$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft File: -qIKGvsgkct_URR4g_NkpFMJQTE.mft (raw, json) Hash identifier: TDS4KEiLRVsvVfNbRJBRUSBg1/alM9j0OGdG+pv91os= Subject key identifier: 5F:6D:A9:75:D3:FB:6A:F3:B9:22:66:13:2A:8C:8B:3B:E4:C8:71:38 Authority key identifier: FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 Certificate issuer: /CN=A91AF0E8/serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Certificate serial: 3538 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft Manifest number: 352B Signing time: Tue 24 Mar 2026 15:05:03 +0000 Manifest this update: Tue 24 Mar 2026 15:05:02 +0000 Manifest next update: Tue 31 Mar 2026 15:05:02 +0000 Files and hashes: 1: -qIKGvsgkct_URR4g_NkpFMJQTE.crl (hash: GZHsu4wUeoyQgSHPFOCtdiTaEUOvKGnE86b0XNNc+KI=) 2: 0A956A80B48711EC83327546C4F9AE02.roa (hash: DWDLfS9VFoRUspo4gPt0SLH/400cssY5io0TF9oRBK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:05:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13624 (0x3538) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF0E8, serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Validity Not Before: Mar 24 15:05:02 2026 GMT Not After : Mar 31 15:05:02 2026 GMT Subject: CN=69c2a81f-f5b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:63:f7:54:1d:af:2a:bc:3d:4a:67:ab:cc:98: 5d:f7:14:ea:79:1e:98:a9:ae:67:f1:10:2e:d2:78: 97:6f:eb:38:45:a1:b7:6c:ea:37:14:97:7e:f3:c5: b2:9f:42:89:06:8c:a4:cf:f4:75:16:bf:98:d8:30: 0f:d6:5b:07:77:b1:d4:03:07:b7:a6:42:ea:d5:4d: 17:70:91:98:17:b8:31:7d:9f:e8:51:c4:b3:51:dc: c5:a1:87:ee:73:89:d7:dc:c2:17:06:c9:23:49:ce: db:69:36:f9:9d:26:05:08:93:3d:13:6e:8c:03:60: 40:3f:06:69:88:bd:91:fc:a5:4f:08:58:ec:32:1d: 4c:a7:6b:18:bd:ad:9f:65:9b:a6:a0:70:71:a5:8c: 89:cb:6b:e0:02:72:20:1d:b5:97:ca:61:82:c5:52: 64:42:12:43:4b:4e:74:f7:14:59:79:50:94:9b:25: 44:ff:27:df:ed:c8:1d:45:d0:f3:8f:4a:81:1b:7e: 07:cb:71:a5:74:fa:de:df:4a:55:1b:22:b7:c9:86: 14:09:3e:bb:d0:5d:a4:0d:37:53:1f:17:17:5c:79: 80:bc:be:70:46:78:67:fa:0d:d7:55:55:15:58:54: d0:c2:e5:62:c0:87:84:76:90:c1:db:fb:54:e3:bd: 25:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:6D:A9:75:D3:FB:6A:F3:B9:22:66:13:2A:8C:8B:3B:E4:C8:71:38 X509v3 Authority Key Identifier: keyid:FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:31:fd:8c:ed:39:0f:32:43:1a:0a:32:15:c0:fc:5c:23:09: d9:42:4f:76:4c:4a:db:f0:63:f6:3c:bc:3e:ff:8e:ba:f5:6d: e9:a2:c7:c0:aa:66:93:73:66:17:95:3b:f2:05:35:3d:08:15: d2:e5:5c:9c:40:3c:b3:f7:25:60:2f:e4:88:12:33:0b:81:4a: be:1e:b6:fe:5f:ea:25:08:8d:5d:72:e0:93:3f:21:c1:7f:a4: fc:79:61:03:1e:21:6b:82:24:84:fc:af:8d:1b:95:9d:da:28: b7:50:e8:53:60:32:fa:30:c4:60:4f:43:ae:93:b3:80:2f:36: 24:96:dd:c5:9d:b5:b6:3d:15:ab:25:4b:d4:a9:49:d3:4a:20: c5:be:83:d1:51:23:99:d3:46:96:0e:c8:90:0f:36:e4:2f:ff: bf:bd:d1:69:53:62:05:42:73:36:7c:11:03:78:c8:3d:35:35: 50:d2:92:45:b5:1a:57:26:21:26:89:8b:78:e9:3e:92:55:d2: 40:df:09:e8:79:a1:96:c4:69:ee:6a:83:7c:8b:32:09:5a:1e: b3:1d:11:55:6b:1d:15:57:09:53:0f:b2:c3:fe:9d:c7:38:19: fb:7c:f9:c6:40:a0:e4:60:8c:14:ed:18:69:23:de:6a:40:b3: 73:60:7a:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwRTgxMTAvBgNVBAUTKEZBQTIwQTFBRkIyMDkxQ0I3RjUxMTQ3ODgzRjM2NEE0 NTMwOTQxMzEwHhcNMjYwMzI0MTUwNTAyWhcNMjYwMzMxMTUwNTAyWjAYMRYwFAYD VQQDEw02OWMyYTgxZi1mNWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApGP3VB2vKrw9SmerzJhd9xTqeR6Yqa5n8RAu0niXb+s4RaG3bOo3FJd+88Wy n0KJBoykz/R1Fr+Y2DAP1lsHd7HUAwe3pkLq1U0XcJGYF7gxfZ/oUcSzUdzFoYfu c4nX3MIXBskjSc7baTb5nSYFCJM9E26MA2BAPwZpiL2R/KVPCFjsMh1Mp2sYva2f ZZumoHBxpYyJy2vgAnIgHbWXymGCxVJkQhJDS0509xRZeVCUmyVE/yff7cgdRdDz j0qBG34Hy3GldPre30pVGyK3yYYUCT670F2kDTdTHxcXXHmAvL5wRnhn+g3XVVUV WFTQwuViwIeEdpDB2/tU470lbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF9tqXXT +2rzuSJmEyqMizvkyHE4MB8GA1UdIwQYMBaAFPqiChr7IJHLf1EUeIPzZKRTCUEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjBFOC80NTc5NkFEMjFE QTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tjdF9VUlI0Z19Oa3BGTUpR VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1xSUtHdnNna2N0X1VSUjRnX05rcEZNSlFURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjBFOC80NTc5NkFEMjFEQTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tj dF9VUlI0Z19Oa3BGTUpRVEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGzH9jO05DzJDGgoyFcD8XCMJ2UJPdkxK2/Bj9jy8Pv+OuvVt6aLHwKpmk3Nm F5U78gU1PQgV0uVcnEA8s/clYC/kiBIzC4FKvh62/l/qJQiNXXLgkz8hwX+k/Hlh Ax4ha4IkhPyvjRuVndoot1DoU2Ay+jDEYE9DrpOzgC82JJbdxZ21tj0VqyVL1KlJ 00ogxb6D0VEjmdNGlg7IkA825C//v73RaVNiBUJzNnwRA3jIPTU1UNKSRbUaVyYh JomLeOk+klXSQN8J6HmhlsRp7mqDfIsyCVoesx0RVWsdFVcJUw+yw/6dxzgZ+3z5 xkCg5GCMFO0YaSPeakCzc2B6sg== -----END CERTIFICATE-----Generated at Thu Mar 26 13:35:35 2026 by rpki-client