$ rpki-client -vvf rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft File: UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft (raw, json) Hash identifier: 8ORjdTXdh8WpjVWYLpc0ZyivnCIN1Kznm84gONJ+6Gw= Subject key identifier: 21:8B:08:36:2C:A7:AC:B5:C6:0D:32:7C:A9:79:62:60:05:0C:79:37 Authority key identifier: 50:E5:0E:DA:F6:4A:2C:25:B7:31:23:96:73:D9:07:0F:61:83:02:79 Certificate issuer: /CN=A9157031/serialNumber=50E50EDAF64A2C25B731239673D9070F61830279 Certificate serial: 0488 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft Manifest number: 0481 Signing time: Tue 24 Mar 2026 23:43:14 +0000 Manifest this update: Tue 24 Mar 2026 23:43:13 +0000 Manifest next update: Tue 31 Mar 2026 23:43:13 +0000 Files and hashes: 1: UOUO2vZKLCW3MSOWc9kHD2GDAnk.crl (hash: /dH0IDSYTvOy6m9jN3FUW7+wYD5JeL9ZzhyIj2qPMtY=) 2: 32D8FF34C99E11ED98E9BE5BC4F9AE02.roa (hash: yd4buxnCUiP8RDjBDNVk91tWj2JzoJK9mOzB6Ho4Uo8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.crl rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:43:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1160 (0x488) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157031, serialNumber=50E50EDAF64A2C25B731239673D9070F61830279 Validity Not Before: Mar 24 23:43:13 2026 GMT Not After : Mar 31 23:43:13 2026 GMT Subject: CN=69c32191-108d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:50:8b:f7:43:18:a4:08:7b:13:d3:a2:b9:b5: ef:04:cf:50:f2:1a:16:6e:1a:ff:7b:dd:db:97:0d: 1f:90:fa:42:2f:aa:6b:d8:0d:ba:ab:60:d7:8f:b0: bb:f8:92:7f:b6:c3:d2:71:1f:af:06:10:68:32:cc: c8:26:d9:51:d1:f5:38:09:fb:95:f0:0a:74:3f:4a: b5:08:9f:74:a9:f1:d8:8e:4b:da:00:e5:67:f4:6c: 59:08:04:bc:29:62:ed:6a:68:f5:45:54:b7:21:9d: d6:22:32:fd:d1:68:d6:1a:56:f1:4b:bd:5c:a1:ef: 15:89:e9:e5:ca:d3:70:37:84:ff:86:de:eb:54:2c: ea:f2:d0:3c:98:bd:6e:e7:95:80:d5:fa:00:bd:69: 60:a2:e6:50:be:fc:2d:be:c8:e2:b3:56:97:57:ec: 08:e3:55:24:2e:80:c7:99:7f:49:f5:14:16:03:aa: 03:a2:63:77:6c:6b:b9:a5:a0:fd:10:76:4f:c0:62: c3:7d:a9:8f:0f:68:64:3e:55:64:a4:6d:d1:ab:4a: 4c:e2:2d:18:24:0c:c6:67:03:95:71:09:fd:89:cf: fd:6a:96:a1:fc:7d:0e:39:f5:ee:5d:a1:77:65:f0: 95:8b:29:81:c1:40:32:5b:e8:da:ec:4b:9d:83:89: 19:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:8B:08:36:2C:A7:AC:B5:C6:0D:32:7C:A9:79:62:60:05:0C:79:37 X509v3 Authority Key Identifier: keyid:50:E5:0E:DA:F6:4A:2C:25:B7:31:23:96:73:D9:07:0F:61:83:02:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:9b:7a:c8:c8:b8:39:2d:f6:19:db:fe:b2:4a:c2:8c:1f:a8: 59:05:62:37:56:0a:70:b3:f3:ca:54:28:9f:f3:0c:fa:3b:c7: 6c:d0:f5:a4:1a:35:08:65:dd:8a:0f:4c:dc:4c:a0:58:c2:4f: 8c:d6:69:e5:89:c7:e9:9e:94:d6:69:53:e4:39:88:29:da:1e: 09:38:4d:7f:ef:b2:21:96:2c:fe:2d:0b:40:00:e2:e5:b1:8a: 62:d0:ac:f2:e5:87:30:b6:8b:4b:c9:7b:16:28:c2:e0:84:e1: 6c:19:49:fd:d2:7d:3f:d1:d4:5f:30:b2:8b:38:98:00:da:dd: 20:2f:27:74:53:0b:be:53:51:7d:f7:4a:29:8e:12:30:14:f7: 26:95:22:93:1c:2b:09:21:86:b4:1a:2f:03:fc:77:d9:82:30: 82:84:4b:bb:66:ad:34:a8:c6:a5:7d:7a:84:ae:b7:5a:09:35: 73:eb:32:8e:f0:52:c9:14:bb:f0:5f:e7:12:c6:bb:0a:f9:30: 69:da:5e:b7:b4:d7:a3:55:ba:d9:a9:9e:62:78:5f:ac:ec:24: 7c:26:24:fb:b7:b0:96:ef:36:2b:e6:ec:44:13:0d:a5:6a:4b: d6:ab:a2:4b:89:a3:0a:99:25:15:02:4d:41:0f:35:78:a7:a1: da:3a:1b:4e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTcwMzExMTAvBgNVBAUTKDUwRTUwRURBRjY0QTJDMjVCNzMxMjM5NjczRDkwNzBG NjE4MzAyNzkwHhcNMjYwMzI0MjM0MzEzWhcNMjYwMzMxMjM0MzEzWjAYMRYwFAYD VQQDEw02OWMzMjE5MS0xMDhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2FCL90MYpAh7E9OiubXvBM9Q8hoWbhr/e93blw0fkPpCL6pr2A26q2DXj7C7 +JJ/tsPScR+vBhBoMszIJtlR0fU4CfuV8Ap0P0q1CJ90qfHYjkvaAOVn9GxZCAS8 KWLtamj1RVS3IZ3WIjL90WjWGlbxS71coe8VienlytNwN4T/ht7rVCzq8tA8mL1u 55WA1foAvWlgouZQvvwtvsjis1aXV+wI41UkLoDHmX9J9RQWA6oDomN3bGu5paD9 EHZPwGLDfamPD2hkPlVkpG3Rq0pM4i0YJAzGZwOVcQn9ic/9apah/H0OOfXuXaF3 ZfCViymBwUAyW+ja7Eudg4kZWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCGLCDYs p6y1xg0yfKl5YmAFDHk3MB8GA1UdIwQYMBaAFFDlDtr2SiwltzEjlnPZBw9hgwJ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzAzMS83QTAwNEY3ODdF QzkxMUVDODRFQzQ0MThDNEY5QUUwMi9VT1VPMnZaS0xDVzNNU09XYzlrSEQyR0RB bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VPVU8ydlpLTENXM01TT1djOWtIRDJHREFuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzAzMS83QTAwNEY3ODdFQzkxMUVDODRFQzQ0MThDNEY5QUUwMi9VT1VPMnZaS0xD VzNNU09XYzlrSEQyR0RBbmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkZt6yMi4OS32Gdv+skrCjB+oWQViN1YKcLPzylQon/MM+jvHbND1pBo1CGXd ig9M3EygWMJPjNZp5YnH6Z6U1mlT5DmIKdoeCThNf++yIZYs/i0LQADi5bGKYtCs 8uWHMLaLS8l7FijC4IThbBlJ/dJ9P9HUXzCyiziYANrdIC8ndFMLvlNRffdKKY4S MBT3JpUikxwrCSGGtBovA/x32YIwgoRLu2atNKjGpX16hK63Wgk1c+syjvBSyRS7 8F/nEsa7Cvkwadpet7TXo1W62ameYnhfrOwkfCYk+7ewlu82K+bsRBMNpWpL1qui S4mjCpklFQJNQQ81eKeh2jobTg== -----END CERTIFICATE-----Generated at Thu Mar 26 11:49:23 2026 by rpki-client