$ rpki-client -vvf rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft File: UoaLCQH1W0B4uRpzRRym0iMSyKs.mft (raw, json) Hash identifier: vIhz3nqNkPawy1/nwxVuaB+6W240OAVxNhXn5QPTTE4= Subject key identifier: 42:9B:38:BA:A7:29:0B:3F:14:CE:83:BC:5A:4D:2C:1A:D2:FA:B8:BE Authority key identifier: 52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB Certificate issuer: /CN=A913E2B3/serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Certificate serial: 0CAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft Manifest number: 0C9A Signing time: Tue 24 Mar 2026 18:22:04 +0000 Manifest this update: Tue 24 Mar 2026 18:22:03 +0000 Manifest next update: Tue 31 Mar 2026 18:22:03 +0000 Files and hashes: 1: UoaLCQH1W0B4uRpzRRym0iMSyKs.crl (hash: DZIE0SLCksR8Pj851vTikV0kmkfIR/tlTSVmWHFy+PE=) 2: 399AB6DA4ED511ED84336740C4F9AE02.roa (hash: 5GbxzBSfHfbTK/2PyRZ8YSXCEt+H6QAHiqTTaUK/ZBg=) 3: 3AB1E0D44ED511ED84336740C4F9AE02.roa (hash: UlK2XwEWcbOvFEYsFdkuj6xNj+WONsyKqb3Dor4n7pw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:22:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3242 (0xcaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E2B3, serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Validity Not Before: Mar 24 18:22:03 2026 GMT Not After : Mar 31 18:22:03 2026 GMT Subject: CN=69c2d64b-962e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:65:f0:78:0f:51:73:39:69:20:16:ba:1f:a7: be:eb:76:76:58:9a:36:2e:1f:89:c4:70:74:5d:ff: 95:1a:c4:0e:56:79:f2:ba:19:42:86:ec:f1:f4:fe: 56:59:a5:9a:93:a1:06:1a:a6:39:53:db:33:57:6a: 76:20:33:48:22:79:f7:08:5a:f0:aa:8e:53:b3:a2: 19:d0:13:ed:1a:0a:c2:d7:35:f0:b8:e9:eb:a7:98: 1b:4d:61:6c:eb:d1:26:2a:7e:78:68:fe:12:8d:d5: 83:a8:01:45:c9:53:75:4f:16:e5:b2:cf:68:a8:3a: 32:ae:d2:8a:24:23:cf:55:f2:80:45:c2:91:be:85: fa:08:ff:75:a3:eb:31:7b:44:f0:a9:f7:a6:cb:2c: 83:b3:3d:b0:c9:07:74:7d:08:0e:09:e2:fc:c0:55: b3:2a:4a:e3:f8:0e:ab:e5:9a:c5:07:80:9e:6d:ad: ec:17:13:23:9c:0c:2f:79:ae:27:fd:8e:dc:38:30: 24:6c:9a:a9:30:ec:7a:0f:9e:a7:be:73:af:5e:13: e3:79:9f:54:81:be:ed:cc:ee:6f:cc:cd:e1:35:18: 61:ab:f7:bc:17:5a:de:19:90:df:57:18:b7:d6:30: 09:06:8e:29:f6:81:8a:28:1f:16:17:bb:6b:c9:18: c2:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:9B:38:BA:A7:29:0B:3F:14:CE:83:BC:5A:4D:2C:1A:D2:FA:B8:BE X509v3 Authority Key Identifier: keyid:52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:f6:95:6a:3e:a6:9b:d2:fb:61:6c:16:e4:d4:7d:5e:df:b3: 97:20:bd:08:6f:8f:5e:eb:5f:83:fc:61:a0:65:a4:00:84:c2: f6:db:13:1f:e8:3a:34:cf:91:c5:97:00:a3:84:7d:5f:9a:d1: 19:5e:fc:18:5f:8a:e1:18:31:32:d4:da:a0:24:6b:2d:d7:f5: 7d:01:d9:df:55:05:4d:44:0e:9d:08:8d:a0:50:3b:b4:22:b4: 1b:86:c0:04:c1:ce:03:41:21:23:9c:c5:9b:71:c6:16:2d:9d: 77:ad:01:f2:95:e3:f1:a3:45:77:20:9c:1b:f5:5d:1c:eb:7e: e7:6b:73:fc:5b:be:97:f8:37:63:30:d3:f1:5f:df:89:46:25: e5:2c:ef:a7:b7:73:25:a1:a8:ec:d9:83:3b:c2:cb:ea:62:e0: d9:d5:19:99:d9:90:84:e0:2f:e1:22:d7:88:e9:ae:55:6c:ab: 5f:b2:13:0b:24:83:ff:c5:a3:01:05:29:a4:8f:16:26:7b:9c: d0:29:1a:6f:86:b7:f2:9b:f2:a8:7c:c3:78:54:35:ba:c4:f5: f0:1d:16:cf:22:43:5d:2d:6f:38:75:b0:7e:ac:5d:e5:b5:fa: f6:4b:82:b1:6e:6e:71:0c:45:ac:d0:5d:d0:d1:fd:19:fd:d1: d8:a4:7a:29 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UyQjMxMTAvBgNVBAUTKDUyODY4QjA5MDFGNTVCNDA3OEI5MUE3MzQ1MUNBNkQy MjMxMkM4QUIwHhcNMjYwMzI0MTgyMjAzWhcNMjYwMzMxMTgyMjAzWjAYMRYwFAYD VQQDEw02OWMyZDY0Yi05NjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGXweA9RczlpIBa6H6e+63Z2WJo2Lh+JxHB0Xf+VGsQOVnnyuhlChuzx9P5W WaWak6EGGqY5U9szV2p2IDNIInn3CFrwqo5Ts6IZ0BPtGgrC1zXwuOnrp5gbTWFs 69EmKn54aP4SjdWDqAFFyVN1Txblss9oqDoyrtKKJCPPVfKARcKRvoX6CP91o+sx e0TwqfemyyyDsz2wyQd0fQgOCeL8wFWzKkrj+A6r5ZrFB4Ceba3sFxMjnAwvea4n /Y7cODAkbJqpMOx6D56nvnOvXhPjeZ9Ugb7tzO5vzM3hNRhhq/e8F1reGZDfVxi3 1jAJBo4p9oGKKB8WF7tryRjC+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEKbOLqn KQs/FM6DvFpNLBrS+ri+MB8GA1UdIwQYMBaAFFKGiwkB9VtAeLkac0UcptIjEsir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTJCMy8yMEU2N0REODEy RjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcwQjR1UnB6UlJ5bTBpTVN5 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvYUxDUUgxVzBCNHVScHpSUnltMGlNU3lLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTJCMy8yMEU2N0REODEyRjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcw QjR1UnB6UlJ5bTBpTVN5S3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAs/aVaj6mm9L7YWwW5NR9Xt+zlyC9CG+PXutfg/xhoGWkAITC9tsTH+g6NM+R xZcAo4R9X5rRGV78GF+K4RgxMtTaoCRrLdf1fQHZ31UFTUQOnQiNoFA7tCK0G4bA BMHOA0EhI5zFm3HGFi2dd60B8pXj8aNFdyCcG/VdHOt+52tz/Fu+l/g3YzDT8V/f iUYl5Szvp7dzJaGo7NmDO8LL6mLg2dUZmdmQhOAv4SLXiOmuVWyrX7ITCySD/8Wj AQUppI8WJnuc0Ckab4a38pvyqHzDeFQ1usT18B0WzyJDXS1vOHWwfqxd5bX69kuC sW5ucQxFrNBd0NH9Gf3R2KR6KQ== -----END CERTIFICATE-----Generated at Thu Mar 26 06:04:47 2026 by rpki-client