$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft File: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft (raw, json) Hash identifier: xygLZcCs+75nv9GQS8gfv1+gAL2qhsVN9onDltlVeRQ= Subject key identifier: 44:CF:9E:B4:F7:72:70:41:92:F5:2C:89:88:A3:52:90:85:2A:D7:F4 Authority key identifier: 40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 Certificate issuer: /CN=A91BB492/serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft Manifest number: BE Signing time: Wed 25 Mar 2026 06:12:39 +0000 Manifest this update: Wed 25 Mar 2026 06:12:39 +0000 Manifest next update: Wed 01 Apr 2026 06:12:39 +0000 Files and hashes: 1: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl (hash: A6q1VlbH8UBsYUT4nf676MsjWzWczOOZgTMYOuzKIwc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:12:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB492, serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Validity Not Before: Mar 25 06:12:39 2026 GMT Not After : Apr 1 06:12:39 2026 GMT Subject: CN=69c37cd7-9a13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:14:07:1f:ae:6f:1f:50:07:89:ce:db:5b:bf: f2:7b:e5:51:a0:5f:71:cb:e8:17:44:1b:78:8b:30: 65:78:07:6d:fe:bf:6d:88:95:a6:c1:24:5f:31:08: 0b:74:06:c0:88:3e:7e:9c:70:be:15:35:5a:3a:4f: 3e:15:42:ff:60:e6:df:81:ed:6a:c0:74:81:b5:af: a8:39:af:ef:88:18:a6:b3:27:62:47:8a:16:af:e1: 8d:e8:52:de:00:3b:2f:95:4c:e3:26:be:b8:90:a4: c0:c2:0c:90:79:dc:d7:30:c1:0a:9d:2e:44:db:de: b9:cf:ad:03:0b:90:b2:46:38:7d:e0:01:e6:c6:9c: 3d:20:8f:8b:44:8e:44:69:ce:f0:63:e1:cf:09:a1: 50:0a:2e:34:74:60:64:2e:88:95:a3:7b:97:cf:9e: 15:7b:8b:a3:a8:76:8a:10:5e:c2:1a:f8:57:6a:c2: 61:01:12:cd:f1:0d:c8:ad:0d:84:3b:7b:5d:32:ef: 39:e3:fa:24:fb:ad:2e:98:37:8d:ed:7b:e2:db:cd: 1f:6c:89:0b:75:dc:08:82:31:2c:3f:7d:75:fa:61: fd:8d:08:15:95:f5:ec:dd:40:9e:b3:7d:98:1a:bc: 11:fe:f2:c3:6e:64:27:fa:05:3d:5e:e7:5f:7e:c2: 41:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:CF:9E:B4:F7:72:70:41:92:F5:2C:89:88:A3:52:90:85:2A:D7:F4 X509v3 Authority Key Identifier: keyid:40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:16:21:c4:df:14:ab:bf:77:14:74:67:f0:d1:9b:e5:a3:57: 5a:d4:61:af:e2:df:29:c3:b5:01:a3:96:0f:f3:d4:44:79:90: 01:cb:fc:bf:18:58:44:2a:49:7f:83:4b:8a:37:8e:d1:f7:08: 76:10:d7:5a:5d:a1:c2:2d:31:fc:41:cd:98:52:5e:db:d3:79: 02:36:e5:b5:06:02:13:4b:8b:fd:8a:b4:75:50:f3:f2:ab:15: 17:9a:88:97:53:ee:0a:d1:e6:5f:8e:f0:c0:0a:56:49:91:64: 91:9a:4c:3d:17:79:3c:98:ea:fc:f5:6e:77:71:72:27:f2:ec: 7c:57:6c:60:cf:88:de:f3:da:53:88:16:26:bf:c3:d3:36:3a: b2:c0:04:b4:87:cb:bf:f0:81:be:d6:cf:59:dd:ab:9a:eb:5f: 90:4e:7d:b5:46:1f:8e:1f:e9:a6:a2:c2:2a:e3:6b:ba:e3:6b: f8:f3:0d:03:59:de:43:23:04:13:07:67:07:ba:ce:2d:2e:6b: 31:f2:a9:12:ea:cd:81:e8:75:94:5d:a3:5a:7c:b0:f7:a7:ef: 63:28:a8:80:fa:da:57:84:fc:0b:41:ae:6a:7c:0c:57:b2:91: 67:5d:7b:69:4b:f4:ed:a9:8b:1e:0a:11:84:2b:19:db:b6:65: 3e:d2:45:f6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTIxMTAvBgNVBAUTKDQwRTRCRDM2QUUxNTA3N0ZFNTk5ODVEMTM3MEQ1RDY0 NjcwQTg4RDkwHhcNMjYwMzI1MDYxMjM5WhcNMjYwNDAxMDYxMjM5WjAYMRYwFAYD VQQDEw02OWMzN2NkNy05YTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlhQHH65vH1AHic7bW7/ye+VRoF9xy+gXRBt4izBleAdt/r9tiJWmwSRfMQgL dAbAiD5+nHC+FTVaOk8+FUL/YObfge1qwHSBta+oOa/viBimsydiR4oWr+GN6FLe ADsvlUzjJr64kKTAwgyQedzXMMEKnS5E2965z60DC5CyRjh94AHmxpw9II+LRI5E ac7wY+HPCaFQCi40dGBkLoiVo3uXz54Ve4ujqHaKEF7CGvhXasJhARLN8Q3IrQ2E O3tdMu854/ok+60umDeN7Xvi280fbIkLddwIgjEsP311+mH9jQgVlfXs3UCes32Y GrwR/vLDbmQn+gU9XudffsJBkwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFETPnrT3 cnBBkvUsiYijUpCFKtf0MB8GA1UdIwQYMBaAFEDkvTauFQd/5ZmF0TcNXWRnCojZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5Mi8yQzBCMzJEODA5 MzYxMUYwQTI4NDJENTdDNEY5QUUwMi9RT1M5TnE0VkIzX2xtWVhSTncxZFpHY0tp TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPUzlOcTRWQjNfbG1ZWFJOdzFkWkdjS2lOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjQ5Mi8yQzBCMzJEODA5MzYxMUYwQTI4NDJENTdDNEY5QUUwMi9RT1M5TnE0VkIz X2xtWVhSTncxZFpHY0tpTmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcRYhxN8Uq793FHRn8NGb5aNXWtRhr+LfKcO1AaOWD/PURHmQAcv8vxhYRCpJ f4NLijeO0fcIdhDXWl2hwi0x/EHNmFJe29N5AjbltQYCE0uL/Yq0dVDz8qsVF5qI l1PuCtHmX47wwApWSZFkkZpMPRd5PJjq/PVud3FyJ/LsfFdsYM+I3vPaU4gWJr/D 0zY6ssAEtIfLv/CBvtbPWd2rmutfkE59tUYfjh/ppqLCKuNruuNr+PMNA1neQyME EwdnB7rOLS5rMfKpEurNgeh1lF2jWnyw96fvYyiogPraV4T8C0GuanwMV7KRZ117 aUv07amLHgoRhCsZ27ZlPtJF9g== -----END CERTIFICATE-----Generated at Thu Mar 26 11:35:46 2026 by rpki-client