$ rpki-client -vvf rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft File: QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft (raw, json) Hash identifier: BHXRuTBqQD4mBE5/RmEsJxAlAlmHmCLJnOnvgXRJ/WE= Subject key identifier: 6F:08:84:A9:20:A8:4A:9C:DB:2B:53:1A:F7:1C:43:A7:3B:CC:D6:D4 Authority key identifier: 41:B4:34:91:5A:49:19:DC:EF:57:D6:97:7C:40:48:0D:FC:31:13:4D Certificate issuer: /CN=A91A25DF/serialNumber=41B434915A4919DCEF57D6977C40480DFC31134D Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft Manifest number: 87 Signing time: Fri 27 Mar 2026 07:10:08 +0000 Manifest this update: Fri 27 Mar 2026 07:10:07 +0000 Manifest next update: Fri 03 Apr 2026 07:10:07 +0000 Files and hashes: 1: QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl (hash: ARCBPRQ4WLBmNNGwbgFnz9EA7zZQTlJMxHdfILJQll8=) 2: C5B717905EDA11F0A5EAB579C4F9AE02.roa (hash: vV//1EEbPUz/O65Gy1tJMCCtU1GCZgX+F9nxMGWvmXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 06:55:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A25DF, serialNumber=41B434915A4919DCEF57D6977C40480DFC31134D Validity Not Before: Mar 27 07:10:07 2026 GMT Not After : Apr 3 07:10:07 2026 GMT Subject: CN=69c62d4f-2a6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:23:fa:27:04:81:98:bd:8b:ce:91:d8:ef:f5: dd:75:06:60:e9:69:b8:dc:58:cc:a6:a3:6d:20:cf: 98:17:f2:d6:03:8d:ec:0f:ce:90:5c:3f:81:e9:5c: eb:5c:74:a1:e7:f7:8b:fe:24:8f:46:f5:65:21:91: 78:2e:55:e5:71:db:cf:ac:eb:2b:fc:42:b0:7b:65: 6f:88:bd:e5:81:d6:4d:3e:60:97:8f:c3:f9:ba:e1: b3:82:4f:eb:36:9d:81:82:88:8f:c1:b9:f2:7e:62: e2:b5:09:23:95:30:30:aa:04:95:4e:a0:e7:f4:ee: 58:46:b1:80:08:3e:68:a2:0e:1f:e3:c6:b0:4b:45: e3:ce:7f:c7:f1:a9:79:ea:61:f3:71:5d:9b:4d:e4: dc:a1:c8:ba:79:e1:a6:bf:a6:74:b0:fa:62:d3:d0: f8:61:2b:9e:39:d3:4b:35:bb:83:c3:b5:94:fb:6e: 61:61:73:68:1e:7c:72:f2:31:60:d8:14:cf:01:72: 71:e9:2e:79:d2:37:ce:92:da:cc:b7:a9:d2:c2:2e: 6a:73:68:a7:f2:b7:14:8f:db:5b:a8:3e:78:32:1b: 17:d6:27:ac:aa:29:0f:6d:40:9e:67:1a:34:8c:15: 79:05:86:5b:a7:54:39:c1:39:9f:a6:b4:03:ba:61: 0f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:08:84:A9:20:A8:4A:9C:DB:2B:53:1A:F7:1C:43:A7:3B:CC:D6:D4 X509v3 Authority Key Identifier: keyid:41:B4:34:91:5A:49:19:DC:EF:57:D6:97:7C:40:48:0D:FC:31:13:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:61:e5:f4:93:d0:67:e6:9d:7e:56:83:8a:b0:5f:6b:30:44: 89:8c:18:ad:b2:6e:b5:a6:ef:21:17:7a:b7:69:ee:55:2c:b5: 1b:ee:92:26:59:b0:79:cb:25:d8:04:0b:75:80:07:ca:58:64: 5e:d1:29:e1:b5:ed:63:da:1b:63:b7:95:74:52:14:1b:bc:e9: 33:f9:61:bd:1a:45:8f:91:53:33:61:76:6a:82:8f:79:5e:cf: a2:16:29:1e:4f:d7:c0:a3:c6:66:1a:45:16:c4:49:2c:f9:a6: 2e:e5:a5:27:84:ba:c5:00:7d:38:29:48:49:a6:1a:92:81:0d: 25:7b:69:85:f3:e9:34:66:a0:0d:4a:7e:ed:55:6a:00:65:fd: a6:ab:eb:8e:8e:33:c1:78:a9:04:88:e2:fd:c2:23:98:6e:79: 2c:96:23:7f:ee:7a:ac:08:3e:8d:b5:45:ea:33:18:97:f3:01: 19:a4:c7:d9:6c:8b:82:85:f5:b3:a5:ae:07:cf:19:e8:24:4a: c7:c7:30:30:d0:0a:a2:7a:d3:f1:29:bf:de:9b:f8:44:3a:cd: 86:db:3e:71:a4:7f:e3:81:53:59:79:33:11:06:71:66:6a:fb: 21:2a:7f:6b:2c:c0:f3:23:21:4b:0a:53:78:c0:1a:e8:e4:ea: 9b:83:86:da -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI1REYxMTAvBgNVBAUTKDQxQjQzNDkxNUE0OTE5RENFRjU3RDY5NzdDNDA0ODBE RkMzMTEzNEQwHhcNMjYwMzI3MDcxMDA3WhcNMjYwNDAzMDcxMDA3WjAYMRYwFAYD VQQDEw02OWM2MmQ0Zi0yYTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApiP6JwSBmL2LzpHY7/XddQZg6Wm43FjMpqNtIM+YF/LWA43sD86QXD+B6Vzr XHSh5/eL/iSPRvVlIZF4LlXlcdvPrOsr/EKwe2VviL3lgdZNPmCXj8P5uuGzgk/r Np2BgoiPwbnyfmLitQkjlTAwqgSVTqDn9O5YRrGACD5oog4f48awS0Xjzn/H8al5 6mHzcV2bTeTcoci6eeGmv6Z0sPpi09D4YSueOdNLNbuDw7WU+25hYXNoHnxy8jFg 2BTPAXJx6S550jfOktrMt6nSwi5qc2in8rcUj9tbqD54MhsX1iesqikPbUCeZxo0 jBV5BYZbp1Q5wTmfprQDumEP3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG8IhKkg qEqc2ytTGvccQ6c7zNbUMB8GA1UdIwQYMBaAFEG0NJFaSRnc71fWl3xASA38MRNN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjVERi9FRjRBRDQ1MjVF RDUxMUYwOUNGMUQ1MENDNEY5QUUwMi9RYlEwa1ZwSkdkenZWOWFYZkVCSURmd3hF MDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FiUTBrVnBKR2R6dlY5YVhmRUJJRGZ3eEUwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjVERi9FRjRBRDQ1MjVFRDUxMUYwOUNGMUQ1MENDNEY5QUUwMi9RYlEwa1ZwSkdk enZWOWFYZkVCSURmd3hFMDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZmHl9JPQZ+adflaDirBfazBEiYwYrbJutabvIRd6t2nuVSy1G+6SJlmwecsl 2AQLdYAHylhkXtEp4bXtY9obY7eVdFIUG7zpM/lhvRpFj5FTM2F2aoKPeV7PohYp Hk/XwKPGZhpFFsRJLPmmLuWlJ4S6xQB9OClISaYakoENJXtphfPpNGagDUp+7VVq AGX9pqvrjo4zwXipBIji/cIjmG55LJYjf+56rAg+jbVF6jMYl/MBGaTH2WyLgoX1 s6WuB88Z6CRKx8cwMNAKonrT8Sm/3pv4RDrNhts+caR/44FTWXkzEQZxZmr7ISp/ ayzA8yMhSwpTeMAa6OTqm4OG2g== -----END CERTIFICATE-----Generated at Fri Mar 27 09:09:02 2026 by rpki-client