$ rpki-client -vvf rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft File: US2b3oE8t7x3GQqE-bGNuOtOIl8.mft (raw, json) Hash identifier: b/up1853wfDnXQwe1625EGhkZqoRFa9M/HdFnk8+8qA= Subject key identifier: B0:00:80:28:98:11:81:06:7E:20:93:82:B1:63:C0:B4:0D:9D:A7:85 Authority key identifier: 51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F Certificate issuer: /CN=A91C956C/serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Certificate serial: 05BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft Manifest number: 05AA Signing time: Tue 24 Mar 2026 22:53:33 +0000 Manifest this update: Tue 24 Mar 2026 22:53:32 +0000 Manifest next update: Tue 31 Mar 2026 22:53:32 +0000 Files and hashes: 1: US2b3oE8t7x3GQqE-bGNuOtOIl8.crl (hash: x7/yenO3+k6A46z3xfBWFUxRtc09SUAQ2kGPedcsXdw=) 2: 2F3F56C42BB411EF8D887F3AC4F9AE02.roa (hash: u3v0nvDMzptv0Bv0++6upWHNRBc+BH3ns60gSH838+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:53:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1468 (0x5bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C956C, serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Validity Not Before: Mar 24 22:53:32 2026 GMT Not After : Mar 31 22:53:32 2026 GMT Subject: CN=69c315ed-50f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:11:f3:7f:cd:7d:56:eb:0f:b0:0c:98:ed:ce: c7:9e:af:0a:bd:0e:dd:7e:23:28:0f:9c:e0:e8:f6: 42:0f:ef:d4:84:79:71:d5:2d:2e:07:01:f5:98:54: 99:7c:4c:ad:79:06:81:37:5f:ba:1e:37:87:66:33: 17:f8:1a:27:14:0e:09:15:dc:8a:9e:a9:0a:cd:30: d2:85:86:76:75:e3:f7:66:f8:51:89:a8:be:62:d0: 2a:cf:78:55:78:96:dc:45:cb:e6:ed:51:82:f9:a6: a8:5b:a7:41:ee:12:8d:79:1e:8d:d6:d9:7b:3e:85: d1:29:e1:7b:c5:9a:ed:22:25:c2:85:70:64:49:68: 32:e3:49:ed:e4:5a:a4:e8:15:a5:3a:55:95:a2:df: fa:bb:64:ba:41:0f:81:41:0c:fe:d0:06:b7:dd:6e: a0:97:16:32:f6:f4:82:3a:62:74:33:7b:97:e1:5e: 20:b3:7e:a4:cf:a9:63:3d:a0:7c:9e:32:f8:4e:aa: dc:ef:9a:ee:b2:9a:db:1f:5f:be:73:70:d7:22:a3: 6b:39:02:73:0f:74:a1:50:e8:31:93:ce:2f:c5:45: da:5f:85:2a:ce:22:a0:a3:2a:b6:ea:d1:7e:56:b9: 1a:d3:f3:9b:ed:2a:ac:e1:22:d9:d7:95:4c:47:a8: 43:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:00:80:28:98:11:81:06:7E:20:93:82:B1:63:C0:B4:0D:9D:A7:85 X509v3 Authority Key Identifier: keyid:51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:c1:51:22:0d:4b:98:a2:d7:8c:8a:31:8a:97:84:eb:c6:ff: f6:f9:7e:45:3d:a3:93:85:55:64:2f:63:65:0b:85:39:c5:d5: 18:e8:7c:6d:5a:36:bf:e4:ba:a5:f6:e0:5a:8f:fa:82:0b:4b: 52:bd:43:99:09:af:68:b5:90:0a:3d:8f:fc:51:ba:50:9c:29: 65:45:89:9a:68:cf:1a:a7:5e:e3:4d:67:cf:17:81:08:b6:45: 20:2a:c4:1c:7e:82:17:0b:59:49:6d:a4:17:ba:d2:67:0a:fe: 70:7e:b5:5e:3e:05:f9:d3:a3:c4:60:ee:5d:71:ad:c0:d1:17: d3:49:28:74:54:7e:47:08:8a:00:e9:8a:b7:87:05:30:6c:ae: e6:e6:64:d2:8f:88:1b:76:3e:fc:6a:a1:a4:7d:f3:f8:71:f9: 96:b6:92:e9:77:a9:ef:96:d0:11:06:39:5f:09:39:aa:57:cd: fc:c0:80:2f:e8:7f:f3:ef:15:ce:79:d8:e3:c8:3c:36:e4:98: 8a:62:ff:72:27:d9:1a:22:d4:23:bc:27:97:a6:50:d6:3b:2d: f5:bf:5a:36:67:f5:62:78:32:79:74:d2:29:b2:36:54:a2:b5: 5d:22:00:57:9e:8c:10:15:07:ab:fe:a1:17:8e:70:39:dd:0c: f0:3f:e2:15 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NkMxMTAvBgNVBAUTKDUxMkQ5QkRFODEzQ0I3QkM3NzE5MEE4NEY5QjE4REI4 RUI0RTIyNUYwHhcNMjYwMzI0MjI1MzMyWhcNMjYwMzMxMjI1MzMyWjAYMRYwFAYD VQQDEw02OWMzMTVlZC01MGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxHzf819VusPsAyY7c7Hnq8KvQ7dfiMoD5zg6PZCD+/UhHlx1S0uBwH1mFSZ fEyteQaBN1+6HjeHZjMX+BonFA4JFdyKnqkKzTDShYZ2deP3ZvhRiai+YtAqz3hV eJbcRcvm7VGC+aaoW6dB7hKNeR6N1tl7PoXRKeF7xZrtIiXChXBkSWgy40nt5Fqk 6BWlOlWVot/6u2S6QQ+BQQz+0Aa33W6glxYy9vSCOmJ0M3uX4V4gs36kz6ljPaB8 njL4Tqrc75rusprbH1++c3DXIqNrOQJzD3ShUOgxk84vxUXaX4UqziKgoyq26tF+ Vrka0/Ob7Sqs4SLZ15VMR6hDfwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLAAgCiY EYEGfiCTgrFjwLQNnaeFMB8GA1UdIwQYMBaAFFEtm96BPLe8dxkKhPmxjbjrTiJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2Qy9GQjMwNUE1RTBD OEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3eDNHUXFFLWJHTnVPdE9J bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTMmIzb0U4dDd4M0dRcUUtYkdOdU90T0lsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2Qy9GQjMwNUE1RTBDOEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3 eDNHUXFFLWJHTnVPdE9JbDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVcFRIg1LmKLXjIoxipeE68b/9vl+RT2jk4VVZC9jZQuFOcXVGOh8bVo2v+S6 pfbgWo/6ggtLUr1DmQmvaLWQCj2P/FG6UJwpZUWJmmjPGqde401nzxeBCLZFICrE HH6CFwtZSW2kF7rSZwr+cH61Xj4F+dOjxGDuXXGtwNEX00kodFR+RwiKAOmKt4cF MGyu5uZk0o+IG3Y+/GqhpH3z+HH5lraS6Xep75bQEQY5Xwk5qlfN/MCAL+h/8+8V znnY48g8NuSYimL/cifZGiLUI7wnl6ZQ1jst9b9aNmf1YngyeXTSKbI2VKK1XSIA V56MEBUHq/6hF45wOd0M8D/iFQ== -----END CERTIFICATE-----Generated at Thu Mar 26 14:43:38 2026 by rpki-client