$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft File: q2JivH0C7BrUi3HamLc9IqNi2vA.mft (raw, json) Hash identifier: RmAN9SkSs1WFN6ePe+bwhtVKLd6KltaESNsWylUPID8= Subject key identifier: C1:5A:83:11:C7:52:D4:C3:1D:10:9D:2D:C3:E2:07:F2:BA:37:8F:21 Authority key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 Certificate issuer: /CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Certificate serial: 36BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft Manifest number: 35CD Signing time: Thu 26 Mar 2026 14:28:42 +0000 Manifest this update: Thu 26 Mar 2026 14:28:42 +0000 Manifest next update: Thu 02 Apr 2026 14:28:42 +0000 Files and hashes: 1: q2JivH0C7BrUi3HamLc9IqNi2vA.crl (hash: J5Q9xomSlHJuxP9vp6RZvwXoqln0mHE4CYJZZSeysbM=) 2: 7D920C1AB0CD11E58B55FC73C4F9AE02.roa (hash: knSiwSZTuJB5L8civuaUh8rAh8cmbNdU18vutdd1ebk=) 3: D4B25B928C6B11F09545B981C4F9AE02.roa (hash: Vuo+8i5V4Znap+Qs1dOcHdE1nAFejMLQYP5EDIvQcjU=) 4: 9C193BAC08C511EDBC862E48C4F9AE02.roa (hash: SJVE7ZBsoRSsliTmJf9TKg9PsayamV5jFN7WqlX3xvc=) 5: 4D5247EEA4C911E782854F50C4F9AE02.roa (hash: rEfB0wTEVedizbjd1aa4stNP7Lpi5g6RaGy1a4umZiM=) 6: 4BF67550A4C911E782854F50C4F9AE02.roa (hash: f3qU6tlwehhcmw+j9t9F4SExzXSKSjEABu7b7Oi3kuk=) 7: 7B938024B0CD11E58B55FC73C4F9AE02.roa (hash: /QQiHNO+P4zS7clMch+1xG2dmlltL/7vNQJGue0Q24E=) 8: F1F087928C6B11F0B1A50E82C4F9AE02.roa (hash: kuzwCvIHtKelM7oshMzAb2U462l4e0HmxA10PXja6PA=) 9: 78123422B0CD11E58B55FC73C4F9AE02.roa (hash: w/xkPDWtvjzhfQW3Zf8fDbO/CqBdGqSzN3GtrP1PUo8=) 10: 4C9925F2A4C911E782854F50C4F9AE02.roa (hash: NUP0co51SrQ7MBIOUbm3rcePgeq0Qam5xEhiKSlEwl4=) 11: 8207CCA0906C11EC86E8B711C4F9AE02.roa (hash: HGBUZghw2mrH37viSTYGdL7UxbtP3kpsrCzGnWhLnVU=) 12: 7F4D30ACB0CD11E58B55FC73C4F9AE02.roa (hash: N79DDK5pn6TCAon8GJdsX02x5/pCsRg1kmXulJOa3DU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:28:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14011 (0x36bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2454, serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Validity Not Before: Mar 26 14:28:42 2026 GMT Not After : Apr 2 14:28:42 2026 GMT Subject: CN=69c5429a-c86a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:1e:09:13:1e:32:0d:47:16:bd:11:22:6e:cf: ba:0b:3c:7d:93:6e:3c:88:ec:82:e6:1f:18:29:7a: a7:cd:b6:c9:af:ad:a6:e2:c1:c4:fe:6c:99:f4:0b: bb:83:d8:78:2c:c5:df:a3:5f:81:c8:0c:45:14:b2: 73:43:ef:cd:8a:3c:ef:30:ee:58:8d:9b:50:d1:e4: b2:ff:f8:ad:0c:fe:f1:f6:82:09:a9:bb:a7:ff:d1: d9:d7:e2:44:f7:fe:ef:4f:d0:85:59:aa:29:62:d3: 79:9e:f1:49:74:58:19:de:b0:3c:b4:77:f6:05:de: 6a:a1:a2:83:36:22:b1:33:ff:5c:6b:cd:cb:96:71: 55:29:99:a0:76:38:21:15:02:c4:1a:94:75:f5:9d: 48:ef:06:5b:fd:88:af:c2:09:b9:26:51:ba:d5:21: 2c:c4:ab:2f:45:bd:0d:b7:98:6f:77:00:c6:fe:6e: 34:6c:5a:2e:8a:48:23:5e:b8:2e:a1:51:c7:f7:6f: 3b:56:49:84:8f:00:e8:6a:86:c1:fb:f8:c1:97:42: cd:9c:b7:4e:a5:59:47:7c:8f:53:22:24:11:5c:e5: 50:7d:54:83:8c:ac:df:48:f6:c3:8c:6c:5b:88:e7: a9:d9:71:5e:78:5f:aa:70:26:90:1c:30:bd:03:b4: 50:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:5A:83:11:C7:52:D4:C3:1D:10:9D:2D:C3:E2:07:F2:BA:37:8F:21 X509v3 Authority Key Identifier: keyid:AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:d2:f2:72:45:4f:58:79:e7:04:22:3d:4e:37:94:5c:69:73: 3c:31:dd:eb:97:34:07:f3:7e:24:8d:0c:30:63:63:77:6a:ee: e6:5d:7b:8b:d7:34:86:67:cb:e6:a7:a0:ea:40:f5:6d:f0:01: 78:4c:f0:ee:12:ea:b9:f8:78:88:d8:01:25:5a:76:c0:4b:35: 77:50:91:18:b3:54:32:fa:ff:99:e3:e2:39:ba:0d:5b:94:de: ad:41:07:45:e8:57:cf:32:ab:66:c8:0d:ec:81:ef:97:43:a5: ea:5d:c3:cc:0c:0b:9c:39:16:f8:96:c3:a5:d2:d2:0a:9d:12: 08:21:aa:3b:f8:4e:2e:c2:e1:04:72:9b:8a:df:b9:7b:af:87: 10:1c:91:bc:47:d6:36:24:53:bb:4a:73:5b:0e:b4:15:04:9e: f2:32:8d:5f:8d:5f:ba:a7:14:14:33:1c:0c:09:1b:56:ce:b9: 0a:9a:6f:30:b6:ff:08:b7:b4:04:fa:79:74:0f:77:68:48:b4: e1:70:53:ad:26:f3:b6:b2:8f:2c:3f:78:43:52:42:e9:a7:67: 3e:17:39:80:77:d8:40:7b:4e:c2:79:49:02:af:c7:79:19:c4: 81:cd:63:43:82:0d:d9:42:4a:99:09:57:a3:58:85:68:2a:fe: 23:61:43:75 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNrswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI0NTQxMTAvBgNVBAUTKEFCNjI2MkJDN0QwMkVDMUFENDhCNzFEQTk4QjczRDIy QTM2MkRBRjAwHhcNMjYwMzI2MTQyODQyWhcNMjYwNDAyMTQyODQyWjAYMRYwFAYD VQQDEw02OWM1NDI5YS1jODZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAix4JEx4yDUcWvREibs+6Czx9k248iOyC5h8YKXqnzbbJr62m4sHE/myZ9Au7 g9h4LMXfo1+ByAxFFLJzQ+/NijzvMO5YjZtQ0eSy//itDP7x9oIJqbun/9HZ1+JE 9/7vT9CFWaopYtN5nvFJdFgZ3rA8tHf2Bd5qoaKDNiKxM/9ca83LlnFVKZmgdjgh FQLEGpR19Z1I7wZb/Yivwgm5JlG61SEsxKsvRb0Nt5hvdwDG/m40bFouikgjXrgu oVHH9287VkmEjwDoaobB+/jBl0LNnLdOpVlHfI9TIiQRXOVQfVSDjKzfSPbDjGxb iOep2XFeeF+qcCaQHDC9A7RQ/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMFagxHH UtTDHRCdLcPiB/K6N48hMB8GA1UdIwQYMBaAFKtiYrx9Auwa1Itx2pi3PSKjYtrw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjQ1NC9ENEMzMEI0MjFE ODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdCclVpM0hhbUxjOUlxTmky dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EySml2SDBDN0JyVWkzSGFtTGM5SXFOaTJ2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjQ1NC9ENEMzMEI0MjFEODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdC clVpM0hhbUxjOUlxTmkydkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAF9LyckVPWHnnBCI9TjeUXGlzPDHd65c0B/N+JI0MMGNjd2ru5l17i9c0hmfL 5qeg6kD1bfABeEzw7hLqufh4iNgBJVp2wEs1d1CRGLNUMvr/mePiOboNW5TerUEH RehXzzKrZsgN7IHvl0Ol6l3DzAwLnDkW+JbDpdLSCp0SCCGqO/hOLsLhBHKbit+5 e6+HEByRvEfWNiRTu0pzWw60FQSe8jKNX41fuqcUFDMcDAkbVs65CppvMLb/CLe0 BPp5dA93aEi04XBTrSbztrKPLD94Q1JC6adnPhc5gHfYQHtOwnlJAq/HeRnEgc1j Q4IN2UJKmQlXo1iFaCr+I2FDdQ== -----END CERTIFICATE-----Generated at Thu Mar 26 18:26:34 2026 by rpki-client