$ rpki-client -vvf rpki.apnic.net/member_repository/A91352D1/DDF4226CC04111F0BC256F15C4F9AE02/2UVIdZZlg2gUctzDnfIkqtSon6o.mft File: 2UVIdZZlg2gUctzDnfIkqtSon6o.mft (raw, json) Hash identifier: J7Vflr9WMd+zeUMJxGBV2ZLBiV+r89UjO5d0xoLBBpQ= Subject key identifier: B0:ED:7F:83:55:51:86:7B:D8:2D:5E:50:1C:66:CB:C5:75:EF:5B:3E Authority key identifier: D9:45:48:75:96:65:83:68:14:72:DC:C3:9D:F2:24:AA:D4:A8:9F:AA Certificate issuer: /CN=A91352D1/serialNumber=D9454875966583681472DCC39DF224AAD4A89FAA Certificate serial: 3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UVIdZZlg2gUctzDnfIkqtSon6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91352D1/DDF4226CC04111F0BC256F15C4F9AE02/2UVIdZZlg2gUctzDnfIkqtSon6o.mft Manifest number: 3D Signing time: Sun 01 Mar 2026 09:55:04 +0000 Manifest this update: Sun 01 Mar 2026 09:55:04 +0000 Manifest next update: Sun 08 Mar 2026 09:55:04 +0000 Files and hashes: 1: 2UVIdZZlg2gUctzDnfIkqtSon6o.crl (hash: j+SvCAqAkQQ1RDTzakpkCSXKNZUDZ8rn2qtqzCX25Sw=) 2: 63AFC09EC10C11F08F1AFF7FC4F9AE02.roa (hash: qoQvhlZYfW1wf6kMzBPQtPbBr/Oim0Lh0bB1O4IEF6Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91352D1/DDF4226CC04111F0BC256F15C4F9AE02/2UVIdZZlg2gUctzDnfIkqtSon6o.crl rsync://rpki.apnic.net/member_repository/A91352D1/DDF4226CC04111F0BC256F15C4F9AE02/2UVIdZZlg2gUctzDnfIkqtSon6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UVIdZZlg2gUctzDnfIkqtSon6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91352D1, serialNumber=D9454875966583681472DCC39DF224AAD4A89FAA Validity Not Before: Mar 1 09:55:04 2026 GMT Not After : Mar 8 09:55:04 2026 GMT Subject: CN=69a40cf8-dec2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:07:7f:6e:c2:f7:c8:9e:31:a0:bd:52:3b:ec: db:ad:5b:61:f6:68:5f:f0:70:36:6f:a8:a9:cc:09: 64:0e:22:9a:22:fe:c3:c0:ea:57:ea:83:47:9f:42: a6:a3:ed:16:a0:74:b5:4c:b3:ee:e8:49:9f:4e:91: 02:00:2a:f3:ae:3c:de:a7:c6:1b:e6:57:b8:79:1a: ff:11:47:9f:76:d3:aa:da:fd:ce:fa:89:33:c5:95: 81:38:ad:f6:80:4a:e6:a5:5f:99:d4:f5:fd:f4:6e: 3c:0f:79:5c:3c:ab:09:da:e6:8a:4e:7b:32:ed:33: f3:62:83:9e:48:b6:27:a5:ae:30:c6:c0:a5:c7:76: 38:b7:8e:52:d4:18:cc:54:ff:e9:54:1f:b5:1c:90: 52:2b:be:36:51:80:5d:1c:40:92:f9:20:c0:f5:1a: 35:3c:07:de:2c:b4:25:5d:ca:3f:cd:75:b0:41:7c: 97:4f:b9:e9:0d:2f:08:1d:d4:09:e3:8a:c8:7a:41: 0a:19:8e:59:84:a4:4c:8a:ae:20:7f:2c:61:6b:14: 04:02:8f:96:98:c8:22:f6:80:a6:61:24:61:2c:c5: 01:c0:f4:56:fa:57:96:ed:df:c5:2d:86:aa:f2:d4: 66:6a:11:be:75:84:47:f4:de:6f:a3:f4:36:2b:6a: a2:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:ED:7F:83:55:51:86:7B:D8:2D:5E:50:1C:66:CB:C5:75:EF:5B:3E X509v3 Authority Key Identifier: keyid:D9:45:48:75:96:65:83:68:14:72:DC:C3:9D:F2:24:AA:D4:A8:9F:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91352D1/DDF4226CC04111F0BC256F15C4F9AE02/2UVIdZZlg2gUctzDnfIkqtSon6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UVIdZZlg2gUctzDnfIkqtSon6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91352D1/DDF4226CC04111F0BC256F15C4F9AE02/2UVIdZZlg2gUctzDnfIkqtSon6o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:62:9d:31:0f:2d:9c:48:20:97:25:92:da:e1:fb:af:f8:90: c6:6a:70:09:9a:41:19:f7:5a:62:0f:05:39:90:07:e8:75:ef: ce:e8:54:f3:57:96:e7:82:19:d2:44:2b:42:87:e6:6b:e6:83: 0a:05:c5:40:55:65:e6:1c:b2:59:1a:5d:43:2b:09:bd:51:65: 61:06:03:03:e3:08:c6:ae:d7:74:e4:68:d7:73:14:b6:fa:f4: 4f:b1:92:b7:c8:49:6f:64:eb:09:a3:ed:fb:10:8a:cd:08:95: 43:4e:5e:a2:e1:7b:69:db:88:9c:f0:6e:04:7b:0b:82:58:d3: 27:e3:b6:23:de:cf:9f:bd:d5:5b:cc:fc:aa:31:ce:f9:03:be: 47:1b:9a:45:4f:1d:6d:58:0b:28:fc:62:69:31:b7:91:5c:1d: bb:70:a7:9c:87:ec:ab:42:02:71:57:c5:ed:cc:2d:b5:2f:15: f5:c1:be:64:39:89:ce:2a:d7:f5:de:b9:99:27:4f:99:62:53: c2:9c:22:e4:1d:87:9f:97:6e:e0:67:3f:64:46:35:03:5f:c2: 09:c5:59:aa:cf:5f:6c:a2:ed:d5:d6:65:11:68:7f:d2:f9:16: 76:93:a8:e6:29:b9:55:ed:98:06:66:22:dc:b4:2b:a5:e3:42: 7d:d9:d6:23 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NTJEMTExMC8GA1UEBRMoRDk0NTQ4NzU5NjY1ODM2ODE0NzJEQ0MzOURGMjI0QUFE NEE4OUZBQTAeFw0yNjAzMDEwOTU1MDRaFw0yNjAzMDgwOTU1MDRaMBgxFjAUBgNV BAMTDTY5YTQwY2Y4LWRlYzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4B39uwvfInjGgvVI77NutW2H2aF/wcDZvqKnMCWQOIpoi/sPA6lfqg0efQqaj 7RagdLVMs+7oSZ9OkQIAKvOuPN6nxhvmV7h5Gv8RR59206ra/c76iTPFlYE4rfaA SualX5nU9f30bjwPeVw8qwna5opOezLtM/Nig55ItielrjDGwKXHdji3jlLUGMxU /+lUH7UckFIrvjZRgF0cQJL5IMD1GjU8B94stCVdyj/NdbBBfJdPuekNLwgd1Anj ish6QQoZjlmEpEyKriB/LGFrFAQCj5aYyCL2gKZhJGEsxQHA9Fb6V5bt38Uthqry 1GZqEb51hEf03m+j9DYraqIzAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUsO1/g1VR hnvYLV5QHGbLxXXvWz4wHwYDVR0jBBgwFoAU2UVIdZZlg2gUctzDnfIkqtSon6ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM1MkQxL0RERjQyMjZDQzA0 MTExRjBCQzI1NkYxNUM0RjlBRTAyLzJVVklkWlpsZzJnVWN0ekRuZklrcXRTb242 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMlVWSWRaWmxnMmdVY3R6RG5mSWtxdFNvbjZvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM1 MkQxL0RERjQyMjZDQzA0MTExRjBCQzI1NkYxNUM0RjlBRTAyLzJVVklkWlpsZzJn VWN0ekRuZklrcXRTb242by5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBiYp0xDy2cSCCXJZLa4fuv+JDGanAJmkEZ91piDwU5kAfode/O6FTzV5bnghnS RCtCh+Zr5oMKBcVAVWXmHLJZGl1DKwm9UWVhBgMD4wjGrtd05GjXcxS2+vRPsZK3 yElvZOsJo+37EIrNCJVDTl6i4Xtp24ic8G4EewuCWNMn47Yj3s+fvdVbzPyqMc75 A75HG5pFTx1tWAso/GJpMbeRXB27cKech+yrQgJxV8XtzC21LxX1wb5kOYnOKtf1 3rmZJ0+ZYlPCnCLkHYefl27gZz9kRjUDX8IJxVmqz19sou3V1mURaH/S+RZ2k6jm KblV7ZgGZiLctCul40J92dYj -----END CERTIFICATE-----Generated at Mon Mar 2 14:42:24 2026 by rpki-client