$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft File: U2v43c6AJmc3j0e9SVSpC3xwCcE.mft (raw, json) Hash identifier: RT4WnX03zuuuFZPErzjRNWXDCYxFG1s9yTFHGMynzyI= Subject key identifier: 5D:21:F4:A6:DF:A9:6B:D4:C1:41:6F:D9:D2:8D:97:A5:14:7F:28:C7 Authority key identifier: 53:6B:F8:DD:CE:80:26:67:37:8F:47:BD:49:54:A9:0B:7C:70:09:C1 Certificate issuer: /CN=A91A5849/serialNumber=536BF8DDCE802667378F47BD4954A90B7C7009C1 Certificate serial: 0179 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft Manifest number: 016E Signing time: Wed 25 Mar 2026 04:01:49 +0000 Manifest this update: Wed 25 Mar 2026 04:01:49 +0000 Manifest next update: Wed 01 Apr 2026 04:01:49 +0000 Files and hashes: 1: U2v43c6AJmc3j0e9SVSpC3xwCcE.crl (hash: AfwZspXA0tGbrPpRlK+rDHJVteNjNdhpHwK9gLUE7ic=) 2: FA3B5DCAF7A011EEBAC1E03BC4F9AE02.roa (hash: 1Lk248Kt03Gu0ojNjhSbpSSO373t7dM1LsyR+Uq6bxc=) 3: D8346320F7A011EE8BE8843BC4F9AE02.roa (hash: pZOaDUH0nfBeAf7y7YbUpvrNXJh3luHM6SLLYuxsD14=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.crl rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5849, serialNumber=536BF8DDCE802667378F47BD4954A90B7C7009C1 Validity Not Before: Mar 25 04:01:49 2026 GMT Not After : Apr 1 04:01:49 2026 GMT Subject: CN=69c35e2d-6aa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:08:9d:ae:18:c9:88:79:f4:9f:1f:c4:ee:57: bd:f5:63:5c:9e:10:e3:e4:d8:0f:71:25:6f:fe:a3: c2:fc:2e:83:9e:c1:2a:f6:27:55:01:41:10:a5:a7: 75:b2:87:8e:07:5a:f5:ad:c5:95:29:28:9d:b7:82: 7b:17:1b:d0:b4:39:5e:bb:7f:00:07:7d:20:2e:97: 9e:e8:fa:21:9d:7e:5e:43:f8:0d:c1:d6:6e:11:c8: d2:0f:cf:bc:c1:72:0d:90:ed:f3:d5:23:a7:e5:13: 04:7c:9c:28:72:1d:40:c4:d9:c4:cc:4a:d3:e4:8f: 9b:dd:ce:cd:b0:b7:92:e7:c5:d8:a5:bd:ea:c4:51: 5d:8c:f3:fb:95:f6:30:61:6d:be:e8:b7:05:02:3f: ad:11:57:19:1a:53:91:c3:d9:78:4e:b8:24:3b:fd: 39:72:68:b9:df:c3:2f:0b:00:c7:0c:56:19:6e:92: 6e:40:3d:7b:97:24:32:a2:bc:98:df:3d:25:78:08: ec:bc:19:a2:ec:f8:38:5c:71:07:3b:12:b9:69:61: 8c:e5:f6:96:fe:b9:5f:9b:82:d9:e5:aa:50:44:72: 53:0e:ce:8e:6f:05:58:80:3a:40:5f:51:47:52:65: ae:ac:68:8c:62:40:40:cc:e5:4f:73:8b:5e:07:f3: b8:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:21:F4:A6:DF:A9:6B:D4:C1:41:6F:D9:D2:8D:97:A5:14:7F:28:C7 X509v3 Authority Key Identifier: keyid:53:6B:F8:DD:CE:80:26:67:37:8F:47:BD:49:54:A9:0B:7C:70:09:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:21:7a:8e:e9:b8:9f:80:c5:ed:76:d3:50:67:29:45:09:36: d5:c7:29:b6:52:70:36:59:61:91:d1:fc:fd:7d:19:b2:da:c3: 80:9a:9a:0c:8c:be:b3:4f:8f:b4:63:af:2f:e1:fb:7b:2a:70: 7b:e7:c6:d5:1e:36:f5:11:15:ab:ba:8d:06:9f:90:d9:5d:a4: aa:23:e3:d2:18:af:8d:d6:7b:45:78:87:59:30:37:8d:9a:96: d0:f0:0b:fe:bf:a1:f9:97:ff:04:2a:71:6e:ea:bc:16:c2:db: 1a:2f:d6:7c:cf:82:76:9c:93:91:30:3e:b4:a3:ac:f6:40:2b: f0:61:f3:fb:e0:ac:02:28:2c:dc:26:0d:ee:ca:26:d7:f0:ab: 9d:c0:2e:ee:13:c8:65:4e:55:0a:0e:a7:98:f3:9b:31:1d:0a: 01:64:69:04:a0:51:71:ec:2d:83:47:a1:9a:88:a4:aa:cd:84: 36:cc:39:bf:10:37:e9:96:a4:3f:37:f4:65:fc:e0:71:54:af: 44:cf:53:c0:d2:07:4f:66:d1:ee:ed:7b:ed:61:98:96:30:12: 4e:6b:36:1f:23:85:a8:f2:a5:9d:4d:29:0d:d7:38:3a:00:27: bb:3e:10:f6:27:77:d8:35:ce:75:16:86:21:47:ce:06:e6:68: 5c:40:14:c2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU4NDkxMTAvBgNVBAUTKDUzNkJGOEREQ0U4MDI2NjczNzhGNDdCRDQ5NTRBOTBC N0M3MDA5QzEwHhcNMjYwMzI1MDQwMTQ5WhcNMjYwNDAxMDQwMTQ5WjAYMRYwFAYD VQQDEw02OWMzNWUyZC02YWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzgidrhjJiHn0nx/E7le99WNcnhDj5NgPcSVv/qPC/C6DnsEq9idVAUEQpad1 soeOB1r1rcWVKSidt4J7FxvQtDleu38AB30gLpee6PohnX5eQ/gNwdZuEcjSD8+8 wXINkO3z1SOn5RMEfJwoch1AxNnEzErT5I+b3c7NsLeS58XYpb3qxFFdjPP7lfYw YW2+6LcFAj+tEVcZGlORw9l4TrgkO/05cmi538MvCwDHDFYZbpJuQD17lyQyoryY 3z0leAjsvBmi7Pg4XHEHOxK5aWGM5faW/rlfm4LZ5apQRHJTDs6ObwVYgDpAX1FH UmWurGiMYkBAzOVPc4teB/O4IwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF0h9Kbf qWvUwUFv2dKNl6UUfyjHMB8GA1UdIwQYMBaAFFNr+N3OgCZnN49HvUlUqQt8cAnB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTg0OS9EQkFEMzg0RUY3 OUUxMUVFQTQ1QUFFMkNDNEY5QUUwMi9VMnY0M2M2QUptYzNqMGU5U1ZTcEMzeHdD Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UydjQzYzZBSm1jM2owZTlTVlNwQzN4d0NjRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTg0OS9EQkFEMzg0RUY3OUUxMUVFQTQ1QUFFMkNDNEY5QUUwMi9VMnY0M2M2QUpt YzNqMGU5U1ZTcEMzeHdDY0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUSF6jum4n4DF7XbTUGcpRQk21ccptlJwNllhkdH8/X0ZstrDgJqaDIy+s0+P tGOvL+H7eypwe+fG1R429REVq7qNBp+Q2V2kqiPj0hivjdZ7RXiHWTA3jZqW0PAL /r+h+Zf/BCpxbuq8FsLbGi/WfM+CdpyTkTA+tKOs9kAr8GHz++CsAigs3CYN7som 1/CrncAu7hPIZU5VCg6nmPObMR0KAWRpBKBRcewtg0ehmoikqs2ENsw5vxA36Zak Pzf0ZfzgcVSvRM9TwNIHT2bR7u177WGYljASTms2HyOFqPKlnU0pDdc4OgAnuz4Q 9id32DXOdRaGIUfOBuZoXEAUwg== -----END CERTIFICATE-----Generated at Thu Mar 26 04:57:50 2026 by rpki-client