$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft File: QVQG7YC02Sekeai6BCEWri0RoaY.mft (raw, json) Hash identifier: Uy3DM05o9E7b4P+hRihxe07QHeItB9bk0s/4sYxz66s= Subject key identifier: 68:34:71:45:BC:F9:9C:43:2B:25:86:E5:57:B4:8F:17:65:9B:73:8F Authority key identifier: 41:54:06:ED:80:B4:D9:27:A4:79:A8:BA:04:21:16:AE:2D:11:A1:A6 Certificate issuer: /CN=A91EFBA1/serialNumber=415406ED80B4D927A479A8BA042116AE2D11A1A6 Certificate serial: 199A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft Manifest number: 195A Signing time: Tue 24 Mar 2026 16:21:06 +0000 Manifest this update: Tue 24 Mar 2026 16:21:05 +0000 Manifest next update: Tue 31 Mar 2026 16:21:05 +0000 Files and hashes: 1: QVQG7YC02Sekeai6BCEWri0RoaY.crl (hash: lzYGH539f4JBV1h1BwAV9Jc7jYJ0+KkrFkyauGvnVJk=) 2: 43E9842C185A11EF9D0C4338C4F9AE02.roa (hash: toEz6erU7+D4rMae1mPWIdqI8DueTUnpGy4FNYrk4Rw=) 3: 62C9C1CEE03111EEBECE581EC4F9AE02.roa (hash: S3EQx5yzT1EViiEO5X7LEoaWX/wa+Lut/QebUP/xU5w=) 4: 215F871ECF5E11F0872AA04EC4F9AE02.roa (hash: Bha1I51axWyRop8A3u5fRhgKH79agSu0IebDN4kf2vk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.crl rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:21:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6554 (0x199a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFBA1, serialNumber=415406ED80B4D927A479A8BA042116AE2D11A1A6 Validity Not Before: Mar 24 16:21:05 2026 GMT Not After : Mar 31 16:21:05 2026 GMT Subject: CN=69c2b9f2-75a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:87:95:b2:ed:4a:1f:93:8c:65:4a:bc:50:af: 24:32:8d:d2:c2:cf:01:c7:ec:a8:dd:84:6b:bb:f3: f3:50:2d:5a:45:59:c4:b4:d3:2b:75:58:ad:ce:af: a8:77:f5:13:23:89:d0:34:4d:87:09:fd:a2:b9:11: 54:fa:20:59:d6:d1:f9:7a:a1:6c:1c:86:fe:ff:5f: c4:71:2b:c9:06:0f:46:c9:df:76:41:5d:f3:2e:d5: 4b:f4:5c:22:30:a1:04:95:b9:3f:74:e4:62:ba:e0: 9b:66:19:8f:ac:9b:96:46:2e:dd:45:6c:e9:ea:21: 5e:2a:00:b0:c7:27:8d:a9:37:af:94:aa:48:d5:b3: 9d:2a:60:f3:21:ff:f0:22:f5:60:fb:e9:25:49:25: 14:1e:28:2c:6a:07:a2:c5:9a:c4:bf:b3:f2:f7:31: 8d:e1:67:d8:10:95:9b:21:c4:8f:22:e0:6e:5d:f2: 36:95:17:05:1a:cc:b4:30:2e:02:5d:31:f2:9f:8c: 41:61:d7:43:bd:64:4a:a4:aa:22:d7:e7:ab:68:ea: 25:fe:15:9a:37:80:23:9f:ce:9a:45:2f:fb:db:06: 13:13:93:34:aa:a2:07:53:da:08:8c:46:82:d0:bf: d6:3e:ba:aa:7e:27:07:ef:f4:bb:b5:da:23:14:96: 5a:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:34:71:45:BC:F9:9C:43:2B:25:86:E5:57:B4:8F:17:65:9B:73:8F X509v3 Authority Key Identifier: keyid:41:54:06:ED:80:B4:D9:27:A4:79:A8:BA:04:21:16:AE:2D:11:A1:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:ed:bf:ac:46:de:77:4a:89:40:60:80:c2:30:07:66:9f:29: 93:70:ae:26:07:8e:4e:b3:78:1a:df:4e:d9:51:c1:0c:4a:9c: 80:47:5f:af:b9:e9:ff:13:a4:52:4b:3b:58:a4:ef:e7:64:a5: a7:68:da:4b:31:1f:84:fc:87:b9:8b:2b:74:4b:df:73:58:11: 9b:34:dc:20:04:09:ef:ee:83:21:1c:19:6b:52:16:15:dd:29: 6f:af:4a:02:8a:03:b0:a3:c3:2b:b3:9d:9e:c3:b2:c0:ef:e8: e6:5c:46:59:db:9a:6d:43:a4:41:7d:d4:85:1c:cb:f0:fd:f5: 94:27:92:47:c6:27:11:9b:e7:5c:fa:9d:e3:d7:ee:ba:4b:86: 3a:93:ab:14:56:7c:57:d9:ee:e9:74:db:30:83:29:65:50:02: be:ad:9f:87:be:26:a9:59:37:9e:d2:c5:55:74:06:f8:bd:76: f1:d8:dc:47:90:09:d5:90:e7:a6:26:3a:2c:b8:30:63:cf:68: d1:48:02:a9:1e:7f:42:4e:a3:4e:fd:e8:62:51:8d:82:4a:c7: 2f:b6:e9:ad:fb:45:60:2b:19:7f:6f:97:4d:ae:20:f9:0b:c0: a7:86:8d:6a:a3:8d:17:8f:2d:5e:0d:e6:58:bc:70:0a:9d:ed: 00:2c:0e:55 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZCQTExMTAvBgNVBAUTKDQxNTQwNkVEODBCNEQ5MjdBNDc5QThCQTA0MjExNkFF MkQxMUExQTYwHhcNMjYwMzI0MTYyMTA1WhcNMjYwMzMxMTYyMTA1WjAYMRYwFAYD VQQDEw02OWMyYjlmMi03NWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYeVsu1KH5OMZUq8UK8kMo3Sws8Bx+yo3YRru/PzUC1aRVnEtNMrdVitzq+o d/UTI4nQNE2HCf2iuRFU+iBZ1tH5eqFsHIb+/1/EcSvJBg9Gyd92QV3zLtVL9Fwi MKEElbk/dORiuuCbZhmPrJuWRi7dRWzp6iFeKgCwxyeNqTevlKpI1bOdKmDzIf/w IvVg++klSSUUHigsageixZrEv7Py9zGN4WfYEJWbIcSPIuBuXfI2lRcFGsy0MC4C XTHyn4xBYddDvWRKpKoi1+eraOol/hWaN4Ajn86aRS/72wYTE5M0qqIHU9oIjEaC 0L/WPrqqficH7/S7tdojFJZaCwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGg0cUW8 +ZxDKyWG5Ve0jxdlm3OPMB8GA1UdIwQYMBaAFEFUBu2AtNknpHmougQhFq4tEaGm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkJBMS8yQUQ1MUY0Qzk5 MDMxMUU3QTVFOTVDNkZDNEY5QUUwMi9RVlFHN1lDMDJTZWtlYWk2QkNFV3JpMFJv YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWUUc3WUMwMlNla2VhaTZCQ0VXcmkwUm9hWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RkJBMS8yQUQ1MUY0Qzk5MDMxMUU3QTVFOTVDNkZDNEY5QUUwMi9RVlFHN1lDMDJT ZWtlYWk2QkNFV3JpMFJvYVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKO2/rEbed0qJQGCAwjAHZp8pk3CuJgeOTrN4Gt9O2VHBDEqcgEdfr7np/xOk Uks7WKTv52Slp2jaSzEfhPyHuYsrdEvfc1gRmzTcIAQJ7+6DIRwZa1IWFd0pb69K AooDsKPDK7OdnsOywO/o5lxGWduabUOkQX3UhRzL8P31lCeSR8YnEZvnXPqd49fu ukuGOpOrFFZ8V9nu6XTbMIMpZVACvq2fh74mqVk3ntLFVXQG+L128djcR5AJ1ZDn piY6LLgwY89o0UgCqR5/Qk6jTv3oYlGNgkrHL7bprftFYCsZf2+XTa4g+QvAp4aN aqONF48tXg3mWLxwCp3tACwOVQ== -----END CERTIFICATE-----Generated at Thu Mar 26 07:27:12 2026 by rpki-client