$ rpki-client -vvf rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft File: Q2XRedW3PoqX7eBQXynvAMLWPvk.mft (raw, json) Hash identifier: v3WfFrfOIsMHF4NL4I+tMWnj11AXM0dYz6Cei1rrJ/I= Subject key identifier: 41:5F:C1:AA:87:96:03:3A:E5:E1:3E:6F:FD:0F:C5:21:60:95:AC:BE Authority key identifier: 43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 Certificate issuer: /CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Certificate serial: 035D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft Manifest number: 0353 Signing time: Thu 21 May 2026 01:02:50 +0000 Manifest this update: Thu 21 May 2026 01:02:50 +0000 Manifest next update: Thu 28 May 2026 01:02:50 +0000 Files and hashes: 1: Q2XRedW3PoqX7eBQXynvAMLWPvk.crl (hash: SoyHBt6SnmP4rGF4BZevuFex8O2E8ZOsJWj3cpXs8Y4=) 2: E9A9531644D611F0ABB89277C4F9AE02.roa (hash: LjrdfU8qKAjg1tNh6QbLgwWJcFgbeivFBKT0rfsVVGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 01:02:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 861 (0x35d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139555, serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Validity Not Before: May 21 01:02:50 2026 GMT Not After : May 28 01:02:50 2026 GMT Subject: CN=6a0e59ba-caed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:05:ad:2a:90:29:88:b9:71:f7:53:3d:c6:e7: e9:e3:6b:c1:d5:97:ad:01:61:66:2a:1d:e6:84:3c: 15:72:ac:d1:29:4e:57:4c:38:52:9d:27:5f:c2:99: ba:e7:ea:cd:26:93:fa:83:4a:79:64:8f:08:03:d0: c5:b1:20:31:83:8a:c1:2a:44:c2:cd:bc:de:7a:ae: 0c:67:cf:51:83:ee:f6:51:25:09:0d:a1:f6:b1:27: 0f:98:f6:21:9a:b2:fe:5c:aa:04:f4:fb:5e:60:d4: 0d:7c:e3:2e:66:79:44:9e:c3:08:ab:bf:90:1d:1d: 3b:82:05:9a:f0:a7:60:51:d3:9e:00:ec:c1:db:84: 2a:43:3b:50:55:76:a2:d0:09:91:a8:ea:d6:2a:9e: 9e:53:03:09:51:c9:b1:9c:bb:dc:ef:a7:f5:61:a7: eb:fa:b2:4d:95:b3:d6:98:90:d5:28:a0:6c:9e:a3: 1a:55:fc:ac:b1:f3:52:99:28:c0:8c:2c:78:35:ff: 34:a9:9e:8a:49:ea:24:88:db:f9:be:f0:0d:f2:2a: 49:19:13:4a:4a:d6:13:3b:48:22:44:5d:5b:a7:69: 1a:2b:1e:e6:41:5b:d1:e3:50:03:91:38:47:2f:c3: 48:63:33:a8:76:cb:a5:22:40:3e:12:da:0c:a5:c8: 9d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:5F:C1:AA:87:96:03:3A:E5:E1:3E:6F:FD:0F:C5:21:60:95:AC:BE X509v3 Authority Key Identifier: keyid:43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:1b:f5:53:26:b9:0e:f5:48:1f:a0:02:72:14:19:b3:b9:af: 31:1b:1e:e0:e7:2f:55:7d:cd:4e:93:2c:af:b6:2c:6b:33:fa: 92:21:3c:75:85:7a:0d:72:02:c8:71:f2:c7:66:89:2d:23:45: 23:9e:75:88:fd:c7:95:84:b7:9b:30:8c:54:9d:04:df:e7:7d: c6:96:37:80:6a:a6:84:b0:e4:96:46:b0:85:93:83:c2:15:8d: 1c:55:62:88:0b:e3:e3:1c:48:bb:96:e1:9a:92:5a:02:e5:3b: 81:a3:18:50:0a:0a:e6:c9:c3:b9:4f:de:a5:8b:a8:5e:42:55: ab:a2:27:b8:b0:50:76:41:c9:5a:ff:13:d4:41:c4:26:5b:3e: 8e:2a:1b:c9:b6:02:8e:e0:88:39:8f:86:db:ea:12:7b:a5:ba: 4d:fb:0f:a4:1d:4f:b3:1b:3f:c0:9b:77:13:6a:de:0f:45:73: 61:55:38:f8:4f:4d:b4:4a:9c:0f:44:3b:71:11:fe:ee:b4:05: d4:d3:40:b4:f3:c3:00:c1:f1:bd:e5:a4:d0:9f:11:3e:b0:d0: ca:3f:99:52:08:ea:44:07:f7:71:73:83:23:1f:2f:b3:35:47: 55:f8:9c:08:22:e2:d1:55:62:4f:b3:6a:9d:60:af:fb:03:0c: 22:e3:15:78 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk1NTUxMTAvBgNVBAUTKDQzNjVEMTc5RDVCNzNFOEE5N0VERTA1MDVGMjlFRjAw QzJENjNFRjkwHhcNMjYwNTIxMDEwMjUwWhcNMjYwNTI4MDEwMjUwWjAYMRYwFAYD VQQDEw02YTBlNTliYS1jYWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArwWtKpApiLlx91M9xufp42vB1ZetAWFmKh3mhDwVcqzRKU5XTDhSnSdfwpm6 5+rNJpP6g0p5ZI8IA9DFsSAxg4rBKkTCzbzeeq4MZ89Rg+72USUJDaH2sScPmPYh mrL+XKoE9PteYNQNfOMuZnlEnsMIq7+QHR07ggWa8KdgUdOeAOzB24QqQztQVXai 0AmRqOrWKp6eUwMJUcmxnLvc76f1Yafr+rJNlbPWmJDVKKBsnqMaVfyssfNSmSjA jCx4Nf80qZ6KSeokiNv5vvAN8ipJGRNKStYTO0giRF1bp2kaKx7mQVvR41ADkThH L8NIYzOodsulIkA+EtoMpcidlQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEFfwaqH lgM65eE+b/0PxSFglay+MB8GA1UdIwQYMBaAFENl0XnVtz6Kl+3gUF8p7wDC1j75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTU1NS9EQzdEMTQ1QTAy MkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1BvcVg3ZUJRWHludkFNTFdQ dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EyWFJlZFczUG9xWDdlQlFYeW52QU1MV1B2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTU1NS9EQzdEMTQ1QTAyMkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1Bv cVg3ZUJRWHludkFNTFdQdmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsRv1Uya5DvVIH6ACchQZs7mvMRse4OcvVX3NTpMsr7YsazP6kiE8dYV6DXIC yHHyx2aJLSNFI551iP3HlYS3mzCMVJ0E3+d9xpY3gGqmhLDklkawhZODwhWNHFVi iAvj4xxIu5bhmpJaAuU7gaMYUAoK5snDuU/epYuoXkJVq6InuLBQdkHJWv8T1EHE Jls+jiobybYCjuCIOY+G2+oSe6W6TfsPpB1Psxs/wJt3E2reD0VzYVU4+E9NtEqc D0Q7cRH+7rQF1NNAtPPDAMHxveWk0J8RPrDQyj+ZUgjqRAf3cXODIx8vszVHVfic CCLi0VViT7NqnWCv+wMMIuMVeA== -----END CERTIFICATE-----Generated at Thu May 21 10:15:41 2026 by rpki-client