$ rpki-client -vvf rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft File: QgBM9ryh-lZCT17qJPYqkrJc3s8.mft (raw, json) Hash identifier: l35xDHhpBz96+d4LIswO4CCW0Hpil4+s01YtAYQyyqA= Subject key identifier: FF:58:F6:8A:8D:EE:E4:0D:B8:F0:86:F0:55:3C:93:E3:6D:D7:29:C2 Authority key identifier: 42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF Certificate issuer: /CN=A919960D/serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF Certificate serial: 0261 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft Manifest number: 0259 Signing time: Fri 13 Mar 2026 01:31:10 +0000 Manifest this update: Fri 13 Mar 2026 01:31:09 +0000 Manifest next update: Fri 20 Mar 2026 01:31:09 +0000 Files and hashes: 1: QgBM9ryh-lZCT17qJPYqkrJc3s8.crl (hash: LKdB8smlqZw5K+tNSyW319qtBCZQddLQJaf/0WGXWu0=) 2: BE9174768DDE11ED97AFDA82C4F9AE02.roa (hash: lWqXr9OCi9y8igTWAmlmDXkw3mBGBTPXv9Xm5W9NawI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 01:31:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 609 (0x261) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919960D, serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF Validity Not Before: Mar 13 01:31:09 2026 GMT Not After : Mar 20 01:31:09 2026 GMT Subject: CN=69b368de-4c09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:44:93:4e:2b:bb:6c:bb:29:b4:c8:8b:65:30: fb:2b:f1:33:c7:b9:1c:bb:83:74:1d:1a:88:58:c0: f1:58:bd:1d:69:85:31:c7:d8:f3:31:9d:ea:b7:c5: 4b:17:98:1e:5e:58:7c:33:e1:25:4c:d2:47:12:44: 91:b1:db:1f:48:93:6e:03:3d:06:12:d5:57:20:ac: ce:0e:33:43:4b:27:58:fe:f1:0c:8c:bd:ac:15:a9: db:0a:b4:49:f1:09:a8:1b:a4:96:e6:33:b7:3f:ca: b5:1d:7a:c7:60:1a:13:5a:5d:fa:8a:b4:c7:c5:51: 39:ff:fc:18:f4:7f:32:c1:f7:cf:6f:33:5b:8a:3a: ff:a1:21:60:a6:43:8c:82:b3:fb:c3:8b:9b:5d:c7: 2e:31:d4:a3:f4:3f:70:65:bf:0a:14:5e:c8:ef:2f: 16:3e:1d:1a:f7:40:02:2a:da:65:27:47:82:76:fe: 76:92:a3:28:36:db:85:07:9a:4c:0f:f6:c5:86:22: df:7c:76:5b:de:23:db:f2:3c:b2:de:e7:23:d8:34: 20:9a:78:42:91:0a:1b:bd:21:1b:50:4d:4c:24:32: 49:b9:48:63:0a:17:03:d3:bf:99:d6:c3:cc:2f:6f: 5c:b5:29:81:93:2f:31:05:ae:af:dc:3e:44:09:44: 86:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:58:F6:8A:8D:EE:E4:0D:B8:F0:86:F0:55:3C:93:E3:6D:D7:29:C2 X509v3 Authority Key Identifier: keyid:42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:72:7e:ae:de:a8:22:cd:c9:5e:24:c1:1e:cc:87:17:3f:8a: 17:b2:43:a2:ff:1a:7e:16:0e:db:31:7f:1e:f3:73:93:86:d6: 65:47:c2:e2:af:b3:b6:50:cd:67:05:45:97:67:ef:40:56:08: b8:f4:e6:d0:41:1c:ae:87:16:70:c4:25:eb:67:d3:8e:fb:d9: aa:63:bb:b9:f1:56:f9:53:49:fb:3e:e8:05:1f:51:09:78:35: c7:a9:e5:22:a7:4c:6d:9c:6e:b1:b3:51:ce:4d:ef:c6:8e:8f: c4:a4:e8:b0:5b:23:4b:83:0e:3e:3e:0e:37:54:27:01:c6:49: 30:0a:aa:1d:53:1a:23:df:8f:bf:33:26:8d:55:36:82:59:42: 61:86:36:60:ff:cb:a4:00:d1:bb:d1:de:50:23:30:50:86:c6: ad:2b:2b:64:12:1b:37:2f:38:63:1d:c6:51:db:52:b2:df:15: 56:98:2b:c0:ca:56:05:23:1a:33:7e:03:0f:69:c6:47:51:ce: 37:69:07:f4:82:3b:5e:05:ea:9d:1f:46:d3:17:e5:ae:28:ed: 70:8a:f4:32:dd:6a:c4:d2:38:5d:9c:b8:15:4f:85:8c:4b:ea: d1:4a:78:79:ce:6b:25:f6:6f:ac:74:1e:48:7f:49:a5:4e:f6: 2f:87:2c:55 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk2MEQxMTAvBgNVBAUTKDQyMDA0Q0Y2QkNBMUZBNTY0MjRGNUVFQTI0RjYyQTky QjI1Q0RFQ0YwHhcNMjYwMzEzMDEzMTA5WhcNMjYwMzIwMDEzMTA5WjAYMRYwFAYD VQQDEw02OWIzNjhkZS00YzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA40STTiu7bLsptMiLZTD7K/Ezx7kcu4N0HRqIWMDxWL0daYUxx9jzMZ3qt8VL F5geXlh8M+ElTNJHEkSRsdsfSJNuAz0GEtVXIKzODjNDSydY/vEMjL2sFanbCrRJ 8QmoG6SW5jO3P8q1HXrHYBoTWl36irTHxVE5//wY9H8ywffPbzNbijr/oSFgpkOM grP7w4ubXccuMdSj9D9wZb8KFF7I7y8WPh0a90ACKtplJ0eCdv52kqMoNtuFB5pM D/bFhiLffHZb3iPb8jyy3ucj2DQgmnhCkQobvSEbUE1MJDJJuUhjChcD07+Z1sPM L29ctSmBky8xBa6v3D5ECUSGiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP9Y9oqN 7uQNuPCG8FU8k+Nt1ynCMB8GA1UdIwQYMBaAFEIATPa8ofpWQk9e6iT2KpKyXN7P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTYwRC9CRDBCNjRDNjhE REExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1sWkNUMTdxSlBZcWtySmMz czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnQk05cnloLWxaQ1QxN3FKUFlxa3JKYzNzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTYwRC9CRDBCNjRDNjhEREExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1s WkNUMTdxSlBZcWtySmMzczgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARHJ+rt6oIs3JXiTBHsyHFz+KF7JDov8afhYO2zF/HvNzk4bWZUfC4q+ztlDN ZwVFl2fvQFYIuPTm0EEcrocWcMQl62fTjvvZqmO7ufFW+VNJ+z7oBR9RCXg1x6nl IqdMbZxusbNRzk3vxo6PxKTosFsjS4MOPj4ON1QnAcZJMAqqHVMaI9+PvzMmjVU2 gllCYYY2YP/LpADRu9HeUCMwUIbGrSsrZBIbNy84Yx3GUdtSst8VVpgrwMpWBSMa M34DD2nGR1HON2kH9II7XgXqnR9G0xflrijtcIr0Mt1qxNI4XZy4FU+FjEvq0Up4 ec5rJfZvrHQeSH9JpU72L4csVQ== -----END CERTIFICATE-----Generated at Sat Mar 14 02:23:16 2026 by rpki-client