$ rpki-client -vvf rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft File: U3pyvmM5N4xMTSlwK-12dczMFGo.mft (raw, json) Hash identifier: RURjKpq/dS234Hm9cBrppn/0QSHga+k5ZMY6tZuFCt0= Subject key identifier: 1B:61:73:2A:44:F0:BA:7D:83:22:62:C4:41:8B:9F:6F:5F:07:ED:C3 Authority key identifier: 53:7A:72:BE:63:39:37:8C:4C:4D:29:70:2B:ED:76:75:CC:CC:14:6A Certificate issuer: /CN=A916EB98/serialNumber=537A72BE6339378C4C4D29702BED7675CCCC146A Certificate serial: 0C27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft Manifest number: 0C1D Signing time: Tue 24 Mar 2026 18:37:14 +0000 Manifest this update: Tue 24 Mar 2026 18:37:14 +0000 Manifest next update: Tue 31 Mar 2026 18:37:14 +0000 Files and hashes: 1: U3pyvmM5N4xMTSlwK-12dczMFGo.crl (hash: ksEs08YEkBtQvXWTiA+oVNIu0uMAEgZMJNVDZC5aR5s=) 2: DD716A222ACC11EAAB36B444C4F9AE02.roa (hash: WSz2V/sotpR3gJkmMh94wQPcuajtaYW6M7zsjsYcooc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.crl rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:37:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3111 (0xc27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EB98, serialNumber=537A72BE6339378C4C4D29702BED7675CCCC146A Validity Not Before: Mar 24 18:37:14 2026 GMT Not After : Mar 31 18:37:14 2026 GMT Subject: CN=69c2d9da-ceef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b4:4d:fd:3f:81:1e:60:2a:41:a9:2e:03:2b: 31:8e:30:0c:50:e6:cc:92:71:d1:3f:c5:a9:d0:8c: fa:9e:bc:4e:91:f8:c1:aa:d0:76:92:b1:cd:95:6b: 4b:32:db:a9:fa:a5:99:b0:47:b9:6b:bc:d2:e5:ec: c4:bd:d1:aa:86:78:f0:e5:dc:95:c4:8a:5c:42:cf: 1d:7e:9c:40:05:77:4c:fb:4c:20:3f:20:e2:99:77: e2:75:a1:7a:36:9c:24:ab:a7:40:e9:8d:c8:0f:1c: fa:ee:8c:c5:d7:c8:d9:ce:29:35:0d:68:c9:3f:4b: 43:5a:07:47:25:8a:84:ee:a3:7c:0b:8a:c6:28:41: c9:b3:57:82:af:7f:ed:fc:c3:e5:4f:44:c7:c1:a8: f6:13:35:6c:bb:e3:b4:92:89:39:4a:6c:53:e9:f5: 0a:bc:37:96:3f:f0:e8:d0:39:b0:c2:30:86:0c:8a: d7:99:14:30:9f:46:b5:87:c2:3f:a4:b0:4a:ee:a8: 89:2d:17:81:3f:07:3f:7b:2f:49:80:14:da:43:48: 86:2f:57:03:61:2c:6c:83:07:40:0c:b9:a5:06:9d: 54:79:4d:1b:da:4b:de:21:8a:fd:af:e5:a6:5f:48: 22:1e:2b:fe:10:65:0e:ad:03:da:5c:fa:47:11:39: cb:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:61:73:2A:44:F0:BA:7D:83:22:62:C4:41:8B:9F:6F:5F:07:ED:C3 X509v3 Authority Key Identifier: keyid:53:7A:72:BE:63:39:37:8C:4C:4D:29:70:2B:ED:76:75:CC:CC:14:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:eb:4c:b5:e1:0b:0a:b5:f6:a5:1c:10:ef:61:e4:ca:b7:68: dc:fb:d8:0f:0e:c8:73:9f:cd:69:a1:26:5a:6f:79:d9:dd:44: 75:9f:09:37:66:88:8f:9e:c0:be:1c:4d:05:bb:b2:07:72:a9: c2:ec:78:9d:1c:ad:45:c5:5e:1d:18:28:1d:19:77:c4:39:07: a6:2e:bf:96:96:35:97:09:b3:53:e1:ee:33:43:ed:e5:c8:31: 84:59:6c:37:51:3e:ce:4b:f9:c0:e3:d9:3d:eb:a2:d4:74:e3: a7:b3:64:53:d7:9e:ee:92:7d:a7:fb:95:23:9c:17:41:6a:11: 8e:e4:ac:14:9d:5a:66:fb:94:5a:f8:2d:a4:fa:c1:07:e5:a9: 0c:49:57:9d:76:7a:1c:75:f5:d3:dd:23:52:5c:9a:c5:79:40: 53:66:9b:f8:ae:ef:c5:1d:b4:19:4f:f9:22:ad:bb:40:44:a2: c1:e2:bd:64:9d:23:f8:8b:c2:5a:a0:3d:8d:51:67:79:67:2e: 4c:06:d2:44:9b:56:cb:e5:c6:1d:42:7e:52:04:83:0a:18:a1: c0:96:6b:d8:35:72:fa:41:06:03:19:d7:ca:d9:1f:b0:b9:99: 9f:47:c0:01:db:5a:f6:fb:f9:93:75:cb:b7:76:fa:34:06:0e: 09:b0:a7:f6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCOTgxMTAvBgNVBAUTKDUzN0E3MkJFNjMzOTM3OEM0QzREMjk3MDJCRUQ3Njc1 Q0NDQzE0NkEwHhcNMjYwMzI0MTgzNzE0WhcNMjYwMzMxMTgzNzE0WjAYMRYwFAYD VQQDEw02OWMyZDlkYS1jZWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoLRN/T+BHmAqQakuAysxjjAMUObMknHRP8Wp0Iz6nrxOkfjBqtB2krHNlWtL Mtup+qWZsEe5a7zS5ezEvdGqhnjw5dyVxIpcQs8dfpxABXdM+0wgPyDimXfidaF6 Npwkq6dA6Y3IDxz67ozF18jZzik1DWjJP0tDWgdHJYqE7qN8C4rGKEHJs1eCr3/t /MPlT0THwaj2EzVsu+O0kok5SmxT6fUKvDeWP/Do0DmwwjCGDIrXmRQwn0a1h8I/ pLBK7qiJLReBPwc/ey9JgBTaQ0iGL1cDYSxsgwdADLmlBp1UeU0b2kveIYr9r+Wm X0giHiv+EGUOrQPaXPpHETnLdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBthcypE 8Lp9gyJixEGLn29fB+3DMB8GA1UdIwQYMBaAFFN6cr5jOTeMTE0pcCvtdnXMzBRq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUI5OC9CMEZDMzVEQzJB Q0ExMUVBODc1NjI3NDBDNEY5QUUwMi9VM3B5dm1NNU40eE1UU2x3Sy0xMmRjek1G R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UzcHl2bU01TjR4TVRTbHdLLTEyZGN6TUZHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUI5OC9CMEZDMzVEQzJBQ0ExMUVBODc1NjI3NDBDNEY5QUUwMi9VM3B5dm1NNU40 eE1UU2x3Sy0xMmRjek1GR28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATutMteELCrX2pRwQ72Hkyrdo3PvYDw7Ic5/NaaEmWm952d1EdZ8JN2aIj57A vhxNBbuyB3Kpwux4nRytRcVeHRgoHRl3xDkHpi6/lpY1lwmzU+HuM0Pt5cgxhFls N1E+zkv5wOPZPeui1HTjp7NkU9ee7pJ9p/uVI5wXQWoRjuSsFJ1aZvuUWvgtpPrB B+WpDElXnXZ6HHX1090jUlyaxXlAU2ab+K7vxR20GU/5Iq27QESiweK9ZJ0j+IvC WqA9jVFneWcuTAbSRJtWy+XGHUJ+UgSDChihwJZr2DVy+kEGAxnXytkfsLmZn0fA Adta9vv5k3XLt3b6NAYOCbCn9g== -----END CERTIFICATE-----Generated at Thu Mar 26 04:51:03 2026 by rpki-client