$ rpki-client -vvf rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft File: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft (raw, json) Hash identifier: tGN23b75FhoyyaW6VWhp/bBYjmgtzKERzAV06Gq2N0Y= Subject key identifier: 6E:39:66:D5:13:FF:5E:62:BD:13:0C:3B:09:E2:15:47:27:92:58:9C Authority key identifier: 41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD Certificate issuer: /CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Certificate serial: 039B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft Manifest number: 0394 Signing time: Wed 25 Mar 2026 00:26:06 +0000 Manifest this update: Wed 25 Mar 2026 00:26:06 +0000 Manifest next update: Wed 01 Apr 2026 00:26:06 +0000 Files and hashes: 1: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl (hash: KuBeDCTs/qxjOV4ai+cUXqbFJqPAGId/jprIHX7hfcs=) 2: 7BCC4B32E85C11EE9593933FC4F9AE02.roa (hash: /VYSBqRbhRZL//G1w9ShC2Js/tBJ1zXCex0aZezen6Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:26:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 923 (0x39b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E91BC, serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Validity Not Before: Mar 25 00:26:06 2026 GMT Not After : Apr 1 00:26:06 2026 GMT Subject: CN=69c32b9e-7c39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:17:bd:98:8e:ae:47:9f:51:b2:0a:7a:9d:4f: 57:4b:fe:85:f2:b8:e1:c4:f4:b9:bb:83:30:b2:a2: b8:6c:3c:e0:61:e0:da:87:75:5d:96:13:ec:27:3b: 76:f0:6d:ca:cd:c6:ab:ca:d2:95:75:81:e1:f8:5f: 91:78:da:63:d2:51:2b:c6:6b:e1:2e:42:be:9c:6c: 85:8e:11:d5:47:4a:67:cd:6c:93:dd:a9:18:99:58: 31:e6:35:cd:cd:0d:34:07:a3:49:f1:ec:80:c8:8a: 67:43:c8:ab:b1:cf:dc:3b:97:4f:14:9d:8d:a4:94: d4:07:3c:14:f8:05:b4:99:2b:5d:fd:c0:87:a7:3a: 26:d2:6a:72:5f:ce:b6:cb:18:48:6c:d5:42:a8:89: 92:bc:ed:d1:fb:c1:9f:ce:b0:06:68:77:a8:d8:2e: d9:0f:67:36:e3:18:81:79:ae:58:2f:7d:1b:5b:b7: d9:9b:3b:f2:b2:9e:d5:f8:36:34:27:95:b8:a7:12: cb:76:bb:fc:72:05:16:d1:aa:7e:aa:5a:9f:79:b7: 47:0c:0a:31:74:4c:26:87:4e:53:dc:3a:5b:74:54: 51:a1:5b:0d:24:f1:bc:18:19:d6:6f:28:34:43:9f: 3d:14:b3:d2:a9:e8:af:99:32:61:96:b3:3c:3c:38: c8:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:39:66:D5:13:FF:5E:62:BD:13:0C:3B:09:E2:15:47:27:92:58:9C X509v3 Authority Key Identifier: keyid:41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:ab:3e:d4:e2:4a:d1:24:e9:d3:b1:b3:fd:4a:9a:72:c5:c8: b3:c1:98:35:42:de:39:88:93:cb:f6:a6:26:e3:c7:36:ed:00: d2:a1:8d:5b:87:a8:59:0b:2c:6b:d3:a1:ee:ba:df:1c:b7:80: 39:18:a4:11:cd:d5:92:71:b2:75:99:22:12:34:24:2f:68:b3: 4d:5e:1d:6e:13:3a:f0:e9:90:5d:35:b7:e7:f9:a4:81:95:3d: 65:0f:19:f2:fa:8c:40:7a:e0:8c:9d:24:e3:fa:43:6b:4d:ef: 72:d3:72:4f:28:d9:aa:31:10:07:fd:ae:d3:bc:5d:44:71:92: 95:30:52:76:36:cc:89:ea:9f:d5:0f:73:fd:05:3b:2f:8e:bd: 7e:c5:5c:5b:b3:76:d3:1d:59:ea:dc:fc:c4:e5:4f:0b:68:dd: 77:ea:54:38:a8:45:c7:a0:86:b7:5d:9f:15:33:7e:61:14:7b: 76:4d:b6:29:54:00:2c:a1:ac:92:54:74:02:5d:e0:e0:c6:c5: 72:fc:97:fc:96:31:41:f3:e0:88:8f:f7:10:23:85:7f:1f:c6: 50:3d:ab:8f:42:6f:15:ab:f8:9f:b5:86:54:0a:dd:f9:e4:16: b2:34:7b:42:b8:79:5c:7c:fa:e8:fd:d0:01:92:0a:8f:7f:a4: 23:2f:5c:1d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkxQkMxMTAvBgNVBAUTKDQxNEZCNjE3ODg2OTEzMEY4MjZFOUUzMEMwQjc5NDA4 NEQ5NzYwREQwHhcNMjYwMzI1MDAyNjA2WhcNMjYwNDAxMDAyNjA2WjAYMRYwFAYD VQQDEw02OWMzMmI5ZS03YzM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBe9mI6uR59Rsgp6nU9XS/6F8rjhxPS5u4MwsqK4bDzgYeDah3VdlhPsJzt2 8G3KzcarytKVdYHh+F+ReNpj0lErxmvhLkK+nGyFjhHVR0pnzWyT3akYmVgx5jXN zQ00B6NJ8eyAyIpnQ8irsc/cO5dPFJ2NpJTUBzwU+AW0mStd/cCHpzom0mpyX862 yxhIbNVCqImSvO3R+8GfzrAGaHeo2C7ZD2c24xiBea5YL30bW7fZmzvysp7V+DY0 J5W4pxLLdrv8cgUW0ap+qlqfebdHDAoxdEwmh05T3DpbdFRRoVsNJPG8GBnWbyg0 Q589FLPSqeivmTJhlrM8PDjIBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG45ZtUT /15ivRMMOwniFUcnklicMB8GA1UdIwQYMBaAFEFPtheIaRMPgm6eMMC3lAhNl2Dd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTFCQy9BNEU2NzNDQURC RTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3LUNicDR3d0xlVUNFMlhZ TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FVLTJGNGhwRXctQ2JwNHd3TGVVQ0UyWFlOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTFCQy9BNEU2NzNDQURCRTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3 LUNicDR3d0xlVUNFMlhZTjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGKs+1OJK0STp07Gz/UqacsXIs8GYNULeOYiTy/amJuPHNu0A0qGNW4eoWQss a9Oh7rrfHLeAORikEc3VknGydZkiEjQkL2izTV4dbhM68OmQXTW35/mkgZU9ZQ8Z 8vqMQHrgjJ0k4/pDa03vctNyTyjZqjEQB/2u07xdRHGSlTBSdjbMieqf1Q9z/QU7 L469fsVcW7N20x1Z6tz8xOVPC2jdd+pUOKhFx6CGt12fFTN+YRR7dk22KVQALKGs klR0Al3g4MbFcvyX/JYxQfPgiI/3ECOFfx/GUD2rj0JvFav4n7WGVArd+eQWsjR7 Qrh5XHz66P3QAZIKj3+kIy9cHQ== -----END CERTIFICATE-----Generated at Thu Mar 26 14:37:07 2026 by rpki-client