$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft File: Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft (raw, json) Hash identifier: wg7wN+hu41ovy+ilEW0l3k1xrKEdEHSGAe4ZShd+j4c= Subject key identifier: FC:DB:21:38:23:15:B1:C5:89:E5:A6:E8:30:CD:CD:C2:20:6F:8D:D9 Authority key identifier: 43:C3:CF:11:74:BD:72:B4:34:C6:92:8B:8A:BE:BF:05:D6:31:3F:40 Certificate issuer: /CN=A9198D20/serialNumber=43C3CF1174BD72B434C6928B8ABEBF05D6313F40 Certificate serial: 0C69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q8PPEXS9crQ0xpKLir6_BdYxP0A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft Manifest number: 0C61 Signing time: Tue 24 Mar 2026 18:29:18 +0000 Manifest this update: Tue 24 Mar 2026 18:29:17 +0000 Manifest next update: Tue 31 Mar 2026 18:29:17 +0000 Files and hashes: 1: Q8PPEXS9crQ0xpKLir6_BdYxP0A.crl (hash: 08K96H38His1F6NjEbJnW5ySbePw0xJvyax/Mlp3NRc=) 2: EE985C561CEA11EA8B382C0BC4F9AE02.roa (hash: diYWHRcynFoZNmpx96scFvi/2rL0ZDdh90uxb6XZ5ZY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.crl rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q8PPEXS9crQ0xpKLir6_BdYxP0A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3177 (0xc69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D20, serialNumber=43C3CF1174BD72B434C6928B8ABEBF05D6313F40 Validity Not Before: Mar 24 18:29:17 2026 GMT Not After : Mar 31 18:29:17 2026 GMT Subject: CN=69c2d7fe-4d0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:97:0c:fe:73:7c:3c:5a:ff:c6:d9:67:69:fd: 05:e6:6f:53:0f:f6:29:3b:92:08:a5:bf:6d:ed:d7: 5d:6f:53:68:02:53:f0:06:86:bf:c4:05:e1:7c:be: f5:9a:61:da:ea:e6:8b:c8:3c:c6:1f:0e:42:f3:fd: 54:95:36:04:47:a5:a4:d5:a1:28:bc:ad:d1:37:e8: 42:fb:1c:e4:92:e5:aa:51:b9:78:8c:24:52:b4:1a: ce:54:76:f4:7d:5f:0e:69:31:cc:68:18:54:cf:29: 64:0d:9c:17:5c:04:c4:1b:39:28:b2:c5:b0:04:db: ef:2a:0e:ef:05:1c:4c:c1:b8:f3:fa:69:4b:4e:c7: 07:e9:22:32:f9:9f:cc:4c:16:c8:f0:5b:7f:27:b8: d9:20:67:a6:a6:df:00:74:b4:7b:29:32:9d:36:cd: 56:be:92:9c:7c:0d:09:96:b5:9f:e2:6e:d6:90:bc: 98:70:fc:07:37:d6:c2:ea:ca:ec:66:fb:42:5e:a6: a1:f8:f2:f3:fe:0f:12:96:37:45:36:df:ea:54:6a: 42:a2:ac:0d:cd:79:b0:7d:59:2f:bb:7a:33:d7:71: 12:49:6f:a8:64:6e:28:db:a0:a5:6f:d3:12:9d:21: 36:bb:a8:11:f8:8b:1b:a1:91:0a:cc:49:9f:b7:94: f3:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:DB:21:38:23:15:B1:C5:89:E5:A6:E8:30:CD:CD:C2:20:6F:8D:D9 X509v3 Authority Key Identifier: keyid:43:C3:CF:11:74:BD:72:B4:34:C6:92:8B:8A:BE:BF:05:D6:31:3F:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q8PPEXS9crQ0xpKLir6_BdYxP0A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:49:d7:95:42:b5:d0:4d:9f:f1:d9:6e:44:57:6c:91:4e:70: 90:0c:60:95:91:38:19:4e:b0:c6:8e:e1:f2:8d:af:52:70:3e: 3a:6e:96:6a:24:ab:18:89:93:1d:7a:9e:23:51:1d:59:30:93: 88:04:ac:64:dd:eb:e2:16:3f:eb:9d:5a:1d:59:85:55:c4:f6: 28:f2:8a:95:38:36:ec:0b:71:95:ef:5c:04:1b:e4:19:5f:d7: 21:2f:c9:3f:8e:1c:17:77:21:b1:3e:29:7b:81:d0:48:b1:1d: 22:23:23:f5:5b:ff:6c:56:69:b4:a6:08:b2:7a:20:ab:9c:81: c3:20:4d:59:08:a0:ec:1e:c9:ca:28:36:e9:03:ed:dc:7b:10: 62:bb:77:d2:5a:86:eb:cf:52:c2:26:0b:30:94:c8:1b:63:2b: 23:4c:9b:02:7a:34:40:8b:f1:62:cf:14:3f:11:26:2a:81:47: 77:8f:a3:82:a0:80:7d:b1:a0:7f:39:a3:61:40:37:8d:88:64: 71:1c:d6:a2:8e:af:98:2b:35:5f:a7:ce:a5:34:10:22:a6:21: 0a:c1:42:5f:f9:a1:96:d2:3e:3d:bf:4f:49:2d:17:47:be:c8: 8a:ab:b6:0b:d5:67:6b:d7:6c:b4:f3:22:d3:c0:74:b4:a7:86: 74:34:03:cd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMjAxMTAvBgNVBAUTKDQzQzNDRjExNzRCRDcyQjQzNEM2OTI4QjhBQkVCRjA1 RDYzMTNGNDAwHhcNMjYwMzI0MTgyOTE3WhcNMjYwMzMxMTgyOTE3WjAYMRYwFAYD VQQDEw02OWMyZDdmZS00ZDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZcM/nN8PFr/xtlnaf0F5m9TD/YpO5IIpb9t7dddb1NoAlPwBoa/xAXhfL71 mmHa6uaLyDzGHw5C8/1UlTYER6Wk1aEovK3RN+hC+xzkkuWqUbl4jCRStBrOVHb0 fV8OaTHMaBhUzylkDZwXXATEGzkossWwBNvvKg7vBRxMwbjz+mlLTscH6SIy+Z/M TBbI8Ft/J7jZIGempt8AdLR7KTKdNs1WvpKcfA0JlrWf4m7WkLyYcPwHN9bC6srs ZvtCXqah+PLz/g8SljdFNt/qVGpCoqwNzXmwfVkvu3oz13ESSW+oZG4o26Clb9MS nSE2u6gR+IsboZEKzEmft5TzWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPzbITgj FbHFieWm6DDNzcIgb43ZMB8GA1UdIwQYMBaAFEPDzxF0vXK0NMaSi4q+vwXWMT9A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQyMC8zRjc3MDNDMjFD RTkxMUVBOTg4OTc0ODdDNEY5QUUwMi9ROFBQRVhTOWNyUTB4cEtMaXI2X0JkWXhQ MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E4UFBFWFM5Y3JRMHhwS0xpcjZfQmRZeFAwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQyMC8zRjc3MDNDMjFDRTkxMUVBOTg4OTc0ODdDNEY5QUUwMi9ROFBQRVhTOWNy UTB4cEtMaXI2X0JkWXhQMEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEEnXlUK10E2f8dluRFdskU5wkAxglZE4GU6wxo7h8o2vUnA+Om6WaiSrGImT HXqeI1EdWTCTiASsZN3r4hY/651aHVmFVcT2KPKKlTg27Atxle9cBBvkGV/XIS/J P44cF3chsT4pe4HQSLEdIiMj9Vv/bFZptKYIsnogq5yBwyBNWQig7B7Jyig26QPt 3HsQYrt30lqG689SwiYLMJTIG2MrI0ybAno0QIvxYs8UPxEmKoFHd4+jgqCAfbGg fzmjYUA3jYhkcRzWoo6vmCs1X6fOpTQQIqYhCsFCX/mhltI+Pb9PSS0XR77Iiqu2 C9Vna9dstPMi08B0tKeGdDQDzQ== -----END CERTIFICATE-----Generated at Thu Mar 26 02:33:01 2026 by rpki-client