$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft File: Qql4rYPdXtKaTl3bYbVvExelpaQ.mft (raw, json) Hash identifier: Q0wp7KZiIj4Sx8RvrMwDraHxIN31rnQFYnoNdUjXszg= Subject key identifier: 30:15:8E:DD:B1:AC:FD:05:5D:86:58:C2:B7:AE:54:E3:53:0B:2F:E2 Authority key identifier: 42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 Certificate issuer: /CN=A91D4803/serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Certificate serial: 05D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft Manifest number: 05CE Signing time: Tue 24 Mar 2026 22:44:05 +0000 Manifest this update: Tue 24 Mar 2026 22:44:04 +0000 Manifest next update: Tue 31 Mar 2026 22:44:04 +0000 Files and hashes: 1: Qql4rYPdXtKaTl3bYbVvExelpaQ.crl (hash: 395vkp0ZozztaJdc5Ti/ryHRHfrBhaIgLRXxvKCv6ms=) 2: 2B1B8C92F9E511EBBB9B5D22C4F9AE02.roa (hash: fQgQ0VLTGkoR20JE5CrFqxEVCmsrE7jBwatjIG70kMM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:44:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1495 (0x5d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4803, serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Validity Not Before: Mar 24 22:44:04 2026 GMT Not After : Mar 31 22:44:04 2026 GMT Subject: CN=69c313b4-6f86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:70:26:91:8f:88:93:b8:ba:39:6b:a8:95:d9: 1b:dc:9f:d1:68:88:63:65:4d:45:0d:25:16:5d:5d: 92:d9:4a:e4:ab:4f:8c:0a:a8:3a:d2:14:f0:5d:ec: 06:a9:1a:b6:a4:87:b3:d3:79:52:f7:8f:af:83:ec: 21:2b:d7:32:aa:30:f3:79:c1:8b:30:e9:dd:c6:ac: ec:a6:ba:53:a7:a1:76:99:7f:7d:5e:a4:f9:68:de: 46:c7:7c:b7:06:61:d8:3e:58:48:ec:f7:05:84:31: 53:16:c1:13:5b:95:cc:85:c9:73:ab:99:8c:cf:cc: 05:04:fd:9d:a0:b3:ee:12:2b:f3:76:67:25:61:df: 48:99:1d:9c:79:9e:e4:21:2f:15:30:4b:14:5b:e5: 93:c5:5d:e8:07:ca:5e:2f:f8:01:78:d6:23:fa:4b: 1d:fb:1d:3d:4c:2a:b7:db:cc:5e:74:45:68:20:a6: 9d:43:0f:48:d2:9d:9f:95:12:43:e1:4d:d8:db:86: dd:45:e6:a3:fc:8c:22:fd:fe:4a:84:39:1f:8e:6a: 88:ed:19:ea:14:fa:22:06:07:76:86:b7:70:3b:b8: 4b:ba:7a:d0:78:7d:7b:89:75:8e:de:e4:16:1c:85: fd:56:50:e6:a7:f2:fc:99:6f:42:fd:8c:f1:7f:2b: 6c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:15:8E:DD:B1:AC:FD:05:5D:86:58:C2:B7:AE:54:E3:53:0B:2F:E2 X509v3 Authority Key Identifier: keyid:42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:39:47:86:82:8f:15:2f:10:06:81:75:c5:6a:85:88:74:62: 06:91:a0:a9:95:50:38:64:be:5b:0c:f1:40:36:cc:c5:c9:ed: 84:0b:3e:53:f9:e8:5c:bd:50:49:de:7d:0c:3b:8d:00:18:b6: 36:ed:c0:fa:12:b9:0d:19:4d:60:85:32:a9:22:95:70:2a:4b: e8:da:5c:da:1e:2c:2f:31:e3:1e:6d:a1:ae:30:06:4b:59:af: 4e:99:17:9d:b6:8e:a7:03:c1:fb:05:46:13:75:70:55:ee:ce: ca:ea:fe:5c:6c:df:12:d5:44:e7:27:95:d6:29:12:4d:9e:06: 0f:a6:f0:c0:6a:c2:bb:57:7e:4c:3f:9a:0c:eb:cc:d8:e7:e0: 7d:07:05:71:74:c5:3e:29:34:bf:14:6d:9c:07:d3:b1:5f:1d: c0:1e:b2:26:19:dd:bb:b2:f3:b6:f4:ad:78:da:12:56:95:28: 85:ff:a8:06:06:b9:95:e1:56:b4:cc:0b:e7:8b:b3:3b:17:fa: f6:48:94:ac:8e:d0:e1:74:44:30:d6:0d:c0:ba:96:75:b7:fa: f4:4e:27:d1:f6:2c:77:b9:e2:48:dc:fa:66:69:6d:17:c3:08: 0c:63:3b:71:34:ad:c5:ef:7e:84:77:d6:36:e9:8f:e2:2d:a9: ae:f0:11:4c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MDMxMTAvBgNVBAUTKDQyQTk3OEFEODNERDVFRDI5QTRFNUREQjYxQjU2RjEz MTdBNUE1QTQwHhcNMjYwMzI0MjI0NDA0WhcNMjYwMzMxMjI0NDA0WjAYMRYwFAYD VQQDEw02OWMzMTNiNC02Zjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3AmkY+Ik7i6OWuoldkb3J/RaIhjZU1FDSUWXV2S2Urkq0+MCqg60hTwXewG qRq2pIez03lS94+vg+whK9cyqjDzecGLMOndxqzsprpTp6F2mX99XqT5aN5Gx3y3 BmHYPlhI7PcFhDFTFsETW5XMhclzq5mMz8wFBP2doLPuEivzdmclYd9ImR2ceZ7k IS8VMEsUW+WTxV3oB8peL/gBeNYj+ksd+x09TCq328xedEVoIKadQw9I0p2flRJD 4U3Y24bdReaj/Iwi/f5KhDkfjmqI7RnqFPoiBgd2hrdwO7hLunrQeH17iXWO3uQW HIX9VlDmp/L8mW9C/Yzxfyts8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDAVjt2x rP0FXYZYwreuVONTCy/iMB8GA1UdIwQYMBaAFEKpeK2D3V7Smk5d22G1bxMXpaWk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgwMy84MEYwMzRCRUY5 RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0S2FUbDNiWWJWdkV4ZWxw YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FxbDRyWVBkWHRLYVRsM2JZYlZ2RXhlbHBhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgwMy84MEYwMzRCRUY5RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0 S2FUbDNiWWJWdkV4ZWxwYVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWzlHhoKPFS8QBoF1xWqFiHRiBpGgqZVQOGS+WwzxQDbMxcnthAs+U/noXL1Q Sd59DDuNABi2Nu3A+hK5DRlNYIUyqSKVcCpL6Npc2h4sLzHjHm2hrjAGS1mvTpkX nbaOpwPB+wVGE3VwVe7Oyur+XGzfEtVE5yeV1ikSTZ4GD6bwwGrCu1d+TD+aDOvM 2OfgfQcFcXTFPik0vxRtnAfTsV8dwB6yJhndu7LztvSteNoSVpUohf+oBga5leFW tMwL54uzOxf69kiUrI7Q4XREMNYNwLqWdbf69E4n0fYsd7niSNz6ZmltF8MIDGM7 cTStxe9+hHfWNumP4i2prvARTA== -----END CERTIFICATE-----Generated at Thu Mar 26 07:18:18 2026 by rpki-client