$ rpki-client -vvf rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft File: iUNmPc-DCfonSkZS-oOr0m2EJk8.mft (raw, json) Hash identifier: KEKML2pj1eSDLJY+8+y8XJU3mt7xGcmieXXi+9Htjf0= Subject key identifier: FF:3E:CD:ED:BB:C2:5D:92:9F:E9:19:D5:BA:98:BE:52:99:FE:EC:E5 Authority key identifier: 89:43:66:3D:CF:83:09:FA:27:4A:46:52:FA:83:AB:D2:6D:84:26:4F Certificate issuer: /CN=A913097A/serialNumber=8943663DCF8309FA274A4652FA83ABD26D84264F Certificate serial: 0529 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft Manifest number: 0521 Signing time: Sun 01 Mar 2026 00:11:14 +0000 Manifest this update: Sun 01 Mar 2026 00:11:14 +0000 Manifest next update: Sun 08 Mar 2026 00:11:14 +0000 Files and hashes: 1: iUNmPc-DCfonSkZS-oOr0m2EJk8.crl (hash: iEa4q0DoFY3BiSeWxnFTccq/1Sn8FwLo7PvkvhVmizg=) 2: A18054D6CB9F11F088CB660AC4F9AE02.roa (hash: FvO8DlZzQVmPTZqjUi7Dxx3ih+VGjpPESsv0+jY8ciU=) 3: D19C3D9CCB9F11F090C50D0BC4F9AE02.roa (hash: qRx7TQ6UV8tNdrKdv3Zo/CrjupoAaJ536/Jh6JtiZmA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.crl rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 00:11:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1321 (0x529) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913097A, serialNumber=8943663DCF8309FA274A4652FA83ABD26D84264F Validity Not Before: Mar 1 00:11:14 2026 GMT Not After : Mar 8 00:11:14 2026 GMT Subject: CN=69a38422-bf9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:69:e7:e9:2d:a6:e7:0e:e9:87:2d:a3:37:96: 08:13:66:81:9d:71:c7:04:34:0c:7a:43:ac:0d:82: 53:40:36:d6:2e:95:8e:5a:2c:2b:9f:47:e0:e5:53: 35:2c:42:7a:ce:32:9c:08:b8:17:5f:16:c9:f5:29: f9:5b:e8:ab:79:40:8e:25:5e:75:f2:96:28:d8:12: 91:0e:e1:ed:e0:c6:46:c8:9b:8b:2e:65:fe:9b:51: b3:da:59:27:6c:99:ec:e5:9e:60:eb:a9:f4:a9:8e: 1c:66:40:3f:43:61:b4:6f:8e:69:37:02:ef:a3:4b: 38:f6:3a:d9:59:13:ff:d6:65:b4:8d:48:fc:12:a6: 26:0a:a3:06:07:75:05:bd:b3:ed:ce:10:fa:05:b5: cb:4c:92:a7:5f:6c:c2:2d:79:10:ee:d3:38:63:db: c1:16:c0:61:4d:c2:57:2e:14:98:b6:04:a8:3e:9f: 63:5a:51:ba:4c:5f:51:12:82:b6:6c:b6:ae:0e:c4: f7:ee:c2:31:23:da:d5:5c:62:25:91:3c:89:b1:4b: 0c:66:8b:09:38:f6:5f:b6:ac:35:4c:a9:3d:ef:60: 22:5b:d8:25:da:79:df:d5:00:bb:52:e5:fd:a3:e6: a2:d6:a0:bc:3a:d6:83:ab:b5:c7:75:05:12:0a:43: 78:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:3E:CD:ED:BB:C2:5D:92:9F:E9:19:D5:BA:98:BE:52:99:FE:EC:E5 X509v3 Authority Key Identifier: keyid:89:43:66:3D:CF:83:09:FA:27:4A:46:52:FA:83:AB:D2:6D:84:26:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:f3:8a:83:3a:9c:25:a0:2f:47:fe:c0:6a:99:8a:50:b6:a1: ca:9c:21:ae:56:05:20:b6:8a:8b:3b:be:67:7d:2c:6e:05:23: e0:b9:43:a4:bb:61:17:0a:95:1a:7b:a7:26:f5:8b:af:44:8a: 5e:ea:ce:01:50:2e:ed:00:29:ec:ca:09:37:f2:f9:17:70:df: bd:5e:cb:79:34:0b:74:2b:dd:c2:f9:fa:b9:fc:2d:90:dc:49: db:20:ac:33:a9:2b:a5:a6:9c:a6:44:d8:af:28:68:38:08:f4: 3e:ad:cc:8b:b4:ff:b9:6e:be:a1:9b:14:ef:88:46:71:37:5b: 32:b6:c9:87:a6:83:36:43:5d:0a:38:48:b8:b7:de:c4:74:05: e3:e6:ed:6d:76:8b:e9:aa:56:16:c4:8b:62:da:02:1e:38:41: 0c:23:80:7d:94:8b:25:6b:2e:64:7d:53:13:73:ab:a9:34:85: 42:73:c2:27:0d:ec:4a:b5:4f:35:33:0b:60:a2:d4:b3:a8:d2: b4:84:73:bf:ec:f3:79:11:2b:94:1b:65:a3:72:3b:41:97:fc: d7:a9:47:94:ff:09:ca:ca:32:0a:f7:48:c1:db:7f:2b:49:af: 62:5f:f1:93:62:90:80:73:f3:0f:f5:d1:83:ab:eb:2a:c0:74: 62:d1:4a:b7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBSkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA5N0ExMTAvBgNVBAUTKDg5NDM2NjNEQ0Y4MzA5RkEyNzRBNDY1MkZBODNBQkQy NkQ4NDI2NEYwHhcNMjYwMzAxMDAxMTE0WhcNMjYwMzA4MDAxMTE0WjAYMRYwFAYD VQQDDA02OWEzODQyMi1iZjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWnn6S2m5w7phy2jN5YIE2aBnXHHBDQMekOsDYJTQDbWLpWOWiwrn0fg5VM1 LEJ6zjKcCLgXXxbJ9Sn5W+ireUCOJV518pYo2BKRDuHt4MZGyJuLLmX+m1Gz2lkn bJns5Z5g66n0qY4cZkA/Q2G0b45pNwLvo0s49jrZWRP/1mW0jUj8EqYmCqMGB3UF vbPtzhD6BbXLTJKnX2zCLXkQ7tM4Y9vBFsBhTcJXLhSYtgSoPp9jWlG6TF9REoK2 bLauDsT37sIxI9rVXGIlkTyJsUsMZosJOPZftqw1TKk972AiW9gl2nnf1QC7UuX9 o+ai1qC8OtaDq7XHdQUSCkN4ZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP8+ze27 wl2Sn+kZ1bqYvlKZ/uzlMB8GA1UdIwQYMBaAFIlDZj3Pgwn6J0pGUvqDq9JthCZP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDk3QS82MTY3QTZEMjNC MDgxMUVDOTQ4M0M1MjdDNEY5QUUwMi9pVU5tUGMtRENmb25Ta1pTLW9PcjBtMkVK azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVTm1QYy1EQ2ZvblNrWlMtb09yMG0yRUprOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDk3QS82MTY3QTZEMjNCMDgxMUVDOTQ4M0M1MjdDNEY5QUUwMi9pVU5tUGMtRENm b25Ta1pTLW9PcjBtMkVKazgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHPOKgzqcJaAvR/7AapmKULahypwhrlYFILaKizu+Z30sbgUj4LlDpLthFwqV GnunJvWLr0SKXurOAVAu7QAp7MoJN/L5F3DfvV7LeTQLdCvdwvn6ufwtkNxJ2yCs M6krpaacpkTYryhoOAj0Pq3Mi7T/uW6+oZsU74hGcTdbMrbJh6aDNkNdCjhIuLfe xHQF4+btbXaL6apWFsSLYtoCHjhBDCOAfZSLJWsuZH1TE3OrqTSFQnPCJw3sSrVP NTMLYKLUs6jStIRzv+zzeRErlBtlo3I7QZf816lHlP8JysoyCvdIwdt/K0mvYl/x k2KQgHPzD/XRg6vrKsB0YtFKtw== -----END CERTIFICATE-----Generated at Mon Mar 2 00:35:33 2026 by rpki-client