$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft File: QNueLLrezam5cjUQIVB63NGlYn8.mft (raw, json) Hash identifier: 1h2Y6nkM03J7N7nHQ2IBdFbrKGQcgokdjWuR5NxF7+0= Subject key identifier: B4:D7:0A:8A:EA:4E:29:D4:F1:90:B8:21:9F:4E:C9:2C:16:AB:14:BF Authority key identifier: 40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F Certificate issuer: /CN=A91C8B4F/serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Certificate serial: 04D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft Manifest number: 04C1 Signing time: Tue 24 Mar 2026 23:36:10 +0000 Manifest this update: Tue 24 Mar 2026 23:36:10 +0000 Manifest next update: Tue 31 Mar 2026 23:36:10 +0000 Files and hashes: 1: QNueLLrezam5cjUQIVB63NGlYn8.crl (hash: XgxJjn9Ptp7T9tZbhez14/SfhlXY4551mtEEKLynDSQ=) 2: F3B1927A1E0511F1841549681E3D8C67.roa (hash: KFJazkmvnPBoQlHt7NJ9M2Eg3tsyR0kZTa+OC7vwIGs=) 3: 65798E8A1F7D11F18F98CA06223D8C67.roa (hash: RZFsnQn6HA9v12vUgYh/78hGLqlY8AmjxFGu89yIv54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1239 (0x4d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8B4F, serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Validity Not Before: Mar 24 23:36:10 2026 GMT Not After : Mar 31 23:36:10 2026 GMT Subject: CN=69c31fea-972f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b8:45:b9:53:8f:0a:9f:cf:d7:ba:4b:ba:c7: 07:e5:21:83:cd:0f:b8:05:8b:fa:e6:06:f3:df:3d: 51:9c:46:fe:c6:97:ae:c0:9a:5e:6e:94:da:5e:b3: d2:b8:35:79:bf:ff:fd:f2:8c:80:38:16:e2:f6:53: fb:77:41:29:37:a5:d6:23:17:07:20:44:4f:4c:2d: 59:83:bb:87:1e:1f:2a:d4:6f:92:44:25:c2:d2:74: d0:6c:fc:0b:5c:65:bf:8f:ad:fd:2e:52:81:95:a4: 4e:0f:72:26:4c:27:78:24:35:ad:14:3c:a1:67:32: 13:ce:ad:79:c4:ca:39:25:57:d8:b6:df:f9:10:6e: 01:f9:7f:f8:a1:97:49:7e:ed:19:7e:40:01:33:78: 09:b9:1c:11:47:ae:66:c4:5c:60:4f:e5:db:74:48: 36:6c:c2:05:65:f3:77:43:6b:1f:2e:3b:6a:8e:f7: cc:c1:9c:19:c7:51:88:03:e9:a8:33:ef:3f:c3:0e: 29:47:6e:b6:f7:5e:c6:a9:e8:95:c8:4e:3c:f2:7d: 2a:b8:5c:6c:6e:09:db:cf:fc:c9:e8:35:02:c7:4c: c2:45:31:49:94:a9:ac:a0:5a:ed:ac:a8:db:94:c0: bc:f4:29:44:38:f8:f7:e7:ef:69:56:5f:7a:91:96: 38:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:D7:0A:8A:EA:4E:29:D4:F1:90:B8:21:9F:4E:C9:2C:16:AB:14:BF X509v3 Authority Key Identifier: keyid:40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:08:4b:c7:50:53:78:1a:51:20:93:6e:a0:17:16:b7:79:3a: 8f:1b:a9:13:98:c7:6e:97:bb:88:5d:ff:c4:37:c7:4c:91:62: a8:77:91:d9:95:da:11:a3:d8:07:d4:23:5d:ad:37:27:10:ff: ba:8d:86:bb:51:a5:36:b0:e9:ad:d2:61:44:18:e9:05:49:63: 1a:20:d8:26:61:d8:59:7a:fc:95:f4:05:e9:90:71:94:42:b3: 28:8a:c8:62:eb:e6:aa:b8:d2:06:55:60:09:8c:5a:2a:a4:81: 4d:f7:92:35:7e:1b:01:ce:d7:ed:3a:ac:87:0b:fd:3d:57:2a: 13:fe:bb:5d:c1:02:4d:1d:58:67:14:e0:55:65:5c:bc:29:fd: 14:5a:dc:df:d2:83:25:92:65:75:87:4a:62:bf:89:22:90:29: 31:99:b7:36:c9:d5:b3:d8:e9:16:7b:b0:e5:04:71:65:70:37: b9:f3:05:45:ae:b4:c9:c7:69:3a:db:c5:1f:f2:d5:b3:61:e4: 1f:33:0c:1f:03:76:0d:20:dc:53:64:96:08:11:1f:14:7c:21: 0f:a8:62:f3:ab:9a:01:af:a7:e6:18:fc:7e:d2:e6:9e:8c:75: f7:9d:d2:e1:ca:86:46:e4:0c:02:94:5a:38:f6:b9:db:34:b6: 3b:d4:98:ca -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCNEYxMTAvBgNVBAUTKDQwREI5RTJDQkFERUNEQTlCOTcyMzUxMDIxNTA3QURD RDFBNTYyN0YwHhcNMjYwMzI0MjMzNjEwWhcNMjYwMzMxMjMzNjEwWjAYMRYwFAYD VQQDEw02OWMzMWZlYS05NzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2LhFuVOPCp/P17pLuscH5SGDzQ+4BYv65gbz3z1RnEb+xpeuwJpebpTaXrPS uDV5v//98oyAOBbi9lP7d0EpN6XWIxcHIERPTC1Zg7uHHh8q1G+SRCXC0nTQbPwL XGW/j639LlKBlaROD3ImTCd4JDWtFDyhZzITzq15xMo5JVfYtt/5EG4B+X/4oZdJ fu0ZfkABM3gJuRwRR65mxFxgT+XbdEg2bMIFZfN3Q2sfLjtqjvfMwZwZx1GIA+mo M+8/ww4pR262917GqeiVyE488n0quFxsbgnbz/zJ6DUCx0zCRTFJlKmsoFrtrKjb lMC89ClEOPj35+9pVl96kZY4pQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLTXCorq TinU8ZC4IZ9OySwWqxS/MB8GA1UdIwQYMBaAFEDbniy63s2puXI1ECFQetzRpWJ/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEI0Ri9ERDczMjY0ODY4 QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXphbTVjalVRSVZCNjNOR2xZ bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOdWVMTHJlemFtNWNqVVFJVkI2M05HbFluOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEI0Ri9ERDczMjY0ODY4QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXph bTVjalVRSVZCNjNOR2xZbjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArwhLx1BTeBpRIJNuoBcWt3k6jxupE5jHbpe7iF3/xDfHTJFiqHeR2ZXaEaPY B9QjXa03JxD/uo2Gu1GlNrDprdJhRBjpBUljGiDYJmHYWXr8lfQF6ZBxlEKzKIrI YuvmqrjSBlVgCYxaKqSBTfeSNX4bAc7X7Tqshwv9PVcqE/67XcECTR1YZxTgVWVc vCn9FFrc39KDJZJldYdKYr+JIpApMZm3NsnVs9jpFnuw5QRxZXA3ufMFRa60ycdp OtvFH/LVs2HkHzMMHwN2DSDcU2SWCBEfFHwhD6hi86uaAa+n5hj8ftLmnox1953S 4cqGRuQMApRaOPa52zS2O9SYyg== -----END CERTIFICATE-----Generated at Thu Mar 26 07:36:22 2026 by rpki-client