$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft File: qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft (raw, json) Hash identifier: 0ZWKnRBVS5jxOF6YAIBrerMjuGYKT2rSIhZk7dtBIpE= Subject key identifier: 85:5F:C9:66:5A:BD:64:49:18:32:67:20:02:44:2D:49:EC:72:25:D9 Authority key identifier: AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 Certificate issuer: /CN=A91C0BE1/serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Certificate serial: 0693 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft Manifest number: 068C Signing time: Tue 24 Mar 2026 22:10:56 +0000 Manifest this update: Tue 24 Mar 2026 22:10:56 +0000 Manifest next update: Tue 31 Mar 2026 22:10:56 +0000 Files and hashes: 1: qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl (hash: fJSiaLiEO+58kBqMLcMeqltwJHFBfhOliY9U4+SHq4I=) 2: 0C3EAFF6F84111EC926CBF53C4F9AE02.roa (hash: /ULmSnSTdH0/f1q4tjs1akmKQxqjyakkSOX6RXEjmGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:10:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1683 (0x693) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0BE1, serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Validity Not Before: Mar 24 22:10:56 2026 GMT Not After : Mar 31 22:10:56 2026 GMT Subject: CN=69c30bf0-8d3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:08:b3:df:de:30:bd:e9:1a:5d:74:bd:5f:93: dd:a0:e9:e4:21:34:38:0b:5f:e2:c3:02:40:13:d2: 10:af:bd:84:74:d8:77:2c:3f:e8:05:49:e1:a0:f9: b0:e3:55:d1:8b:fe:ea:85:7c:15:d7:b2:18:d5:44: 68:75:44:d5:48:da:de:ed:c5:50:25:01:1f:80:94: 9a:fd:ec:47:f5:d9:49:fe:92:4f:44:be:9d:59:e9: 8f:03:c1:06:bd:d9:da:42:7b:ea:a7:92:f4:d3:f7: c6:94:7d:d2:2f:77:c3:c1:98:71:aa:ae:dc:14:42: e8:ac:03:41:a2:28:36:6c:30:c1:2e:ff:f6:1d:6e: 03:f1:dc:c8:7d:8c:ea:9a:65:e5:2c:a8:40:2b:a9: 76:9c:58:80:b0:68:92:cd:dc:51:ab:c1:89:2f:7a: 33:1d:d3:56:0f:25:54:65:c9:cf:4d:e3:cf:0f:44: 65:d1:70:2e:54:43:a5:61:b2:9d:45:77:95:6e:58: 7e:46:df:45:98:e9:f8:c1:1c:f3:ea:cf:32:e8:2f: 26:45:ae:75:e5:53:f2:2b:30:d1:87:8c:b4:5e:57: c5:57:4d:fb:33:7f:70:b6:3e:d5:7c:ee:2c:2f:de: d1:4f:8c:25:73:c3:a0:62:1b:2c:32:69:30:1d:d3: db:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:5F:C9:66:5A:BD:64:49:18:32:67:20:02:44:2D:49:EC:72:25:D9 X509v3 Authority Key Identifier: keyid:AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:b2:84:41:3f:cf:c4:ea:f1:69:dd:8d:df:e5:a4:9a:1e:e6: 0a:d7:cc:9c:e8:1e:1a:89:01:32:f9:48:02:7e:d2:9b:05:d3: 40:e5:79:2b:ca:26:b0:d2:e7:b3:d0:b7:6f:52:b3:51:1a:9d: cb:77:cc:31:d9:94:4a:26:af:3c:2f:68:28:1f:f8:79:0d:ce: fb:e7:72:ea:72:9b:bc:60:ae:3f:5f:a6:3b:a1:e1:a2:b1:bd: c1:59:21:18:54:42:02:87:ce:76:f6:37:42:b9:d1:0e:42:25: c5:42:6d:9d:74:09:76:32:0c:aa:07:30:44:1a:8a:b8:b8:2a: 87:df:cc:03:cc:eb:8a:2c:dd:e0:ce:ba:e7:2d:82:c1:05:75: b8:f7:44:86:ed:83:d9:88:a1:a6:81:88:d0:18:ae:28:eb:9f: 6b:c1:9b:11:8f:f9:86:3a:25:cf:da:0b:56:28:cb:51:d5:31: c4:ae:71:56:a6:45:9c:29:1a:30:13:f8:e4:5b:7b:e8:8a:72: 5b:cb:d7:e5:b6:d8:70:60:f9:9c:0d:6f:84:27:a9:ff:95:17: d5:c6:82:5b:89:57:a6:97:27:d5:67:f8:96:1a:73:bf:55:4b: a3:34:f2:c7:85:57:2b:fa:34:37:47:fe:a5:3c:4d:57:2d:1b: e0:80:7f:52 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBCRTExMTAvBgNVBAUTKEFBMjFCNjkwQzFENjNDQkY0NDFBQTNCRDExN0VEOEI3 ODY4ODIyMjkwHhcNMjYwMzI0MjIxMDU2WhcNMjYwMzMxMjIxMDU2WjAYMRYwFAYD VQQDEw02OWMzMGJmMC04ZDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8giz394wvekaXXS9X5PdoOnkITQ4C1/iwwJAE9IQr72EdNh3LD/oBUnhoPmw 41XRi/7qhXwV17IY1URodUTVSNre7cVQJQEfgJSa/exH9dlJ/pJPRL6dWemPA8EG vdnaQnvqp5L00/fGlH3SL3fDwZhxqq7cFELorANBoig2bDDBLv/2HW4D8dzIfYzq mmXlLKhAK6l2nFiAsGiSzdxRq8GJL3ozHdNWDyVUZcnPTePPD0Rl0XAuVEOlYbKd RXeVblh+Rt9FmOn4wRzz6s8y6C8mRa515VPyKzDRh4y0XlfFV037M39wtj7VfO4s L97RT4wlc8OgYhssMmkwHdPbEQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIVfyWZa vWRJGDJnIAJELUnsciXZMB8GA1UdIwQYMBaAFKohtpDB1jy/RBqjvRF+2LeGiCIp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEJFMS9FNDZGRjQ5MEFF MkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BMOUVHcU85RVg3WXQ0YUlJ aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FpRzJrTUhXUEw5RUdxTzlFWDdZdDRhSUlpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEJFMS9FNDZGRjQ5MEFFMkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BM OUVHcU85RVg3WXQ0YUlJaWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnLKEQT/PxOrxad2N3+Wkmh7mCtfMnOgeGokBMvlIAn7SmwXTQOV5K8omsNLn s9C3b1KzURqdy3fMMdmUSiavPC9oKB/4eQ3O++dy6nKbvGCuP1+mO6HhorG9wVkh GFRCAofOdvY3QrnRDkIlxUJtnXQJdjIMqgcwRBqKuLgqh9/MA8zriizd4M665y2C wQV1uPdEhu2D2YihpoGI0BiuKOufa8GbEY/5hjolz9oLVijLUdUxxK5xVqZFnCka MBP45Ft76IpyW8vX5bbYcGD5nA1vhCep/5UX1caCW4lXppcn1Wf4lhpzv1VLozTy x4VXK/o0N0f+pTxNVy0b4IB/Ug== -----END CERTIFICATE-----Generated at Thu Mar 26 05:11:13 2026 by rpki-client