$ rpki-client -vvf rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.mft File: Tn_qcaRHpqFhecJpfr7lVRmdsJg.mft (raw, json) Hash identifier: 9fQxkHnh9AyaEOTHv6csiyKSWwzFOoXZ6V1yIojC4CI= Subject key identifier: C5:03:FC:CC:7B:BE:BB:A8:F6:E4:74:6C:BA:70:08:70:F0:B7:4B:4D Authority key identifier: 4E:7F:EA:71:A4:47:A6:A1:61:79:C2:69:7E:BE:E5:55:19:9D:B0:98 Certificate issuer: /CN=A9148CCE/serialNumber=4E7FEA71A447A6A16179C2697EBEE555199DB098 Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn_qcaRHpqFhecJpfr7lVRmdsJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.mft Manifest number: 86 Signing time: Tue 03 Mar 2026 07:13:52 +0000 Manifest this update: Tue 03 Mar 2026 07:13:51 +0000 Manifest next update: Tue 10 Mar 2026 07:13:51 +0000 Files and hashes: 1: Tn_qcaRHpqFhecJpfr7lVRmdsJg.crl (hash: ubr4v2Sc+enqaO0xV/9osHZGg+GuU1naM0KV3EGs4vw=) 2: 8FD5A938522911F0AECD911AC4F9AE02.roa (hash: JJ6X8WzHM7ayepaDQXdtVvN+DdzYIkr1gqa3SSMInv0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.crl rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn_qcaRHpqFhecJpfr7lVRmdsJg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 07:13:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148CCE, serialNumber=4E7FEA71A447A6A16179C2697EBEE555199DB098 Validity Not Before: Mar 3 07:13:51 2026 GMT Not After : Mar 10 07:13:51 2026 GMT Subject: CN=69a68a30-0c3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0a:ca:ce:79:46:a1:66:48:d7:87:9e:b8:87: 68:88:3c:c1:1d:63:5f:12:d4:81:aa:40:d4:de:ce: 87:ec:51:f1:41:c8:81:5d:8e:8a:50:91:5f:b6:9e: d3:32:6f:78:82:6f:e9:55:ac:46:83:10:f7:7f:52: 26:06:ee:12:eb:f1:9d:dd:f5:7a:be:6f:82:bb:db: e5:31:ca:4e:60:d0:18:1e:74:0e:22:c4:5f:b7:12: d7:27:76:71:7d:d8:61:95:b5:b3:9d:53:ba:85:60: bd:94:b4:4d:6f:e2:78:c5:17:5e:6c:40:22:9d:c6: da:95:32:f7:9c:26:3b:5e:3c:b3:83:f1:ee:d1:ff: 5b:c1:c7:c2:f5:44:d3:a9:5a:e2:3b:d5:c9:b0:8a: 69:1a:07:24:ff:d5:40:55:74:87:b1:dc:19:00:85: 0d:12:6f:e1:ba:76:14:1f:12:a9:ab:0c:4a:6b:d6: 46:1b:0e:57:28:39:c7:a6:2c:74:48:7e:01:33:21: 8a:97:2a:58:3a:26:de:75:7a:e2:3e:19:12:96:a1: 1b:8e:df:5b:35:aa:d9:b0:b3:93:ee:41:1e:47:31: d9:85:70:fd:a0:97:72:b0:98:73:32:83:b5:e2:bf: 8c:ea:77:63:92:4d:e3:f3:71:b8:3f:7e:98:ba:bf: ab:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:03:FC:CC:7B:BE:BB:A8:F6:E4:74:6C:BA:70:08:70:F0:B7:4B:4D X509v3 Authority Key Identifier: keyid:4E:7F:EA:71:A4:47:A6:A1:61:79:C2:69:7E:BE:E5:55:19:9D:B0:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn_qcaRHpqFhecJpfr7lVRmdsJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148CCE/8B21909C4FEE11F080379482C4F9AE02/Tn_qcaRHpqFhecJpfr7lVRmdsJg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:38:ea:52:83:16:ae:ec:1e:0b:c0:ac:8f:bc:47:0e:e5:1e: 7d:ab:e1:c1:fd:1d:d6:e0:19:f1:68:db:49:a8:d9:71:ae:49: 94:56:4b:a9:59:f3:d2:27:1f:84:f2:09:3c:45:12:4e:ed:4f: 88:ac:be:07:b2:23:48:d3:3d:56:d8:a5:4c:5a:cc:d5:b0:e2: 58:3c:fd:a5:cc:69:90:39:51:f0:2a:fe:35:8a:44:30:5f:91: 2e:c8:33:87:81:2e:71:ac:b7:34:7a:a5:d2:3c:d7:3a:2a:91: 95:54:e2:fb:10:77:e2:a2:d5:8c:f2:6c:1e:95:71:25:81:a7: fe:e0:22:4d:64:0a:0c:3f:ac:80:21:14:3e:40:bf:98:e8:96: b6:e1:7e:8a:c3:b3:2b:77:43:5c:1d:f6:ff:e7:b9:29:61:c2: c3:c0:1c:52:31:ab:a4:6c:b0:98:24:b6:9a:42:08:84:fd:5c: c6:82:3d:2a:69:b6:22:3a:7a:5a:18:bf:e7:c8:ab:f6:80:46: 3a:51:5f:06:68:ee:67:b9:2d:cb:b4:6a:11:d5:81:6f:ef:ca: 68:2f:5b:6c:e3:d8:07:0b:4c:86:f2:8b:5b:63:c3:20:7e:b0: 89:78:e6:00:96:7b:09:98:be:4a:8d:3a:f2:a9:c6:e1:cd:9b: 6a:83:b1:b3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhDQ0UxMTAvBgNVBAUTKDRFN0ZFQTcxQTQ0N0E2QTE2MTc5QzI2OTdFQkVFNTU1 MTk5REIwOTgwHhcNMjYwMzAzMDcxMzUxWhcNMjYwMzEwMDcxMzUxWjAYMRYwFAYD VQQDEw02OWE2OGEzMC0wYzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQrKznlGoWZI14eeuIdoiDzBHWNfEtSBqkDU3s6H7FHxQciBXY6KUJFftp7T Mm94gm/pVaxGgxD3f1ImBu4S6/Gd3fV6vm+Cu9vlMcpOYNAYHnQOIsRftxLXJ3Zx fdhhlbWznVO6hWC9lLRNb+J4xRdebEAincbalTL3nCY7Xjyzg/Hu0f9bwcfC9UTT qVriO9XJsIppGgck/9VAVXSHsdwZAIUNEm/hunYUHxKpqwxKa9ZGGw5XKDnHpix0 SH4BMyGKlypYOibedXriPhkSlqEbjt9bNarZsLOT7kEeRzHZhXD9oJdysJhzMoO1 4r+M6ndjkk3j83G4P36Yur+rcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMUD/Mx7 vruo9uR0bLpwCHDwt0tNMB8GA1UdIwQYMBaAFE5/6nGkR6ahYXnCaX6+5VUZnbCY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OENDRS84QjIxOTA5QzRG RUUxMUYwODAzNzk0ODJDNEY5QUUwMi9Ubl9xY2FSSHBxRmhlY0pwZnI3bFZSbWRz SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RuX3FjYVJIcHFGaGVjSnBmcjdsVlJtZHNKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OENDRS84QjIxOTA5QzRGRUUxMUYwODAzNzk0ODJDNEY5QUUwMi9Ubl9xY2FSSHBx RmhlY0pwZnI3bFZSbWRzSmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxDjqUoMWruweC8Csj7xHDuUefavhwf0d1uAZ8WjbSajZca5JlFZLqVnz0icf hPIJPEUSTu1PiKy+B7IjSNM9VtilTFrM1bDiWDz9pcxpkDlR8Cr+NYpEMF+RLsgz h4Eucay3NHql0jzXOiqRlVTi+xB34qLVjPJsHpVxJYGn/uAiTWQKDD+sgCEUPkC/ mOiWtuF+isOzK3dDXB32/+e5KWHCw8AcUjGrpGywmCS2mkIIhP1cxoI9Kmm2Ijp6 Whi/58ir9oBGOlFfBmjuZ7kty7RqEdWBb+/KaC9bbOPYBwtMhvKLW2PDIH6wiXjm AJZ7CZi+So068qnG4c2baoOxsw== -----END CERTIFICATE-----Generated at Wed Mar 4 08:25:09 2026 by rpki-client