$ rpki-client -vvf rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft File: Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft (raw, json) Hash identifier: YzkOAgF83YjbSLU6sqNWdjHP0Tm4QRLkbgQl4LazQ6s= Subject key identifier: F1:0B:D5:27:8F:04:E1:CC:B3:DD:40:58:34:26:99:A6:B0:D8:0B:DA Authority key identifier: 43:D2:50:D5:C1:F6:09:ED:17:4D:FF:26:43:01:DB:45:BE:25:B1:B4 Certificate issuer: /CN=A91978DD/serialNumber=43D250D5C1F609ED174DFF264301DB45BE25B1B4 Certificate serial: 17D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft Manifest number: 17C7 Signing time: Tue 24 Mar 2026 16:28:01 +0000 Manifest this update: Tue 24 Mar 2026 16:28:01 +0000 Manifest next update: Tue 31 Mar 2026 16:28:01 +0000 Files and hashes: 1: Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl (hash: l9KbM07Dbui3NapuICuzkY+485jNZIyGTl2aNTXxvbs=) 2: 16ABD910E0C111E7BA64DE22C4F9AE02.roa (hash: R19qxLrIh1c+/g96rJpVUSyzG1wIPKCyqhlsnSxYpaw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:28:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6099 (0x17d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91978DD, serialNumber=43D250D5C1F609ED174DFF264301DB45BE25B1B4 Validity Not Before: Mar 24 16:28:01 2026 GMT Not After : Mar 31 16:28:01 2026 GMT Subject: CN=69c2bb91-f09d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5f:20:f6:2c:a1:ab:e0:f0:86:dc:55:2d:e8: cc:e2:2d:c6:81:2d:d2:74:fa:d1:cb:12:1a:00:5f: 19:96:12:b1:4b:ba:8f:fa:07:68:24:c5:45:a6:0b: 1d:9b:30:91:2a:08:2a:3b:0d:fc:5d:d5:83:ce:94: ff:7a:63:8d:0e:2f:90:0c:4d:2c:6b:b5:ba:54:30: 88:27:17:53:c9:59:38:e3:7f:5a:16:f6:84:53:73: 86:17:f1:f2:f7:7b:62:b2:48:25:36:48:ef:ec:16: fc:b7:a3:75:17:6a:7c:a8:af:4e:fa:91:bc:86:03: 41:c7:94:79:27:7f:85:0a:cc:af:c7:86:78:ea:10: 42:07:39:b2:fa:70:d3:03:52:45:a7:19:26:c5:20: 79:a4:10:7b:0d:ec:06:e7:64:9f:11:0d:c0:f8:5c: 33:6a:e6:7a:50:bd:9f:87:f7:34:91:fb:ea:0e:fe: 41:5d:a2:ad:b1:84:44:b9:c9:64:2e:9c:e0:5b:37: 6b:a6:33:04:1a:13:79:60:da:da:18:e5:b1:6b:dd: 21:d5:71:87:9d:4f:35:0f:e9:8c:52:26:c2:90:15: 4c:fd:aa:09:44:3f:e8:79:e1:ba:8f:cc:1b:aa:2c: c5:b6:a5:45:87:a1:46:95:3f:ea:dc:ff:78:ad:2e: 67:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:0B:D5:27:8F:04:E1:CC:B3:DD:40:58:34:26:99:A6:B0:D8:0B:DA X509v3 Authority Key Identifier: keyid:43:D2:50:D5:C1:F6:09:ED:17:4D:FF:26:43:01:DB:45:BE:25:B1:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:e7:e8:57:ca:f2:b0:b9:ea:05:84:5b:59:66:cf:4d:f4:06: c0:eb:b4:6f:4f:a8:74:21:de:76:45:84:cd:5d:64:78:ec:86: 28:87:f5:26:76:02:dc:82:c1:38:db:d3:31:9c:5a:d2:7f:3a: 1a:80:bc:c2:2a:5d:ee:83:9a:fd:c9:7b:1d:06:d6:dd:53:77: 18:67:44:b4:18:2f:ca:ec:95:98:a3:6a:e1:a1:bf:8b:4e:e7: df:16:c4:3b:e2:da:1e:2e:bb:f1:9d:91:cc:87:d4:2f:5f:c1: 75:dc:9f:a2:4d:22:36:76:f2:a1:02:da:ec:a1:64:a0:d4:11: b8:9a:e0:e3:a0:c1:ea:4f:da:a1:73:97:c0:0b:39:46:37:3a: db:38:bd:95:49:dc:95:16:03:0c:cf:22:b4:69:86:6c:24:c3: 08:4c:3b:3b:ed:5c:49:07:9e:bb:71:6b:1c:8a:78:4e:ef:d6: d9:49:3c:67:c1:3c:3a:d0:90:d2:77:da:84:93:13:70:a2:0c: b8:93:a6:90:78:28:61:69:77:c9:0a:45:96:38:1f:33:81:92: 38:17:48:8f:1a:4a:8f:cb:4f:ca:89:44:7b:5c:3d:d2:2f:ea: 0d:b1:46:d4:d4:d7:ee:55:6f:38:e0:7b:3c:e9:29:b1:ab:ca: bb:7c:f7:ec -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICF9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc4REQxMTAvBgNVBAUTKDQzRDI1MEQ1QzFGNjA5RUQxNzRERkYyNjQzMDFEQjQ1 QkUyNUIxQjQwHhcNMjYwMzI0MTYyODAxWhcNMjYwMzMxMTYyODAxWjAYMRYwFAYD VQQDEw02OWMyYmI5MS1mMDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvV8g9iyhq+DwhtxVLejM4i3GgS3SdPrRyxIaAF8ZlhKxS7qP+gdoJMVFpgsd mzCRKggqOw38XdWDzpT/emONDi+QDE0sa7W6VDCIJxdTyVk4439aFvaEU3OGF/Hy 93tiskglNkjv7Bb8t6N1F2p8qK9O+pG8hgNBx5R5J3+FCsyvx4Z46hBCBzmy+nDT A1JFpxkmxSB5pBB7DewG52SfEQ3A+FwzauZ6UL2fh/c0kfvqDv5BXaKtsYREuclk LpzgWzdrpjMEGhN5YNraGOWxa90h1XGHnU81D+mMUibCkBVM/aoJRD/oeeG6j8wb qizFtqVFh6FGlT/q3P94rS5ndwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPEL1SeP BOHMs91AWDQmmaaw2AvaMB8GA1UdIwQYMBaAFEPSUNXB9gntF03/JkMB20W+JbG0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzhERC9DQzE4RDlENEUw QjYxMUU3OTlBMkI2ODJDNEY5QUUwMi9ROUpRMWNIMkNlMFhUZjhtUXdIYlJiNGxz YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E5SlExY0gyQ2UwWFRmOG1Rd0hiUmI0bHNiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzhERC9DQzE4RDlENEUwQjYxMUU3OTlBMkI2ODJDNEY5QUUwMi9ROUpRMWNIMkNl MFhUZjhtUXdIYlJiNGxzYlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEufoV8rysLnqBYRbWWbPTfQGwOu0b0+odCHedkWEzV1keOyGKIf1JnYC3ILB ONvTMZxa0n86GoC8wipd7oOa/cl7HQbW3VN3GGdEtBgvyuyVmKNq4aG/i07n3xbE O+LaHi678Z2RzIfUL1/Bddyfok0iNnbyoQLa7KFkoNQRuJrg46DB6k/aoXOXwAs5 Rjc62zi9lUnclRYDDM8itGmGbCTDCEw7O+1cSQeeu3FrHIp4Tu/W2Uk8Z8E8OtCQ 0nfahJMTcKIMuJOmkHgoYWl3yQpFljgfM4GSOBdIjxpKj8tPyolEe1w90i/qDbFG 1NTX7lVvOOB7POkpsavKu3z37A== -----END CERTIFICATE-----Generated at Thu Mar 26 07:15:12 2026 by rpki-client