$ rpki-client -vvf rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft File: 0UdMHaQ5s05IfCjCRynmh-CUfXM.mft (raw, json) Hash identifier: bL+4Wd8SG6NB//SOJzloESK69m9tGslIWZU8rwq0I58= Subject key identifier: AF:A4:FC:7A:5D:6B:AF:91:8D:99:DC:A7:D6:51:C3:DD:E5:85:64:7B Authority key identifier: D1:47:4C:1D:A4:39:B3:4E:48:7C:28:C2:47:29:E6:87:E0:94:7D:73 Certificate issuer: /CN=A91840A8/serialNumber=D1474C1DA439B34E487C28C24729E687E0947D73 Certificate serial: 06E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft Manifest number: 06C6 Signing time: Tue 24 Mar 2026 22:06:03 +0000 Manifest this update: Tue 24 Mar 2026 22:06:02 +0000 Manifest next update: Tue 31 Mar 2026 22:06:02 +0000 Files and hashes: 1: 0UdMHaQ5s05IfCjCRynmh-CUfXM.crl (hash: UWRnkNW9F8ZYviiVUWZ+Ry62jAoXMTdEBfIjrAp4C9c=) 2: AB4B141CA24211ED92C4107BC4F9AE02.roa (hash: UEUSncbvcRYXE+6AzGdqUvKwJ/u7rXG3RrB+0He5Cnw=) 3: DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa (hash: jX0r26D7eTQAmi/KLRW0k/yca+QffQLV4qa7gOF/TdI=) 4: E9FB74DCE57711ECBC483554C4F9AE02.roa (hash: L6hABI5kNyEHBTZ/cEYXuskG1lk2aNB/iJZmFIuNgZo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.crl rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:06:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1765 (0x6e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91840A8, serialNumber=D1474C1DA439B34E487C28C24729E687E0947D73 Validity Not Before: Mar 24 22:06:02 2026 GMT Not After : Mar 31 22:06:02 2026 GMT Subject: CN=69c30aca-78e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:bc:34:f5:3b:ae:e5:c2:d1:18:4c:f1:27:1d: 67:b5:25:d1:43:ab:5f:7e:d1:9d:49:b3:38:b3:7a: ae:ed:0f:05:d9:19:f8:b6:b7:29:79:1a:f0:00:b9: 12:08:9a:02:c6:96:32:eb:d4:7f:58:12:c9:6a:b9: aa:3f:59:33:5c:a4:e6:f7:f3:7b:ce:25:37:2f:12: ef:ec:7a:65:dc:0c:72:7a:c5:b5:dd:14:0d:77:da: 3f:69:71:cb:33:56:fa:e2:1d:55:ff:0c:49:85:ba: 4c:9e:0b:61:eb:9d:96:b4:f0:df:09:e5:08:55:f9: e5:8d:77:c9:a1:eb:12:bb:98:af:47:59:78:ba:bf: 3a:8e:a7:c8:43:04:fc:b9:9d:df:53:74:31:13:d4: 47:7c:88:a3:ce:d6:5a:8f:ff:e5:71:6e:cf:bf:e0: 4c:22:a2:70:27:21:96:d9:e9:f0:d8:c4:42:ed:f1: f6:ea:0c:f5:b4:f6:6e:4f:3c:04:8d:76:3d:58:2a: 44:3d:d6:c9:c3:b9:e2:7f:9b:f0:60:f2:57:48:14: d8:7c:df:22:89:6d:e2:a2:15:9b:23:c7:f9:0e:67: 06:74:41:23:c2:75:07:97:38:5e:ff:b4:8f:a8:ae: 23:12:00:fc:6c:8a:ef:f3:e6:4d:bc:94:d1:17:bd: 95:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:A4:FC:7A:5D:6B:AF:91:8D:99:DC:A7:D6:51:C3:DD:E5:85:64:7B X509v3 Authority Key Identifier: keyid:D1:47:4C:1D:A4:39:B3:4E:48:7C:28:C2:47:29:E6:87:E0:94:7D:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:35:67:01:f9:ea:8e:04:93:a2:59:ac:a9:7c:4e:1c:7e:48: 96:4d:76:d9:6a:e5:82:a3:f5:19:d2:dd:07:7b:b2:12:94:ab: 37:9a:ad:a2:23:55:5c:cf:99:8c:a5:be:c0:cd:d9:7e:8d:7b: 0d:e2:7f:a8:af:d8:12:37:c3:bf:8a:2e:cf:67:ea:79:9e:bc: 24:f3:81:43:0d:d5:36:14:b6:3b:6b:34:f4:22:da:c2:3f:cf: 1f:75:33:2b:11:8e:a8:2d:fa:e8:ba:bc:4e:e2:02:f1:93:00: 8d:71:40:5f:5d:da:6e:77:bc:8f:94:4d:5f:ff:50:96:57:65: 52:eb:3d:d8:2a:57:79:61:e5:2d:43:05:54:11:68:a9:a9:3b: af:47:8b:d6:b3:a2:e4:aa:85:10:fc:90:30:e5:12:4e:b4:c4: 58:5e:ed:a0:7e:25:6e:fe:c7:d0:11:38:c7:2e:5e:4a:12:a5: 85:e1:ab:9e:45:ac:3a:0a:9b:be:cc:b0:52:a6:3a:68:10:d0: fe:67:6b:4d:3f:13:eb:dd:5b:a6:d7:00:68:16:16:ad:a7:7d: 60:9c:9f:9b:fb:59:01:60:77:7a:f9:d3:92:7d:7a:17:0e:a2: 74:2a:3d:3b:e8:ee:e3:52:4c:bf:82:44:49:03:9a:e7:48:50: 03:5d:c5:f4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQwQTgxMTAvBgNVBAUTKEQxNDc0QzFEQTQzOUIzNEU0ODdDMjhDMjQ3MjlFNjg3 RTA5NDdENzMwHhcNMjYwMzI0MjIwNjAyWhcNMjYwMzMxMjIwNjAyWjAYMRYwFAYD VQQDEw02OWMzMGFjYS03OGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA17w09Tuu5cLRGEzxJx1ntSXRQ6tfftGdSbM4s3qu7Q8F2Rn4trcpeRrwALkS CJoCxpYy69R/WBLJarmqP1kzXKTm9/N7ziU3LxLv7Hpl3AxyesW13RQNd9o/aXHL M1b64h1V/wxJhbpMngth652WtPDfCeUIVfnljXfJoesSu5ivR1l4ur86jqfIQwT8 uZ3fU3QxE9RHfIijztZaj//lcW7Pv+BMIqJwJyGW2enw2MRC7fH26gz1tPZuTzwE jXY9WCpEPdbJw7nif5vwYPJXSBTYfN8iiW3iohWbI8f5DmcGdEEjwnUHlzhe/7SP qK4jEgD8bIrv8+ZNvJTRF72VEQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK+k/Hpd a6+RjZncp9ZRw93lhWR7MB8GA1UdIwQYMBaAFNFHTB2kObNOSHwowkcp5ofglH1z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDBBOC83MEMyRUI3QUEx OTYxMUVCODIwMENGMDlDNEY5QUUwMi8wVWRNSGFRNXMwNUlmQ2pDUnlubWgtQ1Vm WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBVZE1IYVE1czA1SWZDakNSeW5taC1DVWZYTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDBBOC83MEMyRUI3QUExOTYxMUVCODIwMENGMDlDNEY5QUUwMi8wVWRNSGFRNXMw NUlmQ2pDUnlubWgtQ1VmWE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApTVnAfnqjgSTolmsqXxOHH5Ilk122WrlgqP1GdLdB3uyEpSrN5qtoiNVXM+Z jKW+wM3Zfo17DeJ/qK/YEjfDv4ouz2fqeZ68JPOBQw3VNhS2O2s09CLawj/PH3Uz KxGOqC366Lq8TuIC8ZMAjXFAX13abne8j5RNX/9QlldlUus92CpXeWHlLUMFVBFo qak7r0eL1rOi5KqFEPyQMOUSTrTEWF7toH4lbv7H0BE4xy5eShKlheGrnkWsOgqb vsywUqY6aBDQ/mdrTT8T691bptcAaBYWrad9YJyfm/tZAWB3evnTkn16Fw6idCo9 O+ju41JMv4JESQOa50hQA13F9A== -----END CERTIFICATE-----Generated at Thu Mar 26 09:50:40 2026 by rpki-client