$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft File: UoKkZCr301eZKRu6RH6hQlGk1fw.mft (raw, json) Hash identifier: ICGgSok4IjzvDAZZ9Qp3lWuSA7153gxEoQxLTmMXqP0= Subject key identifier: 92:FF:C2:01:B6:68:2B:89:AD:3A:86:1A:FC:72:05:B4:E7:19:BF:FF Authority key identifier: 52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC Certificate issuer: /CN=A91582D9/serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Certificate serial: 08ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft Manifest number: 20CB Signing time: Thu 26 Mar 2026 16:29:45 +0000 Manifest this update: Thu 26 Mar 2026 16:29:45 +0000 Manifest next update: Thu 02 Apr 2026 16:29:45 +0000 Files and hashes: 1: UoKkZCr301eZKRu6RH6hQlGk1fw.crl (hash: dbHvjwWxwxWRGAEAZRckYWJXnIpdSqTTxwxFuJ5wJf4=) 2: B5E806CC8BC711EE899A5284C4F9AE02.roa (hash: sQmmHynRplLfSEUYnUX91utp9ekEe+hXIjAXfGLYEZ0=) 3: 172C2B96197711F0A993397AC4F9AE02.roa (hash: KlRLli/SZyA/blQSDVf22qf7tBm9EE3kAalEgJQxMlA=) 4: 654665EA197611F09D2B1C76C4F9AE02.roa (hash: EKk887jvD91sa5mqsDwh0zo559XyowQgVll88eOizFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2285 (0x8ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9, serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Validity Not Before: Mar 26 16:29:45 2026 GMT Not After : Apr 2 16:29:45 2026 GMT Subject: CN=69c55ef9-2f8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:25:3e:28:91:e7:e4:e1:f6:2d:d4:8d:02:57: 00:88:e3:97:b9:f5:07:6c:43:72:44:21:2b:a5:9f: 27:3e:1a:1f:a8:16:56:7c:b2:e4:2b:fa:ed:70:8a: 26:76:e9:cc:e0:02:75:be:eb:2c:e1:ce:67:9a:af: 40:08:c7:8c:4a:08:a6:43:da:ef:47:1c:d3:7f:07: b8:93:b8:0f:2f:0e:01:3c:60:3a:99:09:05:11:f3: 49:98:4e:bd:e3:68:99:17:3c:aa:f1:72:8c:ee:aa: 93:ed:14:52:e1:74:ef:9a:e3:bd:22:42:b3:15:df: d4:e1:6e:bc:c8:7a:98:08:9f:b0:05:d2:32:4d:08: c4:0b:a0:29:2c:1a:68:e5:9a:0f:ad:cb:bb:3e:30: e3:f5:e7:a3:45:d3:93:8d:df:87:d3:7f:72:11:b4: 77:72:40:7e:f7:da:74:5c:99:2a:d7:39:52:17:a5: 48:d9:30:7f:59:4d:f9:7d:54:ff:34:ed:3c:85:33: 4a:6d:c1:ec:c2:98:07:73:a4:8d:b1:eb:af:af:24: d9:0d:34:70:61:51:dd:ee:bd:78:8b:d1:11:4c:d1: 9f:db:1b:87:db:10:e8:9a:6d:5e:a0:15:76:f0:1b: 81:ab:25:31:50:cc:ff:3b:e7:f5:ae:70:37:6a:a3: 83:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:FF:C2:01:B6:68:2B:89:AD:3A:86:1A:FC:72:05:B4:E7:19:BF:FF X509v3 Authority Key Identifier: keyid:52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:e3:e7:92:e6:d5:10:5d:03:74:c9:91:93:3d:69:c5:74:1a: d5:09:a0:77:72:51:35:d9:19:5f:10:44:ff:df:8d:a5:2d:5e: 3e:0f:ed:a6:5e:11:14:38:6a:47:27:fb:c0:d7:23:dd:b8:74: c1:bc:83:91:db:b6:1e:db:a9:7a:af:07:fa:c7:58:6f:85:6e: 84:7d:27:ee:24:0b:0e:f1:89:6b:a1:bc:ca:5b:35:9b:2c:51: a1:5f:c7:c7:e6:f4:48:46:08:2d:72:06:79:99:71:b6:2b:a3: 41:c1:e7:aa:70:21:2c:bb:76:86:a9:f3:c5:29:f6:94:00:11: b8:f7:79:d7:6e:d1:46:e6:d2:b6:98:76:20:04:20:7b:87:08: ad:ee:9d:94:80:36:0c:7a:7d:28:f7:10:60:33:0c:20:75:ab: c9:0c:bc:1f:8a:bd:69:df:c4:e4:7d:37:26:e8:db:b8:07:d9: 55:c2:df:32:42:5b:15:05:05:6a:84:a5:df:b7:da:5d:81:57: bd:47:c5:a0:57:dc:ac:5c:ef:93:4b:a5:96:b0:27:2b:5e:01: 22:d3:61:7b:ae:ad:bc:1c:f6:c3:1e:80:c3:09:5a:7d:67:13: ca:32:6a:5c:13:a4:84:14:6a:bb:a6:38:f4:41:eb:05:27:d9: 4e:d8:aa:7b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDUyODJBNDY0MkFGN0QzNTc5OTI5MUJCQTQ0N0VBMTQy NTFBNEQ1RkMwHhcNMjYwMzI2MTYyOTQ1WhcNMjYwNDAyMTYyOTQ1WjAYMRYwFAYD VQQDEw02OWM1NWVmOS0yZjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnCU+KJHn5OH2LdSNAlcAiOOXufUHbENyRCErpZ8nPhofqBZWfLLkK/rtcIom dunM4AJ1vuss4c5nmq9ACMeMSgimQ9rvRxzTfwe4k7gPLw4BPGA6mQkFEfNJmE69 42iZFzyq8XKM7qqT7RRS4XTvmuO9IkKzFd/U4W68yHqYCJ+wBdIyTQjEC6ApLBpo 5ZoPrcu7PjDj9eejRdOTjd+H039yEbR3ckB+99p0XJkq1zlSF6VI2TB/WU35fVT/ NO08hTNKbcHswpgHc6SNseuvryTZDTRwYVHd7r14i9ERTNGf2xuH2xDomm1eoBV2 8BuBqyUxUMz/O+f1rnA3aqODnwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJL/wgG2 aCuJrTqGGvxyBbTnGb//MB8GA1UdIwQYMBaAFFKCpGQq99NXmSkbukR+oUJRpNX8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAxZVpLUnU2Ukg2aFFsR2sx ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvS2taQ3IzMDFlWktSdTZSSDZoUWxHazFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODJEOS8wRURBNkQ1RUNEREExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAx ZVpLUnU2Ukg2aFFsR2sxZncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAn+PnkubVEF0DdMmRkz1pxXQa1Qmgd3JRNdkZXxBE/9+NpS1ePg/tpl4RFDhq Ryf7wNcj3bh0wbyDkdu2Htupeq8H+sdYb4VuhH0n7iQLDvGJa6G8yls1myxRoV/H x+b0SEYILXIGeZlxtiujQcHnqnAhLLt2hqnzxSn2lAARuPd5127RRubStph2IAQg e4cIre6dlIA2DHp9KPcQYDMMIHWryQy8H4q9ad/E5H03JujbuAfZVcLfMkJbFQUF aoSl37faXYFXvUfFoFfcrFzvk0ullrAnK14BItNhe66tvBz2wx6AwwlafWcTyjJq XBOkhBRqu6Y49EHrBSfZTtiqew== -----END CERTIFICATE-----Generated at Thu Mar 26 21:18:02 2026 by rpki-client