$ rpki-client -vvf rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft File: Q2NMcBuh8e_Oj1aqatHbKUWh258.mft (raw, json) Hash identifier: h45MLR8lptV6YbK9XOhKGe0+alLI6PX5zdcOKcIoZ4c= Subject key identifier: F3:A8:C2:36:86:1B:4C:14:47:F7:1C:DC:5D:0C:38:FB:4B:DF:79:FB Authority key identifier: 43:63:4C:70:1B:A1:F1:EF:CE:8F:56:AA:6A:D1:DB:29:45:A1:DB:9F Certificate issuer: /CN=A918549C/serialNumber=43634C701BA1F1EFCE8F56AA6AD1DB2945A1DB9F Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft Manifest number: 013D Signing time: Wed 25 Mar 2026 04:38:17 +0000 Manifest this update: Wed 25 Mar 2026 04:38:17 +0000 Manifest next update: Wed 01 Apr 2026 04:38:17 +0000 Files and hashes: 1: Q2NMcBuh8e_Oj1aqatHbKUWh258.crl (hash: MOJwN4m5JzSpG4DvVHbFR/2uQcO1dEYJKORpSy6gBbw=) 2: 9C6F77784A3211EFBDBCEB2FC4F9AE02.roa (hash: POI2gtWNO02fmkeuPIBgEnMpIQB9HpbIZTb9ltFjGKA=) 3: ABA45B1A740611F0B304387CC4F9AE02.roa (hash: NoRAYMKDz7ruenjU4EI/k6TTzNlrpDAvnAEzcechXd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.crl rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:38:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918549C, serialNumber=43634C701BA1F1EFCE8F56AA6AD1DB2945A1DB9F Validity Not Before: Mar 25 04:38:17 2026 GMT Not After : Apr 1 04:38:17 2026 GMT Subject: CN=69c366b9-cf04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:33:48:eb:54:f4:b7:9c:d4:89:71:8f:e3:0c: b9:47:5f:b9:b3:b0:b4:b8:f2:85:8c:0f:16:90:e2: dd:06:c9:18:7c:f5:f0:99:cb:ce:4e:9e:9b:1b:44: ec:99:28:bd:04:df:9b:e6:da:86:4d:e1:13:1c:b9: 4d:ff:fc:2e:37:61:d1:d1:b7:bb:4f:1b:15:fb:8f: 05:1b:1c:d8:cc:2f:12:d3:4a:1d:8d:36:a8:5c:72: f4:e1:c4:f1:97:64:46:44:48:9b:d9:22:47:37:09: 73:08:77:78:4d:b1:40:06:94:7b:2e:db:c4:b1:3f: 98:1b:5b:99:71:5d:e6:cc:e7:b7:e7:5e:34:be:ce: 34:43:12:ca:30:70:76:ea:1f:7e:92:1f:43:af:ea: 2f:95:3b:ab:99:da:59:5b:06:98:00:c8:1d:c0:d6: 8f:af:d1:ef:b3:90:c2:f2:4b:2f:27:7c:dc:6f:43: b2:35:67:e0:e4:6f:7c:80:d1:b6:ef:8f:c0:0d:aa: 52:ca:2c:a1:50:46:4d:ae:07:84:a0:6c:40:f4:5a: 8e:a6:96:aa:d4:41:81:3a:48:50:40:ad:b3:5d:3a: 73:b2:dd:4d:ee:fb:5c:f7:23:f3:90:3b:10:d5:bc: 11:b6:d1:ae:40:2b:99:6d:3b:f0:da:ed:21:81:48: bb:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:A8:C2:36:86:1B:4C:14:47:F7:1C:DC:5D:0C:38:FB:4B:DF:79:FB X509v3 Authority Key Identifier: keyid:43:63:4C:70:1B:A1:F1:EF:CE:8F:56:AA:6A:D1:DB:29:45:A1:DB:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:9d:37:6d:6d:bc:96:d1:0b:9c:2e:a6:d4:c2:59:c7:a7:81: 92:b0:39:2c:40:19:67:ed:e8:39:c1:56:fa:37:df:6d:da:8e: 23:73:98:3d:a6:af:34:cc:dd:fd:1a:1e:bb:e0:72:57:b2:f8: 6c:49:82:44:eb:34:07:41:c4:a2:5c:a8:cb:81:e8:f9:e2:81: f6:79:21:b4:f3:f5:ae:00:8d:9c:68:02:2f:bd:4d:a0:72:2e: 8a:00:a9:41:ea:27:f3:30:62:1c:1c:99:41:67:c7:1a:e4:1c: e0:3c:ef:b3:8b:d2:db:72:69:50:ce:8d:f8:bf:99:28:90:92: 5c:92:bd:54:33:e9:3d:16:24:cb:64:53:28:3b:75:ab:fd:f6: 2e:24:38:46:69:1f:4f:3c:ef:3c:82:3a:e1:08:63:84:25:40: 64:39:0b:2b:7c:8b:7a:94:e3:bf:0f:dd:9a:58:e4:80:9a:76: 77:0e:2d:b5:2a:da:0b:62:21:bc:9b:71:3a:99:69:7c:33:f3: 05:fb:ea:b5:f9:a7:64:ad:d8:00:43:9a:8c:59:3e:38:98:b0: d6:ff:db:cd:80:fb:15:6b:ce:64:e7:4e:cf:1b:81:18:c6:2a: f6:09:35:bb:c1:24:05:ee:9f:a7:51:84:b3:bd:a3:43:b4:2f: a2:e5:42:71 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0OUMxMTAvBgNVBAUTKDQzNjM0QzcwMUJBMUYxRUZDRThGNTZBQTZBRDFEQjI5 NDVBMURCOUYwHhcNMjYwMzI1MDQzODE3WhcNMjYwNDAxMDQzODE3WjAYMRYwFAYD VQQDEw02OWMzNjZiOS1jZjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1TNI61T0t5zUiXGP4wy5R1+5s7C0uPKFjA8WkOLdBskYfPXwmcvOTp6bG0Ts mSi9BN+b5tqGTeETHLlN//wuN2HR0be7TxsV+48FGxzYzC8S00odjTaoXHL04cTx l2RGREib2SJHNwlzCHd4TbFABpR7LtvEsT+YG1uZcV3mzOe35140vs40QxLKMHB2 6h9+kh9Dr+ovlTurmdpZWwaYAMgdwNaPr9Hvs5DC8ksvJ3zcb0OyNWfg5G98gNG2 74/ADapSyiyhUEZNrgeEoGxA9FqOppaq1EGBOkhQQK2zXTpzst1N7vtc9yPzkDsQ 1bwRttGuQCuZbTvw2u0hgUi7OwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPOowjaG G0wUR/cc3F0MOPtL33n7MB8GA1UdIwQYMBaAFENjTHAbofHvzo9WqmrR2ylFoduf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTQ5Qy9ERTg3MThDNDRB MzExMUVGQjdCQkQ1MUNDNEY5QUUwMi9RMk5NY0J1aDhlX09qMWFxYXRIYktVV2gy NTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1EyTk1jQnVoOGVfT2oxYXFhdEhiS1VXaDI1OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTQ5Qy9ERTg3MThDNDRBMzExMUVGQjdCQkQ1MUNDNEY5QUUwMi9RMk5NY0J1aDhl X09qMWFxYXRIYktVV2gyNTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnp03bW28ltELnC6m1MJZx6eBkrA5LEAZZ+3oOcFW+jffbdqOI3OYPaavNMzd /Roeu+ByV7L4bEmCROs0B0HEolyoy4Ho+eKB9nkhtPP1rgCNnGgCL71NoHIuigCp Qeon8zBiHByZQWfHGuQc4Dzvs4vS23JpUM6N+L+ZKJCSXJK9VDPpPRYky2RTKDt1 q/32LiQ4RmkfTzzvPII64QhjhCVAZDkLK3yLepTjvw/dmljkgJp2dw4ttSraC2Ih vJtxOplpfDPzBfvqtfmnZK3YAEOajFk+OJiw1v/bzYD7FWvOZOdOzxuBGMYq9gk1 u8EkBe6fp1GEs72jQ7QvouVCcQ== -----END CERTIFICATE-----Generated at Thu Mar 26 18:57:10 2026 by rpki-client