$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft File: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft (raw, json) Hash identifier: NBFTQF/k2m4juwcsIWwJgP9x41Rzhtf3D3WAWQ5se2E= Subject key identifier: F2:55:C9:84:44:22:2C:D4:70:1B:EF:0D:54:06:0F:FB:83:94:86:D8 Authority key identifier: F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 Certificate issuer: /CN=A91E5490/serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Certificate serial: 05A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft Manifest number: 0593 Signing time: Tue 24 Mar 2026 22:56:10 +0000 Manifest this update: Tue 24 Mar 2026 22:56:09 +0000 Manifest next update: Tue 31 Mar 2026 22:56:09 +0000 Files and hashes: 1: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl (hash: LmX+B2ypASXJoEL+W0E68k+I6QCQzI2EncsKR1MBAKo=) 2: 8608449A356511EC9715F015C4F9AE02.roa (hash: 6cpkIlvY+eAWkZd1IGQR7w8+Mu+zR4HanQ7ax6nwheE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:56:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1440 (0x5a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5490, serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Validity Not Before: Mar 24 22:56:09 2026 GMT Not After : Mar 31 22:56:09 2026 GMT Subject: CN=69c3168a-6edb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d6:8c:a0:50:54:dc:66:73:c3:f3:5a:77:f3: bc:53:6a:f6:7e:30:19:7f:77:cb:96:9f:3f:09:73: 27:86:4d:94:2f:86:9c:0f:e1:ce:eb:ea:1f:3d:d3: 75:0b:f3:52:e2:51:7a:42:b4:26:c3:c8:fa:75:54: 48:0d:b7:14:69:df:a6:d7:c2:b5:ee:7b:27:0e:ad: 8c:03:d5:57:e8:62:26:1b:95:74:ef:0a:c8:ec:57: 7e:ba:e1:c7:a3:9e:28:2a:58:39:5f:99:b5:ec:59: 3a:56:e8:e3:f7:16:39:53:65:b5:47:2f:03:96:bf: 8b:7e:63:41:49:7c:a3:97:3c:e2:54:87:de:2b:4c: 68:38:fe:de:fb:04:34:76:95:45:08:07:77:50:cb: 79:b6:61:0f:ec:64:22:88:95:f8:4b:11:62:c5:b9: 45:98:7d:32:b5:fe:19:52:8b:a7:38:34:bb:e9:e4: 41:51:93:23:c8:4a:e6:12:52:58:c3:4b:34:c4:1d: ff:f3:a3:e9:31:2c:ed:43:ce:55:4a:32:47:69:a8: 00:0e:5b:d1:d2:4b:2c:ff:67:26:1b:80:7a:97:d2: c3:a3:11:bb:f3:5a:2e:66:ac:cb:c1:b0:74:8f:5d: 44:13:3f:af:50:4f:77:5c:dd:82:a6:71:ff:1f:2a: 56:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:55:C9:84:44:22:2C:D4:70:1B:EF:0D:54:06:0F:FB:83:94:86:D8 X509v3 Authority Key Identifier: keyid:F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:67:8b:8c:29:e0:78:79:c3:e2:19:10:ff:32:81:ef:f2:7f: db:d9:be:76:a5:c0:31:0f:bd:d6:14:94:88:e7:d1:4c:4a:04: b8:17:84:a3:51:a6:4b:17:29:02:95:d8:d4:66:aa:10:67:0d: 71:ca:18:c7:eb:fe:b4:83:67:a6:4d:ad:a3:41:a3:59:c6:ce: 3e:d8:03:f0:fa:0a:19:f6:07:d6:22:b5:3b:39:6f:48:a7:ce: 57:80:03:94:26:1f:52:8e:01:60:10:4d:01:78:ab:61:6f:14: de:a8:c4:60:a5:92:3c:85:f0:8f:5f:2f:f9:c4:5e:3e:4b:39: b7:fc:2e:07:ba:5b:1a:ce:71:c5:f7:ff:57:c0:fe:02:97:56: 16:dc:91:7b:6d:78:c2:5c:f7:e0:3b:7b:4b:86:e9:93:b7:91: 20:92:47:f1:38:b5:8d:fa:df:2c:67:93:7d:68:85:02:0b:94: f5:2f:47:10:c7:fd:f2:b7:44:51:9e:02:bb:07:40:bc:f1:33: 28:b7:30:05:cf:ea:97:34:66:43:fb:ad:7d:f1:3d:90:b4:87: f4:4d:7b:29:c9:ca:b1:0e:10:ec:55:51:02:50:8e:f4:06:20: 1f:89:40:fc:0d:c2:6f:7b:b2:74:93:19:29:5c:ba:86:26:36: d8:cd:d8:00 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU0OTAxMTAvBgNVBAUTKEY5NkZBRTI4OEE2NDMwQURDQ0Y5NUUwRUE4OUYwODVC QjZFODI5RDQwHhcNMjYwMzI0MjI1NjA5WhcNMjYwMzMxMjI1NjA5WjAYMRYwFAYD VQQDEw02OWMzMTY4YS02ZWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtaMoFBU3GZzw/Nad/O8U2r2fjAZf3fLlp8/CXMnhk2UL4acD+HO6+ofPdN1 C/NS4lF6QrQmw8j6dVRIDbcUad+m18K17nsnDq2MA9VX6GImG5V07wrI7Fd+uuHH o54oKlg5X5m17Fk6Vujj9xY5U2W1Ry8Dlr+LfmNBSXyjlzziVIfeK0xoOP7e+wQ0 dpVFCAd3UMt5tmEP7GQiiJX4SxFixblFmH0ytf4ZUounODS76eRBUZMjyErmElJY w0s0xB3/86PpMSztQ85VSjJHaagADlvR0kss/2cmG4B6l9LDoxG781ouZqzLwbB0 j11EEz+vUE93XN2CpnH/HypWqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPJVyYRE IizUcBvvDVQGD/uDlIbYMB8GA1UdIwQYMBaAFPlvriiKZDCtzPleDqifCFu26CnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTQ5MC8zMjFGNTkxRTE0 NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01LM00tVjRPcUo4SVc3Ym9L ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1XLXVLSXBrTUszTS1WNE9xSjhJVzdib0tkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTQ5MC8zMjFGNTkxRTE0NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01L M00tVjRPcUo4SVc3Ym9LZFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAu2eLjCngeHnD4hkQ/zKB7/J/29m+dqXAMQ+91hSUiOfRTEoEuBeEo1GmSxcp ApXY1GaqEGcNccoYx+v+tINnpk2to0GjWcbOPtgD8PoKGfYH1iK1OzlvSKfOV4AD lCYfUo4BYBBNAXirYW8U3qjEYKWSPIXwj18v+cRePks5t/wuB7pbGs5xxff/V8D+ ApdWFtyRe214wlz34Dt7S4bpk7eRIJJH8Ti1jfrfLGeTfWiFAguU9S9HEMf98rdE UZ4CuwdAvPEzKLcwBc/qlzRmQ/utffE9kLSH9E17KcnKsQ4Q7FVRAlCO9AYgH4lA /A3Cb3uydJMZKVy6hiY22M3YAA== -----END CERTIFICATE-----Generated at Thu Mar 26 15:52:13 2026 by rpki-client