$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft File: UoKkZCr301eZKRu6RH6hQlGk1fw.mft (raw, json) Hash identifier: fO+MhSq4fMy1HhLdNWptPd6FLwMexUfVvzMV12mSnqA= Subject key identifier: 46:A8:CE:21:93:D6:D4:8C:27:21:F1:60:00:28:99:C1:09:29:CC:51 Authority key identifier: 52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC Certificate issuer: /CN=A91582D9/serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Certificate serial: 08E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft Manifest number: 20B3 Signing time: Mon 02 Mar 2026 16:34:08 +0000 Manifest this update: Mon 02 Mar 2026 16:34:08 +0000 Manifest next update: Mon 09 Mar 2026 16:34:08 +0000 Files and hashes: 1: UoKkZCr301eZKRu6RH6hQlGk1fw.crl (hash: edsv7AXJlMeCpfQ6HVAXryUxsFB+TcfN49wJ9jp/XqY=) 2: B5E806CC8BC711EE899A5284C4F9AE02.roa (hash: sQmmHynRplLfSEUYnUX91utp9ekEe+hXIjAXfGLYEZ0=) 3: 172C2B96197711F0A993397AC4F9AE02.roa (hash: KlRLli/SZyA/blQSDVf22qf7tBm9EE3kAalEgJQxMlA=) 4: 654665EA197611F09D2B1C76C4F9AE02.roa (hash: EKk887jvD91sa5mqsDwh0zo559XyowQgVll88eOizFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:34:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2273 (0x8e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9, serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Validity Not Before: Mar 2 16:34:08 2026 GMT Not After : Mar 9 16:34:08 2026 GMT Subject: CN=69a5bc00-611b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:82:ff:68:41:41:af:42:af:2b:ac:3d:8c:6a: 76:c9:ac:ef:f9:7d:5e:ea:df:07:38:d6:57:d4:6f: 0d:27:4f:2f:48:c4:cd:1a:c0:9c:2e:10:b7:58:1f: bb:6e:53:c0:4b:85:8a:9c:ee:36:03:1b:b7:47:69: 5d:0a:3a:1d:b3:fd:8f:14:74:74:9d:ce:9d:e9:4c: 0b:21:00:3c:0b:da:49:f0:af:ce:a9:52:64:87:47: a5:8c:03:9f:4a:e1:9c:1a:c8:ae:fd:b0:37:44:d8: 2d:82:8d:ba:5c:0a:58:a5:45:c8:16:b5:03:7c:73: 10:70:c9:87:98:3f:88:3f:62:9a:6d:88:77:c9:a5: 09:44:38:86:3a:f8:f0:a5:b5:a5:a2:e4:be:aa:96: 36:c8:a5:e8:c7:5f:e6:83:bd:1c:b8:78:b6:cb:e0: 34:4e:e5:ce:fa:7d:7a:14:38:81:28:d3:fd:f5:f8: 9d:24:be:81:d2:db:d4:8d:b1:3c:cd:31:57:f6:a9: 39:29:56:d0:2d:28:65:97:8c:06:92:9f:f0:80:5c: 0f:a4:ea:4c:b9:60:9f:12:bc:ed:43:10:fa:a7:e0: 50:9b:82:f1:0c:0d:0a:54:ad:31:aa:c8:ba:3a:05: 33:20:1d:18:ad:26:89:79:1d:60:19:47:7a:0c:08: 35:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:A8:CE:21:93:D6:D4:8C:27:21:F1:60:00:28:99:C1:09:29:CC:51 X509v3 Authority Key Identifier: keyid:52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:6a:80:5b:15:cf:83:90:87:06:60:4a:b6:d0:8d:5a:57:e1: a2:65:09:f5:f4:b4:1e:33:fe:a5:55:2d:08:35:44:b5:6b:15: 9e:6e:9d:60:93:03:4f:33:7b:d9:67:a7:56:78:74:b4:89:59: 4a:5f:3a:f2:24:0e:e1:9e:c0:31:37:7d:3e:7f:68:19:d4:47: a9:ac:af:df:5a:4b:39:89:de:2a:0e:c0:7d:7f:d1:7c:d0:d6: e0:4a:7d:8e:fc:6d:d0:99:3b:49:02:5b:d5:11:98:d5:3c:fb: 47:fe:ee:dc:e1:69:f2:61:a6:28:1e:dc:6a:ca:66:2c:88:30: 67:54:7f:fd:ad:f1:15:07:1a:5f:5d:fe:53:34:2e:34:47:e6: d0:29:d7:79:70:48:58:fe:24:9e:9d:39:46:1d:19:a4:52:f2: 28:e4:43:ec:d4:98:8f:ce:6e:e0:59:5b:66:dd:07:dc:af:91: 27:eb:3b:e9:b6:18:b1:ea:dd:73:d0:85:8f:87:20:c1:50:dd: 94:ab:64:7c:d8:c1:1f:0a:a3:4c:d8:14:f9:1f:c6:57:a8:6f: 28:7e:6d:2f:22:02:96:11:ff:9d:79:a7:b8:bf:d0:1a:8f:21: c4:39:a5:c1:9a:bf:4d:29:ea:bf:bb:b0:8f:44:54:85:61:06: 54:2a:48:4e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDUyODJBNDY0MkFGN0QzNTc5OTI5MUJCQTQ0N0VBMTQy NTFBNEQ1RkMwHhcNMjYwMzAyMTYzNDA4WhcNMjYwMzA5MTYzNDA4WjAYMRYwFAYD VQQDEw02OWE1YmMwMC02MTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4L/aEFBr0KvK6w9jGp2yazv+X1e6t8HONZX1G8NJ08vSMTNGsCcLhC3WB+7 blPAS4WKnO42Axu3R2ldCjods/2PFHR0nc6d6UwLIQA8C9pJ8K/OqVJkh0eljAOf SuGcGsiu/bA3RNgtgo26XApYpUXIFrUDfHMQcMmHmD+IP2KabYh3yaUJRDiGOvjw pbWlouS+qpY2yKXox1/mg70cuHi2y+A0TuXO+n16FDiBKNP99fidJL6B0tvUjbE8 zTFX9qk5KVbQLShll4wGkp/wgFwPpOpMuWCfErztQxD6p+BQm4LxDA0KVK0xqsi6 OgUzIB0YrSaJeR1gGUd6DAg14QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEaoziGT 1tSMJyHxYAAomcEJKcxRMB8GA1UdIwQYMBaAFFKCpGQq99NXmSkbukR+oUJRpNX8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAxZVpLUnU2Ukg2aFFsR2sx ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvS2taQ3IzMDFlWktSdTZSSDZoUWxHazFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODJEOS8wRURBNkQ1RUNEREExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAx ZVpLUnU2Ukg2aFFsR2sxZncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnWqAWxXPg5CHBmBKttCNWlfhomUJ9fS0HjP+pVUtCDVEtWsVnm6dYJMDTzN7 2WenVnh0tIlZSl868iQO4Z7AMTd9Pn9oGdRHqayv31pLOYneKg7AfX/RfNDW4Ep9 jvxt0Jk7SQJb1RGY1Tz7R/7u3OFp8mGmKB7caspmLIgwZ1R//a3xFQcaX13+UzQu NEfm0CnXeXBIWP4knp05Rh0ZpFLyKORD7NSYj85u4FlbZt0H3K+RJ+s76bYYserd c9CFj4cgwVDdlKtkfNjBHwqjTNgU+R/GV6hvKH5tLyIClhH/nXmnuL/QGo8hxDml wZq/TSnqv7uwj0RUhWEGVCpITg== -----END CERTIFICATE-----Generated at Tue Mar 3 05:34:10 2026 by rpki-client