$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft File: -Q4hD858Z6Lysy3hTusFoEsNEOE.mft (raw, json) Hash identifier: B5X2SlhQM+oy+ynFvDGZ8odDcBMvtShwkXO58Vqw9mA= Subject key identifier: 9D:44:77:41:A1:C5:1A:2C:17:AE:0A:54:C8:50:58:A7:B3:55:A1:E3 Authority key identifier: F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 Certificate issuer: /CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Certificate serial: 01E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft Manifest number: 01E2 Signing time: Wed 25 Mar 2026 02:45:36 +0000 Manifest this update: Wed 25 Mar 2026 02:45:35 +0000 Manifest next update: Wed 01 Apr 2026 02:45:35 +0000 Files and hashes: 1: -Q4hD858Z6Lysy3hTusFoEsNEOE.crl (hash: EwSCNfTIigN1TFD26C7OBg7TSWIBmyv6XAdyBotlKXw=) 2: A99E5658488011EE8113A766C4F9AE02.roa (hash: SRaZz8UkrG0xf8PPTUnVH04dIH0Z2Emcacglv7QsArQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:45:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7369, serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Validity Not Before: Mar 25 02:45:35 2026 GMT Not After : Apr 1 02:45:35 2026 GMT Subject: CN=69c34c50-86eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a5:f9:75:2f:1e:8c:1d:ef:91:e0:03:25:ae: b7:cc:56:ab:8c:e7:f8:76:3a:2c:d9:bd:63:b4:0a: 1e:4b:38:79:cf:e6:8e:d9:2a:1b:73:99:5a:3f:dd: 4b:79:3a:5d:c7:d8:4c:01:f9:69:5a:49:37:f0:06: e8:4f:cc:b2:f1:bc:c3:d1:1d:8d:04:67:a7:21:5a: 08:6b:07:28:b1:da:66:43:39:e5:d2:b0:f1:c5:1c: 26:bc:cc:bd:11:92:88:e6:36:4d:f8:ff:7e:cb:8c: 9d:36:ff:0b:8f:89:c7:53:28:9d:78:ed:1a:1d:c6: a6:b1:c8:25:34:01:36:34:fb:9b:fd:15:49:2d:ed: cd:59:05:72:ea:d1:bc:8e:44:cf:08:80:17:17:8b: a9:5a:32:04:ed:cd:50:4f:ee:55:63:c4:7c:89:b5: 60:18:f6:11:09:21:6d:f9:67:0e:7a:72:63:76:e5: 51:5a:fb:b1:83:90:d7:f5:34:73:00:59:d2:b7:00: 64:8c:06:d8:b9:9e:7c:9f:f7:b8:fa:d4:77:97:65: 9a:e2:0c:f2:f7:ba:0c:a7:99:73:94:65:8d:32:ae: 4d:62:28:eb:33:37:ea:af:f4:6f:35:08:f9:a8:c5: 23:51:a5:a7:ab:92:e3:16:47:20:c9:8c:ed:d5:ca: 7d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:44:77:41:A1:C5:1A:2C:17:AE:0A:54:C8:50:58:A7:B3:55:A1:E3 X509v3 Authority Key Identifier: keyid:F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:3d:6e:e8:8a:87:9d:fa:b5:b0:8f:b7:00:e1:6f:18:22:84: 34:cc:15:ba:81:27:7c:32:b3:a0:dc:11:54:0c:8d:ef:d7:5f: ce:2c:f0:59:ef:3d:e0:bb:ca:a4:ed:e2:7c:02:22:87:48:90: f7:16:5c:4f:96:54:81:cb:59:0b:49:09:4e:11:79:d6:a2:3d: 9f:23:eb:56:9b:e2:a5:a8:57:6f:39:0e:c3:a3:b2:da:5b:48: 10:66:06:40:77:83:6b:73:de:da:d5:98:91:39:da:94:cb:68: a2:c5:74:1c:7b:89:55:99:35:2b:1d:b4:d3:5d:da:99:36:5d: 98:9a:d8:7e:98:bd:26:1f:13:94:d8:55:7f:e9:b2:74:d3:14: 22:ca:a8:d8:4e:2c:da:d4:e0:9a:45:be:19:14:4e:ca:22:89: 59:21:b5:3d:71:9e:84:72:79:7a:ad:52:68:e6:e8:9d:61:de: 12:c8:a6:84:5c:31:6b:ea:35:04:fe:5c:3a:43:63:e1:bf:d5: c4:5f:41:e3:b4:65:c9:2b:75:60:54:90:75:b5:6e:1b:10:0b: bf:7d:a3:72:33:5d:9c:11:f5:91:66:00:be:50:d6:d5:78:ae: a3:70:b5:a0:b6:ed:fa:4f:95:d1:7b:38:80:14:28:43:1d:a4: 0e:87:d7:ef -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTczNjkxMTAvBgNVBAUTKEY5MEUyMTBGQ0U3QzY3QTJGMkIzMkRFMTRFRUIwNUEw NEIwRDEwRTEwHhcNMjYwMzI1MDI0NTM1WhcNMjYwNDAxMDI0NTM1WjAYMRYwFAYD VQQDEw02OWMzNGM1MC04NmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoaX5dS8ejB3vkeADJa63zFarjOf4djos2b1jtAoeSzh5z+aO2Sobc5laP91L eTpdx9hMAflpWkk38AboT8yy8bzD0R2NBGenIVoIawcosdpmQznl0rDxxRwmvMy9 EZKI5jZN+P9+y4ydNv8Lj4nHUyideO0aHcamscglNAE2NPub/RVJLe3NWQVy6tG8 jkTPCIAXF4upWjIE7c1QT+5VY8R8ibVgGPYRCSFt+WcOenJjduVRWvuxg5DX9TRz AFnStwBkjAbYuZ58n/e4+tR3l2Wa4gzy97oMp5lzlGWNMq5NYijrMzfqr/RvNQj5 qMUjUaWnq5LjFkcgyYzt1cp9CwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ1Ed0Gh xRosF64KVMhQWKezVaHjMB8GA1UdIwQYMBaAFPkOIQ/OfGei8rMt4U7rBaBLDRDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzM2OS9CMUQ2MTk0MjQ4 N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2THlzeTNoVHVzRm9Fc05F T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RNGhEODU4WjZMeXN5M2hUdXNGb0VzTkVPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzM2OS9CMUQ2MTk0MjQ4N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2 THlzeTNoVHVzRm9Fc05FT0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANj1u6IqHnfq1sI+3AOFvGCKENMwVuoEnfDKzoNwRVAyN79dfzizwWe894LvK pO3ifAIih0iQ9xZcT5ZUgctZC0kJThF51qI9nyPrVpvipahXbzkOw6Oy2ltIEGYG QHeDa3Pe2tWYkTnalMtoosV0HHuJVZk1Kx20013amTZdmJrYfpi9Jh8TlNhVf+my dNMUIsqo2E4s2tTgmkW+GRROyiKJWSG1PXGehHJ5eq1SaObonWHeEsimhFwxa+o1 BP5cOkNj4b/VxF9B47RlySt1YFSQdbVuGxALv32jcjNdnBH1kWYAvlDW1Xiuo3C1 oLbt+k+V0Xs4gBQoQx2kDofX7w== -----END CERTIFICATE-----Generated at Thu Mar 26 16:06:55 2026 by rpki-client