$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft File: Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft (raw, json) Hash identifier: Ski1plpglY52UKONhNipqY0K7zju07xCK76g4ftFBvw= Subject key identifier: 87:E5:26:CC:F1:58:E5:4B:FE:63:13:45:C4:97:B3:46:25:1D:02:23 Authority key identifier: 42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 Certificate issuer: /CN=A91DF9B9/serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Certificate serial: 01F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft Manifest number: 01F4 Signing time: Wed 25 Mar 2026 02:37:30 +0000 Manifest this update: Wed 25 Mar 2026 02:37:30 +0000 Manifest next update: Wed 01 Apr 2026 02:37:30 +0000 Files and hashes: 1: Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl (hash: 9PyftCnJvGRg2DvpeJMzICHTnkSxrsexOSDAC4BvX20=) 2: F3484DBA34CE11EEBBA9D046C4F9AE02.roa (hash: cCwngW+0nv7VgTk47lxbgT3+ex2bp6tm2PDtS8RdU9M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:37:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 505 (0x1f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF9B9, serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Validity Not Before: Mar 25 02:37:30 2026 GMT Not After : Apr 1 02:37:30 2026 GMT Subject: CN=69c34a6a-d679 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d4:62:2a:f9:f5:b4:c2:bf:0d:0b:31:e9:95: 66:7e:a4:99:08:7c:49:c6:d5:a0:5f:97:e6:63:57: 62:47:36:2e:ca:b0:34:cb:03:95:ab:73:ad:f3:42: d2:39:a1:29:e5:c1:c9:ff:74:fb:ee:19:8d:1f:aa: aa:b3:b0:72:41:13:2f:a1:bb:80:06:48:00:eb:37: c3:fa:ff:86:88:5f:16:0e:19:f1:8b:72:dc:cc:0b: ba:d1:82:c2:77:ce:5b:86:5a:93:48:5b:2a:80:01: 39:df:14:04:9d:b7:04:dc:ae:b0:d9:da:b0:5d:de: 82:11:8a:ac:54:ae:69:fa:e1:ca:44:76:fc:03:a1: 6b:52:39:7f:32:19:92:1a:bc:a4:db:85:10:35:c5: 35:fc:0e:2f:6b:d1:39:35:1d:d7:4f:6e:15:b3:39: 4a:d1:0c:39:46:8d:5d:97:81:eb:d1:16:80:d5:3c: 01:a7:11:2e:36:d8:c9:a9:86:23:a8:f0:f7:30:f8: c4:bb:23:23:32:65:f0:e3:85:7f:c4:ef:e3:63:86: b1:48:cc:e6:95:69:b8:36:13:40:e0:65:f4:4d:90: 98:1e:6a:fe:18:bd:33:4a:92:27:b3:90:8a:1a:8e: d6:2d:ce:ac:c2:a2:20:23:4b:3f:fb:c0:cf:0e:ce: 8f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:E5:26:CC:F1:58:E5:4B:FE:63:13:45:C4:97:B3:46:25:1D:02:23 X509v3 Authority Key Identifier: keyid:42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:fa:7e:f5:d2:9e:c5:ba:e3:d3:f6:61:fa:95:f0:a5:4d:94: e8:8b:12:8c:79:8d:41:9f:37:e1:d6:bb:43:b4:3c:56:08:0e: 05:d5:84:ad:84:53:5e:6f:4e:d2:72:cd:75:ec:ac:e0:26:f4: c6:78:ae:63:3b:fa:41:b6:2d:4d:8d:81:e3:9b:76:f2:d5:1d: 5d:83:03:30:b2:c0:81:14:ba:7e:a6:81:9f:62:36:0e:02:ed: 2c:b4:84:92:9e:ae:6c:63:6a:0a:84:e3:f4:14:9b:08:e1:62: 71:5e:a5:d1:3f:38:90:24:e3:5e:e6:0b:e2:91:a1:28:b6:4e: 69:4d:59:b1:5e:53:af:70:db:46:41:47:e6:7b:79:8b:b8:15: 95:b6:e1:34:e2:f9:05:ab:43:00:42:12:ae:9b:00:22:22:6d: 8c:23:7e:fa:ca:6a:e6:38:21:59:1e:b1:55:f2:f2:86:fd:5c: 65:f2:8b:f6:f2:fc:3b:00:c0:03:ec:80:99:83:9f:a4:d1:35: 9e:46:f8:e6:9c:cb:d4:91:6e:da:96:2b:4e:e8:48:67:f8:85: ab:dd:b5:ff:fe:66:a6:f8:ee:c4:7b:b2:61:72:df:61:6a:ed: 27:cd:33:be:bd:ec:ef:10:89:19:fc:b8:2d:74:1c:f7:b7:ee: df:cb:28:9b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5QjkxMTAvBgNVBAUTKDQyQ0U1MEUxQUM3MzNENUExNjZCNTQyQzNDNDkzMDlG MzY1NkJGMjIwHhcNMjYwMzI1MDIzNzMwWhcNMjYwNDAxMDIzNzMwWjAYMRYwFAYD VQQDEw02OWMzNGE2YS1kNjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9RiKvn1tMK/DQsx6ZVmfqSZCHxJxtWgX5fmY1diRzYuyrA0ywOVq3Ot80LS OaEp5cHJ/3T77hmNH6qqs7ByQRMvobuABkgA6zfD+v+GiF8WDhnxi3LczAu60YLC d85bhlqTSFsqgAE53xQEnbcE3K6w2dqwXd6CEYqsVK5p+uHKRHb8A6FrUjl/MhmS Gryk24UQNcU1/A4va9E5NR3XT24VszlK0Qw5Ro1dl4Hr0RaA1TwBpxEuNtjJqYYj qPD3MPjEuyMjMmXw44V/xO/jY4axSMzmlWm4NhNA4GX0TZCYHmr+GL0zSpIns5CK Go7WLc6swqIgI0s/+8DPDs6PKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIflJszx WOVL/mMTRcSXs0YlHQIjMB8GA1UdIwQYMBaAFELOUOGscz1aFmtULDxJMJ82Vr8i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjlCOS85NTFGOThFQTMy RDIxMUVFODY5RkRCNzFDNEY5QUUwMi9RczVRNGF4elBWb1dhMVFzUEVrd256Wld2 eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FzNVE0YXh6UFZvV2ExUXNQRWt3bnpaV3Z5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjlCOS85NTFGOThFQTMyRDIxMUVFODY5RkRCNzFDNEY5QUUwMi9RczVRNGF4elBW b1dhMVFzUEVrd256Wld2eUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkPp+9dKexbrj0/Zh+pXwpU2U6IsSjHmNQZ834da7Q7Q8VggOBdWErYRTXm9O 0nLNdeys4Cb0xniuYzv6QbYtTY2B45t28tUdXYMDMLLAgRS6fqaBn2I2DgLtLLSE kp6ubGNqCoTj9BSbCOFicV6l0T84kCTjXuYL4pGhKLZOaU1ZsV5Tr3DbRkFH5nt5 i7gVlbbhNOL5BatDAEISrpsAIiJtjCN++spq5jghWR6xVfLyhv1cZfKL9vL8OwDA A+yAmYOfpNE1nkb45pzL1JFu2pYrTuhIZ/iFq921//5mpvjuxHuyYXLfYWrtJ80z vr3s7xCJGfy4LXQc97fu38somw== -----END CERTIFICATE-----Generated at Thu Mar 26 04:16:22 2026 by rpki-client