$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft File: qSFNuZGEmynE8EXDNkcOnYLEjOI.mft (raw, json) Hash identifier: mL3Ps0bJK8lew5zkeUdkTc4XrbZrbDPTCgSvu7yc10A= Subject key identifier: 00:AA:DC:15:6E:18:B9:8F:B4:C9:02:89:A7:4C:3D:56:E5:3C:6D:B3 Authority key identifier: A9:21:4D:B9:91:84:9B:29:C4:F0:45:C3:36:47:0E:9D:82:C4:8C:E2 Certificate issuer: /CN=A91EB929/serialNumber=A9214DB991849B29C4F045C336470E9D82C48CE2 Certificate serial: 0191 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft Manifest number: 0189 Signing time: Wed 25 Mar 2026 03:48:25 +0000 Manifest this update: Wed 25 Mar 2026 03:48:25 +0000 Manifest next update: Wed 01 Apr 2026 03:48:25 +0000 Files and hashes: 1: qSFNuZGEmynE8EXDNkcOnYLEjOI.crl (hash: 0kuMwzUXIgCM6ii6juqq9cP/h6hEdkMANjcBiAVvCHI=) 2: 70C04006D5EF11EE8279357EC4F9AE02.roa (hash: PAkdiPUOa/hZ21DhoJPT77EObUJ8xzL2z4kBUhn+7Zo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.crl rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:48:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB929, serialNumber=A9214DB991849B29C4F045C336470E9D82C48CE2 Validity Not Before: Mar 25 03:48:25 2026 GMT Not After : Apr 1 03:48:25 2026 GMT Subject: CN=69c35b09-81c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:bc:95:12:e9:eb:5d:c7:54:3d:a8:a4:7e:9e: 2b:83:1e:b3:6e:ba:c7:c5:3f:80:98:f8:56:f3:5c: 4a:3f:21:83:b1:1e:09:ed:db:dc:dd:e6:8f:8b:85: 2f:c1:77:54:3a:3f:b9:82:7c:3a:60:cc:64:8e:6e: 32:9c:6b:bd:8a:bf:31:2c:c6:cf:f5:3b:9e:93:0e: 6a:20:7e:3f:29:f9:a1:1a:07:bc:df:dc:04:71:bf: e4:59:46:1c:80:24:39:6c:53:f0:22:d9:a6:a0:ed: 35:1c:e1:e3:ea:e6:d0:2f:6c:15:d4:7f:81:8d:fd: b2:b7:92:25:33:91:9e:4d:f6:27:64:aa:51:db:bf: 5f:e8:d6:3b:88:cd:56:6a:71:00:9b:a4:b0:da:d8: 2a:f3:17:26:d3:b1:df:f7:30:61:d3:0a:c5:2a:32: 64:21:65:b5:e9:01:a4:2a:f8:22:b2:60:a8:12:15: 39:23:48:d6:d3:99:41:33:2b:27:f4:15:be:e8:a8: 55:be:91:b2:e2:5c:38:a9:81:b6:58:79:76:3d:c4: 5d:8b:c6:af:4d:e2:25:c0:14:04:08:c1:6e:dc:9c: b7:88:2a:95:ad:45:14:88:5f:8b:9f:2b:81:90:13: f6:21:fd:3d:01:4b:45:2f:c1:95:24:dd:f6:ea:66: d2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:AA:DC:15:6E:18:B9:8F:B4:C9:02:89:A7:4C:3D:56:E5:3C:6D:B3 X509v3 Authority Key Identifier: keyid:A9:21:4D:B9:91:84:9B:29:C4:F0:45:C3:36:47:0E:9D:82:C4:8C:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:a9:cf:ec:7e:f8:60:32:54:18:ea:3d:a6:41:3d:fb:5c:cc: 23:20:e6:78:32:9e:3e:ba:d6:aa:d8:ca:72:42:e2:d1:58:3d: e8:1b:29:76:28:de:b5:b1:34:c7:45:c9:e4:dc:71:f4:6f:6d: f0:d3:f1:e7:cc:cf:5c:fd:bd:84:3c:ee:2e:5e:8f:7c:25:c9: 57:5c:2c:7f:0c:ef:9c:1f:e3:ed:ec:c0:8c:ca:e8:4b:9b:ec: 8c:ca:d6:51:ef:2c:db:c5:d9:6c:11:ce:6b:ae:b3:4e:8d:81: db:43:ea:ff:75:be:5e:28:c8:f4:39:b0:11:fa:f8:1e:5e:e2: c7:20:20:91:8f:7b:b2:ee:ea:ce:69:e5:1d:80:3d:b1:4c:43: 6b:c9:77:b2:e0:37:75:2a:18:17:a3:c6:e3:04:30:ab:44:b4: 8e:68:0c:d8:17:9c:a2:45:e0:c8:a3:8b:1f:dd:93:e7:e9:6b: 15:ca:a3:d5:ac:d2:0e:0a:d8:61:4f:39:d9:b0:03:57:f9:69: c7:29:78:25:f7:c7:2d:98:97:83:dc:93:da:f1:44:43:7b:5a: c8:83:61:4d:ca:75:15:a2:c1:02:af:b5:d9:ad:45:69:65:d2: 9a:a0:33:65:1a:53:e7:fd:5f:cc:0d:0e:25:c4:cc:79:0a:6c: de:93:96:c5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI5MjkxMTAvBgNVBAUTKEE5MjE0REI5OTE4NDlCMjlDNEYwNDVDMzM2NDcwRTlE ODJDNDhDRTIwHhcNMjYwMzI1MDM0ODI1WhcNMjYwNDAxMDM0ODI1WjAYMRYwFAYD VQQDEw02OWMzNWIwOS04MWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7yVEunrXcdUPaikfp4rgx6zbrrHxT+AmPhW81xKPyGDsR4J7dvc3eaPi4Uv wXdUOj+5gnw6YMxkjm4ynGu9ir8xLMbP9Tuekw5qIH4/KfmhGge839wEcb/kWUYc gCQ5bFPwItmmoO01HOHj6ubQL2wV1H+Bjf2yt5IlM5GeTfYnZKpR279f6NY7iM1W anEAm6Sw2tgq8xcm07Hf9zBh0wrFKjJkIWW16QGkKvgismCoEhU5I0jW05lBMysn 9BW+6KhVvpGy4lw4qYG2WHl2PcRdi8avTeIlwBQECMFu3Jy3iCqVrUUUiF+LnyuB kBP2If09AUtFL8GVJN326mbSXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFACq3BVu GLmPtMkCiadMPVblPG2zMB8GA1UdIwQYMBaAFKkhTbmRhJspxPBFwzZHDp2CxIzi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjkyOS9CRUJERUE5OEQ1 RUUxMUVFOUUyMDE3N0RDNEY5QUUwMi9xU0ZOdVpHRW15bkU4RVhETmtjT25ZTEVq T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FTRk51WkdFbXluRThFWEROa2NPbllMRWpPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjkyOS9CRUJERUE5OEQ1RUUxMUVFOUUyMDE3N0RDNEY5QUUwMi9xU0ZOdVpHRW15 bkU4RVhETmtjT25ZTEVqT0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALKnP7H74YDJUGOo9pkE9+1zMIyDmeDKePrrWqtjKckLi0Vg96BspdijetbE0 x0XJ5Nxx9G9t8NPx58zPXP29hDzuLl6PfCXJV1wsfwzvnB/j7ezAjMroS5vsjMrW Ue8s28XZbBHOa66zTo2B20Pq/3W+XijI9DmwEfr4Hl7ixyAgkY97su7qzmnlHYA9 sUxDa8l3suA3dSoYF6PG4wQwq0S0jmgM2BecokXgyKOLH92T5+lrFcqj1azSDgrY YU852bADV/lpxyl4JffHLZiXg9yT2vFEQ3tayINhTcp1FaLBAq+12a1FaWXSmqAz ZRpT5/1fzA0OJcTMeQps3pOWxQ== -----END CERTIFICATE-----Generated at Thu Mar 26 12:00:55 2026 by rpki-client