$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft File: U2uRsXtuG7FjjINYoPpepdDr77c.mft (raw, json) Hash identifier: IKt00b4VBglBSSgmzf8qzgwn60l1bGH+do0lJfxZMEA= Subject key identifier: 08:38:C4:B0:41:91:D5:6C:DD:1D:EC:CF:2E:A3:8D:B8:A7:E8:0C:CC Authority key identifier: 53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 Certificate issuer: /CN=A9125C3D/serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Certificate serial: 021D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft Manifest number: 0218 Signing time: Wed 25 Mar 2026 00:03:36 +0000 Manifest this update: Wed 25 Mar 2026 00:03:36 +0000 Manifest next update: Wed 01 Apr 2026 00:03:36 +0000 Files and hashes: 1: U2uRsXtuG7FjjINYoPpepdDr77c.crl (hash: /5tH/8YQeSfbio3xEtbDUdX0Af6obqCBKu8jRThQzhY=) 2: 234074FA00DD11EE95AF6F7CC4F9AE02.roa (hash: UDAiIDt5KCZ26qE9nXhTFphvH/OarvgyVyiqEpIHoNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:03:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 541 (0x21d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C3D, serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Validity Not Before: Mar 25 00:03:36 2026 GMT Not After : Apr 1 00:03:36 2026 GMT Subject: CN=69c32658-659a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:eb:f9:76:84:45:25:aa:5d:a9:1c:c6:83:58: b6:ba:1a:aa:95:f2:a2:32:22:3b:e7:00:95:99:2e: bd:f7:97:de:2b:52:6e:ee:8e:04:c9:63:32:28:d5: f8:fb:ab:fe:3a:60:c2:a3:7d:81:48:b5:df:27:3b: 6a:a0:16:82:bd:63:e0:b6:e9:b3:9f:0b:61:8d:1a: 8c:62:b8:dd:49:88:04:16:c4:50:ad:cc:d3:0a:a0: 69:4b:5a:af:da:49:59:61:36:2e:e8:7c:a7:4a:95: 82:d9:7b:3e:ba:5a:d4:2c:da:7d:4d:4c:6c:10:8f: 0c:cb:30:e6:7c:a1:dd:89:45:3d:59:3f:84:08:5c: 5a:5b:d0:3d:55:fb:f3:23:96:93:fe:0f:b1:cc:71: 91:ea:13:99:2d:a5:96:b3:3d:36:d0:fa:16:16:d7: d1:2e:15:d8:d4:95:c0:03:19:18:65:9c:93:d5:f9: 26:b0:5d:1c:3c:15:7d:b2:8e:b1:4c:c4:1d:74:88: c6:62:62:b8:e0:4a:3e:90:6a:5a:f0:31:01:e6:53: 72:42:9c:70:32:d8:21:c1:bb:8e:aa:a9:25:84:b8: 35:4b:fd:14:d3:81:d1:1c:ae:17:16:66:51:c8:7b: bd:3b:29:6e:4e:15:be:1c:a2:88:cd:a6:fe:d8:9e: 85:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:38:C4:B0:41:91:D5:6C:DD:1D:EC:CF:2E:A3:8D:B8:A7:E8:0C:CC X509v3 Authority Key Identifier: keyid:53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:70:b2:d2:1a:31:b1:3c:bb:57:f9:f9:b5:e7:0d:fb:d9:94: 7a:73:d6:e2:9b:64:16:3a:95:1f:89:9a:df:08:f3:bc:c3:6c: 98:3d:c2:a9:5a:75:77:b9:07:ea:3c:99:4c:64:4d:cb:61:7a: 10:26:9a:f1:0f:71:9e:19:12:3a:de:3a:d3:a7:ef:ba:e4:be: 4b:d8:16:a0:2b:8c:b4:4e:61:f0:89:5d:6a:11:d1:af:d3:be: b0:f7:3e:5b:e3:35:c0:4b:88:7e:35:3d:3d:4e:31:27:c3:ed: cb:65:35:f2:c3:92:18:f1:a8:33:49:ad:f2:ca:82:2f:a9:5f: d3:20:07:cc:ff:6a:cf:91:e9:b4:d1:f9:5c:b4:0b:29:41:38: 2c:11:a1:85:c0:9f:f7:a4:37:97:76:58:39:c6:f2:6e:f1:86: 06:79:8d:f4:22:19:8b:99:91:eb:67:5b:26:c5:bb:03:31:fd: d2:59:08:6b:49:02:6e:b5:6e:0a:ab:82:b2:4e:b2:3f:4c:85: 81:c3:81:32:dc:01:fa:7d:25:22:b2:8e:60:e4:a6:27:0d:ff: b6:b7:d4:a5:d0:7f:b2:05:db:13:2d:7c:87:b9:9e:97:84:79: 3f:f3:82:de:c5:03:ce:92:df:a2:03:8c:da:93:24:a3:f3:16: 84:6d:ed:2f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDM0QxMTAvBgNVBAUTKDUzNkI5MUIxN0I2RTFCQjE2MzhDODM1OEEwRkE1RUE1 RDBFQkVGQjcwHhcNMjYwMzI1MDAwMzM2WhcNMjYwNDAxMDAwMzM2WjAYMRYwFAYD VQQDEw02OWMzMjY1OC02NTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlev5doRFJapdqRzGg1i2uhqqlfKiMiI75wCVmS6995feK1Ju7o4EyWMyKNX4 +6v+OmDCo32BSLXfJztqoBaCvWPgtumznwthjRqMYrjdSYgEFsRQrczTCqBpS1qv 2klZYTYu6HynSpWC2Xs+ulrULNp9TUxsEI8MyzDmfKHdiUU9WT+ECFxaW9A9Vfvz I5aT/g+xzHGR6hOZLaWWsz020PoWFtfRLhXY1JXAAxkYZZyT1fkmsF0cPBV9so6x TMQddIjGYmK44Eo+kGpa8DEB5lNyQpxwMtghwbuOqqklhLg1S/0U04HRHK4XFmZR yHu9OyluThW+HKKIzab+2J6FdwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAg4xLBB kdVs3R3szy6jjbin6AzMMB8GA1UdIwQYMBaAFFNrkbF7bhuxY4yDWKD6XqXQ6++3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzRC8yMzIzRkQ4MDAw RDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3RmpqSU5Zb1BwZXBkRHI3 N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1UydVJzWHR1RzdGampJTllvUHBlcGREcjc3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzRC8yMzIzRkQ4MDAwRDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3 RmpqSU5Zb1BwZXBkRHI3N2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAoXCy0hoxsTy7V/n5tecN+9mUenPW4ptkFjqVH4ma3wjzvMNsmD3CqVp1d7kH 6jyZTGRNy2F6ECaa8Q9xnhkSOt4606fvuuS+S9gWoCuMtE5h8IldahHRr9O+sPc+ W+M1wEuIfjU9PU4xJ8Pty2U18sOSGPGoM0mt8sqCL6lf0yAHzP9qz5HptNH5XLQL KUE4LBGhhcCf96Q3l3ZYOcbybvGGBnmN9CIZi5mR62dbJsW7AzH90lkIa0kCbrVu CquCsk6yP0yFgcOBMtwB+n0lIrKOYOSmJw3/trfUpdB/sgXbEy18h7mel4R5P/OC 3sUDzpLfogOM2pMko/MWhG3tLw== -----END CERTIFICATE-----Generated at Thu Mar 26 14:10:44 2026 by rpki-client