$ rpki-client -vvf rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.mft File: uEwjlp7XnA4xwTwUUAEuIkbT-U0.mft (raw, json) Hash identifier: Ij9Y1HCoQEPJ7ZDXdlC+uDkDAPh8A/5m7jUFlCbhHMw= Subject key identifier: 6E:0D:AC:17:82:D0:A5:4E:A6:8C:EA:6B:69:B3:78:A3:A1:16:93:C2 Authority key identifier: B8:4C:23:96:9E:D7:9C:0E:31:C1:3C:14:50:01:2E:22:46:D3:F9:4D Certificate issuer: /CN=A911F2DF/serialNumber=B84C23969ED79C0E31C13C1450012E2246D3F94D Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uEwjlp7XnA4xwTwUUAEuIkbT-U0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.mft Manifest number: 0159 Signing time: Wed 25 Mar 2026 04:19:10 +0000 Manifest this update: Wed 25 Mar 2026 04:19:09 +0000 Manifest next update: Wed 01 Apr 2026 04:19:09 +0000 Files and hashes: 1: uEwjlp7XnA4xwTwUUAEuIkbT-U0.crl (hash: id20FkhxAqnAHCyoKVXQpuzH15G1YixbCTlOLfi7JP0=) 2: 7FAE29E8958E11EF9CC0DD0AC4F9AE02.roa (hash: OZGa2rU+4rNVvbrWfqjM0L2gnyA1iPzl5WMDdvuaIDk=) 3: 92E390AC958E11EF87A4040BC4F9AE02.roa (hash: azgGtSD/uB/29bfpIAysj04e8edmypE0QRYUI+zBDUA=) 4: 659B37E4958E11EFAFF1870AC4F9AE02.roa (hash: nhvswsvcHLgOS6ioO6sFGPKfZkM+ms9sdi1nqkmRphw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.crl rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uEwjlp7XnA4xwTwUUAEuIkbT-U0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:19:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F2DF, serialNumber=B84C23969ED79C0E31C13C1450012E2246D3F94D Validity Not Before: Mar 25 04:19:09 2026 GMT Not After : Apr 1 04:19:09 2026 GMT Subject: CN=69c3623d-c997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2a:10:03:7d:33:6c:17:e5:78:d5:6e:30:fc: 42:70:a7:24:89:c0:76:e3:3b:66:aa:8f:43:49:50: 43:1c:b5:a7:c6:e4:96:e9:39:43:c5:ec:b6:3d:2a: bc:7c:bc:74:2c:db:96:98:f7:c2:70:76:21:08:42: e5:77:cf:2d:df:49:be:52:7d:1e:50:8d:6c:66:89: 85:0a:b1:0a:5b:8b:57:21:48:95:de:f1:37:62:cb: 93:b4:24:f0:22:ad:e7:57:d3:b2:43:d3:90:94:bf: 90:ea:70:a1:6c:c0:2e:ad:2e:a8:63:6e:5f:15:ee: cb:95:22:a5:5a:d2:e7:71:65:bb:39:d7:26:59:f1: 9a:a0:ac:02:5a:38:8d:02:2c:d7:ca:17:8c:d2:62: 5e:7c:09:9d:a1:37:e4:0c:e6:08:f3:54:9a:91:f3: a3:ff:f4:4e:63:ce:47:03:9f:3d:45:ed:70:20:e4: 3b:a0:51:c1:6c:49:cd:29:42:d4:3c:18:b6:57:f5: 09:0a:44:8d:d9:53:fc:1b:b6:5e:bb:be:f9:5c:95: d4:e9:20:24:54:ce:b6:02:b6:ec:10:28:1d:de:5f: 9f:6f:24:ea:89:fa:b9:af:3f:49:78:06:ac:21:3f: 86:d0:4d:d1:64:4f:7c:4a:e0:f5:b9:0e:dd:88:17: 7a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:0D:AC:17:82:D0:A5:4E:A6:8C:EA:6B:69:B3:78:A3:A1:16:93:C2 X509v3 Authority Key Identifier: keyid:B8:4C:23:96:9E:D7:9C:0E:31:C1:3C:14:50:01:2E:22:46:D3:F9:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uEwjlp7XnA4xwTwUUAEuIkbT-U0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:69:5d:f6:10:ac:44:4e:a7:08:3b:d8:22:7e:26:45:61:d9: 5b:17:25:38:e3:20:36:ee:35:19:b8:9f:04:2b:6e:87:8c:c6: 22:a1:74:23:7a:da:45:8e:c5:63:40:6d:b1:9f:68:24:3d:39: 08:38:6b:3b:38:6f:50:bc:8d:3c:c3:1c:b2:64:c0:76:9e:6f: 18:12:88:63:db:71:3d:21:d1:d7:72:dc:c2:64:84:27:d5:cb: 43:53:c2:38:40:83:5d:bf:ad:13:78:bf:a4:45:3f:77:f9:14: 12:b2:db:bd:12:75:50:2a:90:d1:b4:9a:8b:1e:87:c2:9d:a1: 65:53:2a:ae:ee:43:1f:10:09:ad:c7:3e:ca:2e:d0:3e:3d:c2: b5:5a:5a:86:53:45:86:a8:30:e6:89:01:38:85:95:57:2e:1c: ee:2b:9d:e6:e3:ad:84:ec:ef:f5:97:b9:49:2e:b5:62:5e:69: cc:e9:63:5e:80:84:2b:cb:f0:0c:2e:ed:26:20:c6:74:22:7b: 70:60:bf:18:3f:81:74:aa:66:2c:ca:16:76:7d:db:ba:3d:b6: 32:7c:1c:31:4a:0a:ed:ad:5a:af:7f:ad:10:95:ad:1d:78:f8: 3e:0f:91:67:14:df:fb:21:29:ed:d0:dc:3d:1a:ee:0b:04:0e: 67:d4:83:2f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYyREYxMTAvBgNVBAUTKEI4NEMyMzk2OUVENzlDMEUzMUMxM0MxNDUwMDEyRTIy NDZEM0Y5NEQwHhcNMjYwMzI1MDQxOTA5WhcNMjYwNDAxMDQxOTA5WjAYMRYwFAYD VQQDEw02OWMzNjIzZC1jOTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsyoQA30zbBfleNVuMPxCcKckicB24ztmqo9DSVBDHLWnxuSW6TlDxey2PSq8 fLx0LNuWmPfCcHYhCELld88t30m+Un0eUI1sZomFCrEKW4tXIUiV3vE3YsuTtCTw Iq3nV9OyQ9OQlL+Q6nChbMAurS6oY25fFe7LlSKlWtLncWW7OdcmWfGaoKwCWjiN AizXyheM0mJefAmdoTfkDOYI81SakfOj//ROY85HA589Re1wIOQ7oFHBbEnNKULU PBi2V/UJCkSN2VP8G7Zeu775XJXU6SAkVM62ArbsECgd3l+fbyTqifq5rz9JeAas IT+G0E3RZE98SuD1uQ7diBd65wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG4NrBeC 0KVOpozqa2mzeKOhFpPCMB8GA1UdIwQYMBaAFLhMI5ae15wOMcE8FFABLiJG0/lN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjJERi8wMDUwMUZEMjIz QUUxMUVGOTQ5M0Y0NUNDNEY5QUUwMi91RXdqbHA3WG5BNHh3VHdVVUFFdUlrYlQt VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3VFd2pscDdYbkE0eHdUd1VVQUV1SWtiVC1VMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjJERi8wMDUwMUZEMjIzQUUxMUVGOTQ5M0Y0NUNDNEY5QUUwMi91RXdqbHA3WG5B NHh3VHdVVUFFdUlrYlQtVTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAm2ld9hCsRE6nCDvYIn4mRWHZWxclOOMgNu41GbifBCtuh4zGIqF0I3raRY7F Y0BtsZ9oJD05CDhrOzhvULyNPMMcsmTAdp5vGBKIY9txPSHR13LcwmSEJ9XLQ1PC OECDXb+tE3i/pEU/d/kUErLbvRJ1UCqQ0bSaix6Hwp2hZVMqru5DHxAJrcc+yi7Q Pj3CtVpahlNFhqgw5okBOIWVVy4c7iud5uOthOzv9Ze5SS61Yl5pzOljXoCEK8vw DC7tJiDGdCJ7cGC/GD+BdKpmLMoWdn3buj22MnwcMUoK7a1ar3+tEJWtHXj4Pg+R ZxTf+yEp7dDcPRruCwQOZ9SDLw== -----END CERTIFICATE-----Generated at Thu Mar 26 08:55:07 2026 by rpki-client