$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft File: U8lIF-sTZfHejDwrRAIjmIHBlD0.mft (raw, json) Hash identifier: uXY1TL+ww4M7DH89dzg+WlL3P2oK+i21fSwkbO+g+Fo= Subject key identifier: 33:70:DB:E6:44:7A:76:09:71:F7:D6:CB:BE:6B:21:D6:87:4B:13:96 Authority key identifier: 53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D Certificate issuer: /CN=A91D3307/serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Certificate serial: 0551 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft Manifest number: 0532 Signing time: Thu 26 Mar 2026 23:23:38 +0000 Manifest this update: Thu 26 Mar 2026 23:23:37 +0000 Manifest next update: Thu 02 Apr 2026 23:23:37 +0000 Files and hashes: 1: U8lIF-sTZfHejDwrRAIjmIHBlD0.crl (hash: q1GMSMoiDwR/DbUDqD20emtyTm05rOYAiUg8iAKVorc=) 2: C908B72A696F11EFA4DA475FC4F9AE02.roa (hash: oQeIjJKF4m+yoz5ARZ8Odn0EX0eZ3fwE10IEl/U1Ga4=) 3: C9C70AEA696F11EFA4DA475FC4F9AE02.roa (hash: G3ta6bjmQeSaT0qJsBoVB7T2S4RSGUGqGrYt6/OLVUw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 23:23:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1361 (0x551) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3307, serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Validity Not Before: Mar 26 23:23:37 2026 GMT Not After : Apr 2 23:23:37 2026 GMT Subject: CN=69c5bff9-e8d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:85:ba:02:ff:14:ab:f7:6f:a0:df:65:05:1b: 49:1f:4a:85:3e:08:46:ff:b5:2c:9c:9d:21:00:1a: 64:97:b5:b6:de:c5:85:47:21:aa:9d:18:83:b2:a8: d3:1c:d1:09:a0:97:a1:29:74:8a:a4:24:39:cd:5d: 66:32:8f:3a:33:e0:96:3e:9e:85:80:d9:a5:46:0c: 50:50:f2:10:88:e0:81:8a:48:e4:30:26:ae:a0:52: d8:d3:f6:8f:4f:47:2c:38:1f:2e:37:62:2b:ad:48: 08:99:4f:d5:e4:c9:12:0f:24:fd:11:0c:1a:7b:a8: c8:a9:95:6b:4d:d2:4b:b3:fa:49:38:20:26:bb:37: bc:bb:fd:0f:c5:6a:0e:52:67:cb:b6:b4:55:f0:f6: cc:df:67:66:3f:c4:69:e7:fc:6a:d1:af:e5:ee:be: cd:ce:d4:fa:41:66:5e:a2:f7:d3:a3:72:22:d2:ed: 92:f6:22:36:4f:3c:42:3f:5a:17:5d:d2:de:45:f8: c1:22:43:a9:13:77:81:36:33:d8:51:e4:32:16:16: 60:eb:85:f4:c9:f3:5b:57:2b:67:a4:61:2b:cf:cf: d1:68:1a:66:c5:aa:bf:49:21:8c:f2:6f:14:1f:33: e9:81:dc:2f:54:8f:70:7b:b7:06:8a:5c:2d:1d:77: 21:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:70:DB:E6:44:7A:76:09:71:F7:D6:CB:BE:6B:21:D6:87:4B:13:96 X509v3 Authority Key Identifier: keyid:53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:49:76:9c:35:87:88:66:5a:54:ab:a6:5b:8d:ae:58:a0:7a: 37:e9:1b:3e:e8:fc:14:9d:06:54:e9:2d:c3:21:b7:af:0d:e2: e8:4c:cb:10:4d:48:9d:df:2a:7b:ba:67:1a:58:58:eb:22:ae: d7:9a:26:c2:36:5f:0b:ce:2f:26:a5:cd:a3:22:bd:13:76:74: 9d:96:82:26:d6:4c:98:60:b5:54:ca:91:a1:2d:11:1a:dd:f1: 88:4e:7d:14:03:fd:3f:24:3c:35:2a:f8:d8:f4:e2:a1:d7:96: 13:0d:91:bf:b8:be:e9:f6:f2:0d:7a:e0:16:36:e3:08:bb:14: 8b:50:78:92:e0:bf:7e:ed:a2:2a:5c:bb:35:67:d4:30:25:2b: a8:95:a9:d6:5e:3a:51:98:87:e3:f2:07:f2:30:98:13:76:18: 92:29:d5:14:ea:31:4d:98:3a:0b:6a:58:ff:df:65:94:37:53: 84:6a:c8:9b:3f:ff:e3:2c:08:40:cf:0e:8e:5b:a0:a7:66:41: ec:a4:27:f6:ef:b0:c7:3c:34:92:25:1b:11:bb:dd:d5:32:6b: 08:ab:e1:22:85:5a:91:52:cc:06:70:5c:73:e9:6f:a0:34:ec: 97:7e:e7:e4:21:71:e0:3e:c3:87:75:ce:cb:b9:10:14:28:9b: a9:06:ae:9d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMzMDcxMTAvBgNVBAUTKDUzQzk0ODE3RUIxMzY1RjFERThDM0MyQjQ0MDIyMzk4 ODFDMTk0M0QwHhcNMjYwMzI2MjMyMzM3WhcNMjYwNDAyMjMyMzM3WjAYMRYwFAYD VQQDEw02OWM1YmZmOS1lOGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4W6Av8Uq/dvoN9lBRtJH0qFPghG/7UsnJ0hABpkl7W23sWFRyGqnRiDsqjT HNEJoJehKXSKpCQ5zV1mMo86M+CWPp6FgNmlRgxQUPIQiOCBikjkMCauoFLY0/aP T0csOB8uN2IrrUgImU/V5MkSDyT9EQwae6jIqZVrTdJLs/pJOCAmuze8u/0PxWoO UmfLtrRV8PbM32dmP8Rp5/xq0a/l7r7NztT6QWZeovfTo3Ii0u2S9iI2TzxCP1oX XdLeRfjBIkOpE3eBNjPYUeQyFhZg64X0yfNbVytnpGErz8/RaBpmxaq/SSGM8m8U HzPpgdwvVI9we7cGilwtHXchrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDNw2+ZE enYJcffWy75rIdaHSxOWMB8GA1UdIwQYMBaAFFPJSBfrE2Xx3ow8K0QCI5iBwZQ9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzMwNy8zNDJEODMyODQy Q0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpmSGVqRHdyUkFJam1JSEJs RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4bElGLXNUWmZIZWpEd3JSQUlqbUlIQmxEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzMwNy8zNDJEODMyODQyQ0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpm SGVqRHdyUkFJam1JSEJsRDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAh0l2nDWHiGZaVKumW42uWKB6N+kbPuj8FJ0GVOktwyG3rw3i6EzLEE1Ind8q e7pnGlhY6yKu15omwjZfC84vJqXNoyK9E3Z0nZaCJtZMmGC1VMqRoS0RGt3xiE59 FAP9PyQ8NSr42PTiodeWEw2Rv7i+6fbyDXrgFjbjCLsUi1B4kuC/fu2iKly7NWfU MCUrqJWp1l46UZiH4/IH8jCYE3YYkinVFOoxTZg6C2pY/99llDdThGrImz//4ywI QM8Ojlugp2ZB7KQn9u+wxzw0kiUbEbvd1TJrCKvhIoVakVLMBnBcc+lvoDTsl37n 5CFx4D7Dh3XOy7kQFCibqQaunQ== -----END CERTIFICATE-----Generated at Sat Mar 28 12:12:50 2026 by rpki-client