$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft File: U05nXomsmsMC9TCid1KM-Bo8UwY.mft (raw, json) Hash identifier: z9xCnFmyvOKARQHcxUFy9L9XLvF63iYoOBPlwPBPGSk= Subject key identifier: 21:2B:4A:2C:3E:40:8D:9B:6E:DA:20:A4:4E:8D:82:57:C8:D7:37:B3 Authority key identifier: 53:4E:67:5E:89:AC:9A:C3:02:F5:30:A2:77:52:8C:F8:1A:3C:53:06 Certificate issuer: /CN=A91CC1EB/serialNumber=534E675E89AC9AC302F530A277528CF81A3C5306 Certificate serial: 0649 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft Manifest number: 0633 Signing time: Thu 26 Mar 2026 22:40:49 +0000 Manifest this update: Thu 26 Mar 2026 22:40:49 +0000 Manifest next update: Thu 02 Apr 2026 22:40:49 +0000 Files and hashes: 1: U05nXomsmsMC9TCid1KM-Bo8UwY.crl (hash: u64+aKblQXZwo417jtgRCaYde8r6H4UnMjAiiT66ycE=) 2: 5C0006B4E1B711EEA6D7F740C4F9AE02.roa (hash: JS+BkuUeBbAKOEIjpvSfqdX1PU3qVq3t7HBFZXPnHlc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.crl rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 22:40:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1609 (0x649) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1EB, serialNumber=534E675E89AC9AC302F530A277528CF81A3C5306 Validity Not Before: Mar 26 22:40:49 2026 GMT Not After : Apr 2 22:40:49 2026 GMT Subject: CN=69c5b5f1-58ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d7:2a:77:47:ba:a7:c0:a8:8c:77:ae:b5:8e: 3f:ac:3e:9a:98:d1:df:21:c7:0f:b6:3c:60:6d:f2: 3d:6e:66:89:e1:15:82:ae:58:9f:b8:70:6b:0d:fe: c1:64:c5:54:96:ec:b5:97:77:ac:56:da:4f:32:91: e8:a8:cc:43:4f:45:25:62:92:c3:7c:76:75:68:6d: 98:98:ee:b1:02:99:c6:20:2e:5b:4a:1f:86:fe:03: e8:7b:3c:33:74:b1:59:c8:43:2f:ba:66:46:45:69: 03:70:7d:62:1c:1f:c4:52:63:be:7d:cd:cd:25:a4: 52:41:6c:3c:1d:5b:d3:c6:b5:eb:ad:8a:8b:43:fe: fc:c9:0f:7a:47:4c:1a:9e:47:fe:3c:cd:33:67:2d: a8:b4:ed:a5:d4:dd:14:ea:4e:07:25:bc:c6:2a:ab: 48:8c:03:9b:c9:45:79:fa:18:a8:dc:e2:2d:0c:2b: d4:c0:da:1c:66:e1:a2:01:52:fb:60:32:7e:83:9f: 7d:8f:de:af:9d:f9:3a:75:98:ab:84:8b:7e:b9:0f: d8:6c:b3:e1:d0:b1:ee:9a:b7:5c:43:63:ff:a2:be: 96:1c:ef:6f:53:ff:ee:ad:9b:51:9f:09:0a:c2:74: e0:eb:13:ac:18:bf:b5:51:69:24:9b:ae:4c:a0:67: a1:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:2B:4A:2C:3E:40:8D:9B:6E:DA:20:A4:4E:8D:82:57:C8:D7:37:B3 X509v3 Authority Key Identifier: keyid:53:4E:67:5E:89:AC:9A:C3:02:F5:30:A2:77:52:8C:F8:1A:3C:53:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:33:ef:99:70:13:f0:30:d3:d1:f2:5d:21:2a:a0:da:32:7b: 7a:d1:64:0e:eb:4e:9f:ce:a7:32:a6:c3:bb:34:b8:d0:5d:f7: 3c:15:70:5c:6b:ac:e3:01:e7:12:51:7a:18:f1:95:4f:39:02: 17:77:e5:73:5e:f6:71:5a:bd:a2:c3:3c:a2:08:57:99:c1:f1: b2:1d:64:46:fb:f5:24:73:7d:43:42:29:f3:55:d8:ee:df:6a: 12:ea:11:5c:96:84:59:d7:68:4b:1c:bf:75:cb:03:bc:29:c3: d7:a1:c8:5c:65:58:e7:7a:6c:ae:97:7c:fd:ae:36:d3:32:37: 2f:49:d8:b4:b0:93:ce:cb:31:3f:aa:c3:a0:d3:81:26:11:b5: f3:3d:2d:ee:fc:b6:c8:8c:22:b9:db:4b:79:03:f7:e1:da:87: 92:19:21:68:0e:bf:ee:55:fe:bc:5b:1b:ce:28:20:17:6b:7b: 52:43:4e:fe:98:4a:b3:48:d8:19:17:d7:52:a9:1e:b3:f3:d5: d4:7e:6f:ed:ab:52:97:9e:4e:79:2b:0e:8c:22:2b:be:97:c0: 3e:2b:f6:15:ea:96:69:ff:e8:2d:14:4c:bb:aa:5d:4a:c3:6c: fe:19:cb:7f:9d:c5:91:61:62:06:6c:ba:ba:40:7f:2a:9f:03: b0:00:61:24 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxRUIxMTAvBgNVBAUTKDUzNEU2NzVFODlBQzlBQzMwMkY1MzBBMjc3NTI4Q0Y4 MUEzQzUzMDYwHhcNMjYwMzI2MjI0MDQ5WhcNMjYwNDAyMjI0MDQ5WjAYMRYwFAYD VQQDEw02OWM1YjVmMS01OGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtcqd0e6p8CojHeutY4/rD6amNHfIccPtjxgbfI9bmaJ4RWCrlifuHBrDf7B ZMVUluy1l3esVtpPMpHoqMxDT0UlYpLDfHZ1aG2YmO6xApnGIC5bSh+G/gPoezwz dLFZyEMvumZGRWkDcH1iHB/EUmO+fc3NJaRSQWw8HVvTxrXrrYqLQ/78yQ96R0wa nkf+PM0zZy2otO2l1N0U6k4HJbzGKqtIjAObyUV5+hio3OItDCvUwNocZuGiAVL7 YDJ+g599j96vnfk6dZirhIt+uQ/YbLPh0LHumrdcQ2P/or6WHO9vU//urZtRnwkK wnTg6xOsGL+1UWkkm65MoGehQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCErSiw+ QI2bbtogpE6NglfI1zezMB8GA1UdIwQYMBaAFFNOZ16JrJrDAvUwondSjPgaPFMG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFFQi9BQzM4NEFBNkRE ODIxMUVCOTU4RDFDMzBDNEY5QUUwMi9VMDVuWG9tc21zTUM5VENpZDFLTS1CbzhV d1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UwNW5Yb21zbXNNQzlUQ2lkMUtNLUJvOFV3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzFFQi9BQzM4NEFBNkREODIxMUVCOTU4RDFDMzBDNEY5QUUwMi9VMDVuWG9tc21z TUM5VENpZDFLTS1CbzhVd1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKTPvmXAT8DDT0fJdISqg2jJ7etFkDutOn86nMqbDuzS40F33PBVwXGus4wHn ElF6GPGVTzkCF3flc172cVq9osM8oghXmcHxsh1kRvv1JHN9Q0Ip81XY7t9qEuoR XJaEWddoSxy/dcsDvCnD16HIXGVY53psrpd8/a420zI3L0nYtLCTzssxP6rDoNOB JhG18z0t7vy2yIwiudtLeQP34dqHkhkhaA6/7lX+vFsbziggF2t7UkNO/phKs0jY GRfXUqkes/PV1H5v7atSl55OeSsOjCIrvpfAPiv2FeqWaf/oLRRMu6pdSsNs/hnL f53FkWFiBmy6ukB/Kp8DsABhJA== -----END CERTIFICATE-----Generated at Sat Mar 28 12:11:53 2026 by rpki-client