$ rpki-client -vvf rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft File: U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft (raw, json) Hash identifier: ZwNC7LC28ptOAthm0LYayZgK+MqRPiYBSSMhuBPv5pk= Subject key identifier: 66:54:E8:A9:3F:32:34:D4:3A:1C:CF:D4:9F:C3:F3:68:92:96:96:AD Authority key identifier: 53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF Certificate issuer: /CN=A9130837/serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF Certificate serial: 0547 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft Manifest number: 053D Signing time: Tue 24 Mar 2026 23:11:25 +0000 Manifest this update: Tue 24 Mar 2026 23:11:24 +0000 Manifest next update: Tue 31 Mar 2026 23:11:24 +0000 Files and hashes: 1: U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl (hash: /nANyWQ1Ym/Dd+DgAwwTlJMqBDh4r+E6egRZh76lmnI=) 2: 1C032F5A36E711EC9581EC54C4F9AE02.roa (hash: bR2E+gd+wrOJUwU1dHm00di9g4h4d99vt7PxzQB7b14=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:11:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1351 (0x547) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130837, serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF Validity Not Before: Mar 24 23:11:24 2026 GMT Not After : Mar 31 23:11:24 2026 GMT Subject: CN=69c31a1c-6528 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:13:64:66:0d:7b:f4:b4:b9:da:47:1b:dd:36: 56:7e:9a:0e:d4:9a:9f:4b:e5:84:63:e4:72:f3:bb: 50:e1:36:83:9e:8c:e8:17:fc:83:18:f1:97:4e:de: 56:a8:c4:70:66:bf:d3:2b:70:7a:7a:de:00:70:68: 9e:2f:08:3c:ab:0c:cb:22:3b:94:62:55:c7:8a:42: c4:3a:67:a3:81:78:60:12:35:ff:ff:92:92:26:87: 37:22:68:fc:c4:13:6e:4c:f8:94:76:34:97:d8:ae: fc:76:e5:30:48:f0:1b:30:f9:33:eb:86:ca:9c:e5: a9:f1:ee:d9:76:00:84:21:d1:c1:0c:eb:0a:ef:0b: de:1b:39:2a:1f:7e:8a:4b:29:12:5f:19:a5:28:c7: 32:74:95:d0:45:29:fa:b7:d9:a6:77:3a:01:3e:93: da:6c:33:2c:38:ba:a3:d2:f5:0b:70:38:5d:98:19: 3c:92:c5:28:f7:45:9e:84:ad:66:4d:92:a8:1a:a5: 1c:77:a4:65:fb:d6:70:5d:f1:32:73:b1:4c:02:40: 66:3a:aa:ac:c1:7a:66:d3:74:4a:ff:cc:a5:1c:37: 18:22:40:37:b8:55:c0:81:b9:13:5f:c8:43:df:1b: 7c:a8:33:c9:ab:d1:c4:60:c9:a3:c0:da:6d:5e:16: 61:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:54:E8:A9:3F:32:34:D4:3A:1C:CF:D4:9F:C3:F3:68:92:96:96:AD X509v3 Authority Key Identifier: keyid:53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:f9:9c:fb:07:fa:80:4a:da:0f:dc:37:1b:e1:5f:59:62:63: 15:86:c2:37:e8:b6:7d:8d:73:62:08:2b:03:16:07:18:19:d4: 42:60:4a:24:f4:da:d0:5e:99:83:60:f2:ce:e4:70:0c:2e:4e: 33:cb:5a:e7:71:75:22:e9:ec:2d:5b:15:ee:0a:45:5c:b0:58: 51:f1:14:fb:52:6c:93:77:5b:9e:3f:5a:b8:e3:6c:b8:0f:e2: 3c:10:b7:3a:d9:08:e3:cf:82:40:83:ce:99:e7:0d:59:07:c6: 3b:c7:8e:b5:c1:a9:5c:0a:c3:16:b7:e9:e0:31:a7:8c:cc:01: ae:3d:70:a7:0b:6e:37:84:c1:56:fd:6e:f6:b0:7b:9c:55:99: 74:77:73:98:4f:f5:3e:dc:ae:ca:ab:fe:b9:a5:c1:e1:b9:29: 56:ce:1e:c6:75:99:3d:aa:b1:f8:2c:90:b4:a6:96:26:19:29: 1e:cd:00:37:4c:37:7e:a1:d9:88:30:50:9b:69:4e:2a:1b:42: ed:ca:4a:38:af:b9:10:61:1a:f0:f7:b6:9d:a6:e4:df:a3:14: 66:7a:11:f4:2e:e2:a4:1f:bf:d3:70:81:cb:25:2e:26:c4:08: c6:6c:5d:2f:e2:b0:22:55:16:ac:35:37:5b:1c:2a:d9:95:97: b6:fe:14:73 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA4MzcxMTAvBgNVBAUTKDUzNjhCOEM4RDY5NjNFQUQ4Mzk5MDVBNDg2RjUzQzQ0 QjA0MUE1RUYwHhcNMjYwMzI0MjMxMTI0WhcNMjYwMzMxMjMxMTI0WjAYMRYwFAYD VQQDEw02OWMzMWExYy02NTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBNkZg179LS52kcb3TZWfpoO1JqfS+WEY+Ry87tQ4TaDnozoF/yDGPGXTt5W qMRwZr/TK3B6et4AcGieLwg8qwzLIjuUYlXHikLEOmejgXhgEjX//5KSJoc3Imj8 xBNuTPiUdjSX2K78duUwSPAbMPkz64bKnOWp8e7ZdgCEIdHBDOsK7wveGzkqH36K SykSXxmlKMcydJXQRSn6t9mmdzoBPpPabDMsOLqj0vULcDhdmBk8ksUo90WehK1m TZKoGqUcd6Rl+9ZwXfEyc7FMAkBmOqqswXpm03RK/8ylHDcYIkA3uFXAgbkTX8hD 3xt8qDPJq9HEYMmjwNptXhZheQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGZU6Kk/ MjTUOhzP1J/D82iSlpatMB8GA1UdIwQYMBaAFFNouMjWlj6tg5kFpIb1PESwQaXv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDgzNy9FM0Y4N0NCMjM2 RTMxMUVDQkM4Q0MyNTBDNEY5QUUwMi9VMmk0eU5hV1BxMkRtUVdraHZVOFJMQkJw ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UyaTR5TmFXUHEyRG1RV2todlU4UkxCQnBlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDgzNy9FM0Y4N0NCMjM2RTMxMUVDQkM4Q0MyNTBDNEY5QUUwMi9VMmk0eU5hV1Bx MkRtUVdraHZVOFJMQkJwZTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEfmc+wf6gEraD9w3G+FfWWJjFYbCN+i2fY1zYggrAxYHGBnUQmBKJPTa0F6Z g2DyzuRwDC5OM8ta53F1IunsLVsV7gpFXLBYUfEU+1Jsk3dbnj9auONsuA/iPBC3 OtkI48+CQIPOmecNWQfGO8eOtcGpXArDFrfp4DGnjMwBrj1wpwtuN4TBVv1u9rB7 nFWZdHdzmE/1Ptyuyqv+uaXB4bkpVs4exnWZPaqx+CyQtKaWJhkpHs0AN0w3fqHZ iDBQm2lOKhtC7cpKOK+5EGEa8Pe2nabk36MUZnoR9C7ipB+/03CByyUuJsQIxmxd L+KwIlUWrDU3Wxwq2ZWXtv4Ucw== -----END CERTIFICATE-----Generated at Thu Mar 26 09:13:16 2026 by rpki-client