$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft File: QELCSQ19r-wzIDFu1ap04L7Kqak.mft (raw, json) Hash identifier: O99re+Rgi+8g/eH6ZH7db2WLnRcmY1kD1yuiJj4Dxzs= Subject key identifier: C6:9A:67:81:2D:D1:79:E1:0F:AB:18:9B:36:3E:6A:5E:72:BD:8C:57 Authority key identifier: 40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 Certificate issuer: /CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Certificate serial: 01FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft Manifest number: 01B8 Signing time: Wed 25 Mar 2026 03:57:03 +0000 Manifest this update: Wed 25 Mar 2026 03:57:03 +0000 Manifest next update: Wed 01 Apr 2026 03:57:03 +0000 Files and hashes: 1: QELCSQ19r-wzIDFu1ap04L7Kqak.crl (hash: 0YWWtMHReJ/8iYjKMeg0HLN9+jw9AHIa0dNjjW1WaTc=) 2: 72E97B3A1BDB11F0B77B1344C4F9AE02.roa (hash: Uz5YIB2qHzCEXEXaaIxzPkDCZiRONtPBbETQ8up2rL4=) 3: 3E0BA21CEBB211EEA93D9B14C4F9AE02.roa (hash: LEMt/Yfn5HB27yq040h/X2ZpeZ06WvUDmE6FF+n/xcg=) 4: 3B8DEBA06FD511F0BF33C829C4F9AE02.roa (hash: onDMrjjQ14icCq/5REdHdzngDzUao5E9MVfp/qWaZvc=) 5: 3D937A30EBB211EEA93D9B14C4F9AE02.roa (hash: djP439PV+bB6f/PEqXTLBnLRW09ZGvFx+3wLd3DXu9A=) 6: 3C0376CC6FD511F0BF33C829C4F9AE02.roa (hash: fSUiL2knLy7NpgkmM8gcogpyWEWfXu055rthPlYELwM=) 7: FCF99042301011EFBC350682C4F9AE02.roa (hash: Gp1KX3pdnrlSvDAJ20hG9D6pIJ2t6fsfaUValhhyxHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:57:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 509 (0x1fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Validity Not Before: Mar 25 03:57:03 2026 GMT Not After : Apr 1 03:57:03 2026 GMT Subject: CN=69c35d0f-b3f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:2e:2b:e9:6f:69:c4:a0:ae:92:79:98:db:b7: 25:5b:59:99:7a:cb:d2:a3:9d:5b:a7:ed:e8:da:d0: ae:83:d5:12:51:8d:2f:05:10:7c:cb:9d:1f:10:fe: 06:d9:a5:f6:12:69:df:a7:58:2f:5d:bc:40:77:d9: 95:06:66:87:ff:88:fc:3e:22:83:f0:e5:4a:cf:3f: 33:1c:2a:9b:17:f1:91:62:bd:10:7d:ad:a7:39:58: 39:f5:c0:22:4a:1b:d9:ad:23:f4:67:bf:96:44:aa: 2b:52:fc:cb:1e:87:0c:a6:7b:c9:ec:2a:58:a6:84: 21:fb:44:a1:07:36:ea:37:da:5c:44:76:64:ae:7a: 60:00:69:b9:ae:84:d2:a3:b6:b1:34:38:eb:1f:cb: d0:60:8c:76:7c:d2:c3:e5:2a:1b:51:d4:15:36:2b: 6b:6e:44:ed:f8:65:b4:86:6e:a3:73:5d:c5:cc:41: 26:57:bd:c6:28:ac:3b:8c:b0:b6:94:25:e5:19:8f: 13:37:b0:26:4b:56:7b:bb:22:32:c0:c9:95:9b:98: 6d:20:53:16:08:04:c0:e7:3e:e5:37:38:db:69:66: 28:74:c4:86:01:6a:40:b0:1d:37:24:82:35:62:fa: 42:2b:34:ca:3b:d8:51:b0:1f:71:de:53:bc:c0:29: 69:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:9A:67:81:2D:D1:79:E1:0F:AB:18:9B:36:3E:6A:5E:72:BD:8C:57 X509v3 Authority Key Identifier: keyid:40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:84:ce:7a:ab:4a:43:5a:c3:d3:39:a1:4c:ee:13:2d:3d:b5: 65:a0:0c:2d:e5:b4:d0:e3:e0:eb:22:00:3c:67:31:b1:19:09: 79:0a:0c:6c:6c:50:a3:f9:2d:69:fa:d1:a6:b9:fc:c6:17:9b: f6:70:fa:bc:d2:fa:67:51:94:6c:15:07:d9:0e:f2:d8:b6:7c: d8:31:87:85:82:5c:1b:1e:e2:54:4e:d4:76:c3:5d:e8:7a:d9: 41:f5:c4:98:4f:0a:de:64:e5:e7:8b:db:e6:1f:0e:fc:2e:3a: c5:8f:8f:cc:93:9b:ae:b1:51:e9:61:31:70:84:4e:ab:28:39: be:e6:7b:c5:bf:cb:83:e3:c5:6b:22:c3:aa:f1:df:01:6f:a3: b8:fa:9c:7a:96:28:2b:41:3e:be:49:6c:1b:7c:0a:d5:c4:a3: 38:18:92:b7:1d:88:fd:a0:54:15:e0:85:2f:0b:55:87:0f:be: f3:b6:58:fd:7e:5e:5e:d7:a9:04:60:5d:f3:0d:51:42:90:86: 6b:8b:8b:65:25:90:ad:b2:f8:b4:b3:e4:63:79:f9:cf:2c:b7: ce:b7:25:e2:55:70:d7:7b:98:a5:7a:f4:b2:58:f5:76:5b:b2: a2:03:0e:f0:fe:02:c4:36:55:9d:63:f5:c2:12:80:92:1b:1c: 26:09:01:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKDQwNDJDMjQ5MEQ3REFGRUMzMzIwMzE2RUQ1QUE3NEUw QkVDQUE5QTkwHhcNMjYwMzI1MDM1NzAzWhcNMjYwNDAxMDM1NzAzWjAYMRYwFAYD VQQDEw02OWMzNWQwZi1iM2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiS4r6W9pxKCuknmY27clW1mZesvSo51bp+3o2tCug9USUY0vBRB8y50fEP4G 2aX2Emnfp1gvXbxAd9mVBmaH/4j8PiKD8OVKzz8zHCqbF/GRYr0Qfa2nOVg59cAi ShvZrSP0Z7+WRKorUvzLHocMpnvJ7CpYpoQh+0ShBzbqN9pcRHZkrnpgAGm5roTS o7axNDjrH8vQYIx2fNLD5SobUdQVNitrbkTt+GW0hm6jc13FzEEmV73GKKw7jLC2 lCXlGY8TN7AmS1Z7uyIywMmVm5htIFMWCATA5z7lNzjbaWYodMSGAWpAsB03JII1 YvpCKzTKO9hRsB9x3lO8wClppQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMaaZ4Et 0XnhD6sYmzY+al5yvYxXMB8GA1UdIwQYMBaAFEBCwkkNfa/sMyAxbtWqdOC+yqmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82MjMzREQzRUVC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXItd3pJREZ1MWFwMDRMN0tx YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FFTENTUTE5ci13eklERnUxYXAwNEw3S3Fhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzE2OS82MjMzREQzRUVCQUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXIt d3pJREZ1MWFwMDRMN0txYWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQITOeqtKQ1rD0zmhTO4TLT21ZaAMLeW00OPg6yIAPGcxsRkJeQoMbGxQo/kt afrRprn8xheb9nD6vNL6Z1GUbBUH2Q7y2LZ82DGHhYJcGx7iVE7UdsNd6HrZQfXE mE8K3mTl54vb5h8O/C46xY+PzJObrrFR6WExcIROqyg5vuZ7xb/Lg+PFayLDqvHf AW+juPqcepYoK0E+vklsG3wK1cSjOBiStx2I/aBUFeCFLwtVhw++87ZY/X5eXtep BGBd8w1RQpCGa4uLZSWQrbL4tLPkY3n5zyy3zrcl4lVw13uYpXr0slj1dluyogMO 8P4CxDZVnWP1whKAkhscJgkBNA== -----END CERTIFICATE-----Generated at Thu Mar 26 06:45:29 2026 by rpki-client