$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft File: uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft (raw, json) Hash identifier: v2wOH8oLkqIVRvV0dQnFIkiCyRm43cY1KntL5Gpb7ro= Subject key identifier: B0:55:4F:CF:2D:64:DB:EF:F7:62:A4:E0:A3:01:D8:30:B2:85:BD:0B Authority key identifier: B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 Certificate issuer: /CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Certificate serial: 04AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft Manifest number: 04A7 Signing time: Tue 24 Mar 2026 23:37:25 +0000 Manifest this update: Tue 24 Mar 2026 23:37:24 +0000 Manifest next update: Tue 31 Mar 2026 23:37:24 +0000 Files and hashes: 1: uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl (hash: 3jYs/yEi7okamltt1sak3joXpFAt4dMBwl9npDSoNxM=) 2: 5AFB85086EC411ECB8E7492BC4F9AE02.roa (hash: OpFOQ/Qs7pTcBKY6eGcg4iGZBHwfeCp3YAy8fBKvp0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:37:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1198 (0x4ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195A3D, serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Validity Not Before: Mar 24 23:37:24 2026 GMT Not After : Mar 31 23:37:24 2026 GMT Subject: CN=69c32035-e085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:8e:32:0f:19:76:49:8c:9b:71:57:64:39:94: 0f:f6:17:6e:d9:9f:6d:1f:60:31:3a:bf:f6:ba:a3: 66:f7:53:e4:53:bd:0e:83:a1:22:94:c7:c6:3c:bf: 8d:e3:6a:6a:09:57:6a:7a:62:40:2c:ce:cb:cb:17: 23:5b:67:74:3a:96:c2:4e:a9:96:40:1c:8f:ff:66: 47:50:08:ed:48:ff:06:81:ea:a7:bd:63:71:fc:c4: 04:f9:ea:55:36:a1:67:aa:1d:7f:68:99:8c:57:37: 3f:6b:e6:5a:1d:27:39:b8:9a:60:b0:6f:22:ce:c1: fb:cd:21:92:a2:67:dd:f1:75:6d:f3:38:36:0f:7b: 04:7a:bc:13:0e:c6:6f:1e:ea:f7:ff:83:fe:49:59: bb:6f:06:f0:45:bc:e1:13:fb:d4:53:f8:af:c2:a9: 21:a5:96:c9:36:7a:27:66:25:db:29:75:cb:33:ad: 7e:48:a5:a6:40:32:9e:7b:36:82:8d:64:a9:1f:27: eb:c6:b2:8a:55:27:06:86:33:4d:93:09:d7:51:95: 19:11:8e:f8:12:41:4b:28:94:61:c3:e5:ad:67:10: 4d:db:80:53:ba:7a:65:fb:d3:ef:cb:83:6d:40:8b: 58:f3:5d:7f:93:0e:51:ff:8d:83:f8:99:19:f3:35: 63:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:55:4F:CF:2D:64:DB:EF:F7:62:A4:E0:A3:01:D8:30:B2:85:BD:0B X509v3 Authority Key Identifier: keyid:B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:e1:91:02:00:58:a5:1d:3d:a8:81:f5:07:0f:32:4e:a5:f8: 1e:b1:4d:f7:db:29:40:36:df:7f:09:51:30:f5:e0:02:80:43: 71:f3:50:94:eb:91:65:81:b9:66:74:df:b7:2f:20:c3:69:18: 03:fa:a0:89:80:a5:c4:33:b1:3e:41:f7:c9:91:d5:4f:d6:0e: 1d:4d:05:25:41:7c:2f:c7:0b:e8:a8:5c:86:a5:f7:7f:f8:5f: 17:f8:db:3f:8a:fc:64:1c:7a:2c:60:79:3f:fd:50:06:cf:41: 76:40:b0:2d:67:5c:09:96:88:d2:2a:0b:a7:e2:df:3c:fd:55: 3c:af:45:8b:ec:67:42:16:6d:5b:13:c8:3f:51:12:a9:4c:7e: 76:e0:43:ae:c4:64:00:57:b8:47:3c:e2:2e:ea:16:65:ec:2d: 49:c6:cf:3c:49:b5:b0:83:c1:68:bf:e3:c8:f5:ae:fc:18:77: 49:5f:5f:a1:6b:75:50:ff:8f:ad:9e:0f:48:bf:81:03:f9:07: 7a:b4:b5:1a:67:38:e4:bd:2b:62:13:72:fe:f2:4c:78:ea:76: 4c:f0:9a:13:de:d5:a0:45:e6:5d:e6:00:f5:9b:8a:c7:20:ec: 81:9d:f9:69:99:ff:92:06:4b:a2:22:ab:ca:e5:f3:6d:a6:01: 4a:ba:5b:d0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBM0QxMTAvBgNVBAUTKEI4MjI1RjFFQjg2NzY2NDdDMzU5REJDMTEwQkZFRURF QjQ0RkQ1RTgwHhcNMjYwMzI0MjMzNzI0WhcNMjYwMzMxMjMzNzI0WjAYMRYwFAYD VQQDEw02OWMzMjAzNS1lMDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Y4yDxl2SYybcVdkOZQP9hdu2Z9tH2AxOr/2uqNm91PkU70Og6EilMfGPL+N 42pqCVdqemJALM7LyxcjW2d0OpbCTqmWQByP/2ZHUAjtSP8GgeqnvWNx/MQE+epV NqFnqh1/aJmMVzc/a+ZaHSc5uJpgsG8izsH7zSGSomfd8XVt8zg2D3sEerwTDsZv Hur3/4P+SVm7bwbwRbzhE/vUU/ivwqkhpZbJNnonZiXbKXXLM61+SKWmQDKeezaC jWSpHyfrxrKKVScGhjNNkwnXUZUZEY74EkFLKJRhw+WtZxBN24BTunpl+9Pvy4Nt QItY811/kw5R/42D+JkZ8zVjYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLBVT88t ZNvv92Kk4KMB2DCyhb0LMB8GA1UdIwQYMBaAFLgiXx64Z2ZHw1nbwRC/7t60T9Xo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUEzRC82OUVGQ0REMjZF QzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblprZkRXZHZCRUxfdTNyUlAx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VDSmZIcmhuWmtmRFdkdkJFTF91M3JSUDFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUEzRC82OUVGQ0REMjZFQzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblpr ZkRXZHZCRUxfdTNyUlAxZWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiOGRAgBYpR09qIH1Bw8yTqX4HrFN99spQDbffwlRMPXgAoBDcfNQlOuRZYG5 ZnTfty8gw2kYA/qgiYClxDOxPkH3yZHVT9YOHU0FJUF8L8cL6KhchqX3f/hfF/jb P4r8ZBx6LGB5P/1QBs9BdkCwLWdcCZaI0ioLp+LfPP1VPK9Fi+xnQhZtWxPIP1ES qUx+duBDrsRkAFe4RzziLuoWZewtScbPPEm1sIPBaL/jyPWu/Bh3SV9foWt1UP+P rZ4PSL+BA/kHerS1Gmc45L0rYhNy/vJMeOp2TPCaE97VoEXmXeYA9ZuKxyDsgZ35 aZn/kgZLoiKryuXzbaYBSrpb0A== -----END CERTIFICATE-----Generated at Thu Mar 26 04:18:06 2026 by rpki-client