$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft File: SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft (raw, json) Hash identifier: c9LH398aIIieHaatQ0uJzuJLQhtmERJXszozU4r8RL4= Subject key identifier: 91:9E:1D:E0:AF:DF:D3:12:94:F0:5F:54:8B:31:7F:B5:E5:C6:F3:7B Authority key identifier: 48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 Certificate issuer: /CN=A91DA389/serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Certificate serial: 0236 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft Manifest number: 022F Signing time: Wed 25 Mar 2026 02:03:08 +0000 Manifest this update: Wed 25 Mar 2026 02:03:07 +0000 Manifest next update: Wed 01 Apr 2026 02:03:07 +0000 Files and hashes: 1: SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl (hash: U4DO/TrsjWzKD3YhClO7pT60Fldfx9OIhsZL1ch8LR4=) 2: 4F467C58D3AA11ED91B0C532C4F9AE02.roa (hash: h5AorI3QkOoBAwObfVPrh+bfy5EutI9s6EKcaVcQGYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:03:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 566 (0x236) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA389, serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Validity Not Before: Mar 25 02:03:07 2026 GMT Not After : Apr 1 02:03:07 2026 GMT Subject: CN=69c3425b-4325 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2e:5a:47:f3:87:88:7e:89:e0:0b:f7:5b:ea: 04:26:ee:a5:e7:0f:dd:0d:ca:ef:75:3b:7b:7f:c2: 2d:04:41:86:6c:5d:49:31:c3:84:29:d7:09:44:82: 73:24:9c:ff:af:3f:07:e8:5c:1d:c2:04:62:32:ad: f5:7d:3c:12:a9:eb:2b:0d:0e:11:e5:99:5e:d5:f3: 5b:7b:ad:60:d7:eb:a4:d3:cd:34:c3:eb:da:cf:c0: e8:8c:2d:74:9a:68:ba:08:b9:de:58:d0:b0:00:92: e5:bd:25:0b:d5:e9:a5:91:18:5d:bd:5c:b5:13:37: 7e:11:7a:e1:49:60:9f:43:22:72:af:82:7f:e3:b9: 27:9a:8b:9e:d3:08:45:a3:d3:d8:bf:e0:7a:b2:be: 19:d3:0c:33:62:6d:4f:07:9f:e7:3c:8f:68:45:c2: 84:83:a8:7f:64:6a:99:47:31:b3:22:9b:01:46:b8: e7:ee:77:d7:6e:91:22:e5:69:a7:15:0a:dd:ac:b2: 72:d6:55:01:0e:23:c7:90:b9:e6:c4:53:a2:47:89: 21:98:a8:88:b3:82:98:61:70:29:6f:8e:6c:bb:79: a5:12:10:10:9b:61:54:04:5e:7e:91:b4:6f:85:cf: 02:e9:05:10:47:b6:b5:54:3d:d4:e6:1b:76:fa:ea: c9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:9E:1D:E0:AF:DF:D3:12:94:F0:5F:54:8B:31:7F:B5:E5:C6:F3:7B X509v3 Authority Key Identifier: keyid:48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:42:5c:93:5c:b0:a6:ea:7c:4c:9f:c8:00:18:37:e5:f2:2d: 58:35:13:04:1a:b9:2d:53:01:77:0b:6f:6b:b5:0b:8a:e4:de: 88:d8:94:a4:1c:8e:bc:f9:f4:c1:a3:b3:70:df:da:55:93:e6: 94:cf:fc:a4:e2:7f:25:17:62:7f:79:9c:b3:a2:d6:06:aa:db: d2:21:a5:eb:d6:b4:88:d9:2c:2a:51:3b:32:9c:f9:6b:ca:e6: e2:e0:24:6a:ed:ed:7a:56:70:7d:42:60:11:71:87:01:c6:fb: af:aa:dd:4f:e2:29:24:2a:41:de:dc:4b:73:f3:d7:00:b1:6a: 0e:59:5c:e7:af:48:65:41:b1:ab:7c:13:60:4b:71:7b:32:c6: 4f:7c:29:1b:fd:ab:32:a6:0c:d0:c2:f9:e1:7c:46:df:26:b2: 7c:e7:c8:72:f5:44:1f:53:bc:50:56:81:4a:5f:bc:3b:1b:25: 3e:32:0e:50:0d:a5:e1:a2:e7:df:84:8b:f1:46:f6:64:5d:03: 5d:2c:41:85:a1:f9:19:7e:bc:11:9c:d0:e6:ff:30:45:bb:e1: 84:12:42:66:5f:b3:92:2c:d2:f1:d0:c2:f9:2b:a9:41:64:2f: f5:ed:4c:99:74:15:c9:1a:f2:4d:68:78:3b:3b:3e:bb:38:5c: 0a:1a:71:e8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEzODkxMTAvBgNVBAUTKDQ4RjUwRTE2QjgzMDVBQTJDNzU2RDIxQzhGMEZENTA5 MzM4QTVDMjkwHhcNMjYwMzI1MDIwMzA3WhcNMjYwNDAxMDIwMzA3WjAYMRYwFAYD VQQDEw02OWMzNDI1Yi00MzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAry5aR/OHiH6J4Av3W+oEJu6l5w/dDcrvdTt7f8ItBEGGbF1JMcOEKdcJRIJz JJz/rz8H6FwdwgRiMq31fTwSqesrDQ4R5Zle1fNbe61g1+uk0800w+vaz8DojC10 mmi6CLneWNCwAJLlvSUL1emlkRhdvVy1Ezd+EXrhSWCfQyJyr4J/47knmoue0whF o9PYv+B6sr4Z0wwzYm1PB5/nPI9oRcKEg6h/ZGqZRzGzIpsBRrjn7nfXbpEi5Wmn FQrdrLJy1lUBDiPHkLnmxFOiR4khmKiIs4KYYXApb45su3mlEhAQm2FUBF5+kbRv hc8C6QUQR7a1VD3U5ht2+urJ7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJGeHeCv 39MSlPBfVIsxf7XlxvN7MB8GA1UdIwQYMBaAFEj1Dha4MFqix1bSHI8P1Qkzilwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTM4OS9CMjE3MEI3NEQz QTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dxTEhWdEljandfVkNUT0tY Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQVU9Gcmd3V3FMSFZ0SWNqd19WQ1RPS1hDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTM4OS9CMjE3MEI3NEQzQTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dx TEhWdEljandfVkNUT0tYQ2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAF0Jck1ywpup8TJ/IABg35fItWDUTBBq5LVMBdwtva7ULiuTeiNiUpByOvPn0 waOzcN/aVZPmlM/8pOJ/JRdif3mcs6LWBqrb0iGl69a0iNksKlE7Mpz5a8rm4uAk au3telZwfUJgEXGHAcb7r6rdT+IpJCpB3txLc/PXALFqDllc569IZUGxq3wTYEtx ezLGT3wpG/2rMqYM0ML54XxG3yayfOfIcvVEH1O8UFaBSl+8OxslPjIOUA2l4aLn 34SL8Ub2ZF0DXSxBhaH5GX68EZzQ5v8wRbvhhBJCZl+zkizS8dDC+SupQWQv9e1M mXQVyRryTWh4Ozs+uzhcChpx6A== -----END CERTIFICATE-----Generated at Thu Mar 26 04:26:35 2026 by rpki-client