$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft File: qX6qTW8VW40nxAro4yfZulLDS0I.mft (raw, json) Hash identifier: 3vj+AtDve75x04rGHIw3IJ73e4t60hx4FOmWEmhyo9U= Subject key identifier: CE:EE:04:A6:8B:54:C6:0C:41:6D:AF:06:7A:6B:DD:29:85:B9:1D:30 Authority key identifier: A9:7E:AA:4D:6F:15:5B:8D:27:C4:0A:E8:E3:27:D9:BA:52:C3:4B:42 Certificate issuer: /CN=A91EB4AF/serialNumber=A97EAA4D6F155B8D27C40AE8E327D9BA52C34B42 Certificate serial: 03C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft Manifest number: 03A1 Signing time: Fri 13 Mar 2026 00:20:34 +0000 Manifest this update: Fri 13 Mar 2026 00:20:33 +0000 Manifest next update: Fri 20 Mar 2026 00:20:33 +0000 Files and hashes: 1: qX6qTW8VW40nxAro4yfZulLDS0I.crl (hash: tmT27BYhipgMbdPUiCb71L46N07GjUe4AdPC4viSE+w=) 2: 595774341B6211F0B9733473C4F9AE02.roa (hash: FsghJjQsuRRGpnhop47UMyZjNIpI+E4uxqKOZi0XVJ8=) 3: DCE70C6EF9B911ED8314C10EC4F9AE02.roa (hash: lkd89MpvF6HjrZnQ7+Am4kQJDo7BJMWf79Z8hJQl200=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.crl rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 00:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 962 (0x3c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB4AF, serialNumber=A97EAA4D6F155B8D27C40AE8E327D9BA52C34B42 Validity Not Before: Mar 13 00:20:33 2026 GMT Not After : Mar 20 00:20:33 2026 GMT Subject: CN=69b35852-f7dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:ad:f5:ed:e9:71:bd:93:a5:8d:1c:cb:d7:96: 7b:02:c1:e1:62:8a:6a:0e:ee:0b:2f:90:66:3b:1c: 59:47:0a:1c:67:67:40:d3:81:7f:f4:6a:ce:13:71: 5a:d3:ba:f1:ac:56:42:4a:e2:a1:ec:b4:97:ee:10: ed:f1:e1:4d:31:57:39:09:f0:81:eb:92:3c:eb:3c: 73:ef:59:ea:5e:77:ef:2d:9d:d8:65:8a:a1:70:cb: 81:6a:af:58:e6:9c:f3:22:eb:ed:fc:06:c9:e7:f3: 32:a5:bd:9b:05:67:27:a0:cf:68:c5:65:af:52:c4: 7a:4f:b7:d5:57:a6:0a:ad:ba:a9:53:e7:43:9a:79: e5:9a:2c:14:ec:4a:05:d6:b2:68:fa:96:c1:3e:6e: 3c:ab:7d:07:9c:ad:8e:3a:14:53:7e:18:ed:44:4d: 3a:01:7b:32:71:eb:2c:55:b9:1c:66:9f:40:81:48: f7:43:9b:d7:0f:1a:3f:af:57:b4:97:da:68:4e:52: 20:0d:52:7e:6b:c0:e1:7a:cb:67:8c:b3:a8:d9:9f: 7e:4d:5a:00:0b:1b:47:ba:48:bd:1a:ed:d1:a5:8f: 57:71:65:ae:d7:95:65:e5:f0:5a:ff:79:d4:36:82: a3:a7:3d:38:fc:a8:8a:6a:b9:76:bb:0c:cf:a1:90: 7b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:EE:04:A6:8B:54:C6:0C:41:6D:AF:06:7A:6B:DD:29:85:B9:1D:30 X509v3 Authority Key Identifier: keyid:A9:7E:AA:4D:6F:15:5B:8D:27:C4:0A:E8:E3:27:D9:BA:52:C3:4B:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:79:e5:f0:f2:8c:13:fe:c1:73:32:bf:20:f7:4a:9d:fa:5c: 7a:8c:a8:42:de:f7:9c:d9:3a:62:e8:4b:be:e7:ec:76:1b:ca: 44:6f:15:d7:e7:47:f6:21:89:cf:0f:2d:e2:3d:fc:4d:e9:47: 3a:3f:42:14:30:5c:66:b0:53:c5:e4:fe:12:fb:ef:4a:c2:cc: 31:38:23:a9:e6:de:a2:c7:3d:66:01:05:e2:cd:75:12:89:ab: c5:17:cd:ac:f8:0d:46:45:73:58:c0:f9:9d:b4:12:3a:9b:22: 1e:e1:4b:af:cb:ca:e9:9e:a0:2f:3a:bc:e3:ce:44:d3:89:aa: 92:c1:d7:08:f8:df:67:2e:34:77:1e:93:9c:60:e0:0b:f0:70: 00:5d:d6:eb:ba:5d:1a:eb:cc:e0:6c:7d:aa:ae:e1:45:cb:ac: 11:c1:51:01:d1:6e:a2:55:25:d6:c3:25:6f:e8:0e:c7:7b:8e: 03:15:ec:14:51:70:f3:89:ea:64:87:50:0e:8c:7c:ad:9d:c5: 0d:8b:b7:3a:bf:a9:07:ea:9c:43:c0:8c:ce:6b:96:6c:c7:73: 34:c4:58:21:4e:db:4b:ff:5f:e1:16:37:ab:eb:25:c7:b3:cf: af:f9:c7:41:78:ca:e5:43:59:aa:84:71:18:7b:c0:86:dd:cc: ae:9f:14:41 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI0QUYxMTAvBgNVBAUTKEE5N0VBQTRENkYxNTVCOEQyN0M0MEFFOEUzMjdEOUJB NTJDMzRCNDIwHhcNMjYwMzEzMDAyMDMzWhcNMjYwMzIwMDAyMDMzWjAYMRYwFAYD VQQDEw02OWIzNTg1Mi1mN2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8a317elxvZOljRzL15Z7AsHhYopqDu4LL5BmOxxZRwocZ2dA04F/9GrOE3Fa 07rxrFZCSuKh7LSX7hDt8eFNMVc5CfCB65I86zxz71nqXnfvLZ3YZYqhcMuBaq9Y 5pzzIuvt/AbJ5/Mypb2bBWcnoM9oxWWvUsR6T7fVV6YKrbqpU+dDmnnlmiwU7EoF 1rJo+pbBPm48q30HnK2OOhRTfhjtRE06AXsycessVbkcZp9AgUj3Q5vXDxo/r1e0 l9poTlIgDVJ+a8DhestnjLOo2Z9+TVoACxtHuki9Gu3RpY9XcWWu15Vl5fBa/3nU NoKjpz04/KiKarl2uwzPoZB7BQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM7uBKaL VMYMQW2vBnpr3SmFuR0wMB8GA1UdIwQYMBaAFKl+qk1vFVuNJ8QK6OMn2bpSw0tC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjRBRi9DQzdCMjU1QURD QTkxMUVDOTRFM0UwMjlDNEY5QUUwMi9xWDZxVFc4Vlc0MG54QXJvNHlmWnVsTERT MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FYNnFUVzhWVzQwbnhBcm80eWZadWxMRFMwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjRBRi9DQzdCMjU1QURDQTkxMUVDOTRFM0UwMjlDNEY5QUUwMi9xWDZxVFc4Vlc0 MG54QXJvNHlmWnVsTERTMEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgnnl8PKME/7BczK/IPdKnfpceoyoQt73nNk6YuhLvufsdhvKRG8V1+dH9iGJ zw8t4j38TelHOj9CFDBcZrBTxeT+EvvvSsLMMTgjqebeosc9ZgEF4s11EomrxRfN rPgNRkVzWMD5nbQSOpsiHuFLr8vK6Z6gLzq8485E04mqksHXCPjfZy40dx6TnGDg C/BwAF3W67pdGuvM4Gx9qq7hRcusEcFRAdFuolUl1sMlb+gOx3uOAxXsFFFw84nq ZIdQDox8rZ3FDYu3Or+pB+qcQ8CMzmuWbMdzNMRYIU7bS/9f4RY3q+slx7PPr/nH QXjK5UNZqoRxGHvAht3Mrp8UQQ== -----END CERTIFICATE-----Generated at Fri Mar 13 19:24:29 2026 by rpki-client