$ rpki-client -vvf rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft File: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft (raw, json) Hash identifier: 8zUaMHnOwjk+egJnsCxFaLYkz4jhDDxIzsE4A8uYaIY= Subject key identifier: 89:6B:70:49:55:F1:FB:05:8F:39:6D:F3:CB:DF:1F:78:7C:14:04:61 Authority key identifier: 41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD Certificate issuer: /CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Certificate serial: 03BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft Manifest number: 03B7 Signing time: Mon 01 Jun 2026 01:24:27 +0000 Manifest this update: Mon 01 Jun 2026 01:24:26 +0000 Manifest next update: Mon 08 Jun 2026 01:24:26 +0000 Files and hashes: 1: QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl (hash: 0BwmLPNKJJERNY2XJV0rmML/gfq2cbRfN9k9sWhhfdU=) 2: 7BCC4B32E85C11EE9593933FC4F9AE02.roa (hash: /VYSBqRbhRZL//G1w9ShC2Js/tBJ1zXCex0aZezen6Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 01:24:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 958 (0x3be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E91BC, serialNumber=414FB6178869130F826E9E30C0B794084D9760DD Validity Not Before: Jun 1 01:24:26 2026 GMT Not After : Jun 8 01:24:26 2026 GMT Subject: CN=6a1cdf4a-d379 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6b:cb:cd:58:8d:42:cb:a5:d1:6a:a3:42:92: 17:ae:57:49:12:f0:5a:8a:0b:fa:ae:df:03:05:66: b1:74:0c:51:1f:52:89:1e:da:42:ba:78:42:ab:15: ef:77:f9:58:b7:8f:8e:09:85:96:fe:3a:5b:a4:46: 44:1d:e1:2a:82:76:53:1d:fb:cb:a2:4b:45:5b:a0: 84:40:60:de:b5:64:ab:a8:fa:bb:86:b5:a1:e8:30: fd:11:2a:dc:41:3e:03:f1:69:87:82:96:2a:d7:01: 9b:ac:6c:28:29:d3:4b:e9:9e:8a:bc:71:83:80:d3: fa:2d:cf:89:7e:f1:ac:48:47:65:6a:2e:66:13:6b: c1:c2:65:88:a9:99:ec:9f:76:1a:fd:54:cb:b2:0c: e2:95:ec:05:27:10:c7:e1:02:c9:2c:8e:10:b2:15: 79:77:d9:86:7a:e6:16:f6:8b:7c:ec:7f:8f:7f:c3: 66:3f:9d:cc:a9:1c:c2:ad:3c:30:f6:9b:af:32:01: 38:8b:90:c1:a2:1e:a4:3b:8d:8b:c2:56:50:f0:95: 91:d7:d2:1c:24:64:be:fe:2a:31:c2:d6:7c:77:55: 9b:ad:73:4b:9b:24:bb:72:c5:f8:87:20:7d:f7:bf: 8a:45:4f:54:fa:ee:a8:80:cf:2a:4b:be:8b:a8:86: 89:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:6B:70:49:55:F1:FB:05:8F:39:6D:F3:CB:DF:1F:78:7C:14:04:61 X509v3 Authority Key Identifier: keyid:41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:43:79:57:b8:ff:86:2d:b2:67:c3:93:bb:a1:a7:12:a0:03: de:12:9c:72:b5:bd:fc:89:63:ac:45:08:28:3e:03:24:68:9c: 79:3a:5d:87:e6:a9:aa:db:69:e4:44:33:87:62:fe:2f:4e:26: 9f:1b:90:2a:bd:61:fc:d9:0f:cc:13:3f:bc:aa:55:d7:3a:a0: 22:72:3f:d9:43:90:27:0b:34:31:4b:c8:2f:cc:73:57:46:c8: 07:2d:fa:81:c6:14:8f:e5:87:12:9f:f5:f7:d8:3d:c2:82:95: 32:dc:eb:01:02:46:d5:95:c7:0c:8a:24:e3:03:85:c9:9e:f9: b1:f7:8f:8f:4a:91:a5:d2:47:3d:36:74:2b:78:69:c7:0a:19: 43:a1:fe:1e:4b:8f:ff:d7:74:5b:df:f9:58:fc:50:84:8a:a1: ce:00:01:5a:ee:52:77:f3:bd:46:73:78:f6:a6:59:c7:23:64: 79:d0:dc:04:17:4e:24:12:1a:cf:ee:c4:34:f7:97:52:9f:fc: 38:bc:9c:2a:e1:44:7b:a2:a2:85:d4:c6:f0:ae:a4:72:2c:44: 73:81:b4:e8:ac:77:66:4d:dc:41:fd:63:32:67:c5:23:53:67: 7b:e6:f1:8e:e4:25:04:51:5e:ca:ea:d0:76:cd:a4:8c:d7:25: b3:59:88:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkxQkMxMTAvBgNVBAUTKDQxNEZCNjE3ODg2OTEzMEY4MjZFOUUzMEMwQjc5NDA4 NEQ5NzYwREQwHhcNMjYwNjAxMDEyNDI2WhcNMjYwNjA4MDEyNDI2WjAYMRYwFAYD VQQDEw02YTFjZGY0YS1kMzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2GvLzViNQsul0WqjQpIXrldJEvBaigv6rt8DBWaxdAxRH1KJHtpCunhCqxXv d/lYt4+OCYWW/jpbpEZEHeEqgnZTHfvLoktFW6CEQGDetWSrqPq7hrWh6DD9ESrc QT4D8WmHgpYq1wGbrGwoKdNL6Z6KvHGDgNP6Lc+JfvGsSEdlai5mE2vBwmWIqZns n3Ya/VTLsgzilewFJxDH4QLJLI4QshV5d9mGeuYW9ot87H+Pf8NmP53MqRzCrTww 9puvMgE4i5DBoh6kO42LwlZQ8JWR19IcJGS+/ioxwtZ8d1WbrXNLmyS7csX4hyB9 97+KRU9U+u6ogM8qS76LqIaJrQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIlrcElV 8fsFjzlt88vfH3h8FARhMB8GA1UdIwQYMBaAFEFPtheIaRMPgm6eMMC3lAhNl2Dd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTFCQy9BNEU2NzNDQURC RTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3LUNicDR3d0xlVUNFMlhZ TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FVLTJGNGhwRXctQ2JwNHd3TGVVQ0UyWFlOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTFCQy9BNEU2NzNDQURCRTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3 LUNicDR3d0xlVUNFMlhZTjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIUN5V7j/hi2yZ8OTu6GnEqAD3hKccrW9/IljrEUIKD4DJGiceTpdh+apqttp 5EQzh2L+L04mnxuQKr1h/NkPzBM/vKpV1zqgInI/2UOQJws0MUvIL8xzV0bIBy36 gcYUj+WHEp/199g9woKVMtzrAQJG1ZXHDIok4wOFyZ75sfePj0qRpdJHPTZ0K3hp xwoZQ6H+HkuP/9d0W9/5WPxQhIqhzgABWu5Sd/O9RnN49qZZxyNkedDcBBdOJBIa z+7ENPeXUp/8OLycKuFEe6KihdTG8K6kcixEc4G06Kx3Zk3cQf1jMmfFI1Nne+bx juQlBFFeyurQds2kjNcls1mIWw== -----END CERTIFICATE-----Generated at Tue Jun 2 21:19:46 2026 by rpki-client