$ rpki-client -vvf rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft File: uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft (raw, json) Hash identifier: meaKhcBnCkSMDBKqzoNKxAqDCrCMu5teB4jROlpX1yU= Subject key identifier: 84:EB:F7:57:4C:DD:3A:4E:E2:9D:2F:A0:16:75:EC:D7:E8:0C:F3:9D Authority key identifier: B8:AD:8D:91:6C:D9:48:2B:6D:A5:5D:30:7C:E9:5C:07:A9:5B:2F:74 Certificate issuer: /CN=A91103CF/serialNumber=B8AD8D916CD9482B6DA55D307CE95C07A95B2F74 Certificate serial: 042F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft Manifest number: 0424 Signing time: Wed 25 Mar 2026 00:03:58 +0000 Manifest this update: Wed 25 Mar 2026 00:03:57 +0000 Manifest next update: Wed 01 Apr 2026 00:03:57 +0000 Files and hashes: 1: uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl (hash: lFXzJkxfE54NtKpT/h5VAIil6his65Y6WEB/e9ft9UQ=) 2: 931A51C07F5811EE82ECE456C4F9AE02.roa (hash: iqRn8MuwHOm1OeP7OiaBzMQDUZroez3UjhhvxuLDGhc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:03:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1071 (0x42f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91103CF, serialNumber=B8AD8D916CD9482B6DA55D307CE95C07A95B2F74 Validity Not Before: Mar 25 00:03:57 2026 GMT Not After : Apr 1 00:03:57 2026 GMT Subject: CN=69c3266d-1597 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:72:82:3a:32:8c:3f:58:d2:62:b4:2f:2f:b6: b4:5a:49:64:bc:8e:59:66:cb:e8:a8:9b:de:b5:18: 37:81:9b:bb:2c:0d:02:50:b0:63:b4:70:d0:26:0b: 6b:39:ac:2b:17:ca:43:9f:bb:a3:a9:85:08:45:3a: 14:4e:5e:6a:18:98:0e:c7:52:54:1a:5b:b5:40:c4: 94:32:9e:a9:87:64:87:84:09:aa:42:41:3c:fb:ed: 33:e2:39:0f:b5:20:32:37:1c:83:92:e1:d6:85:d4: ba:b0:ca:c2:11:d2:92:66:14:86:74:5a:81:f5:d4: 2f:1d:0f:48:b4:4b:41:d2:ae:d1:7c:f9:4a:ea:5c: cc:51:24:3d:08:33:2d:54:ed:7c:70:3f:06:cc:0a: 1e:71:b1:2f:8b:b9:88:52:6c:1d:05:46:6b:02:9f: 03:45:7c:dc:3b:e7:f5:7d:3b:43:e7:5a:1a:d4:f6: d7:40:d6:f8:7b:c1:a3:91:21:3b:be:e4:40:1f:53: b7:94:52:55:0a:2a:ef:33:98:b2:d2:a4:49:5a:05: ff:fd:24:24:c4:b4:e3:f5:a8:f5:67:53:be:db:28: 57:e2:ec:d8:46:62:53:10:0e:83:04:c3:ee:b4:f8: 15:91:fe:e3:fb:67:cd:38:dc:b6:f6:31:db:5e:d8: 8e:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:EB:F7:57:4C:DD:3A:4E:E2:9D:2F:A0:16:75:EC:D7:E8:0C:F3:9D X509v3 Authority Key Identifier: keyid:B8:AD:8D:91:6C:D9:48:2B:6D:A5:5D:30:7C:E9:5C:07:A9:5B:2F:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:ed:09:90:a6:48:4d:51:ba:36:10:21:c5:00:85:11:72:bb: 31:a0:08:83:9f:00:2d:07:a5:02:bd:73:6e:6f:22:5c:bd:b6: 76:3c:2e:44:44:c5:64:fc:5d:12:8e:8e:a8:eb:4d:b1:c4:31: 84:15:51:12:ff:7d:5d:2b:eb:51:af:77:14:43:f1:b7:79:3e: 2f:10:2f:d5:83:ef:5f:c5:22:e1:5f:c5:64:31:31:9b:cb:9f: 04:aa:88:27:95:41:21:fc:26:a9:55:cc:1c:40:c1:2e:f0:ca: 63:c1:02:02:01:ec:b0:9c:54:1d:fe:b0:2e:34:ad:50:06:5a: b6:6b:46:c9:0d:fa:2c:64:8a:dd:4f:b7:cb:a7:43:a5:26:1c: 8e:3d:2b:b7:6f:3a:28:3c:ab:25:d3:21:cf:7e:86:b4:85:c1: d2:b0:db:f6:fa:04:9d:f2:8a:6e:99:4d:23:3c:ff:46:2a:0d: e5:cd:7a:8f:54:e8:84:df:29:ae:17:70:a2:5c:ba:a6:d9:90: 90:3e:35:85:04:67:a4:fc:e0:b5:25:07:1d:15:10:a7:89:32: f6:7d:b0:a1:7c:3f:e1:9b:cb:0a:95:c2:c8:4a:6c:07:72:1b: 87:da:e0:57:13:bc:e4:93:c6:45:ae:72:81:8b:fe:d8:ab:97: 65:b5:af:47 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzQ0YxMTAvBgNVBAUTKEI4QUQ4RDkxNkNEOTQ4MkI2REE1NUQzMDdDRTk1QzA3 QTk1QjJGNzQwHhcNMjYwMzI1MDAwMzU3WhcNMjYwNDAxMDAwMzU3WjAYMRYwFAYD VQQDEw02OWMzMjY2ZC0xNTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHKCOjKMP1jSYrQvL7a0WklkvI5ZZsvoqJvetRg3gZu7LA0CULBjtHDQJgtr OawrF8pDn7ujqYUIRToUTl5qGJgOx1JUGlu1QMSUMp6ph2SHhAmqQkE8++0z4jkP tSAyNxyDkuHWhdS6sMrCEdKSZhSGdFqB9dQvHQ9ItEtB0q7RfPlK6lzMUSQ9CDMt VO18cD8GzAoecbEvi7mIUmwdBUZrAp8DRXzcO+f1fTtD51oa1PbXQNb4e8GjkSE7 vuRAH1O3lFJVCirvM5iy0qRJWgX//SQkxLTj9aj1Z1O+2yhX4uzYRmJTEA6DBMPu tPgVkf7j+2fNONy29jHbXtiODwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFITr91dM 3TpO4p0voBZ17NfoDPOdMB8GA1UdIwQYMBaAFLitjZFs2UgrbaVdMHzpXAepWy90 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDNDRi8xN0Q2RTRDMkE2 OEExMUVDQTlBNjM1NTFDNEY5QUUwMi91SzJOa1d6WlNDdHRwVjB3Zk9sY0I2bGJM M1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VLMk5rV3paU0N0dHBWMHdmT2xjQjZsYkwzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDNDRi8xN0Q2RTRDMkE2OEExMUVDQTlBNjM1NTFDNEY5QUUwMi91SzJOa1d6WlND dHRwVjB3Zk9sY0I2bGJMM1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlO0JkKZITVG6NhAhxQCFEXK7MaAIg58ALQelAr1zbm8iXL22djwuRETFZPxd Eo6OqOtNscQxhBVREv99XSvrUa93FEPxt3k+LxAv1YPvX8Ui4V/FZDExm8ufBKqI J5VBIfwmqVXMHEDBLvDKY8ECAgHssJxUHf6wLjStUAZatmtGyQ36LGSK3U+3y6dD pSYcjj0rt286KDyrJdMhz36GtIXB0rDb9voEnfKKbplNIzz/RioN5c16j1TohN8p rhdwoly6ptmQkD41hQRnpPzgtSUHHRUQp4ky9n2woXw/4ZvLCpXCyEpsB3Ibh9rg VxO85JPGRa5ygYv+2KuXZbWvRw== -----END CERTIFICATE-----Generated at Thu Mar 26 08:26:54 2026 by rpki-client