$ rpki-client -vvf rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft File: U8Dn8GiqHvADoL7ipdUtvInc37g.mft (raw, json) Hash identifier: b6Q8PoNpCm76shpHsXc2+umvD43Rx/Z8sNiNlUXuSgE= Subject key identifier: F1:5F:F2:AC:12:F2:10:7F:91:23:FD:87:45:2D:C4:81:1A:2F:AF:A4 Authority key identifier: 53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 Certificate issuer: /CN=A91109A3/serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Certificate serial: 01C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft Manifest number: 01BA Signing time: Wed 25 Mar 2026 03:15:40 +0000 Manifest this update: Wed 25 Mar 2026 03:15:40 +0000 Manifest next update: Wed 01 Apr 2026 03:15:40 +0000 Files and hashes: 1: U8Dn8GiqHvADoL7ipdUtvInc37g.crl (hash: FsgYtTdwm4dRKGHVQF2Zrh0bC+bKwD8jrfBNyRPTEoc=) 2: FEB0698C941C11EE89E27567C4F9AE02.roa (hash: a+RIiZqMp/fVJY+AvxuouvP96FqCt281LrQilfoncLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:15:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 451 (0x1c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91109A3, serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Validity Not Before: Mar 25 03:15:40 2026 GMT Not After : Apr 1 03:15:40 2026 GMT Subject: CN=69c3535c-e833 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e8:2f:b3:fc:80:19:8b:77:6f:68:82:7d:c2: 52:6d:a0:5d:b8:8d:cd:0b:ae:bc:1a:0d:b7:c3:73: 84:32:0c:af:7f:62:8a:a8:b6:39:a0:30:fa:af:b5: 8e:49:d1:3f:6a:87:bc:45:ce:86:97:41:29:c1:68: 09:a1:dd:9e:1e:70:7f:06:12:7e:ef:23:72:ac:2e: 03:a5:bb:f9:39:21:ea:35:3a:e8:e4:e7:f0:98:d2: ad:ed:85:e3:a2:53:be:12:56:3a:d9:29:75:15:0f: 2c:13:df:af:fe:25:f2:c2:db:73:bf:a2:e6:c3:56: aa:15:3d:25:02:23:62:16:12:b6:bb:75:e9:51:7f: 1b:47:3f:63:f4:f6:0d:83:cd:98:40:81:91:b3:9a: ca:95:76:22:ea:74:46:a7:0d:c4:0c:b7:bb:3e:af: 8d:cf:d8:d7:87:b6:e9:a8:e5:0f:6c:e2:a7:60:4f: 6b:45:39:20:cc:f7:b2:39:82:43:d6:05:ad:ec:65: 78:e8:c3:07:10:54:92:88:da:eb:7c:dd:ed:36:03: 12:da:e9:cb:2a:0b:f2:b6:33:18:19:39:f8:5b:41: f0:7c:58:41:69:17:90:64:ab:6c:ea:bf:c7:a6:ea: 9f:f2:8f:fa:29:66:6b:a3:a9:3d:24:cf:95:61:72: 3a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:5F:F2:AC:12:F2:10:7F:91:23:FD:87:45:2D:C4:81:1A:2F:AF:A4 X509v3 Authority Key Identifier: keyid:53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:82:fd:4a:83:17:ba:42:29:00:22:71:94:d7:c3:a2:e3:a9: 8b:10:38:d2:5b:a3:70:fb:9c:d2:34:f2:c1:49:b0:63:78:53: e7:93:fc:e0:09:9b:92:8a:4b:1f:0e:68:a6:76:02:15:73:15: 16:f8:4f:28:9d:ac:e7:16:6e:71:1a:c5:2f:31:06:ff:cf:81: 2b:46:5e:d8:1a:d0:b6:b2:25:dd:ba:8d:c5:94:ae:d7:66:1a: 38:7d:86:cf:8f:84:cb:71:6c:17:2c:72:58:0c:77:54:c6:7f: de:0b:74:08:d4:f0:0f:f7:d4:96:93:70:20:83:64:48:70:29: 2b:7d:7c:4e:83:70:b6:71:0a:2b:9d:ce:7d:35:1b:2b:0b:60: f0:31:bc:7d:ef:d4:64:59:0c:b3:bb:75:d1:e1:32:8a:a7:7f: af:4d:22:88:4b:16:8b:a8:47:f9:2d:5b:d4:eb:e8:aa:8d:9a: 8f:b0:a0:9f:c9:b8:85:ce:40:50:bf:3b:b0:e3:59:46:d6:0d: 82:b7:87:77:c8:08:c9:56:d8:b9:46:7a:cc:91:7b:3f:c9:7b: e4:34:3f:7b:e7:82:15:72:6c:cf:f6:43:59:13:5f:1d:32:2e: 38:ca:4b:6f:3f:70:9b:8b:d7:7a:5e:bd:0b:80:fc:48:26:12: 4b:10:71:fe -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA5QTMxMTAvBgNVBAUTKDUzQzBFN0YwNjhBQTFFRjAwM0EwQkVFMkE1RDUyREJD ODlEQ0RGQjgwHhcNMjYwMzI1MDMxNTQwWhcNMjYwNDAxMDMxNTQwWjAYMRYwFAYD VQQDEw02OWMzNTM1Yy1lODMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOgvs/yAGYt3b2iCfcJSbaBduI3NC668Gg23w3OEMgyvf2KKqLY5oDD6r7WO SdE/aoe8Rc6Gl0EpwWgJod2eHnB/BhJ+7yNyrC4Dpbv5OSHqNTro5OfwmNKt7YXj olO+ElY62Sl1FQ8sE9+v/iXywttzv6Lmw1aqFT0lAiNiFhK2u3XpUX8bRz9j9PYN g82YQIGRs5rKlXYi6nRGpw3EDLe7Pq+Nz9jXh7bpqOUPbOKnYE9rRTkgzPeyOYJD 1gWt7GV46MMHEFSSiNrrfN3tNgMS2unLKgvytjMYGTn4W0HwfFhBaReQZKts6r/H puqf8o/6KWZro6k9JM+VYXI6KwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPFf8qwS 8hB/kSP9h0UtxIEaL6+kMB8GA1UdIwQYMBaAFFPA5/Boqh7wA6C+4qXVLbyJ3N+4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDlBMy80M0ZCNjJGQThG RTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2QURvTDdpcGRVdHZJbmMz N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4RG44R2lxSHZBRG9MN2lwZFV0dkluYzM3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDlBMy80M0ZCNjJGQThGRTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2 QURvTDdpcGRVdHZJbmMzN2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAj4L9SoMXukIpACJxlNfDouOpixA40lujcPuc0jTywUmwY3hT55P84AmbkopL Hw5opnYCFXMVFvhPKJ2s5xZucRrFLzEG/8+BK0Ze2BrQtrIl3bqNxZSu12YaOH2G z4+Ey3FsFyxyWAx3VMZ/3gt0CNTwD/fUlpNwIINkSHApK318ToNwtnEKK53OfTUb Kwtg8DG8fe/UZFkMs7t10eEyiqd/r00iiEsWi6hH+S1b1Ovoqo2aj7Cgn8m4hc5A UL87sONZRtYNgreHd8gIyVbYuUZ6zJF7P8l75DQ/e+eCFXJsz/ZDWRNfHTIuOMpL bz9wm4vXel69C4D8SCYSSxBx/g== -----END CERTIFICATE-----Generated at Thu Mar 26 02:37:25 2026 by rpki-client