$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft File: q2JivH0C7BrUi3HamLc9IqNi2vA.mft (raw, json) Hash identifier: xwEc8yzqH0DHIOwDJ+Y7XqREXAYqXkXIs6KBfG/7qk4= Subject key identifier: 3B:1B:98:53:60:0B:01:27:36:64:D2:94:63:07:04:B8:EF:EE:EA:34 Authority key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 Certificate issuer: /CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Certificate serial: 36B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft Manifest number: 35C3 Signing time: Fri 06 Mar 2026 14:28:34 +0000 Manifest this update: Fri 06 Mar 2026 14:28:33 +0000 Manifest next update: Fri 13 Mar 2026 14:28:33 +0000 Files and hashes: 1: q2JivH0C7BrUi3HamLc9IqNi2vA.crl (hash: kYiOwzyiQHy4o2VefGFZeDVpMsOjhGT4tHBwcEOuI2U=) 2: 7D920C1AB0CD11E58B55FC73C4F9AE02.roa (hash: knSiwSZTuJB5L8civuaUh8rAh8cmbNdU18vutdd1ebk=) 3: 7F4D30ACB0CD11E58B55FC73C4F9AE02.roa (hash: N79DDK5pn6TCAon8GJdsX02x5/pCsRg1kmXulJOa3DU=) 4: D4B25B928C6B11F09545B981C4F9AE02.roa (hash: Vuo+8i5V4Znap+Qs1dOcHdE1nAFejMLQYP5EDIvQcjU=) 5: 7B938024B0CD11E58B55FC73C4F9AE02.roa (hash: /QQiHNO+P4zS7clMch+1xG2dmlltL/7vNQJGue0Q24E=) 6: F1F087928C6B11F0B1A50E82C4F9AE02.roa (hash: kuzwCvIHtKelM7oshMzAb2U462l4e0HmxA10PXja6PA=) 7: 8207CCA0906C11EC86E8B711C4F9AE02.roa (hash: HGBUZghw2mrH37viSTYGdL7UxbtP3kpsrCzGnWhLnVU=) 8: 4D5247EEA4C911E782854F50C4F9AE02.roa (hash: rEfB0wTEVedizbjd1aa4stNP7Lpi5g6RaGy1a4umZiM=) 9: 4C9925F2A4C911E782854F50C4F9AE02.roa (hash: NUP0co51SrQ7MBIOUbm3rcePgeq0Qam5xEhiKSlEwl4=) 10: 9C193BAC08C511EDBC862E48C4F9AE02.roa (hash: SJVE7ZBsoRSsliTmJf9TKg9PsayamV5jFN7WqlX3xvc=) 11: 78123422B0CD11E58B55FC73C4F9AE02.roa (hash: w/xkPDWtvjzhfQW3Zf8fDbO/CqBdGqSzN3GtrP1PUo8=) 12: 4BF67550A4C911E782854F50C4F9AE02.roa (hash: f3qU6tlwehhcmw+j9t9F4SExzXSKSjEABu7b7Oi3kuk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:28:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14001 (0x36b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2454, serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Validity Not Before: Mar 6 14:28:33 2026 GMT Not After : Mar 13 14:28:33 2026 GMT Subject: CN=69aae491-6856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1e:3b:81:dc:92:f1:33:76:b0:36:e6:23:d1: d6:68:e1:17:2c:10:ae:0d:83:82:20:f4:87:47:ba: 21:98:b0:f8:05:98:51:e2:bf:ab:26:ef:a4:40:73: ce:33:c0:be:65:2e:f5:c0:35:fa:70:15:4a:82:70: 5b:08:bd:1e:5e:27:ff:7b:7f:64:2f:5b:64:a5:cd: f7:84:b8:02:7f:0b:c5:67:99:43:9e:39:46:fd:ee: 98:27:7e:d5:bd:d7:f6:cd:c8:fa:c8:9c:d7:ec:2d: d5:6f:96:aa:95:ea:cf:c2:1a:c0:82:d8:df:33:86: a4:95:4e:c1:bc:17:f9:18:73:ee:c1:58:2a:8b:6a: 31:71:7c:7e:19:7d:96:ad:a0:54:a2:f1:c3:1f:0f: 6b:c5:0f:69:3e:23:77:2d:a0:37:c3:79:f2:3c:50: eb:97:f7:d7:42:55:9f:2b:23:97:a8:ad:18:42:eb: ee:4e:b3:a0:c8:39:cc:2b:95:37:be:63:a3:0c:65: 6e:61:97:9c:66:9f:40:c5:a7:d0:12:bf:6e:b4:fe: e1:14:31:9e:a8:f2:25:dc:c7:80:6f:b2:2a:5a:dd: a0:38:40:4d:a7:13:5b:19:f1:93:74:06:9c:50:93: e3:d5:95:8c:be:be:e2:fe:40:4f:b2:bf:3f:34:0c: 25:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:1B:98:53:60:0B:01:27:36:64:D2:94:63:07:04:B8:EF:EE:EA:34 X509v3 Authority Key Identifier: keyid:AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:54:f9:5c:37:cf:6d:09:1c:e3:c8:05:d0:18:c9:b9:64:0f: 72:bf:9d:40:9d:5f:d1:51:1f:12:67:c2:6e:b1:4a:3e:9f:5a: 72:57:ec:6c:68:16:0b:8e:30:9a:99:e9:90:4c:a4:d0:36:ac: 61:b9:8f:22:b9:78:a6:bf:06:5f:00:be:8e:d5:45:69:93:a9: cd:db:81:4d:6c:a9:36:c1:64:22:61:4d:7d:4f:ca:05:63:48: ec:bf:14:08:c9:9a:ea:f3:ab:1b:9a:85:89:fa:d3:93:00:d4: 4b:1b:53:d1:6f:71:73:d5:31:1d:e7:7d:10:e9:f8:f6:65:3d: 82:19:c4:f0:11:21:68:1c:0a:0d:ed:d6:5a:7e:b9:6e:81:7c: ba:1f:a9:e0:5a:03:3a:38:5a:12:9d:9b:95:64:e4:87:68:70: 0d:0b:e3:95:d5:0c:b5:f4:c5:0c:b5:04:ca:79:37:2f:39:93: 9d:9c:d1:e3:38:52:09:e8:f3:0b:46:09:4d:db:72:b6:d1:65: c9:cd:2b:e5:03:81:5b:ee:54:46:f0:56:f9:8f:65:ab:3b:d7: c4:f0:fa:83:36:52:19:60:ed:91:c9:24:b8:56:d7:74:cc:41: 87:ae:1c:63:5e:a0:de:20:96:87:d6:b2:56:7c:19:75:61:f7: 2c:2b:53:f9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNrEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI0NTQxMTAvBgNVBAUTKEFCNjI2MkJDN0QwMkVDMUFENDhCNzFEQTk4QjczRDIy QTM2MkRBRjAwHhcNMjYwMzA2MTQyODMzWhcNMjYwMzEzMTQyODMzWjAYMRYwFAYD VQQDEw02OWFhZTQ5MS02ODU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsh47gdyS8TN2sDbmI9HWaOEXLBCuDYOCIPSHR7ohmLD4BZhR4r+rJu+kQHPO M8C+ZS71wDX6cBVKgnBbCL0eXif/e39kL1tkpc33hLgCfwvFZ5lDnjlG/e6YJ37V vdf2zcj6yJzX7C3Vb5aqlerPwhrAgtjfM4aklU7BvBf5GHPuwVgqi2oxcXx+GX2W raBUovHDHw9rxQ9pPiN3LaA3w3nyPFDrl/fXQlWfKyOXqK0YQuvuTrOgyDnMK5U3 vmOjDGVuYZecZp9AxafQEr9utP7hFDGeqPIl3MeAb7IqWt2gOEBNpxNbGfGTdAac UJPj1ZWMvr7i/kBPsr8/NAwl/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDsbmFNg CwEnNmTSlGMHBLjv7uo0MB8GA1UdIwQYMBaAFKtiYrx9Auwa1Itx2pi3PSKjYtrw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjQ1NC9ENEMzMEI0MjFE ODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdCclVpM0hhbUxjOUlxTmky dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EySml2SDBDN0JyVWkzSGFtTGM5SXFOaTJ2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjQ1NC9ENEMzMEI0MjFEODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdC clVpM0hhbUxjOUlxTmkydkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVVT5XDfPbQkc48gF0BjJuWQPcr+dQJ1f0VEfEmfCbrFKPp9aclfsbGgWC44w mpnpkEyk0DasYbmPIrl4pr8GXwC+jtVFaZOpzduBTWypNsFkImFNfU/KBWNI7L8U CMma6vOrG5qFifrTkwDUSxtT0W9xc9UxHed9EOn49mU9ghnE8BEhaBwKDe3WWn65 boF8uh+p4FoDOjhaEp2blWTkh2hwDQvjldUMtfTFDLUEynk3LzmTnZzR4zhSCejz C0YJTdtyttFlyc0r5QOBW+5URvBW+Y9lqzvXxPD6gzZSGWDtkckkuFbXdMxBh64c Y16g3iCWh9ayVnwZdWH3LCtT+Q== -----END CERTIFICATE-----Generated at Sun Mar 8 08:24:40 2026 by rpki-client