$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft File: qkHKgdI-9YhhkyqtErMWkNvPEAM.mft (raw, json) Hash identifier: 7G3TYc6+kPwW/w+Dcj7xqBSGTqtMgNKQ5kso5apmTHM= Subject key identifier: F5:51:4D:48:4E:08:84:22:04:17:AE:AD:A9:6E:F8:E5:4B:9C:51:52 Authority key identifier: AA:41:CA:81:D2:3E:F5:88:61:93:2A:AD:12:B3:16:90:DB:CF:10:03 Certificate issuer: /CN=A91A5744/serialNumber=AA41CA81D23EF58861932AAD12B31690DBCF1003 Certificate serial: 0CE3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkHKgdI-9YhhkyqtErMWkNvPEAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft Manifest number: 0CDB Signing time: Tue 24 Mar 2026 18:06:23 +0000 Manifest this update: Tue 24 Mar 2026 18:06:22 +0000 Manifest next update: Tue 31 Mar 2026 18:06:22 +0000 Files and hashes: 1: qkHKgdI-9YhhkyqtErMWkNvPEAM.crl (hash: b+Sc43Bs+oHaZl9X8XqFPDdcUb9euGSAtob553Ja7Hk=) 2: 220DBB66054011EA90A20C7EC4F9AE02.roa (hash: yHmDa4+sZL/pjlW06ii7KVBbPXMP7FrwSa8y+N4oSFo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.crl rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkHKgdI-9YhhkyqtErMWkNvPEAM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:06:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3299 (0xce3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5744, serialNumber=AA41CA81D23EF58861932AAD12B31690DBCF1003 Validity Not Before: Mar 24 18:06:22 2026 GMT Not After : Mar 31 18:06:22 2026 GMT Subject: CN=69c2d29f-b39b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:64:ec:96:60:80:82:38:ee:a0:ef:22:02:53: 8b:39:a1:a0:4d:2a:7f:d4:84:46:f6:dc:55:13:7c: b4:56:7d:02:59:37:eb:28:cd:3c:d2:ca:96:80:eb: 1b:d6:4b:14:96:2f:8e:24:c7:f2:93:7b:0e:c5:67: 68:67:c6:70:71:7a:6c:6b:7d:ad:56:dc:46:0f:19: 25:42:2f:be:3f:bb:0f:02:6d:fd:65:bc:7d:e6:7a: 9c:87:b7:33:46:98:5d:33:eb:64:b0:3b:3b:4d:42: 62:0c:18:0c:f9:e4:99:c8:7c:ee:33:ed:72:25:17: 58:2e:6a:f9:be:46:a6:64:17:bf:fb:7a:15:9c:61: 5a:3e:8c:85:3f:5f:04:32:3c:03:c6:8d:30:b2:a7: c3:df:da:cb:67:2a:7d:a5:c7:c3:30:3a:84:4c:d7: f5:66:bd:f2:13:3c:15:fa:3c:5a:c6:c6:e9:9d:c8: c8:d1:12:85:17:2a:80:c6:ea:24:cb:59:89:91:c2: a6:f0:8c:6b:c1:e2:dd:53:4e:a7:1f:0b:4a:02:d1: 9b:68:7c:e7:41:54:e4:2e:f9:da:46:45:4e:24:e6: f9:c5:d0:ad:61:23:8d:5e:f6:49:33:1d:c1:c1:62: be:24:cb:0a:fc:06:ec:89:75:2b:e8:8e:07:49:d9: 2e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:51:4D:48:4E:08:84:22:04:17:AE:AD:A9:6E:F8:E5:4B:9C:51:52 X509v3 Authority Key Identifier: keyid:AA:41:CA:81:D2:3E:F5:88:61:93:2A:AD:12:B3:16:90:DB:CF:10:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkHKgdI-9YhhkyqtErMWkNvPEAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5744/397F6CD4052E11EA9D314145C4F9AE02/qkHKgdI-9YhhkyqtErMWkNvPEAM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:c5:aa:47:e6:a5:bb:df:96:d1:8f:b2:96:e0:77:2b:69:42: bf:a1:e7:37:bb:08:ad:24:59:5d:79:76:9a:97:87:a0:93:45: c2:15:1b:f7:9c:a4:c2:ef:8f:72:bb:4e:ed:62:dd:b5:9a:37: 86:16:16:fd:c8:22:43:89:2a:05:71:c2:90:72:e2:15:b1:27: f2:7d:f4:3c:19:bb:b2:26:8d:eb:9f:6f:61:24:25:d6:a3:19: e8:e1:7b:9a:cb:91:c7:7e:47:19:ba:32:2a:60:3e:4a:0c:67: 7b:0b:e9:87:0b:c7:bd:81:a3:18:9e:2f:f1:90:4e:f6:56:ef: bf:c3:b5:7b:93:99:b4:d1:06:4d:a7:a1:c2:f0:53:92:46:e7: 54:3b:94:46:b2:9f:21:42:48:34:2e:e8:2a:d8:9a:f1:b7:5a: 7e:d5:f1:fd:ce:30:4e:fa:a8:b4:cb:1a:7d:42:a0:4e:f6:36: 45:80:ae:2f:e1:c9:0c:73:3c:28:1d:b5:17:d4:eb:3d:a8:ca: b8:45:81:e4:4e:32:08:c0:7f:5f:3d:ec:c4:b1:bb:a9:64:c3: e5:80:df:5b:c1:20:eb:57:aa:8b:a4:65:b6:6e:d9:2a:d0:ff: d4:72:68:9e:30:35:2c:a3:d9:e1:0a:5e:7c:8c:07:65:9f:6a: 89:aa:9f:5a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU3NDQxMTAvBgNVBAUTKEFBNDFDQTgxRDIzRUY1ODg2MTkzMkFBRDEyQjMxNjkw REJDRjEwMDMwHhcNMjYwMzI0MTgwNjIyWhcNMjYwMzMxMTgwNjIyWjAYMRYwFAYD VQQDEw02OWMyZDI5Zi1iMzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumTslmCAgjjuoO8iAlOLOaGgTSp/1IRG9txVE3y0Vn0CWTfrKM080sqWgOsb 1ksUli+OJMfyk3sOxWdoZ8ZwcXpsa32tVtxGDxklQi++P7sPAm39Zbx95nqch7cz RphdM+tksDs7TUJiDBgM+eSZyHzuM+1yJRdYLmr5vkamZBe/+3oVnGFaPoyFP18E MjwDxo0wsqfD39rLZyp9pcfDMDqETNf1Zr3yEzwV+jxaxsbpncjI0RKFFyqAxuok y1mJkcKm8IxrweLdU06nHwtKAtGbaHznQVTkLvnaRkVOJOb5xdCtYSONXvZJMx3B wWK+JMsK/AbsiXUr6I4HSdkuAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPVRTUhO CIQiBBeuralu+OVLnFFSMB8GA1UdIwQYMBaAFKpByoHSPvWIYZMqrRKzFpDbzxAD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTc0NC8zOTdGNkNENDA1 MkUxMUVBOUQzMTQxNDVDNEY5QUUwMi9xa0hLZ2RJLTlZaGhreXF0RXJNV2tOdlBF QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FrSEtnZEktOVloaGt5cXRFck1Xa052UEVBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTc0NC8zOTdGNkNENDA1MkUxMUVBOUQzMTQxNDVDNEY5QUUwMi9xa0hLZ2RJLTlZ aGhreXF0RXJNV2tOdlBFQU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAK8WqR+alu9+W0Y+yluB3K2lCv6HnN7sIrSRZXXl2mpeHoJNFwhUb95ykwu+P crtO7WLdtZo3hhYW/cgiQ4kqBXHCkHLiFbEn8n30PBm7siaN659vYSQl1qMZ6OF7 msuRx35HGboyKmA+SgxnewvphwvHvYGjGJ4v8ZBO9lbvv8O1e5OZtNEGTaehwvBT kkbnVDuURrKfIUJINC7oKtia8bdaftXx/c4wTvqotMsafUKgTvY2RYCuL+HJDHM8 KB21F9TrPajKuEWB5E4yCMB/Xz3sxLG7qWTD5YDfW8Eg61eqi6Rltm7ZKtD/1HJo njA1LKPZ4QpefIwHZZ9qiaqfWg== -----END CERTIFICATE-----Generated at Thu Mar 26 19:29:06 2026 by rpki-client