$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.mft File: QB2L3IKjJEjJO6Og_pOvEGQjYqI.mft (raw, json) Hash identifier: zTb46EWAXHNeqvyTThRIlrSTYMeKqpA+fAqSIkI9zuQ= Subject key identifier: 81:3A:45:A3:A3:B7:7D:EA:BA:8D:69:8E:8A:9D:1A:93:DD:24:21:BA Authority key identifier: 40:1D:8B:DC:82:A3:24:48:C9:3B:A3:A0:FE:93:AF:10:64:23:62:A2 Certificate issuer: /CN=A91F5756/serialNumber=401D8BDC82A32448C93BA3A0FE93AF10642362A2 Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QB2L3IKjJEjJO6Og_pOvEGQjYqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.mft Manifest number: 85 Signing time: Wed 25 Mar 2026 06:53:14 +0000 Manifest this update: Wed 25 Mar 2026 06:53:14 +0000 Manifest next update: Wed 01 Apr 2026 06:53:14 +0000 Files and hashes: 1: QB2L3IKjJEjJO6Og_pOvEGQjYqI.crl (hash: 4RNzh6IoeFtj5w1r/rsQrhaE2JvGc6WltANwauA+rmc=) 2: 2FD77F7E621511F09070587CC4F9AE02.roa (hash: ZIVHyn4HDYxvTrf1jI6tJxVlx+GuNfOvlQ+9Flv3lLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.crl rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QB2L3IKjJEjJO6Og_pOvEGQjYqI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:53:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5756, serialNumber=401D8BDC82A32448C93BA3A0FE93AF10642362A2 Validity Not Before: Mar 25 06:53:14 2026 GMT Not After : Apr 1 06:53:14 2026 GMT Subject: CN=69c3865a-3f81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:0f:35:bc:7d:98:bc:ee:0b:eb:e9:45:38:13: 4b:7b:e5:e3:af:cc:d0:1c:c4:2e:e2:c9:66:84:71: e1:79:5f:a3:94:e6:db:3c:86:de:ae:04:08:f9:2f: 35:e6:eb:13:56:11:78:64:9e:f3:d1:bb:49:0f:70: e9:60:9a:f0:d1:6c:a0:58:58:9f:01:4f:fa:67:34: c1:5b:73:8d:3c:bf:a9:3c:33:a4:74:e7:de:65:6f: 69:d9:ae:d9:94:c3:3b:c8:5b:76:5b:7b:06:43:a3: e4:83:d1:b8:11:86:2e:bd:e8:86:af:ac:79:82:1d: e9:6c:08:f3:c0:4e:14:6e:35:bc:a4:27:c2:d4:90: 19:f0:4a:d0:b6:56:f8:be:ec:31:e9:56:86:36:7e: 59:6d:cc:11:02:96:95:1c:60:1f:b0:f7:6e:80:8a: 44:46:31:06:6c:89:2a:86:7c:8e:ac:56:80:cb:65: 2e:b2:b2:85:a3:6a:17:a1:09:50:d9:7f:7f:d5:fc: 17:f9:bc:d0:aa:55:d6:e4:d2:73:e0:13:13:ae:c6: ce:fc:20:71:97:ab:fa:68:80:fb:88:d5:09:c5:cc: bd:a2:bd:24:fd:0b:2c:a2:43:84:ca:35:1e:83:b2: 82:e9:e0:6c:ee:4f:76:8d:6f:b2:0a:a6:c9:c5:94: 92:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:3A:45:A3:A3:B7:7D:EA:BA:8D:69:8E:8A:9D:1A:93:DD:24:21:BA X509v3 Authority Key Identifier: keyid:40:1D:8B:DC:82:A3:24:48:C9:3B:A3:A0:FE:93:AF:10:64:23:62:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QB2L3IKjJEjJO6Og_pOvEGQjYqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:12:5f:df:ee:b3:f0:7b:ff:8e:37:c3:31:2d:64:87:97:4d: ab:ce:d0:74:70:2f:9b:5f:d1:21:5c:00:3a:0c:d2:d9:e2:c4: cc:3c:ed:1b:fa:85:80:75:a3:fc:17:01:ae:29:48:00:28:88: 56:9e:89:12:b3:71:a1:91:43:2c:37:78:9a:8d:80:19:e1:c6: ba:d8:18:49:9c:52:f7:64:7d:ea:fd:eb:b9:59:18:a1:5b:19: 3b:8b:dd:91:65:13:02:96:16:ff:cf:93:f7:49:7a:96:52:2b: 32:8c:d1:85:d8:5a:41:83:d4:aa:4b:b1:08:aa:5e:74:ab:31: 0c:be:37:3b:6f:a4:b6:3c:33:53:7b:a0:bf:59:cc:9c:e9:2b: 68:1f:f7:38:6a:49:06:59:43:c3:8f:0f:d7:38:5d:d6:b0:31: ab:09:57:c0:2f:fa:44:ea:bb:d1:39:de:2a:b6:fd:c4:85:3b: 18:0b:4f:22:6f:87:a8:a7:2d:af:f5:36:ea:d9:6f:ea:92:9b: 91:27:3c:ba:fa:54:58:bf:bd:e3:52:66:5f:92:c3:05:57:b4: b9:d7:0d:cb:d3:32:b9:22:5f:70:83:f8:ca:99:0a:ca:09:1f: 31:49:c5:9a:c1:bb:72:e6:58:bb:6b:d4:91:bd:f7:2d:b2:4a: 5e:6c:0e:58 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU3NTYxMTAvBgNVBAUTKDQwMUQ4QkRDODJBMzI0NDhDOTNCQTNBMEZFOTNBRjEw NjQyMzYyQTIwHhcNMjYwMzI1MDY1MzE0WhcNMjYwNDAxMDY1MzE0WjAYMRYwFAYD VQQDEw02OWMzODY1YS0zZjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Q81vH2YvO4L6+lFOBNLe+Xjr8zQHMQu4slmhHHheV+jlObbPIbergQI+S81 5usTVhF4ZJ7z0btJD3DpYJrw0WygWFifAU/6ZzTBW3ONPL+pPDOkdOfeZW9p2a7Z lMM7yFt2W3sGQ6Pkg9G4EYYuveiGr6x5gh3pbAjzwE4UbjW8pCfC1JAZ8ErQtlb4 vuwx6VaGNn5ZbcwRApaVHGAfsPdugIpERjEGbIkqhnyOrFaAy2UusrKFo2oXoQlQ 2X9/1fwX+bzQqlXW5NJz4BMTrsbO/CBxl6v6aID7iNUJxcy9or0k/QssokOEyjUe g7KC6eBs7k92jW+yCqbJxZSS3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIE6RaOj t33quo1pjoqdGpPdJCG6MB8GA1UdIwQYMBaAFEAdi9yCoyRIyTujoP6TrxBkI2Ki MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTc1Ni82QjcyN0YzMjYy MTIxMUYwOENBNkMxNTRDNEY5QUUwMi9RQjJMM0lLakpFakpPNk9nX3BPdkVHUWpZ cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FCMkwzSUtqSkVqSk82T2dfcE92RUdRallxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTc1Ni82QjcyN0YzMjYyMTIxMUYwOENBNkMxNTRDNEY5QUUwMi9RQjJMM0lLakpF akpPNk9nX3BPdkVHUWpZcUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfBJf3+6z8Hv/jjfDMS1kh5dNq87QdHAvm1/RIVwAOgzS2eLEzDztG/qFgHWj /BcBrilIACiIVp6JErNxoZFDLDd4mo2AGeHGutgYSZxS92R96v3ruVkYoVsZO4vd kWUTApYW/8+T90l6llIrMozRhdhaQYPUqkuxCKpedKsxDL43O2+ktjwzU3ugv1nM nOkraB/3OGpJBllDw48P1zhd1rAxqwlXwC/6ROq70TneKrb9xIU7GAtPIm+HqKct r/U26tlv6pKbkSc8uvpUWL+941JmX5LDBVe0udcNy9MyuSJfcIP4ypkKygkfMUnF msG7cuZYu2vUkb33LbJKXmwOWA== -----END CERTIFICATE-----Generated at Thu Mar 26 21:19:08 2026 by rpki-client