$ rpki-client -vvf rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft File: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft (raw, json) Hash identifier: lZ2gNgPKpOCVSblSV1VbCygV9e1JnKf8NcvgA27na9o= Subject key identifier: 92:C4:7D:D3:58:1C:6D:C6:71:F3:4E:6E:64:94:49:44:80:B1:66:74 Authority key identifier: 41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD Certificate issuer: /CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Certificate serial: 0390 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft Manifest number: 0389 Signing time: Tue 03 Mar 2026 00:53:01 +0000 Manifest this update: Tue 03 Mar 2026 00:53:01 +0000 Manifest next update: Tue 10 Mar 2026 00:53:01 +0000 Files and hashes: 1: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl (hash: IiDINZbYOETPzrg5cNsusoOIrAB3BRNAuQ5SzWzmsiM=) 2: 7BCC4B32E85C11EE9593933FC4F9AE02.roa (hash: /VYSBqRbhRZL//G1w9ShC2Js/tBJ1zXCex0aZezen6Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 00:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 912 (0x390) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E91BC, serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Validity Not Before: Mar 3 00:53:01 2026 GMT Not After : Mar 10 00:53:01 2026 GMT Subject: CN=69a630ed-a5a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:82:17:be:52:42:3f:52:45:99:e5:5d:a5:50: 02:f1:ac:5b:88:24:79:d0:99:86:32:65:4b:89:8e: 6c:e7:80:a9:93:4e:5a:4b:3f:eb:41:fd:ac:03:4c: 82:35:66:72:99:24:f9:39:ed:93:8e:31:1e:9a:c8: ed:f8:d5:32:b2:a8:04:50:a1:5a:26:3f:7a:9a:a5: d5:db:7d:27:a7:0f:f8:07:b7:c8:ca:e0:18:25:b0: cf:6d:01:de:6b:4e:34:38:e4:d5:36:fe:b5:3b:6e: 19:a5:04:32:a6:13:49:39:2d:e5:00:a3:55:cd:4d: 17:86:c0:c1:d6:5b:e6:7b:96:02:a4:be:5e:ef:65: 29:7f:c8:33:b4:68:58:90:71:c9:75:f3:1a:6f:fc: f6:6f:83:c2:14:6a:59:cd:22:cb:50:97:11:aa:e0: 49:ca:e5:df:27:c5:a6:ce:3e:a0:00:58:f8:36:6a: 3a:3d:53:0f:bd:1e:26:e9:d4:0f:ef:1e:9a:d5:86: c3:81:da:df:f9:3d:f4:49:d9:76:f4:45:dc:99:25: 37:4f:59:90:c4:13:ab:10:1e:09:42:51:2f:7c:26: 55:4d:f3:97:ce:dc:14:92:2e:76:46:33:56:6d:99: fa:48:a4:00:2b:72:b6:00:9a:75:70:e4:01:c3:d5: 29:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:C4:7D:D3:58:1C:6D:C6:71:F3:4E:6E:64:94:49:44:80:B1:66:74 X509v3 Authority Key Identifier: keyid:41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:4c:f9:30:a3:1a:d4:05:ff:8d:84:7b:5b:6e:7b:f4:67:6d: 90:4a:81:d7:d2:32:8d:fb:da:23:7a:08:9c:b0:66:2b:48:4b: cf:b6:0d:81:4f:bc:fc:8b:61:8b:e9:3c:bd:d0:2c:c1:d4:77: 6d:3b:3b:b4:05:6b:7e:ef:0f:75:b4:a0:0f:bc:aa:57:7c:78: 41:8c:e1:d8:67:1c:2d:2f:11:ec:34:36:35:fa:1b:3d:fa:47: 83:40:f0:f2:23:f5:d6:cb:2b:19:44:70:1b:06:29:e5:f9:b3: 70:2f:fb:43:21:7e:92:08:c3:8e:05:1a:a2:65:70:19:e7:10: 53:a4:dc:04:4d:1b:b6:f2:41:25:df:92:19:9b:bd:5d:c3:64: 58:33:5e:2b:c4:0c:55:4d:c7:36:2f:15:28:58:50:ea:a3:b3: 10:0c:3a:db:66:f8:b4:79:db:4a:e5:36:55:ec:e6:cd:91:38: 82:21:c2:2c:af:ca:98:92:7e:5b:87:b1:61:e7:4d:ee:3c:79: 74:e4:b1:57:90:c8:49:b4:04:c6:31:82:5f:bd:9c:95:a0:92: 99:cc:5a:77:31:9a:fe:08:10:24:81:15:72:54:37:5d:f5:dd: d5:b8:8d:76:95:b8:51:fe:29:b2:8b:a0:76:7d:d7:74:2e:af: b6:f5:80:4e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkxQkMxMTAvBgNVBAUTKDQxNEZCNjE3ODg2OTEzMEY4MjZFOUUzMEMwQjc5NDA4 NEQ5NzYwREQwHhcNMjYwMzAzMDA1MzAxWhcNMjYwMzEwMDA1MzAxWjAYMRYwFAYD VQQDEw02OWE2MzBlZC1hNWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoIXvlJCP1JFmeVdpVAC8axbiCR50JmGMmVLiY5s54Cpk05aSz/rQf2sA0yC NWZymST5Oe2TjjEemsjt+NUysqgEUKFaJj96mqXV230npw/4B7fIyuAYJbDPbQHe a040OOTVNv61O24ZpQQyphNJOS3lAKNVzU0XhsDB1lvme5YCpL5e72Upf8gztGhY kHHJdfMab/z2b4PCFGpZzSLLUJcRquBJyuXfJ8Wmzj6gAFj4Nmo6PVMPvR4m6dQP 7x6a1YbDgdrf+T30Sdl29EXcmSU3T1mQxBOrEB4JQlEvfCZVTfOXztwUki52RjNW bZn6SKQAK3K2AJp1cOQBw9Up6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJLEfdNY HG3GcfNObmSUSUSAsWZ0MB8GA1UdIwQYMBaAFEFPtheIaRMPgm6eMMC3lAhNl2Dd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTFCQy9BNEU2NzNDQURC RTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3LUNicDR3d0xlVUNFMlhZ TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FVLTJGNGhwRXctQ2JwNHd3TGVVQ0UyWFlOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTFCQy9BNEU2NzNDQURCRTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3 LUNicDR3d0xlVUNFMlhZTjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtEz5MKMa1AX/jYR7W2579GdtkEqB19IyjfvaI3oInLBmK0hLz7YNgU+8/Ith i+k8vdAswdR3bTs7tAVrfu8PdbSgD7yqV3x4QYzh2GccLS8R7DQ2NfobPfpHg0Dw 8iP11ssrGURwGwYp5fmzcC/7QyF+kgjDjgUaomVwGecQU6TcBE0btvJBJd+SGZu9 XcNkWDNeK8QMVU3HNi8VKFhQ6qOzEAw622b4tHnbSuU2VezmzZE4giHCLK/KmJJ+ W4exYedN7jx5dOSxV5DISbQExjGCX72claCSmcxadzGa/ggQJIEVclQ3XfXd1biN dpW4Uf4psougdn3XdC6vtvWATg== -----END CERTIFICATE-----Generated at Wed Mar 4 08:21:41 2026 by rpki-client