$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft File: 1QwK07StgdVVlFzH8_HuHB-t5hc.mft (raw, json) Hash identifier: 5SIna/7xpmfl1KgcCpSw/PzpbXSlMOUs9qrhQ0r4kj8= Subject key identifier: C1:14:18:13:A7:56:8D:5A:F8:ED:FC:3B:A2:32:C3:C4:B6:7B:15:13 Authority key identifier: D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 Certificate issuer: /CN=A91DB475/serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Certificate serial: 0BC3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft Manifest number: 0BB1 Signing time: Tue 24 Mar 2026 18:49:49 +0000 Manifest this update: Tue 24 Mar 2026 18:49:48 +0000 Manifest next update: Tue 31 Mar 2026 18:49:48 +0000 Files and hashes: 1: 1QwK07StgdVVlFzH8_HuHB-t5hc.crl (hash: WmczPzWcNWD7oPeFdzWDnCDRR4xtYsFAiKjGE5TL0zs=) 2: 74CA44AA049F11F087661234C4F9AE02.roa (hash: wKdTkyyXqkqw4zY6Mort6rY+08KcEGgpc9UUyZvX1D8=) 3: 1E6B12EC049F11F0AD5C7C33C4F9AE02.roa (hash: 52FStysb8y6SSS0DgpkYNnuMyVWPrRkIBtAubJdaP50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:49:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3011 (0xbc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB475, serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Validity Not Before: Mar 24 18:49:48 2026 GMT Not After : Mar 31 18:49:48 2026 GMT Subject: CN=69c2dccc-8a9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:bb:64:ab:14:a2:ab:f8:c6:35:00:89:b1:17: 6d:12:d4:7c:28:a1:ae:83:57:6a:8f:57:16:a6:60: 05:b8:15:ca:e4:6f:6d:25:aa:31:b3:ef:a5:e4:f9: 99:17:40:29:d6:29:ba:0a:6b:23:ae:4c:79:11:14: 29:68:96:62:ec:97:43:f8:c5:48:13:92:4e:1c:46: 15:c5:97:a9:b3:56:60:7d:47:a3:b0:78:79:e4:c9: 42:ff:c6:57:cf:17:e1:e0:26:f4:de:91:05:ae:7d: 5c:f0:45:45:b8:04:ca:a6:e1:23:bc:d3:07:f0:9c: 18:e7:6d:30:07:d9:d5:8c:64:56:b1:dd:5d:1c:8c: eb:70:29:39:77:f6:d8:40:ee:13:a8:ae:b1:2a:93: b8:ca:dc:04:93:26:25:ad:39:ff:3a:03:d2:65:9f: 8a:35:ca:ce:d9:27:04:51:fe:fa:92:e6:98:d5:61: fa:2d:39:b6:c8:3b:3b:51:b6:88:e2:ab:03:9d:e3: 09:bb:5d:f1:7c:53:21:e2:62:dd:6b:71:96:76:62: 82:9c:e7:12:13:f4:ef:6d:50:d5:7b:7f:36:6e:12: 80:84:0f:7e:fb:e7:97:c8:ae:3e:9a:75:d8:38:1c: 0d:9e:e2:88:ca:3d:86:41:e4:6c:65:e3:6a:10:f3: 1b:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:14:18:13:A7:56:8D:5A:F8:ED:FC:3B:A2:32:C3:C4:B6:7B:15:13 X509v3 Authority Key Identifier: keyid:D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:8d:24:a3:31:90:43:d4:c6:db:b5:c9:e6:f5:5e:59:3d:89: 45:d0:64:de:04:14:ce:53:26:09:6d:c6:11:1d:75:08:81:64: 86:e6:df:98:27:2e:2c:aa:1b:28:c9:b1:f3:f9:53:8b:52:37: b0:c1:99:81:ff:d7:c6:f0:b9:58:44:a2:f4:d3:04:40:9e:63: 76:f0:37:c8:37:09:60:3a:36:c9:9b:41:c1:a4:d4:0e:ba:6b: 3a:39:9e:1e:1a:bd:f1:60:4c:8e:83:62:aa:1e:9e:bd:59:0f: 55:a3:21:ed:2f:38:f3:fc:2a:1d:4a:4f:97:dc:c1:ca:0b:b1: 80:46:88:47:80:30:a9:98:68:4b:09:12:74:e3:a3:df:48:2c: a8:48:6f:65:5e:47:14:d0:4b:bc:4a:7c:e4:36:df:ee:cf:c4: 59:90:24:e5:c9:ee:e8:41:22:a4:02:50:a0:27:05:68:32:5a: d7:8b:94:1d:86:51:9f:81:1b:28:b7:fa:f1:9b:9a:2c:0c:d1: cb:06:42:55:cb:65:b8:94:f6:21:b3:55:83:db:34:22:f6:d9: 2e:8f:0e:29:79:50:08:3c:ec:50:9b:c3:43:4f:b8:a4:68:39: 65:91:24:b8:15:76:a1:be:19:1a:0b:f0:dc:f5:c6:22:09:a7: e5:c8:df:8e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0NzUxMTAvBgNVBAUTKEQ1MEMwQUQzQjRBRDgxRDU1NTk0NUNDN0YzRjFFRTFD MUZBREU2MTcwHhcNMjYwMzI0MTg0OTQ4WhcNMjYwMzMxMTg0OTQ4WjAYMRYwFAYD VQQDEw02OWMyZGNjYy04YTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxrtkqxSiq/jGNQCJsRdtEtR8KKGug1dqj1cWpmAFuBXK5G9tJaoxs++l5PmZ F0Ap1im6Cmsjrkx5ERQpaJZi7JdD+MVIE5JOHEYVxZeps1ZgfUejsHh55MlC/8ZX zxfh4Cb03pEFrn1c8EVFuATKpuEjvNMH8JwY520wB9nVjGRWsd1dHIzrcCk5d/bY QO4TqK6xKpO4ytwEkyYlrTn/OgPSZZ+KNcrO2ScEUf76kuaY1WH6LTm2yDs7UbaI 4qsDneMJu13xfFMh4mLda3GWdmKCnOcSE/TvbVDVe382bhKAhA9+++eXyK4+mnXY OBwNnuKIyj2GQeRsZeNqEPMbiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMEUGBOn Vo1a+O38O6Iyw8S2exUTMB8GA1UdIwQYMBaAFNUMCtO0rYHVVZRcx/Px7hwfreYX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQ3NS8yMDhGQjczMDQx NzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdkVlZsRnpIOF9IdUhCLXQ1 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFRd0swN1N0Z2RWVmxGekg4X0h1SEItdDVoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQ3NS8yMDhGQjczMDQxNzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdk VlZsRnpIOF9IdUhCLXQ1aGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABI0kozGQQ9TG27XJ5vVeWT2JRdBk3gQUzlMmCW3GER11CIFkhubfmCcuLKob KMmx8/lTi1I3sMGZgf/XxvC5WESi9NMEQJ5jdvA3yDcJYDo2yZtBwaTUDrprOjme Hhq98WBMjoNiqh6evVkPVaMh7S848/wqHUpPl9zByguxgEaIR4AwqZhoSwkSdOOj 30gsqEhvZV5HFNBLvEp85Dbf7s/EWZAk5cnu6EEipAJQoCcFaDJa14uUHYZRn4Eb KLf68ZuaLAzRywZCVctluJT2IbNVg9s0IvbZLo8OKXlQCDzsUJvDQ0+4pGg5ZZEk uBV2ob4ZGgvw3PXGIgmn5cjfjg== -----END CERTIFICATE-----Generated at Thu Mar 26 14:16:00 2026 by rpki-client