$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft File: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft (raw, json) Hash identifier: 5fEprSfNh7k7GiWi2Uc131Si4MUSfdPPNlcjJetRSd0= Subject key identifier: 57:4B:F8:B8:12:0A:EB:EC:AB:EF:A1:D2:BA:AB:65:1B:66:9B:32:BB Authority key identifier: 43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 Certificate issuer: /CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Certificate serial: 0B6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft Manifest number: 0AB1 Signing time: Wed 04 Mar 2026 19:25:01 +0000 Manifest this update: Wed 04 Mar 2026 19:25:00 +0000 Manifest next update: Wed 11 Mar 2026 19:25:00 +0000 Files and hashes: 1: Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl (hash: 96UuiQUN5vSogcOHgWrJXZBPZZYxJByCg7E3jhHFs94=) 2: 8626FFC65AE511EBA452D33EC4F9AE02.roa (hash: If1p2T4ry814caqPtmeuOiTH0yVCnehjVYiIPxJ8aBs=) 3: DCF88EAE5ED811EBAB677671C4F9AE02.roa (hash: M8kgzZ/qskhWT6RqbwLXgYKBgdTgBhgTCm6VDEfCRyI=) 4: 84023C06D24611EABDDF5344C4F9AE02.roa (hash: FMzg28ZdQ4F0sdhtK2wuRkllmrqXUEFKB65mg1sG8L4=) 5: 61EFB2ACAC3611EDA5995F3FC4F9AE02.roa (hash: HtUo3JOLjby5IyzPjmh+tWOUa45fBQsHE8hOH6dCaZ4=) 6: 0EA44D4E5ADD11EBB9CEE568C4F9AE02.roa (hash: xyMhDnjS1J7j5KhCCxE7FkpfD0zlq+Ub21i1KmDM4ok=) 7: C3E2252E205F11EE8117111CC4F9AE02.roa (hash: jZ6Iauv/dN/4P0hBUVndivCUUgxGO8TMbCYwzqgk7iI=) 8: 0DE32D9C2B1E11F0AFEB852DC4F9AE02.roa (hash: zt8ovKN7+n8nwUz7dlHlvLBjh4KwXCc4mYOMPsqbe38=) 9: 553170245AC511EBA052F663C4F9AE02.roa (hash: 7erTlCvInc3AVRLw7wvtHf/eZ1jEoIGiOeY13F8Zqv8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Mar 2026 19:25:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2922 (0xb6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Validity Not Before: Mar 4 19:25:00 2026 GMT Not After : Mar 11 19:25:00 2026 GMT Subject: CN=69a8870d-d79d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:72:b0:6e:99:1e:2a:88:55:d3:23:88:af:eb: 99:ed:85:77:79:a8:74:af:74:4d:e3:13:b8:56:41: db:d6:80:f8:de:95:f3:3b:7c:00:1b:ac:fe:86:02: 02:8f:ba:63:56:b4:51:6d:45:c6:98:94:36:db:24: 22:4f:16:86:e3:36:1a:fe:b5:0a:41:77:2d:bc:4c: c0:c8:fe:b3:0f:bf:05:fc:0d:67:a1:a6:27:9f:ea: 72:55:5a:a6:48:f1:65:67:e6:17:4e:d0:56:16:ab: 11:2f:a4:5a:38:71:cf:f4:31:39:49:d1:5a:3c:f9: 0f:d6:fa:00:28:5e:7a:91:27:c8:fa:4f:09:ac:ec: 97:a6:8d:27:07:f7:d1:25:9a:d7:e8:84:28:74:06: b8:7d:30:c7:ca:4e:0b:ee:87:69:16:10:5b:cb:b6: 85:d7:54:e0:de:5d:ab:27:33:1c:2b:0b:c4:bd:bc: 0c:b0:c9:9a:ed:53:92:74:04:47:a4:50:86:47:e7: 54:e6:f6:e4:88:d2:a8:1b:32:5d:5f:58:29:59:b3: a6:6c:0a:1a:dd:05:d0:40:f9:6e:20:1e:a5:1b:1b: 2e:ff:9f:a6:15:d1:7c:47:ea:49:c3:26:40:61:c6: ff:7e:4b:45:56:55:fd:d8:81:9b:4e:51:6e:01:d8: 4f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:4B:F8:B8:12:0A:EB:EC:AB:EF:A1:D2:BA:AB:65:1B:66:9B:32:BB X509v3 Authority Key Identifier: keyid:43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:7c:87:4d:dd:ae:aa:8c:37:71:66:f9:0e:19:6c:5d:a6:a7: df:f2:75:29:59:50:88:cb:b9:cf:cf:cb:34:f5:fc:e2:b0:51: 36:59:9c:bc:1f:00:90:40:04:21:f7:ef:d4:16:88:88:5f:7e: 3d:c0:74:f4:b4:f1:bf:93:09:04:64:12:95:3c:bb:17:f5:98: 83:cc:ae:c5:d1:3c:f1:9d:9c:11:47:74:fe:c4:43:21:cf:d4: 89:b7:f2:d6:58:a9:41:b1:d0:fb:82:c7:d4:ab:2d:c6:3a:8b: ce:f8:59:14:bf:d8:d2:b0:e2:c6:b1:7e:30:94:4e:a7:55:8a: 52:ac:28:33:11:a4:69:48:ca:52:dc:f6:63:56:a8:c5:9a:13: 0f:32:ea:52:f3:f6:d7:c5:e6:44:b6:d5:26:57:c0:79:4a:15: 01:e7:bc:a1:d4:46:3c:a9:f1:81:f2:e1:dc:bc:5a:d7:bf:b0: d2:9e:fb:e6:b3:38:bb:75:d1:a6:10:b2:24:63:cd:42:36:fa: e5:f2:94:b9:c3:61:27:4e:a6:a7:c1:c1:75:8c:fa:d3:e1:5f: db:28:14:05:de:41:51:8c:e0:58:0a:94:e6:d7:09:9c:c7:c1: e8:83:f8:89:f7:d9:c6:85:97:8e:0a:54:78:54:ad:68:63:47: 56:e9:0c:28 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDQzNkIyQzVGMDNGOTFDQTc0MUM2QTI0OURDMDE1QTZE NTQ0QTYyQTYwHhcNMjYwMzA0MTkyNTAwWhcNMjYwMzExMTkyNTAwWjAYMRYwFAYD VQQDEw02OWE4ODcwZC1kNzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApXKwbpkeKohV0yOIr+uZ7YV3eah0r3RN4xO4VkHb1oD43pXzO3wAG6z+hgIC j7pjVrRRbUXGmJQ22yQiTxaG4zYa/rUKQXctvEzAyP6zD78F/A1noaYnn+pyVVqm SPFlZ+YXTtBWFqsRL6RaOHHP9DE5SdFaPPkP1voAKF56kSfI+k8JrOyXpo0nB/fR JZrX6IQodAa4fTDHyk4L7odpFhBby7aF11Tg3l2rJzMcKwvEvbwMsMma7VOSdARH pFCGR+dU5vbkiNKoGzJdX1gpWbOmbAoa3QXQQPluIB6lGxsu/5+mFdF8R+pJwyZA Ycb/fktFVlX92IGbTlFuAdhP6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFdL+LgS Cuvsq++h0rqrZRtmmzK7MB8GA1UdIwQYMBaAFENrLF8D+RynQcaiSdwBWm1USmKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy80MzdDQzQwNjg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhLZEJ4cUpKM0FGYWJWUktZ cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Eyc3NYd1A1SEtkQnhxSkozQUZhYlZSS1lxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjQ3Qy80MzdDQzQwNjg1MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhL ZEJ4cUpKM0FGYWJWUktZcVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAE3yHTd2uqow3cWb5DhlsXaan3/J1KVlQiMu5z8/LNPX84rBRNlmcvB8AkEAE Iffv1BaIiF9+PcB09LTxv5MJBGQSlTy7F/WYg8yuxdE88Z2cEUd0/sRDIc/Uibfy 1lipQbHQ+4LH1KstxjqLzvhZFL/Y0rDixrF+MJROp1WKUqwoMxGkaUjKUtz2Y1ao xZoTDzLqUvP218XmRLbVJlfAeUoVAee8odRGPKnxgfLh3Lxa17+w0p775rM4u3XR phCyJGPNQjb65fKUucNhJ06mp8HBdYz60+Ff2ygUBd5BUYzgWAqU5tcJnMfB6IP4 iffZxoWXjgpUeFStaGNHVukMKA== -----END CERTIFICATE-----Generated at Thu Mar 5 18:19:27 2026 by rpki-client