$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft File: U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft (raw, json) Hash identifier: 8K9kjOGtQXHKGG5p36a8fadXZCaWC6l97k/cP/o9beo= Subject key identifier: 66:DB:51:58:D4:32:3E:DC:93:1D:F0:33:EA:58:2B:99:A8:0C:71:E4 Authority key identifier: 53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 Certificate issuer: /CN=A9187325/serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft Manifest number: 0101 Signing time: Wed 25 Mar 2026 05:25:43 +0000 Manifest this update: Wed 25 Mar 2026 05:25:43 +0000 Manifest next update: Wed 01 Apr 2026 05:25:43 +0000 Files and hashes: 1: U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl (hash: d65Gu2Xph2o15NOz4abIhIAww6JnA6ocLBc0T7XpVQM=) 2: 30BF0192D5B411F0BA49041CC4F9AE02.roa (hash: 7Xq/xrlaF1i6pCbhVMnZT3OZ5U9fhM3Ebdid2BeEwH8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Validity Not Before: Mar 25 05:25:43 2026 GMT Not After : Apr 1 05:25:43 2026 GMT Subject: CN=69c371d7-d3e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d4:24:d7:b5:9f:59:72:1e:d1:de:ce:de:19: 1b:28:ef:7a:7a:2d:5c:8d:d2:30:49:5d:0d:27:8a: bf:eb:7e:b1:1b:63:e7:b3:f7:c2:ab:bd:d8:d4:a1: 25:db:77:2d:5e:c1:74:f4:9c:cb:bd:0c:90:14:bc: 27:af:f1:a9:f7:e8:af:7a:89:c7:a9:01:ec:5a:c1: 87:6e:53:d6:16:83:05:67:34:aa:4f:ce:ab:ef:87: 38:8e:fd:f2:f0:16:39:5a:f1:78:05:3a:d4:c1:bf: 78:88:31:61:7a:69:e5:34:04:f7:74:61:e6:91:df: 26:2c:aa:96:f8:ca:b8:74:57:13:a5:7c:b5:dd:57: 52:2b:09:98:4b:a4:ba:af:80:1f:49:5a:6a:17:fc: 47:60:15:2e:e4:cb:e6:bc:e1:b4:33:4a:9f:50:72: 75:eb:c7:87:c3:e6:64:af:af:6b:a3:3e:42:0f:5a: a0:db:d3:cc:73:de:39:e8:53:4e:c2:57:1e:85:be: 2b:a9:4e:60:94:3e:8e:6e:13:b1:47:16:23:14:8c: 1c:0f:b5:5e:48:d2:70:02:60:be:8e:e4:18:18:ff: 39:e5:3b:78:82:a5:42:9b:57:c7:17:52:1f:7f:ea: 06:2e:95:e7:b0:0a:6f:db:6b:64:e0:4e:e8:9c:ff: 52:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:DB:51:58:D4:32:3E:DC:93:1D:F0:33:EA:58:2B:99:A8:0C:71:E4 X509v3 Authority Key Identifier: keyid:53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:e7:d7:2b:af:2e:a3:ac:ca:1c:b5:9a:f4:86:29:9a:f5:2b: a3:36:d0:66:69:1d:5e:0f:95:72:ca:99:b7:12:23:f5:f8:c6: 79:c4:90:9d:9e:c6:84:f8:17:d9:22:66:32:66:b6:6c:ca:98: 94:99:ee:6b:d2:e2:74:5f:fc:ae:4c:12:a7:6f:50:55:a9:a9: ab:b5:ac:9b:bf:64:60:51:19:ab:f0:de:e5:ce:96:3a:aa:8b: 02:58:66:54:87:7a:ec:28:ce:cb:d9:a6:85:09:53:07:3e:ca: 99:fa:5f:b2:da:e0:45:d2:bf:20:8a:15:9a:e0:2e:9c:32:4d: a7:bb:ae:5e:eb:d1:7a:3b:92:af:40:ad:ab:19:c4:33:94:73: e3:b1:b3:f3:03:71:5e:bf:06:f5:dc:a6:19:5e:99:d6:30:c6: c0:a6:7b:37:ae:25:0f:c3:dd:74:3c:81:8a:16:61:19:98:5c: 50:28:bc:c6:27:0d:1d:d4:c2:e8:92:ea:ea:a9:6a:88:d5:a5: 28:3f:6c:bf:d1:ad:cc:83:a0:f1:29:8e:eb:b8:88:01:ea:ab: ae:b4:e8:29:f2:61:bc:3e:09:a5:20:71:76:3b:65:62:aa:66: e2:46:c6:6f:7a:c0:c4:be:9c:76:59:07:d8:14:25:4d:c6:7c: 2b:32:b5:f9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczMjUxMTAvBgNVBAUTKDUzQzA4QkRBMDRCQzA1MzIyMUVCMjczQUEyMTVDQ0Q5 NUMwMEMzOTIwHhcNMjYwMzI1MDUyNTQzWhcNMjYwNDAxMDUyNTQzWjAYMRYwFAYD VQQDEw02OWMzNzFkNy1kM2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9Qk17WfWXIe0d7O3hkbKO96ei1cjdIwSV0NJ4q/636xG2Pns/fCq73Y1KEl 23ctXsF09JzLvQyQFLwnr/Gp9+iveonHqQHsWsGHblPWFoMFZzSqT86r74c4jv3y 8BY5WvF4BTrUwb94iDFhemnlNAT3dGHmkd8mLKqW+Mq4dFcTpXy13VdSKwmYS6S6 r4AfSVpqF/xHYBUu5MvmvOG0M0qfUHJ168eHw+Zkr69roz5CD1qg29PMc9456FNO wlcehb4rqU5glD6ObhOxRxYjFIwcD7VeSNJwAmC+juQYGP855Tt4gqVCm1fHF1If f+oGLpXnsApv22tk4E7onP9SeQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGbbUVjU Mj7ckx3wM+pYK5moDHHkMB8GA1UdIwQYMBaAFFPAi9oEvAUyIesnOqIVzNlcAMOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzMyNS84MzM4QzRENkFB RTkxMUVGQjcyMUMyNURDNEY5QUUwMi9VOENMMmdTOEJUSWg2eWM2b2hYTTJWd0F3 NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4Q0wyZ1M4QlRJaDZ5YzZvaFhNMlZ3QXc1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzMyNS84MzM4QzRENkFBRTkxMUVGQjcyMUMyNURDNEY5QUUwMi9VOENMMmdTOEJU SWg2eWM2b2hYTTJWd0F3NUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAw+fXK68uo6zKHLWa9IYpmvUrozbQZmkdXg+VcsqZtxIj9fjGecSQnZ7GhPgX 2SJmMma2bMqYlJnua9LidF/8rkwSp29QVampq7Wsm79kYFEZq/De5c6WOqqLAlhm VId67CjOy9mmhQlTBz7KmfpfstrgRdK/IIoVmuAunDJNp7uuXuvRejuSr0CtqxnE M5Rz47Gz8wNxXr8G9dymGV6Z1jDGwKZ7N64lD8PddDyBihZhGZhcUCi8xicNHdTC 6JLq6qlqiNWlKD9sv9GtzIOg8SmO67iIAeqrrrToKfJhvD4JpSBxdjtlYqpm4kbG b3rAxL6cdlkH2BQlTcZ8KzK1+Q== -----END CERTIFICATE-----Generated at Thu Mar 26 00:36:05 2026 by rpki-client