$ rpki-client -vvf rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft File: U-fOlDUz-NPAVknylGgqJvgU8V8.mft (raw, json) Hash identifier: Sa6iysPWlB9QNvLw7kR0tFzBcFkEnpui4zelzmD6anU= Subject key identifier: 51:56:43:CC:8F:E5:4D:54:C7:2D:BA:64:D6:EB:2E:5B:8E:48:AF:2B Authority key identifier: 53:E7:CE:94:35:33:F8:D3:C0:56:49:F2:94:68:2A:26:F8:14:F1:5F Certificate issuer: /CN=A9144391/serialNumber=53E7CE943533F8D3C05649F294682A26F814F15F Certificate serial: 012D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft Manifest number: 0124 Signing time: Wed 25 Mar 2026 04:56:43 +0000 Manifest this update: Wed 25 Mar 2026 04:56:42 +0000 Manifest next update: Wed 01 Apr 2026 04:56:42 +0000 Files and hashes: 1: U-fOlDUz-NPAVknylGgqJvgU8V8.crl (hash: ASi2XgTGFFsNFdtihUKQKD2WRqn5cYoAFJfVNNYnad8=) 2: BC213E3C70AF11EF9C9B2C0EC4F9AE02.roa (hash: i6ZlnAPU3uWxh5AMrqKrLRC7uPLe5azEThc7wGn+rD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.crl rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:56:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144391, serialNumber=53E7CE943533F8D3C05649F294682A26F814F15F Validity Not Before: Mar 25 04:56:42 2026 GMT Not After : Apr 1 04:56:42 2026 GMT Subject: CN=69c36b0b-3fd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:27:72:20:a8:e9:ff:80:5c:1a:f5:49:36:e5: 7f:07:31:e2:16:a0:6a:f6:58:bf:ef:a9:fe:c9:9d: a7:b5:f8:c9:fb:6d:e9:8b:f0:88:c4:e2:43:1d:5b: bc:3e:db:72:66:97:35:52:af:c7:ac:e4:ab:ef:3b: ac:a2:e4:41:56:bf:b4:81:68:c1:19:03:d1:5a:4d: a9:9e:79:f9:4a:dd:f4:e1:f1:dc:fa:3e:22:34:99: 08:3d:f2:e5:47:8b:6d:a2:61:1e:7f:86:6f:72:0b: 32:92:cd:f5:f6:6b:20:3f:3e:5b:e7:bf:40:e4:00: ca:7c:68:2e:bf:4c:2c:77:d3:f8:0e:3c:49:58:6f: 3b:10:de:f9:ae:e0:ae:20:75:bf:d2:5c:4d:b3:18: 79:af:44:a9:ab:fb:b9:e8:bf:21:b6:38:b8:89:3e: d3:84:dc:23:0e:b8:0a:5b:bf:87:da:a9:84:f1:42: a8:54:bb:60:36:01:8e:a0:1d:39:1a:dc:13:d2:63: 6a:45:9d:a1:3e:7f:fc:bf:e1:22:25:2f:ee:58:04: 5f:ea:47:80:63:a2:31:17:1b:d7:ad:65:5d:7c:1a: fd:12:88:00:04:3a:e3:bb:61:2e:96:a4:1e:81:e6: f5:a0:6d:b1:d9:67:ef:28:a9:6d:28:10:34:cf:c7: ea:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:56:43:CC:8F:E5:4D:54:C7:2D:BA:64:D6:EB:2E:5B:8E:48:AF:2B X509v3 Authority Key Identifier: keyid:53:E7:CE:94:35:33:F8:D3:C0:56:49:F2:94:68:2A:26:F8:14:F1:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:24:4c:6f:51:97:27:c8:1f:25:f7:d4:b6:52:19:58:5e:57: 4f:6a:c5:1a:a8:df:26:0c:64:84:2a:55:5d:e3:e0:e3:b8:ce: bb:a9:8f:8b:b9:d6:7b:46:67:6f:74:e1:8d:e9:ae:65:99:e9: bf:3e:a2:a7:c2:17:91:75:d9:75:a2:47:dc:08:5d:5a:2d:4c: 3f:ac:4d:55:19:3b:90:f6:95:c9:f0:b3:a6:73:02:00:c8:6a: 75:3d:c4:0c:ae:47:bd:df:bb:f3:2f:a8:7b:4c:15:62:6d:3f: f4:a3:d9:2a:5b:da:a0:f9:d9:d8:a4:bb:15:bd:d0:3a:f0:2d: ec:da:a7:e1:d9:d8:77:2b:3e:42:dc:28:b5:ca:1c:1c:43:6d: d0:96:ea:11:15:96:5b:06:b8:43:98:86:f6:9f:58:a8:3e:7b: c8:b9:90:26:8c:9c:f0:c8:0c:0f:0f:e6:da:3a:0c:f0:c0:4a: d0:f1:28:69:da:3a:fb:d1:e3:97:51:41:13:32:c8:17:84:47: e9:71:a9:4b:88:1f:59:cd:4d:69:63:f9:c3:d4:ff:5c:01:3a: 6f:c8:d0:4b:72:1d:fb:55:07:47:e9:49:c0:f2:33:68:64:b7: 39:c8:3c:35:e8:3e:a0:79:27:ac:e6:c7:20:42:4d:17:07:eb: 4c:c9:7a:6b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQzOTExMTAvBgNVBAUTKDUzRTdDRTk0MzUzM0Y4RDNDMDU2NDlGMjk0NjgyQTI2 RjgxNEYxNUYwHhcNMjYwMzI1MDQ1NjQyWhcNMjYwNDAxMDQ1NjQyWjAYMRYwFAYD VQQDEw02OWMzNmIwYi0zZmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtydyIKjp/4BcGvVJNuV/BzHiFqBq9li/76n+yZ2ntfjJ+23pi/CIxOJDHVu8 PttyZpc1Uq/HrOSr7zusouRBVr+0gWjBGQPRWk2pnnn5St304fHc+j4iNJkIPfLl R4ttomEef4Zvcgsyks319msgPz5b579A5ADKfGguv0wsd9P4DjxJWG87EN75ruCu IHW/0lxNsxh5r0Spq/u56L8htji4iT7ThNwjDrgKW7+H2qmE8UKoVLtgNgGOoB05 GtwT0mNqRZ2hPn/8v+EiJS/uWARf6keAY6IxFxvXrWVdfBr9EogABDrju2EulqQe geb1oG2x2WfvKKltKBA0z8fqLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFFWQ8yP 5U1Uxy26ZNbrLluOSK8rMB8GA1UdIwQYMBaAFFPnzpQ1M/jTwFZJ8pRoKib4FPFf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDM5MS8wMTlGRjE0RTcw QUUxMUVGQTg0OEIwNjhDNEY5QUUwMi9VLWZPbERVei1OUEFWa255bEdncUp2Z1U4 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtZk9sRFV6LU5QQVZrbnlsR2dxSnZnVThWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDM5MS8wMTlGRjE0RTcwQUUxMUVGQTg0OEIwNjhDNEY5QUUwMi9VLWZPbERVei1O UEFWa255bEdncUp2Z1U4VjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfyRMb1GXJ8gfJffUtlIZWF5XT2rFGqjfJgxkhCpVXePg47jOu6mPi7nWe0Zn b3ThjemuZZnpvz6ip8IXkXXZdaJH3AhdWi1MP6xNVRk7kPaVyfCzpnMCAMhqdT3E DK5Hvd+78y+oe0wVYm0/9KPZKlvaoPnZ2KS7Fb3QOvAt7Nqn4dnYdys+Qtwotcoc HENt0JbqERWWWwa4Q5iG9p9YqD57yLmQJoyc8MgMDw/m2joM8MBK0PEoado6+9Hj l1FBEzLIF4RH6XGpS4gfWc1NaWP5w9T/XAE6b8jQS3Id+1UHR+lJwPIzaGS3Ocg8 Neg+oHknrObHIEJNFwfrTMl6aw== -----END CERTIFICATE-----Generated at Thu Mar 26 23:07:21 2026 by rpki-client