$ rpki-client -vvf rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft File: U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft (raw, json) Hash identifier: YrjQOZ5Qz1hp9IrD3ikn31KMVCPVZOr4OEjEPQKzlRY= Subject key identifier: 3F:EA:D5:83:4D:0F:76:35:1B:40:07:8D:62:0F:BF:05:9D:78:30:F9 Authority key identifier: 53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B Certificate issuer: /CN=A914E070/serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Certificate serial: 01A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft Manifest number: 019C Signing time: Wed 25 Mar 2026 03:36:31 +0000 Manifest this update: Wed 25 Mar 2026 03:36:31 +0000 Manifest next update: Wed 01 Apr 2026 03:36:31 +0000 Files and hashes: 1: U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl (hash: 9VtCN7vyufXVIpOTpZZx+x2ar+lYfYVD5bNqSg8x1N4=) 2: 3772F678BC1211EE8C54FD2EC4F9AE02.roa (hash: 0+cim1nNJ/HzloRjHXoa1S1TFcu0JHUvJvdwHP5Hs9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:36:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 422 (0x1a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E070, serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Validity Not Before: Mar 25 03:36:31 2026 GMT Not After : Apr 1 03:36:31 2026 GMT Subject: CN=69c3583f-409c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3c:ba:e5:cc:44:1d:5c:33:70:b6:5e:a7:ab: 3d:fd:09:47:13:bf:bb:8a:8d:66:65:8d:33:a0:e5: dc:59:64:7f:7e:aa:a1:b4:1d:cd:37:21:ce:2c:e4: 2e:0a:fb:b0:03:30:f8:bc:a1:67:bb:4d:d1:d5:d2: c6:1e:1b:f6:8b:9c:7f:d8:57:fe:ab:9e:fc:e3:1a: a7:65:a0:0e:4f:5e:00:bd:43:8c:23:b2:70:21:31: 12:0a:12:67:35:e1:90:d2:05:97:7d:5a:0e:3c:30: 31:57:a3:d9:4e:5d:4f:b3:45:41:75:b6:b5:ec:f6: a8:75:94:40:46:5e:61:ce:c6:5f:23:d2:c7:a5:eb: 6d:e8:58:56:38:30:a8:ec:a4:85:da:20:cb:d1:53: b9:7c:21:a3:1c:c8:6c:37:84:54:64:92:48:35:ab: 5f:b4:4e:14:41:5b:29:21:14:ad:05:ff:3a:fe:3e: c4:6b:c6:2a:41:6c:48:db:8c:50:71:fc:62:7a:64: 5d:a4:92:08:dd:88:8b:21:cf:58:4f:0f:b4:ee:af: 80:87:55:0b:a2:77:54:53:20:62:8d:7b:66:f8:7d: 6f:f8:ee:11:da:00:f5:f2:ac:8d:3d:00:1b:80:28: a8:a0:1d:49:84:4b:51:68:d2:3d:23:dc:1d:78:9f: 72:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:EA:D5:83:4D:0F:76:35:1B:40:07:8D:62:0F:BF:05:9D:78:30:F9 X509v3 Authority Key Identifier: keyid:53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:64:f6:42:5c:60:0b:66:6c:af:83:a4:84:5a:7a:4d:a6:9b: 85:92:b6:3a:03:85:ef:cb:09:93:94:16:fd:22:2b:f7:37:c9: 6f:37:15:2a:ff:e5:c0:c8:c3:e0:58:49:fa:bc:6b:8c:35:24: 86:27:76:99:f1:ce:94:6a:6b:d1:d7:6e:88:dc:c2:3b:4e:ec: 50:b9:60:2a:f6:c0:63:e6:a6:65:b7:30:ca:e1:35:c5:96:5a: 9e:09:2a:d6:7a:00:ef:6d:44:42:1d:a4:98:2d:1c:ba:8e:b4: 8b:7e:c9:82:64:30:50:c0:27:3b:df:79:67:82:79:c8:c7:75: 76:d5:d0:34:e1:51:e7:d9:f1:21:fa:e7:26:e9:39:0b:e0:b9: 8a:be:bc:b3:94:ca:90:85:0f:65:0b:b5:1c:5f:f2:b4:85:f6: cb:20:c1:9a:a6:51:2b:56:28:62:76:7d:85:07:ae:bb:8e:48: 0a:26:90:44:e5:ec:32:35:9c:e2:98:3c:d7:10:80:7c:9b:57: a0:05:ed:01:c5:33:92:41:f8:cc:57:d5:42:59:aa:ce:e7:7a: 2b:36:67:05:a9:da:c1:63:e5:bc:5e:01:50:fe:35:09:e2:21: e9:ec:9e:d4:7c:f8:76:2d:50:60:04:3b:1c:22:e0:d4:0d:2f: 0d:4b:c5:84 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwNzAxMTAvBgNVBAUTKDUzOUJCNzZDOEE0Mzc5QTRERTM5OUMwNTJEMzhDMUI0 NTNBNjZGMUIwHhcNMjYwMzI1MDMzNjMxWhcNMjYwNDAxMDMzNjMxWjAYMRYwFAYD VQQDEw02OWMzNTgzZi00MDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjy65cxEHVwzcLZep6s9/QlHE7+7io1mZY0zoOXcWWR/fqqhtB3NNyHOLOQu CvuwAzD4vKFnu03R1dLGHhv2i5x/2Ff+q5784xqnZaAOT14AvUOMI7JwITESChJn NeGQ0gWXfVoOPDAxV6PZTl1Ps0VBdba17PaodZRARl5hzsZfI9LHpett6FhWODCo 7KSF2iDL0VO5fCGjHMhsN4RUZJJINatftE4UQVspIRStBf86/j7Ea8YqQWxI24xQ cfxiemRdpJII3YiLIc9YTw+07q+Ah1ULondUUyBijXtm+H1v+O4R2gD18qyNPQAb gCiooB1JhEtRaNI9I9wdeJ9yFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD/q1YNN D3Y1G0AHjWIPvwWdeDD5MB8GA1UdIwQYMBaAFFObt2yKQ3mk3jmcBS04wbRTpm8b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTA3MC84OUM1NTk3Q0JD MTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVhVGVPWndGTFRqQnRGT21i eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1dTNiSXBEZWFUZU9ad0ZMVGpCdEZPbWJ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTA3MC84OUM1NTk3Q0JDMTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVh VGVPWndGTFRqQnRGT21ieHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAI2T2QlxgC2Zsr4OkhFp6TaabhZK2OgOF78sJk5QW/SIr9zfJbzcVKv/lwMjD 4FhJ+rxrjDUkhid2mfHOlGpr0dduiNzCO07sULlgKvbAY+amZbcwyuE1xZZangkq 1noA721EQh2kmC0cuo60i37JgmQwUMAnO995Z4J5yMd1dtXQNOFR59nxIfrnJuk5 C+C5ir68s5TKkIUPZQu1HF/ytIX2yyDBmqZRK1YoYnZ9hQeuu45ICiaQROXsMjWc 4pg81xCAfJtXoAXtAcUzkkH4zFfVQlmqzud6KzZnBanawWPlvF4BUP41CeIh6eye 1Hz4di1QYAQ7HCLg1A0vDUvFhA== -----END CERTIFICATE-----Generated at Fri Mar 27 01:57:34 2026 by rpki-client