$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.mft File: UylwC03drZ4_zcMnP00Y0-MEXcA.mft (raw, json) Hash identifier: aB58TK46oJzD+sTEl/OmVcAQeYSxIxoJ4B80sPV4Afw= Subject key identifier: FF:DF:F2:D9:56:42:70:73:90:04:60:18:68:49:F8:9B:16:11:12:62 Authority key identifier: 53:29:70:0B:4D:DD:AD:9E:3F:CD:C3:27:3F:4D:18:D3:E3:04:5D:C0 Certificate issuer: /CN=A9143B09/serialNumber=5329700B4DDDAD9E3FCDC3273F4D18D3E3045DC0 Certificate serial: 0960 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UylwC03drZ4_zcMnP00Y0-MEXcA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.mft Manifest number: 1A3B Signing time: Mon 02 Mar 2026 00:38:55 +0000 Manifest this update: Mon 02 Mar 2026 00:38:53 +0000 Manifest next update: Mon 09 Mar 2026 00:38:53 +0000 Files and hashes: 1: UylwC03drZ4_zcMnP00Y0-MEXcA.crl (hash: uY9dXSkkktxOfgsMO6t3LWnO56lW5NqB9VOznZGTBr4=) 2: D9B56C8A7AB211EB99DAFE83C4F9AE02.roa (hash: HTJDCglPoFk22fksfhTkeiZZB0j/VQ2aH60i8wPK/kc=) 3: 31414558B0D511EFB17B942FC4F9AE02.roa (hash: ROykPYM/LeczZs6fuaskuBijSjnFp8A1FgiccxUhw58=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.crl rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UylwC03drZ4_zcMnP00Y0-MEXcA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:38:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2400 (0x960) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B09, serialNumber=5329700B4DDDAD9E3FCDC3273F4D18D3E3045DC0 Validity Not Before: Mar 2 00:38:53 2026 GMT Not After : Mar 9 00:38:53 2026 GMT Subject: CN=69a4dc1e-8432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0a:98:1c:a0:0b:6b:fe:30:3a:ee:05:37:b0: f3:71:f5:fc:b9:fb:37:31:8e:3a:a3:72:32:b9:b5: 7a:a7:50:d7:d9:29:4a:5c:ed:1f:a3:91:77:89:45: 74:62:52:91:61:9c:2c:48:b5:e3:21:ba:22:74:4f: a8:af:dd:f5:8d:6b:26:68:52:bf:9d:3e:34:71:34: a7:a8:2a:89:f4:0e:eb:d6:4f:70:ee:f8:89:26:31: a9:7e:9e:6f:0d:6a:c7:03:bb:9f:59:cf:de:e5:91: 78:c6:3b:79:47:b3:4b:cd:01:5b:b0:ac:b1:76:d7: 14:97:61:b1:8a:75:32:d6:ea:8c:32:3b:d0:49:37: 19:92:e4:40:c5:6e:8d:ac:1c:b7:91:b0:91:62:fc: 92:2d:0a:12:db:b1:ee:7d:5a:be:28:76:cc:5b:38: ff:ac:93:e4:33:40:02:08:86:11:16:9f:ce:07:66: 6a:84:d2:b4:ff:e8:0b:55:ff:96:4e:0b:6d:ff:33: 2b:d2:b2:22:35:e8:fb:ef:de:5e:78:d5:92:7b:28: 47:4e:4c:59:cd:88:26:c3:d1:bc:2f:42:37:fd:a9: 98:15:8f:98:a9:36:42:b9:85:df:01:c6:a9:3d:70: 12:e2:d0:da:29:6f:5a:70:cb:b3:7b:04:fb:3c:34: ca:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:DF:F2:D9:56:42:70:73:90:04:60:18:68:49:F8:9B:16:11:12:62 X509v3 Authority Key Identifier: keyid:53:29:70:0B:4D:DD:AD:9E:3F:CD:C3:27:3F:4D:18:D3:E3:04:5D:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UylwC03drZ4_zcMnP00Y0-MEXcA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:f8:6e:1e:13:93:25:40:fe:5f:02:18:d0:6c:79:30:16:9b: 0a:c0:c7:4a:92:f7:e0:ac:44:40:18:fc:c6:e6:e0:93:75:df: 58:82:c1:dc:9c:ae:b5:ac:a0:23:40:b6:72:cb:f1:cb:5f:db: 1b:72:74:b7:62:f3:be:2d:51:bd:bc:52:10:7b:f1:4f:3e:13: 9d:bb:ed:cf:ac:ed:de:f9:71:ca:f5:b4:d6:f7:2c:91:90:91: 7b:82:ad:80:36:b5:94:33:86:65:53:bc:e1:82:4f:75:41:07: 84:5e:c3:62:fb:25:d0:be:da:65:76:39:e0:6f:79:aa:09:d5: dc:ba:f3:fd:a0:4c:8e:02:4d:e3:b1:09:54:c3:bd:a2:eb:67: 13:ba:05:1b:94:6f:68:5a:87:7b:eb:3e:5a:54:93:5d:c2:cf: 46:5e:d6:86:48:fb:9f:3d:66:50:49:2c:8d:38:b0:80:05:18: c9:b5:38:3f:2f:8a:61:8f:90:4f:b4:5b:39:a5:eb:63:d0:f3: 48:88:4d:75:c1:a1:47:be:d1:a4:8a:71:a6:d0:fe:dc:17:87: f9:b4:84:43:db:e9:b0:fd:51:4a:c3:a3:a3:30:4c:98:dc:c9: fa:ea:2c:3a:ea:50:01:6f:06:14:8a:fa:07:df:7b:b9:0c:43: dd:d4:bf:b8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMDkxMTAvBgNVBAUTKDUzMjk3MDBCNEREREFEOUUzRkNEQzMyNzNGNEQxOEQz RTMwNDVEQzAwHhcNMjYwMzAyMDAzODUzWhcNMjYwMzA5MDAzODUzWjAYMRYwFAYD VQQDEw02OWE0ZGMxZS04NDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQqYHKALa/4wOu4FN7DzcfX8ufs3MY46o3IyubV6p1DX2SlKXO0fo5F3iUV0 YlKRYZwsSLXjIboidE+or931jWsmaFK/nT40cTSnqCqJ9A7r1k9w7viJJjGpfp5v DWrHA7ufWc/e5ZF4xjt5R7NLzQFbsKyxdtcUl2GxinUy1uqMMjvQSTcZkuRAxW6N rBy3kbCRYvySLQoS27HufVq+KHbMWzj/rJPkM0ACCIYRFp/OB2ZqhNK0/+gLVf+W Tgtt/zMr0rIiNej7795eeNWSeyhHTkxZzYgmw9G8L0I3/amYFY+YqTZCuYXfAcap PXAS4tDaKW9acMuzewT7PDTKQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP/f8tlW QnBzkARgGGhJ+JsWERJiMB8GA1UdIwQYMBaAFFMpcAtN3a2eP83DJz9NGNPjBF3A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwOS8zQjM2N0JDRTMz QjcxMUU5QUQwRjU4N0FDNEY5QUUwMi9VeWx3QzAzZHJaNF96Y01uUDAwWTAtTUVY Y0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5bHdDMDNkclo0X3pjTW5QMDBZMC1NRVhjQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwOS8zQjM2N0JDRTMzQjcxMUU5QUQwRjU4N0FDNEY5QUUwMi9VeWx3QzAzZHJa NF96Y01uUDAwWTAtTUVYY0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAg/huHhOTJUD+XwIY0Gx5MBabCsDHSpL34KxEQBj8xubgk3XfWILB3Jyutayg I0C2csvxy1/bG3J0t2Lzvi1RvbxSEHvxTz4Tnbvtz6zt3vlxyvW01vcskZCRe4Kt gDa1lDOGZVO84YJPdUEHhF7DYvsl0L7aZXY54G95qgnV3Lrz/aBMjgJN47EJVMO9 outnE7oFG5RvaFqHe+s+WlSTXcLPRl7Whkj7nz1mUEksjTiwgAUYybU4Py+KYY+Q T7RbOaXrY9DzSIhNdcGhR77RpIpxptD+3BeH+bSEQ9vpsP1RSsOjozBMmNzJ+uos OupQAW8GFIr6B997uQxD3dS/uA== -----END CERTIFICATE-----Generated at Mon Mar 2 04:18:53 2026 by rpki-client