$ rpki-client -vvf rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft File: hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft (raw, json) Hash identifier: nvLqyh/hkrZqz5xfF9zC+4c0MYes79VRxxYLh9UEPqw= Subject key identifier: D7:DF:8F:8F:3A:81:90:E9:74:0E:FC:DD:E8:57:1C:B9:B7:55:A3:11 Authority key identifier: 86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 Certificate issuer: /CN=A91973D2/serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Certificate serial: 0673 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft Manifest number: 0666 Signing time: Sat 28 Mar 2026 22:29:58 +0000 Manifest this update: Sat 28 Mar 2026 22:29:58 +0000 Manifest next update: Sat 04 Apr 2026 22:29:58 +0000 Files and hashes: 1: hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl (hash: YGR8HExeKH89LFJvN1ljeUrGFajBxCL/jYVYux4yvKw=) 2: 6959BDA8C05B11EB9540776AC4F9AE02.roa (hash: o9LJvDAWoOpgjlM3ZhhTsc5yhOvJHm6q+nsIvmgifUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 22:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1651 (0x673) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91973D2, serialNumber=86AB3EBD7C41E656CCEECDB5A850C7A4B1E267E3 Validity Not Before: Mar 28 22:29:58 2026 GMT Not After : Apr 4 22:29:58 2026 GMT Subject: CN=69c85666-c153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:3c:4e:08:b1:8b:4b:e1:c3:f1:31:4b:2d:93: 1a:e0:b5:97:a9:76:09:0a:cc:be:ca:fc:bf:2b:3a: 13:d3:46:36:10:35:77:89:ed:93:6e:f6:cd:e0:80: 06:76:96:45:3a:d8:1a:20:0b:fd:03:bd:39:27:47: e0:33:b8:a0:a2:bb:ac:77:e4:70:96:8d:59:1e:c1: 54:d4:3a:c6:9f:22:f8:be:6f:0e:10:0d:33:c4:a4: 79:13:9a:c6:78:ef:12:8e:85:f6:63:92:8e:7a:b7: c5:0e:bd:73:4f:cb:db:ac:75:2a:40:f0:91:13:90: e6:6a:04:66:65:6c:1e:f8:55:a3:8a:b7:8f:76:e5: 19:00:e4:c7:84:b0:0a:2c:68:b4:18:74:e9:b0:29: 89:19:c6:dd:e3:cf:38:1b:2a:f1:93:23:7b:4e:1f: 76:8d:6f:6d:11:6b:d8:49:a3:a6:a9:c7:af:63:10: e7:5d:22:22:32:06:05:1d:20:d5:95:0d:d8:18:97: 05:f9:53:15:ec:23:d1:b6:91:9d:ab:7d:ce:28:ac: ae:78:0a:fd:2b:9b:ff:2e:16:a6:9a:0f:d1:5b:15: f1:32:99:53:4b:e2:95:8b:6f:a4:ed:08:c2:16:8e: 38:fa:40:de:5a:10:76:6c:85:93:00:2b:ea:9a:a4: e0:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:DF:8F:8F:3A:81:90:E9:74:0E:FC:DD:E8:57:1C:B9:B7:55:A3:11 X509v3 Authority Key Identifier: keyid:86:AB:3E:BD:7C:41:E6:56:CC:EE:CD:B5:A8:50:C7:A4:B1:E2:67:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hqs-vXxB5lbM7s21qFDHpLHiZ-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91973D2/DA839C94BFC811EBA5B3A67CC4F9AE02/hqs-vXxB5lbM7s21qFDHpLHiZ-M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:c9:50:9a:e5:71:bf:9f:59:e1:7f:31:52:17:bf:fb:07:2e: 58:8c:74:88:4c:a7:64:76:bd:cb:02:c4:3b:3b:a0:01:34:73: fe:07:81:c5:74:07:26:ff:ae:fc:df:32:88:e7:70:12:31:45: 4f:57:f4:89:67:2c:36:6e:24:ee:89:70:d9:3c:68:78:f9:d0: 60:ab:93:41:75:3f:38:57:92:3f:21:8f:cb:f3:e2:2e:8a:7d: 6a:e0:8d:f8:d3:4b:27:7b:61:40:be:1c:2c:a1:54:1f:82:dc: 04:ea:b3:6d:fc:c2:89:c7:e2:ff:47:41:67:b9:62:c8:70:d4: 30:bc:b2:ee:3c:6a:a9:e1:4a:1e:1b:7c:23:7e:fb:a2:e2:d1: 1a:56:df:c0:aa:02:69:63:8f:db:08:d5:77:fc:90:0c:32:a0: e8:9c:35:4a:83:91:96:40:05:3b:83:b4:c9:14:42:fd:24:27: 1a:66:f8:66:5f:cc:d6:f7:e3:2b:4f:ce:1b:4f:cb:ec:5e:3e: ef:a6:6e:83:ca:c9:07:f6:3c:1f:44:99:59:a7:34:6f:3a:94: 0a:c9:50:98:8b:e3:50:cf:e4:c6:47:a5:d6:e0:01:0c:aa:90: 91:62:55:da:be:0d:4a:05:92:f6:a3:2a:fe:9c:a0:ce:f5:44: a3:4e:72:6d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTczRDIxMTAvBgNVBAUTKDg2QUIzRUJEN0M0MUU2NTZDQ0VFQ0RCNUE4NTBDN0E0 QjFFMjY3RTMwHhcNMjYwMzI4MjIyOTU4WhcNMjYwNDA0MjIyOTU4WjAYMRYwFAYD VQQDEw02OWM4NTY2Ni1jMTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmDxOCLGLS+HD8TFLLZMa4LWXqXYJCsy+yvy/KzoT00Y2EDV3ie2TbvbN4IAG dpZFOtgaIAv9A705J0fgM7igorusd+Rwlo1ZHsFU1DrGnyL4vm8OEA0zxKR5E5rG eO8SjoX2Y5KOerfFDr1zT8vbrHUqQPCRE5DmagRmZWwe+FWjirePduUZAOTHhLAK LGi0GHTpsCmJGcbd4884GyrxkyN7Th92jW9tEWvYSaOmqcevYxDnXSIiMgYFHSDV lQ3YGJcF+VMV7CPRtpGdq33OKKyueAr9K5v/Lhammg/RWxXxMplTS+KVi2+k7QjC Fo44+kDeWhB2bIWTACvqmqTgsQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNffj486 gZDpdA783ehXHLm3VaMRMB8GA1UdIwQYMBaAFIarPr18QeZWzO7NtahQx6Sx4mfj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzNEMi9EQTgzOUM5NEJG QzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVsYk03czIxcUZESHBMSGla LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hxcy12WHhCNWxiTTdzMjFxRkRIcExIaVotTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzNEMi9EQTgzOUM5NEJGQzgxMUVCQTVCM0E2N0NDNEY5QUUwMi9ocXMtdlh4QjVs Yk03czIxcUZESHBMSGlaLU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFslQmuVxv59Z4X8xUhe/+wcuWIx0iEynZHa9ywLEOzugATRz/geBxXQHJv+u /N8yiOdwEjFFT1f0iWcsNm4k7olw2TxoePnQYKuTQXU/OFeSPyGPy/PiLop9auCN +NNLJ3thQL4cLKFUH4LcBOqzbfzCicfi/0dBZ7liyHDUMLyy7jxqqeFKHht8I377 ouLRGlbfwKoCaWOP2wjVd/yQDDKg6Jw1SoORlkAFO4O0yRRC/SQnGmb4Zl/M1vfj K0/OG0/L7F4+76Zug8rJB/Y8H0SZWac0bzqUCslQmIvjUM/kxkel1uABDKqQkWJV 2r4NSgWS9qMq/pygzvVEo05ybQ== -----END CERTIFICATE-----Generated at Sun Mar 29 18:46:12 2026 by rpki-client