$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft File: UzSpQuM2kLKBJhu645cTXb6kE5c.mft (raw, json) Hash identifier: 90tLEOgNe+d2UX4X1lONkopgp1pbXn5He5MXSp8gTD8= Subject key identifier: 55:BF:BB:72:AF:84:A6:C5:DB:D8:11:D4:EA:3F:0A:F6:C2:13:8A:FA Authority key identifier: 53:34:A9:42:E3:36:90:B2:81:26:1B:BA:E3:97:13:5D:BE:A4:13:97 Certificate issuer: /CN=A91DA022/serialNumber=5334A942E33690B281261BBAE397135DBEA41397 Certificate serial: 08D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft Manifest number: 08CE Signing time: Tue 24 Mar 2026 20:10:32 +0000 Manifest this update: Tue 24 Mar 2026 20:10:31 +0000 Manifest next update: Tue 31 Mar 2026 20:10:31 +0000 Files and hashes: 1: UzSpQuM2kLKBJhu645cTXb6kE5c.crl (hash: /tt6pCn3L9szJuMoDK9xgw3LyXaXLhYas5y0YGMy3DY=) 2: DF3136A2CFF011EAB2F1D086C4F9AE02.roa (hash: bCHE5nI4rqzx/kCg0rTMONZHHcxfxtmtXkLR2EjPLb0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.crl rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:10:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2263 (0x8d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA022, serialNumber=5334A942E33690B281261BBAE397135DBEA41397 Validity Not Before: Mar 24 20:10:31 2026 GMT Not After : Mar 31 20:10:31 2026 GMT Subject: CN=69c2efb7-15bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:53:4a:d8:cc:d8:f7:93:cd:6a:ed:1a:49:63: 04:36:4d:f3:3f:6e:9f:b6:f3:bd:ed:60:38:f7:8e: a8:55:6f:3f:86:72:8a:87:cc:b2:9f:27:4f:23:89: 4a:7e:d7:06:c9:f8:d2:9b:79:1e:0d:72:78:e6:ba: 1e:e3:0a:d0:bc:c5:bc:3e:0c:7d:e3:73:6e:dc:5e: e0:6e:f3:7e:5b:cf:d5:26:41:cf:0a:93:57:96:4b: ff:db:ed:16:f9:49:74:ba:ce:ee:0b:84:3a:44:f5: 04:38:00:c1:b7:59:a7:fa:b3:f2:bd:71:67:4f:a5: ba:45:6a:61:5b:0a:fb:99:21:dd:98:92:b5:dd:e3: 48:b2:3e:da:81:ea:1e:21:93:1e:e7:aa:2f:a3:0d: 61:5b:30:43:d1:dc:5d:7a:44:8e:b6:9e:89:3d:7c: 6b:6f:62:94:4d:a5:ad:66:3f:18:20:7b:a7:4d:b7: e4:2a:48:35:09:4c:67:dc:5d:f5:92:0a:d9:ae:7e: 3f:9e:3e:82:48:0f:92:fe:b2:0e:e5:a5:7a:29:81: af:85:fb:0d:09:9e:f7:1e:14:55:21:bf:d1:82:db: 63:db:76:30:56:8e:e9:04:a3:6a:e8:4e:0d:a1:41: 2c:93:8d:4d:8f:b2:31:e3:7d:0a:47:27:3b:ac:07: 03:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:BF:BB:72:AF:84:A6:C5:DB:D8:11:D4:EA:3F:0A:F6:C2:13:8A:FA X509v3 Authority Key Identifier: keyid:53:34:A9:42:E3:36:90:B2:81:26:1B:BA:E3:97:13:5D:BE:A4:13:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:c5:a0:c0:d9:b3:67:91:1a:cd:2c:f9:bd:14:4e:2b:e7:2c: 3d:2f:08:95:b9:09:04:1a:47:c6:ab:d3:ac:41:9e:09:a1:b9: f8:c4:bc:35:cc:72:6b:e0:46:fd:43:2f:22:3e:2a:b1:7f:94: 82:cf:2d:eb:b2:83:44:26:fa:c6:da:4d:37:b3:c3:5f:14:a0: 63:7c:2e:02:67:71:9b:76:c4:fd:f9:ae:83:94:49:ec:9e:8a: 86:46:38:d0:a3:44:92:e4:f4:45:28:06:77:1c:e1:a1:b0:0c: b1:0b:fd:6b:86:cc:0a:2e:24:06:bc:8d:5e:d2:6a:a3:31:90: 4a:3e:28:67:15:91:1c:0d:1a:9a:03:c0:73:e6:3e:31:b8:d6: 9d:a3:74:02:2e:45:ed:5a:86:49:80:ca:10:14:25:ea:13:eb: 19:15:00:4c:4c:b2:3b:b6:18:72:ff:1c:be:25:4e:af:b5:92: a6:1f:c0:d2:0f:62:dd:93:e2:ab:14:a5:0e:a1:8f:8a:f8:d7: 1c:0e:9e:11:c1:fd:ca:7e:38:cc:9b:e7:9f:53:1e:1c:fe:df: 19:85:bd:ab:94:1b:ec:51:75:5e:4d:29:69:84:a6:2f:f2:2f: 56:2d:78:2b:ad:d5:36:da:f7:8f:ad:95:0e:35:05:e5:8f:87: fd:3a:d9:74 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwMjIxMTAvBgNVBAUTKDUzMzRBOTQyRTMzNjkwQjI4MTI2MUJCQUUzOTcxMzVE QkVBNDEzOTcwHhcNMjYwMzI0MjAxMDMxWhcNMjYwMzMxMjAxMDMxWjAYMRYwFAYD VQQDEw02OWMyZWZiNy0xNWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVNK2MzY95PNau0aSWMENk3zP26ftvO97WA4946oVW8/hnKKh8yynydPI4lK ftcGyfjSm3keDXJ45roe4wrQvMW8Pgx943Nu3F7gbvN+W8/VJkHPCpNXlkv/2+0W +Ul0us7uC4Q6RPUEOADBt1mn+rPyvXFnT6W6RWphWwr7mSHdmJK13eNIsj7ageoe IZMe56ovow1hWzBD0dxdekSOtp6JPXxrb2KUTaWtZj8YIHunTbfkKkg1CUxn3F31 kgrZrn4/nj6CSA+S/rIO5aV6KYGvhfsNCZ73HhRVIb/Rgttj23YwVo7pBKNq6E4N oUEsk41Nj7Ix430KRyc7rAcDawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFW/u3Kv hKbF29gR1Oo/CvbCE4r6MB8GA1UdIwQYMBaAFFM0qULjNpCygSYbuuOXE12+pBOX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTAyMi85RDhEOTQ1OENG RUYxMUVBQjJDQjg4ODVDNEY5QUUwMi9VelNwUXVNMmtMS0JKaHU2NDVjVFhiNmtF NWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6U3BRdU0ya0xLQkpodTY0NWNUWGI2a0U1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTAyMi85RDhEOTQ1OENGRUYxMUVBQjJDQjg4ODVDNEY5QUUwMi9VelNwUXVNMmtM S0JKaHU2NDVjVFhiNmtFNWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALMWgwNmzZ5EazSz5vRROK+csPS8IlbkJBBpHxqvTrEGeCaG5+MS8Ncxya+BG /UMvIj4qsX+Ugs8t67KDRCb6xtpNN7PDXxSgY3wuAmdxm3bE/fmug5RJ7J6KhkY4 0KNEkuT0RSgGdxzhobAMsQv9a4bMCi4kBryNXtJqozGQSj4oZxWRHA0amgPAc+Y+ MbjWnaN0Ai5F7VqGSYDKEBQl6hPrGRUATEyyO7YYcv8cviVOr7WSph/A0g9i3ZPi qxSlDqGPivjXHA6eEcH9yn44zJvnn1MeHP7fGYW9q5Qb7FF1Xk0paYSmL/IvVi14 K63VNtr3j62VDjUF5Y+H/TrZdA== -----END CERTIFICATE-----Generated at Thu Mar 26 07:14:31 2026 by rpki-client