$ rpki-client -vvf rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft File: U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft (raw, json) Hash identifier: QwNjRpbOabB+HXmNRrTUZRRJLa4Pr6I5MGKbLcIsyiw= Subject key identifier: 81:49:B3:AC:F6:79:97:71:27:AE:35:8A:7B:9A:7D:22:FE:5B:4F:26 Authority key identifier: 53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 Certificate issuer: /CN=A91736BD/serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Certificate serial: 0278 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft Manifest number: 0271 Signing time: Wed 25 Mar 2026 01:26:15 +0000 Manifest this update: Wed 25 Mar 2026 01:26:15 +0000 Manifest next update: Wed 01 Apr 2026 01:26:15 +0000 Files and hashes: 1: U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl (hash: 3b77QxKZzcIr0tvjk8ZBkUXkmNl1RNTyvEs8pqhrEgY=) 2: EB8C9B546EE911ED8F07B022C4F9AE02.roa (hash: g3eOenNLDa9Ly+07FwWBJj8yKQrhF0dtKDBoP9nh0/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:26:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 632 (0x278) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91736BD, serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Validity Not Before: Mar 25 01:26:15 2026 GMT Not After : Apr 1 01:26:15 2026 GMT Subject: CN=69c339b7-3e3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:08:45:6c:fb:65:32:fa:58:ad:c6:f7:ad:a7: cf:a2:0c:1d:7b:4a:04:d8:8c:ff:c3:e9:f4:92:60: 65:58:24:8d:3b:7b:bc:14:96:63:71:a5:af:54:00: cb:d3:5f:6a:df:a4:65:c6:28:71:a2:0f:12:43:83: c9:f2:af:44:0c:2e:56:14:66:f2:00:fd:5d:62:07: 5a:f3:c8:a9:4c:28:00:ff:75:88:48:45:fb:c7:02: e7:8a:a6:45:6d:45:c1:a9:f2:4e:d0:e5:d5:0c:29: e0:22:6b:9a:26:e8:15:e8:90:ca:41:3d:96:2a:f7: cd:5d:85:8c:83:cd:0f:e4:7e:fd:6f:c6:0b:86:88: ca:34:91:32:73:07:20:b5:51:fd:bf:f9:de:ca:7c: 99:c5:88:25:6e:91:fb:2d:e9:e3:90:56:3a:10:b8: ea:4d:3c:bc:85:66:07:99:60:ee:7b:fe:f8:42:50: df:7c:2c:a8:92:db:ab:f3:a8:1a:4f:97:fc:48:cb: d0:5e:85:4d:f7:30:6e:45:fb:62:f3:7d:66:69:a0: a4:5e:0e:19:75:3e:24:60:8d:27:0b:d2:f0:3d:a7: 1c:92:6b:c4:76:cf:46:4f:9e:7d:e1:1a:6a:fb:2e: 8f:42:16:d7:a1:eb:f3:ae:4d:1b:1d:1a:38:74:97: 7d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:49:B3:AC:F6:79:97:71:27:AE:35:8A:7B:9A:7D:22:FE:5B:4F:26 X509v3 Authority Key Identifier: keyid:53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:ec:2f:d7:3b:5e:cd:cf:43:8e:f8:e3:b9:d2:b4:2e:9a:b0: 53:e2:70:4c:2b:fc:8a:46:63:23:e2:f3:9a:e1:12:29:77:29: fb:89:06:32:2d:00:b9:3d:43:37:fa:f9:b8:0f:d0:d7:b2:03: fc:5d:98:a2:97:6a:83:0b:52:f6:87:ee:fa:d7:83:14:c8:31: aa:87:2c:ad:a1:c2:17:29:25:d9:63:22:2a:d4:9a:00:29:25: 56:dc:f6:6b:6d:0c:10:9b:b4:86:fa:f1:53:15:6f:51:f6:5e: bc:87:f6:c2:59:ca:fe:d8:cb:e9:5b:fb:f7:ef:d7:d2:26:34: ec:39:ee:16:98:02:5c:ec:d6:6d:96:9b:22:a1:82:6b:4f:57: 10:86:85:32:ff:8b:ba:f8:63:c4:98:6e:33:09:4b:1e:8b:65: d5:15:48:c8:2e:56:b7:9b:66:97:63:24:ed:2e:84:12:5f:1a: ff:99:49:a5:65:59:5b:8d:f9:4f:ca:bd:aa:ac:bc:c9:26:0e: 0b:aa:33:02:5e:24:e5:7d:1a:78:40:03:5e:f0:a0:72:d2:79: 72:17:cd:6e:2d:0f:95:17:2f:c2:f1:f4:f2:bc:be:9e:af:76: d2:98:38:e0:da:f2:cd:fc:34:cd:2a:8b:95:ad:42:09:73:2a: 70:ad:c2:fe -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM2QkQxMTAvBgNVBAUTKDUzRTJFMTM0NTI0NTdERjIxRUYyNUNCQTNCMjYxMEQw MTJBOTA2RDIwHhcNMjYwMzI1MDEyNjE1WhcNMjYwNDAxMDEyNjE1WjAYMRYwFAYD VQQDEw02OWMzMzliNy0zZTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtAhFbPtlMvpYrcb3rafPogwde0oE2Iz/w+n0kmBlWCSNO3u8FJZjcaWvVADL 019q36Rlxihxog8SQ4PJ8q9EDC5WFGbyAP1dYgda88ipTCgA/3WISEX7xwLniqZF bUXBqfJO0OXVDCngImuaJugV6JDKQT2WKvfNXYWMg80P5H79b8YLhojKNJEycwcg tVH9v/neynyZxYglbpH7LenjkFY6ELjqTTy8hWYHmWDue/74QlDffCyoktur86ga T5f8SMvQXoVN9zBuRfti831maaCkXg4ZdT4kYI0nC9LwPacckmvEds9GT5594Rpq +y6PQhbXoevzrk0bHRo4dJd9BQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIFJs6z2 eZdxJ641inuafSL+W08mMB8GA1UdIwQYMBaAFFPi4TRSRX3yHvJcujsmENASqQbS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzZCRC8yMkM2MjFBODZF RTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZmSWU4bHk2T3lZUTBCS3BC dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtTGhORkpGZmZJZThseTZPeVlRMEJLcEJ0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzZCRC8yMkM2MjFBODZFRTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZm SWU4bHk2T3lZUTBCS3BCdEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiOwv1ztezc9DjvjjudK0LpqwU+JwTCv8ikZjI+LzmuESKXcp+4kGMi0AuT1D N/r5uA/Q17ID/F2YopdqgwtS9ofu+teDFMgxqocsraHCFykl2WMiKtSaACklVtz2 a20MEJu0hvrxUxVvUfZevIf2wlnK/tjL6Vv79+/X0iY07DnuFpgCXOzWbZabIqGC a09XEIaFMv+LuvhjxJhuMwlLHotl1RVIyC5Wt5tml2Mk7S6EEl8a/5lJpWVZW435 T8q9qqy8ySYOC6ozAl4k5X0aeEADXvCgctJ5chfNbi0PlRcvwvH08ry+nq920pg4 4Nryzfw0zSqLla1CCXMqcK3C/g== -----END CERTIFICATE-----Generated at Thu Mar 26 02:32:36 2026 by rpki-client