$ rpki-client -vvf rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.mft File: xUMJ3BErZYYnvTagMHLnXQYDZNM.mft (raw, json) Hash identifier: FDILGQvvB3g79DqcJmHlgOIHU0vh6vxb60JE9DLZ7/8= Subject key identifier: 2E:04:EE:A8:75:79:3A:E2:BC:32:50:38:71:8F:2E:E6:C7:C4:08:F3 Authority key identifier: C5:43:09:DC:11:2B:65:86:27:BD:36:A0:30:72:E7:5D:06:03:64:D3 Certificate issuer: /CN=A9199836/serialNumber=C54309DC112B658627BD36A03072E75D060364D3 Certificate serial: 053F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUMJ3BErZYYnvTagMHLnXQYDZNM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.mft Manifest number: 0538 Signing time: Tue 24 Mar 2026 23:11:00 +0000 Manifest this update: Tue 24 Mar 2026 23:11:00 +0000 Manifest next update: Tue 31 Mar 2026 23:11:00 +0000 Files and hashes: 1: xUMJ3BErZYYnvTagMHLnXQYDZNM.crl (hash: gsbBikIf4DAQJXd3nKFJI25fE3Dlx35L7YAOSObWYHM=) 2: 029F318A366F11ECA773E263C4F9AE02.roa (hash: Wk0rJSEhmI1m146JBYCWjAtB11PfAVxg4es4P8RFH/c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.crl rsync://rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUMJ3BErZYYnvTagMHLnXQYDZNM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1343 (0x53f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199836, serialNumber=C54309DC112B658627BD36A03072E75D060364D3 Validity Not Before: Mar 24 23:11:00 2026 GMT Not After : Mar 31 23:11:00 2026 GMT Subject: CN=69c31a04-da90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:72:15:78:4b:74:72:9f:0e:b2:e1:cf:41:34: b5:e1:d0:5e:6a:48:d0:52:ed:17:96:d4:e7:6c:5b: e2:de:74:79:99:ea:9f:bb:0b:26:bb:fe:3a:5d:55: 4b:f2:5d:0f:e6:92:27:26:03:42:17:64:0d:dc:6f: 4d:0f:58:b3:15:b1:46:e7:0d:50:f3:3f:03:e5:d5: b2:4e:e3:47:7c:ab:a7:07:18:94:b1:bb:ed:26:c1: fa:13:ed:36:47:a0:6d:2f:5b:2c:87:a3:a2:99:7f: ca:59:44:82:c9:83:59:53:8a:b0:9d:a9:07:9c:fc: eb:ec:71:3c:38:e6:ca:ff:f2:ee:52:c2:67:e2:5e: 82:58:95:b7:1f:01:35:54:a4:e2:1c:ed:fc:d9:e1: 4c:44:65:60:2e:c8:a7:e6:9a:3a:f9:d9:34:a9:86: 84:58:5f:c7:1d:50:9a:ef:ce:92:8f:cf:71:c8:07: bd:95:8c:7b:fd:65:b9:6d:4e:01:61:a9:e2:2a:8d: 87:3a:45:43:05:52:4e:ff:2f:cf:bd:9d:13:d0:4a: 67:94:6e:22:01:6c:b7:68:ce:f3:a2:9d:ac:80:4a: 21:56:79:26:b3:06:15:0b:fa:3a:83:81:58:c5:69: f4:69:f8:91:98:5b:f7:11:80:f4:4d:e9:9f:da:8d: 08:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:04:EE:A8:75:79:3A:E2:BC:32:50:38:71:8F:2E:E6:C7:C4:08:F3 X509v3 Authority Key Identifier: keyid:C5:43:09:DC:11:2B:65:86:27:BD:36:A0:30:72:E7:5D:06:03:64:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUMJ3BErZYYnvTagMHLnXQYDZNM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:20:4c:2c:68:e5:9b:97:63:e1:3d:9b:77:84:7a:aa:27:11: d8:c3:2a:7b:d7:e1:94:53:79:58:87:39:af:01:2f:09:ca:83: f9:ac:4b:c5:0d:bc:4a:43:85:f2:d7:95:8f:5a:0c:14:b0:ef: 83:54:82:e6:48:ab:cd:d4:06:8e:0f:a2:29:8d:59:08:e8:02: ab:89:59:ea:5e:fe:b9:76:1e:5e:2a:02:d2:e6:55:79:2c:aa: 21:86:ac:ae:9b:02:95:63:92:d4:77:c6:63:5b:20:04:9a:1d: c9:ee:35:dd:ff:b3:a6:cc:96:68:68:fb:bc:7c:3a:51:2b:ed: 36:b5:a1:dc:ef:35:45:c7:63:a1:0f:00:3c:d7:06:57:1a:2c: 67:f6:58:26:2d:4d:d8:a6:e2:d0:cc:cf:b1:9b:a9:68:24:4b: bc:c3:7c:10:71:42:96:dc:f9:d8:26:9f:b3:68:25:af:47:64: 1b:57:35:89:d5:f2:21:35:fc:cd:4a:12:46:79:93:60:64:1e: 49:90:0e:fc:77:11:54:83:40:a6:d3:e8:64:b4:53:bd:5d:cf: 7d:e8:ae:52:d4:33:63:bc:2e:77:bd:09:e8:09:d7:51:bb:00: 6d:f2:17:dd:c4:73:1c:19:7b:cd:84:cf:c2:45:c9:5b:f6:b8: b5:4d:17:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4MzYxMTAvBgNVBAUTKEM1NDMwOURDMTEyQjY1ODYyN0JEMzZBMDMwNzJFNzVE MDYwMzY0RDMwHhcNMjYwMzI0MjMxMTAwWhcNMjYwMzMxMjMxMTAwWjAYMRYwFAYD VQQDEw02OWMzMWEwNC1kYTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2HIVeEt0cp8OsuHPQTS14dBeakjQUu0XltTnbFvi3nR5meqfuwsmu/46XVVL 8l0P5pInJgNCF2QN3G9ND1izFbFG5w1Q8z8D5dWyTuNHfKunBxiUsbvtJsH6E+02 R6BtL1ssh6OimX/KWUSCyYNZU4qwnakHnPzr7HE8OObK//LuUsJn4l6CWJW3HwE1 VKTiHO382eFMRGVgLsin5po6+dk0qYaEWF/HHVCa786Sj89xyAe9lYx7/WW5bU4B YaniKo2HOkVDBVJO/y/PvZ0T0EpnlG4iAWy3aM7zop2sgEohVnkmswYVC/o6g4FY xWn0afiRmFv3EYD0Temf2o0I1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC4E7qh1 eTrivDJQOHGPLubHxAjzMB8GA1UdIwQYMBaAFMVDCdwRK2WGJ702oDBy510GA2TT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTgzNi8yOTM2RkZCMjM2 MkUxMUVDODkwOUU4NkZDNEY5QUUwMi94VU1KM0JFclpZWW52VGFnTUhMblhRWURa Tk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hVTUozQkVyWllZbnZUYWdNSExuWFFZRFpOTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTgzNi8yOTM2RkZCMjM2MkUxMUVDODkwOUU4NkZDNEY5QUUwMi94VU1KM0JFclpZ WW52VGFnTUhMblhRWURaTk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKSBMLGjlm5dj4T2bd4R6qicR2MMqe9fhlFN5WIc5rwEvCcqD+axLxQ28SkOF 8teVj1oMFLDvg1SC5kirzdQGjg+iKY1ZCOgCq4lZ6l7+uXYeXioC0uZVeSyqIYas rpsClWOS1HfGY1sgBJodye413f+zpsyWaGj7vHw6USvtNrWh3O81RcdjoQ8APNcG VxosZ/ZYJi1N2Kbi0MzPsZupaCRLvMN8EHFCltz52Cafs2glr0dkG1c1idXyITX8 zUoSRnmTYGQeSZAO/HcRVINAptPoZLRTvV3PfeiuUtQzY7wud70J6AnXUbsAbfIX 3cRzHBl7zYTPwkXJW/a4tU0XmA== -----END CERTIFICATE-----Generated at Thu Mar 26 07:16:08 2026 by rpki-client