$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft File: u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft (raw, json) Hash identifier: 2grylFQcNd2XoC3wPalG9Ec+btPXYAfn8LHf0lSU+m0= Subject key identifier: BD:30:72:81:47:4F:07:87:22:CB:E0:CD:97:DB:3F:06:14:4D:C3:77 Authority key identifier: BB:E8:03:FB:75:7E:0C:47:D3:20:45:45:21:87:B7:4A:E2:71:11:F0 Certificate issuer: /CN=A91CEE85/serialNumber=BBE803FB757E0C47D32045452187B74AE27111F0 Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft Manifest number: 0145 Signing time: Wed 25 Mar 2026 04:35:09 +0000 Manifest this update: Wed 25 Mar 2026 04:35:08 +0000 Manifest next update: Wed 01 Apr 2026 04:35:08 +0000 Files and hashes: 1: u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl (hash: WOTwb7axOe6/ATWPWC8jXT7/5sZX4CjxANWRzgT3LgU=) 2: 4D189DD4728311EFA9CECE43C4F9AE02.roa (hash: m3Jo8FCeaELT1I3nJBgJYkzF+itVMTxAlpjgG+4EtAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:35:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEE85, serialNumber=BBE803FB757E0C47D32045452187B74AE27111F0 Validity Not Before: Mar 25 04:35:08 2026 GMT Not After : Apr 1 04:35:08 2026 GMT Subject: CN=69c365fd-b866 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:5b:fb:f3:4d:a3:83:96:12:4b:20:fe:e6:7e: a5:81:5d:16:c3:22:d2:d0:8f:eb:8b:81:8d:45:20: 27:1e:3d:65:26:9f:40:c3:50:ee:fc:38:70:03:b2: 52:c9:bd:67:ab:1d:93:c3:0d:fb:df:41:1a:73:c4: 7c:14:7a:7b:8c:4b:75:b9:4a:30:e0:71:bb:bb:f4: 9d:e2:19:18:de:38:15:08:f9:55:28:fb:2c:eb:03: 14:e6:33:19:28:1b:39:9b:73:7f:af:90:71:ea:de: 25:57:d1:b3:65:a9:0c:56:2e:54:40:f5:cf:f3:b6: cb:37:b6:37:af:62:e7:5f:f2:82:26:1c:b7:0d:32: 17:c7:4b:e3:42:8c:f3:50:64:2b:3c:4a:12:48:3e: 4e:1b:f5:f3:95:2d:3d:66:69:c4:14:d4:8e:93:ee: 46:ea:0f:65:b5:8e:64:88:12:8f:40:27:b2:81:63: 75:34:98:27:9b:52:9d:e6:76:00:6d:3c:39:5b:81: 5a:cc:2b:90:0b:02:58:fd:8c:a5:f8:3d:10:96:09: b5:cd:91:4b:a0:97:9f:e8:92:d3:4e:17:21:02:4f: 88:e1:dc:09:f6:d4:3b:cf:24:b7:75:8a:8f:ba:82: 38:ff:dc:fc:f5:1b:a9:1d:8b:38:73:bc:b9:ee:8c: 66:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:30:72:81:47:4F:07:87:22:CB:E0:CD:97:DB:3F:06:14:4D:C3:77 X509v3 Authority Key Identifier: keyid:BB:E8:03:FB:75:7E:0C:47:D3:20:45:45:21:87:B7:4A:E2:71:11:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:cb:4e:7e:81:6e:77:14:10:14:f8:48:50:02:6c:6a:d4:37: 81:e6:0b:8f:af:35:4f:5f:2c:bd:5c:2a:0e:85:1d:70:fe:dd: 92:08:d3:e6:32:94:88:fa:a9:fd:fe:93:60:89:1b:ba:85:85: bf:da:34:cb:d2:2b:4e:68:31:e8:31:8c:fb:74:19:01:14:a0: 1b:77:3a:d5:b3:bc:85:3b:5a:2a:61:50:c8:c3:40:15:c3:94: 31:0a:8f:28:77:4b:2b:fe:f4:73:cd:b7:f3:aa:93:11:f5:1e: 2d:26:56:cc:54:79:0a:c0:72:25:97:26:6e:da:59:06:91:76: af:5b:25:f7:74:62:32:7c:b9:a7:dd:0a:7f:d6:c5:fc:c9:27: 70:aa:42:85:fb:b7:a9:6f:a4:b3:7e:59:84:19:5f:6a:6a:14: 63:09:a4:e2:26:95:08:88:be:0a:f6:9a:b6:54:6a:9a:56:f0: a9:28:59:76:0d:7a:7c:cc:69:20:a5:dc:89:42:15:24:d2:90: 17:0e:13:c4:e4:e8:44:a3:55:c5:78:84:88:90:3e:1a:7c:9d: 91:e6:f8:2c:d8:d0:2d:12:96:3c:62:56:23:9e:87:e1:60:e2: c5:45:a9:2c:77:c6:05:79:91:0a:ff:83:b6:c6:e9:5d:de:bd: 93:03:b1:18 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VFODUxMTAvBgNVBAUTKEJCRTgwM0ZCNzU3RTBDNDdEMzIwNDU0NTIxODdCNzRB RTI3MTExRjAwHhcNMjYwMzI1MDQzNTA4WhcNMjYwNDAxMDQzNTA4WjAYMRYwFAYD VQQDEw02OWMzNjVmZC1iODY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Fv7802jg5YSSyD+5n6lgV0WwyLS0I/ri4GNRSAnHj1lJp9Aw1Du/DhwA7JS yb1nqx2Tww3730Eac8R8FHp7jEt1uUow4HG7u/Sd4hkY3jgVCPlVKPss6wMU5jMZ KBs5m3N/r5Bx6t4lV9GzZakMVi5UQPXP87bLN7Y3r2LnX/KCJhy3DTIXx0vjQozz UGQrPEoSSD5OG/XzlS09ZmnEFNSOk+5G6g9ltY5kiBKPQCeygWN1NJgnm1Kd5nYA bTw5W4FazCuQCwJY/Yyl+D0Qlgm1zZFLoJef6JLTThchAk+I4dwJ9tQ7zyS3dYqP uoI4/9z89RupHYs4c7y57oxmKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL0wcoFH TweHIsvgzZfbPwYUTcN3MB8GA1UdIwQYMBaAFLvoA/t1fgxH0yBFRSGHt0ricRHw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUU4NS8wNUE3Q0U2ODQ1 QUUxMUVGQjQzNUVCNkZDNEY5QUUwMi91LWdELTNWLURFZlRJRVZGSVllM1N1SnhF ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UtZ0QtM1YtREVmVElFVkZJWWUzU3VKeEVmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUU4NS8wNUE3Q0U2ODQ1QUUxMUVGQjQzNUVCNkZDNEY5QUUwMi91LWdELTNWLURF ZlRJRVZGSVllM1N1SnhFZkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcctOfoFudxQQFPhIUAJsatQ3geYLj681T18svVwqDoUdcP7dkgjT5jKUiPqp /f6TYIkbuoWFv9o0y9IrTmgx6DGM+3QZARSgG3c61bO8hTtaKmFQyMNAFcOUMQqP KHdLK/70c82386qTEfUeLSZWzFR5CsByJZcmbtpZBpF2r1sl93RiMny5p90Kf9bF /MkncKpChfu3qW+ks35ZhBlfamoUYwmk4iaVCIi+CvaatlRqmlbwqShZdg16fMxp IKXciUIVJNKQFw4TxOToRKNVxXiEiJA+Gnydkeb4LNjQLRKWPGJWI56H4WDixUWp LHfGBXmRCv+DtsbpXd69kwOxGA== -----END CERTIFICATE-----Generated at Thu Mar 26 05:50:24 2026 by rpki-client