$ rpki-client -vvf rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft File: QL0lotYDGHPlXfzdrTpI97z4jIs.mft (raw, json) Hash identifier: SN+LFvG5JHAIgt0JvqP5MZOYOCtRuai+ItOxNLDenFk= Subject key identifier: FD:BA:31:5A:EE:18:18:B6:FD:C4:B7:71:FD:A6:B2:34:33:D3:AB:BD Authority key identifier: 40:BD:25:A2:D6:03:18:73:E5:5D:FC:DD:AD:3A:48:F7:BC:F8:8C:8B Certificate issuer: /CN=A9194A58/serialNumber=40BD25A2D6031873E55DFCDDAD3A48F7BCF88C8B Certificate serial: 18DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft Manifest number: 18D0 Signing time: Tue 24 Mar 2026 16:22:35 +0000 Manifest this update: Tue 24 Mar 2026 16:22:34 +0000 Manifest next update: Tue 31 Mar 2026 16:22:34 +0000 Files and hashes: 1: QL0lotYDGHPlXfzdrTpI97z4jIs.crl (hash: bs9bbQiQrfrSvMSAQY6ZTMb+Reay/7Ihq0aM1z+8rlw=) 2: 42D0E9A4AFD911E7B8A7E96CC4F9AE02.roa (hash: abf25FbH719hRhMiSj4RTqIJD+/I5r3H2hRBfJwMFgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.crl rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:22:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6366 (0x18de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194A58, serialNumber=40BD25A2D6031873E55DFCDDAD3A48F7BCF88C8B Validity Not Before: Mar 24 16:22:34 2026 GMT Not After : Mar 31 16:22:34 2026 GMT Subject: CN=69c2ba4b-2e60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:bc:74:84:57:2a:8d:cc:14:29:3a:6b:af:73: 4f:46:91:6c:09:4b:b9:48:76:fc:3a:8d:d1:40:fa: 50:09:1c:28:f2:13:87:04:ef:e5:48:df:85:8c:1e: 26:18:b5:97:31:8a:d1:91:ae:55:0d:2e:27:bc:1d: 60:23:af:d9:db:e2:e0:1a:7f:b4:e7:3f:7f:f8:2c: 1c:62:31:ef:e3:b8:8d:bb:01:56:6c:4d:b9:28:ae: 7c:71:fe:8d:bf:72:fc:87:1b:43:2e:7c:2f:63:01: f3:f1:ee:f8:d6:5d:57:de:2f:c2:77:38:6a:f3:ba: e9:d8:9d:5e:30:6f:ee:81:4d:65:f6:94:b1:98:27: 8a:eb:9b:10:f2:10:d4:ee:c5:c8:05:76:38:db:dc: 1f:4c:9f:ad:15:f9:fc:7a:9d:09:f2:bd:28:2e:e3: 23:51:b0:43:dd:f1:e8:58:4c:1f:1f:c1:4d:5d:7f: 8e:af:2b:fc:75:f0:fc:96:83:2e:e3:92:e8:e7:bc: 2c:c9:62:11:f9:e8:38:c7:ad:e7:bf:1d:c0:59:ee: a9:33:e1:2e:28:f0:ce:de:69:d6:8c:4a:a3:94:b9: a7:62:96:3b:a0:e2:2c:8a:1d:71:6d:93:ef:e1:75: 9c:cb:27:50:e7:19:4c:cf:17:f0:44:7a:f6:ed:f2: 4b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:BA:31:5A:EE:18:18:B6:FD:C4:B7:71:FD:A6:B2:34:33:D3:AB:BD X509v3 Authority Key Identifier: keyid:40:BD:25:A2:D6:03:18:73:E5:5D:FC:DD:AD:3A:48:F7:BC:F8:8C:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:64:33:1d:ee:5a:16:3a:4f:d7:ae:21:40:c8:25:49:03:2d: 44:fb:92:1c:4f:7c:8b:44:3e:b3:5b:3c:22:06:ad:09:a2:06: e5:1f:1b:f3:71:58:56:a5:a7:97:4b:57:2b:c6:72:84:2d:40: 0c:a2:dc:cc:0b:11:47:88:e8:d8:41:8b:2c:db:cc:73:0d:d5: 5f:67:a6:b5:58:e0:c8:92:2c:8a:e1:ea:a9:4d:a0:98:9c:a3: 9c:f9:00:9e:5c:2e:54:a1:d1:f8:01:db:3f:eb:42:ec:3a:9e: 09:bb:fd:c5:7f:55:ce:3f:c4:78:8a:01:32:e1:a9:a4:2a:28: de:4f:3d:c2:c6:6e:3d:8b:cf:21:d1:13:31:87:41:1b:ff:86: 75:74:29:52:29:ac:a8:aa:c7:df:20:24:d5:5c:59:ab:3e:dd: 4b:3c:af:85:6f:2b:8d:a7:83:42:11:ce:59:ac:4a:d0:1d:b2: 3f:d4:53:dc:6e:42:6d:fc:45:28:aa:c0:e1:2e:bf:4f:7e:d8: 32:a1:4e:4c:75:a5:2e:bc:3e:ea:c8:8d:4f:3b:50:d2:cf:75: 91:60:09:cc:e8:d2:09:d9:67:41:16:a9:6c:ee:bb:cc:9a:82: b3:d6:df:b5:ca:b6:09:6c:62:1f:09:bc:1c:50:7d:bf:b1:9e: ec:8f:39:d3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBNTgxMTAvBgNVBAUTKDQwQkQyNUEyRDYwMzE4NzNFNTVERkNEREFEM0E0OEY3 QkNGODhDOEIwHhcNMjYwMzI0MTYyMjM0WhcNMjYwMzMxMTYyMjM0WjAYMRYwFAYD VQQDEw02OWMyYmE0Yi0yZTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7x0hFcqjcwUKTprr3NPRpFsCUu5SHb8Oo3RQPpQCRwo8hOHBO/lSN+FjB4m GLWXMYrRka5VDS4nvB1gI6/Z2+LgGn+05z9/+CwcYjHv47iNuwFWbE25KK58cf6N v3L8hxtDLnwvYwHz8e741l1X3i/Cdzhq87rp2J1eMG/ugU1l9pSxmCeK65sQ8hDU 7sXIBXY429wfTJ+tFfn8ep0J8r0oLuMjUbBD3fHoWEwfH8FNXX+Oryv8dfD8loMu 45Lo57wsyWIR+eg4x63nvx3AWe6pM+EuKPDO3mnWjEqjlLmnYpY7oOIsih1xbZPv 4XWcyydQ5xlMzxfwRHr27fJLGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP26MVru GBi2/cS3cf2msjQz06u9MB8GA1UdIwQYMBaAFEC9JaLWAxhz5V383a06SPe8+IyL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEE1OC80RUFDRTQ5MEFF NDMxMUU3ODgxQzY0MTZDNEY5QUUwMi9RTDBsb3RZREdIUGxYZnpkclRwSTk3ejRq SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMMGxvdFlER0hQbFhmemRyVHBJOTd6NGpJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEE1OC80RUFDRTQ5MEFFNDMxMUU3ODgxQzY0MTZDNEY5QUUwMi9RTDBsb3RZREdI UGxYZnpkclRwSTk3ejRqSXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHWQzHe5aFjpP164hQMglSQMtRPuSHE98i0Q+s1s8IgatCaIG5R8b83FYVqWn l0tXK8ZyhC1ADKLczAsRR4jo2EGLLNvMcw3VX2emtVjgyJIsiuHqqU2gmJyjnPkA nlwuVKHR+AHbP+tC7DqeCbv9xX9Vzj/EeIoBMuGppCoo3k89wsZuPYvPIdETMYdB G/+GdXQpUimsqKrH3yAk1VxZqz7dSzyvhW8rjaeDQhHOWaxK0B2yP9RT3G5CbfxF KKrA4S6/T37YMqFOTHWlLrw+6siNTztQ0s91kWAJzOjSCdlnQRapbO67zJqCs9bf tcq2CWxiHwm8HFB9v7Ge7I850w== -----END CERTIFICATE-----Generated at Thu Mar 26 02:13:48 2026 by rpki-client