5d:1a: c2:cd:92:de:ea:93:f1:36:44:97:e0:a8:86:d1:88: 77:89:45:1a:fe:ec:b4:35:cc:31:3c:aa:d9:78:33: 3b:bf:61:dc:7b:ac:04:f5:87:31:c9:75:d8:9c:a4: 99:4e:c0:72:cc:e8:c9:38:cf:0f:bd:85:6b:32:3f: c9:01:3c:e4:9c:a9:1c:13:58:f3:bd:36:7f:d9:8b: a5:07:c7:5e:64:e6:09:82:2a:2e:52:9f:35:56:59: 26:58:b3:d3:a4:34:c0:e0:45:7f:f2:5a:ab:ad:71: 5c:51:e1:3e:e5:16:27:30:9b:c5:05:37:50:05:5c: 80:bc:a0:09:ab:dc:d3:d4:ca:42:63:3d:95:1e:10: 85:a9:9c:20:92:4c:03:68:7d:4d:26:41:f4:ba:1d: cf:03:d9:49:69:ba:f6:c8:15:ec:fb:24:81:15:bf: 49:2c:91:4b:1e:8c:ad:84:18:42:de:e2:57:40:d4: 87:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:58:78:05:78:56:91:7A:C5:C2:B9:88:46:ED:BF:63:6B:35:C8:9D X509v3 Authority Key Identifier: keyid:40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:27:5a:ff:6b:cf:cc:46:43:a5:ed:0c:f2:79:d0:b6:9f:92: 12:38:4e:63:6b:0c:d8:86:be:4b:8c:6d:54:2f:37:cc:1e:36: 52:53:1f:59:27:b6:34:e9:89:71:66:50:7a:63:55:83:5a:01: 22:f1:0d:ea:39:08:02:f8:f4:87:8f:98:99:cb:3c:9b:09:cd: 02:65:cf:b6:bb:e0:85:09:ce:d2:b7:e1:b0:07:ec:7e:ab:ac: e5:af:e9:75:b9:c9:99:d9:04:3e:ca:26:44:c9:c5:5f:22:1f: dd:d7:f9:35:0d:be:97:d0:f4:81:1a:fd:b4:14:93:80:52:b5: 99:46:de:0c:81:c0:67:9c:0c:c5:f8:1a:51:10:9a:7f:da:d1: b8:01:db:9d:4c:82:bf:c6:d7:41:d4:f6:29:66:0c:72:99:9f: 27:1a:f2:3f:ef:21:64:54:40:40:34:59:27:16:9c:9e:0a:be: c0:57:e8:16:48:fc:12:3a:f1:5c:86:c5:63:a1:11:c1:a2:30: 34:e2:b0:47:f4:12:40:83:cc:67:93:08:19:ee:ce:1c:3c:7b: 94:60:13:64:9a:18:40:25:b7:d5:6e:78:c0:0a:f2:a4:7c:c7: 75:a7:c6:4c:ec:95:97:0c:a1:8e:ed:d4:ff:11:5b:eb:36:a6: c0:ec:a3:69 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA4RTExMTAvBgNVBAUTKDQwOUQwMTFFODkzRkQ4QzhGMEIzRThBQzE0NjkyQUE3 QkI5RDAyNTkwHhcNMjYwMzI2MjM0ODU0WhcNMjYwNDAyMjM0ODU0WjAYMRYwFAYD VQQDEw02OWM1YzVlNi0wMWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplf+DuCcvdh0aZCzuuFN8mPazp+ysaeDu4Kh6ZGUqiUJoXtWqWUACFXLrBQG zt/rHEcKI3wx8NfaDW3f3CUf4v1xo0EUANFaXRrCzZLe6pPxNkSX4KiG0Yh3iUUa /uy0NcwxPKrZeDM7v2Hce6wE9YcxyXXYnKSZTsByzOjJOM8PvYVrMj/JATzknKkc E1jzvTZ/2YulB8deZOYJgiouUp81VlkmWLPTpDTA4EV/8lqrrXFcUeE+5RYnMJvF BTdQBVyAvKAJq9zT1MpCYz2VHhCFqZwgkkwDaH1NJkH0uh3PA9lJabr2yBXs+ySB Fb9JLJFLHoythBhC3uJXQNSHTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHlYeAV4 VpF6xcK5iEbtv2NrNcidMB8GA1UdIwQYMBaAFECdAR6JP9jI8LPorBRpKqe7nQJZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDhFMS9GOTBGOUU4ODdF ODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJNandzLWlzRkdrcXA3dWRB bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKMEJIb2tfMk1qd3MtaXNGR2txcDd1ZEFsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDhFMS9GOTBGOUU4ODdFODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJN andzLWlzRkdrcXA3dWRBbGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADida/2vPzEZDpe0M8nnQtp+SEjhOY2sM2Ia+S4xtVC83zB42UlMfWSe2NOmJ cWZQemNVg1oBIvEN6jkIAvj0h4+Ymcs8mwnNAmXPtrvghQnO0rfhsAfsfqus5a/p dbnJmdkEPsomRMnFXyIf3df5NQ2+l9D0gRr9tBSTgFK1mUbeDIHAZ5wMxfgaURCa f9rRuAHbnUyCv8bXQdT2KWYMcpmfJxryP+8hZFRAQDRZJxacngq+wFfoFkj8Ejrx XIbFY6ERwaIwNOKwR/QSQIPMZ5MIGe7OHDx7lGATZJoYQCW31W54wArypHzHdafG TOyVlwyhju3U/xFb6zamwOyjaQ== -----END CERTIFICATE-----Generated at Sat Mar 28 10:43:34 2026 by rpki-client