$ rpki-client -vvf rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft File: QgBM9ryh-lZCT17qJPYqkrJc3s8.mft (raw, json) Hash identifier: x93esKWZR4/EYO9O9atm6N9PtlGjFEWsmaDuwRpQs5o= Subject key identifier: B0:81:D9:AD:25:81:66:EE:54:C1:8C:5D:83:6D:6F:D5:CC:36:55:09 Authority key identifier: 42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF Certificate issuer: /CN=A919960D/serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF Certificate serial: 0267 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft Manifest number: 025F Signing time: Wed 25 Mar 2026 01:38:31 +0000 Manifest this update: Wed 25 Mar 2026 01:38:30 +0000 Manifest next update: Wed 01 Apr 2026 01:38:30 +0000 Files and hashes: 1: QgBM9ryh-lZCT17qJPYqkrJc3s8.crl (hash: x3TF7qrUW82xw037IjmQ3Qk2paNCpf+8VLU3l/ifDpw=) 2: BE9174768DDE11ED97AFDA82C4F9AE02.roa (hash: lWqXr9OCi9y8igTWAmlmDXkw3mBGBTPXv9Xm5W9NawI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:38:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 615 (0x267) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919960D, serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF Validity Not Before: Mar 25 01:38:30 2026 GMT Not After : Apr 1 01:38:30 2026 GMT Subject: CN=69c33c97-362f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:41:da:d4:88:a7:f0:73:b2:97:b7:ac:55:d1: 2d:fc:37:a7:5d:df:a0:59:24:6f:3f:59:0a:5f:e5: 1d:1f:4a:08:4b:f3:7c:c6:f6:ed:d2:cb:f1:0d:71: b4:0e:85:d3:04:62:1f:bb:7e:f8:d6:ad:dd:30:8f: fd:20:1d:d5:4a:85:35:96:88:a9:f5:e4:7a:5b:36: b7:e1:95:7d:8f:21:62:90:af:33:30:f1:3e:93:fe: 47:ea:05:62:bb:1c:c3:9c:e6:31:d6:a3:7d:ee:54: f3:4a:f8:ae:f0:3e:d1:01:cc:a4:94:ac:79:6b:8d: d3:cb:dc:a4:e6:7b:da:71:bc:e7:ba:75:49:7c:30: c6:dc:41:f3:51:18:19:f9:d1:c6:3b:bb:4c:db:f9: 8c:8f:4e:46:95:27:ff:bd:ec:e6:2f:76:5f:a0:b0: de:e9:27:19:4a:11:3a:57:6e:b6:78:49:7d:e7:3f: d7:bf:50:87:10:3f:f4:cd:30:5a:75:a3:30:c2:32: 6d:0e:e0:bb:5e:c1:f0:77:50:b5:4d:de:05:e9:3c: 27:85:6c:89:18:d1:c7:f5:7f:dc:a9:9f:94:42:32: 53:25:06:92:d6:cf:91:3e:40:48:0f:c2:ff:fd:ec: c6:9c:cf:c9:d5:f4:6f:47:bd:34:4b:7d:bb:54:da: 2d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:81:D9:AD:25:81:66:EE:54:C1:8C:5D:83:6D:6F:D5:CC:36:55:09 X509v3 Authority Key Identifier: keyid:42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:3f:da:88:dd:54:13:65:f2:7b:f8:28:28:56:c3:0c:73:d6: 8e:bf:66:e0:92:92:62:fd:8e:a3:f9:cf:ec:3d:ce:a1:f3:47: ad:3b:ee:0a:6c:b6:66:ff:dc:2e:74:1a:63:0f:90:ce:13:a8: 49:90:05:37:30:7c:c5:a5:9c:3f:cb:3f:3e:74:27:27:2a:6a: 33:94:b7:29:30:e0:69:eb:aa:3b:3c:c9:74:60:05:2a:57:05: f7:8c:18:77:86:a2:bd:47:29:04:1e:af:29:96:4e:0f:3d:fc: 43:d1:85:94:92:e0:8f:9a:bc:be:b9:d5:e0:df:ad:35:ad:4a: ee:b0:8a:73:37:4f:2f:9f:48:45:98:e1:e9:27:85:a9:01:80: f8:23:82:15:d9:de:3c:3d:11:2d:6e:15:1e:d1:44:1f:54:5c: 68:ea:74:98:3c:74:c5:ee:50:23:c8:1e:c7:44:1c:fb:47:42: ff:76:bc:7c:bd:d6:a1:32:c2:4a:8a:a8:6c:2b:1d:b5:27:f2: d1:5a:ac:36:dd:19:d1:6f:60:bb:0f:13:80:cb:e3:c2:cd:d1: 7d:6b:70:17:f1:74:b2:b2:f7:1c:23:8d:a5:cc:62:46:25:21: 5e:c9:88:21:20:5b:2e:7a:86:f9:59:b9:e3:f5:ba:fb:e8:f0: 05:01:64:f8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk2MEQxMTAvBgNVBAUTKDQyMDA0Q0Y2QkNBMUZBNTY0MjRGNUVFQTI0RjYyQTky QjI1Q0RFQ0YwHhcNMjYwMzI1MDEzODMwWhcNMjYwNDAxMDEzODMwWjAYMRYwFAYD VQQDEw02OWMzM2M5Ny0zNjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUHa1Iin8HOyl7esVdEt/DenXd+gWSRvP1kKX+UdH0oIS/N8xvbt0svxDXG0 DoXTBGIfu3741q3dMI/9IB3VSoU1loip9eR6Wza34ZV9jyFikK8zMPE+k/5H6gVi uxzDnOYx1qN97lTzSviu8D7RAcyklKx5a43Ty9yk5nvacbznunVJfDDG3EHzURgZ +dHGO7tM2/mMj05GlSf/vezmL3ZfoLDe6ScZShE6V262eEl95z/Xv1CHED/0zTBa daMwwjJtDuC7XsHwd1C1Td4F6TwnhWyJGNHH9X/cqZ+UQjJTJQaS1s+RPkBID8L/ /ezGnM/J1fRvR700S327VNot9wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLCB2a0l gWbuVMGMXYNtb9XMNlUJMB8GA1UdIwQYMBaAFEIATPa8ofpWQk9e6iT2KpKyXN7P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTYwRC9CRDBCNjRDNjhE REExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1sWkNUMTdxSlBZcWtySmMz czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnQk05cnloLWxaQ1QxN3FKUFlxa3JKYzNzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTYwRC9CRDBCNjRDNjhEREExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1s WkNUMTdxSlBZcWtySmMzczgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlj/aiN1UE2Xye/goKFbDDHPWjr9m4JKSYv2Oo/nP7D3OofNHrTvuCmy2Zv/c LnQaYw+QzhOoSZAFNzB8xaWcP8s/PnQnJypqM5S3KTDgaeuqOzzJdGAFKlcF94wY d4aivUcpBB6vKZZODz38Q9GFlJLgj5q8vrnV4N+tNa1K7rCKczdPL59IRZjh6SeF qQGA+COCFdnePD0RLW4VHtFEH1RcaOp0mDx0xe5QI8gex0Qc+0dC/3a8fL3WoTLC SoqobCsdtSfy0VqsNt0Z0W9guw8TgMvjws3RfWtwF/F0srL3HCONpcxiRiUhXsmI ISBbLnqG+Vm54/W6++jwBQFk+A== -----END CERTIFICATE-----Generated at Thu Mar 26 02:47:02 2026 by rpki-client