$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft File: UoKkZCr301eZKRu6RH6hQlGk1fw.mft (raw, json) Hash identifier: NivaONlzYCiKroS+ejrAaLq8n6lqiShVkTF+ApF6QFE= Subject key identifier: 8B:86:42:E2:BF:0D:7B:C7:A0:BA:2E:E8:80:88:DF:EF:20:2F:57:7F Authority key identifier: 52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC Certificate issuer: /CN=A91582D9/serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Certificate serial: 08E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft Manifest number: 20B1 Signing time: Sun 01 Mar 2026 23:35:21 +0000 Manifest this update: Sun 01 Mar 2026 23:35:20 +0000 Manifest next update: Sun 08 Mar 2026 23:35:20 +0000 Files and hashes: 1: UoKkZCr301eZKRu6RH6hQlGk1fw.crl (hash: VJBNBJfWpwCe/Ddbu4fbJxxwDcesr5DrjI5aHYu5Z1o=) 2: 172C2B96197711F0A993397AC4F9AE02.roa (hash: KlRLli/SZyA/blQSDVf22qf7tBm9EE3kAalEgJQxMlA=) 3: 654665EA197611F09D2B1C76C4F9AE02.roa (hash: EKk887jvD91sa5mqsDwh0zo559XyowQgVll88eOizFM=) 4: B5E806CC8BC711EE899A5284C4F9AE02.roa (hash: sQmmHynRplLfSEUYnUX91utp9ekEe+hXIjAXfGLYEZ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:35:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2272 (0x8e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9, serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Validity Not Before: Mar 1 23:35:20 2026 GMT Not After : Mar 8 23:35:20 2026 GMT Subject: CN=69a4cd39-c38c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:6d:87:58:54:f7:be:a1:ea:0f:63:b9:90:1a: 7b:e0:7b:b7:6d:34:9e:e1:44:2b:21:27:1e:f0:19: 7c:1d:b7:2b:0f:f3:c1:6c:5b:e7:06:b7:6b:70:44: 82:b0:e9:dc:d3:a7:65:d5:d9:d4:60:a0:6b:ec:95: 27:b2:5e:5a:8c:a0:1a:f6:0c:ff:cf:0e:fb:86:98: 79:61:d7:c4:03:47:8e:8e:0c:33:62:5a:c2:ec:04: 6c:e5:70:fb:7b:3c:93:34:01:90:64:f2:a8:7e:a5: ea:05:f3:b7:e9:ae:c7:63:3b:5f:56:f4:f0:57:bd: 81:be:20:54:2f:16:c2:88:a4:6f:bc:8d:93:83:cc: b7:e7:9c:10:1d:c4:89:88:6a:d1:0c:c1:91:4c:8a: 64:23:9d:d8:ed:2d:cd:ff:81:62:6d:1c:94:b7:38: 1f:27:d0:43:00:87:7e:75:7d:cd:b0:ff:6e:da:e1: b1:76:7a:52:f7:62:ea:ab:84:dc:b6:63:9c:2d:a6: f9:29:01:cf:78:cf:90:a0:2e:5e:a1:c1:30:f0:c4: 0f:f8:d2:61:ec:87:60:db:b1:41:43:5b:3f:d2:c0: 3e:bd:f7:b6:fa:38:32:24:a3:12:94:c6:bf:8a:29: a0:18:a0:ac:9e:48:bc:59:00:cf:6e:44:24:4e:f1: 0b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:86:42:E2:BF:0D:7B:C7:A0:BA:2E:E8:80:88:DF:EF:20:2F:57:7F X509v3 Authority Key Identifier: keyid:52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:28:68:86:d1:94:0e:83:ce:2b:23:ce:19:7d:d1:c7:07:3d: 25:de:80:cb:1a:93:99:76:12:59:eb:62:a6:11:b0:80:f6:a3: 5a:0e:7e:12:85:cd:ed:e0:83:90:c4:ce:4f:dd:6f:bd:cf:03: 1c:d9:89:83:1d:10:05:6c:d0:c3:d6:20:5a:d1:8b:c4:43:20: 9e:d1:1f:c5:4d:3d:8e:f2:3b:70:7d:09:a7:d1:a4:55:79:a6: 4a:67:44:98:23:91:9e:8c:b2:1a:26:84:0d:8a:38:3e:ff:d5: 48:4c:bf:b6:73:67:8d:be:2d:37:72:06:c3:5e:1f:54:49:87: 27:80:26:bb:ce:9c:63:fb:14:55:fc:2d:f8:b7:44:fe:2d:a4: 4e:85:54:3a:cf:13:62:9c:54:43:62:ff:90:0e:94:28:0d:88: 9d:30:07:02:95:d5:a8:57:83:44:61:98:4a:ca:79:2f:b7:7a: af:d1:77:21:37:d7:30:af:cd:a6:9f:dc:2e:cd:38:7c:46:12: bf:1a:52:49:35:e5:0a:02:11:11:40:a3:14:54:31:a6:28:d4: cb:b2:47:3b:5c:df:02:77:8f:a2:53:a5:8f:6d:fd:c2:0c:20: 7d:8b:cd:1c:41:bc:ce:01:98:96:39:db:e9:19:d4:04:96:f4: ae:33:5c:a7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDUyODJBNDY0MkFGN0QzNTc5OTI5MUJCQTQ0N0VBMTQy NTFBNEQ1RkMwHhcNMjYwMzAxMjMzNTIwWhcNMjYwMzA4MjMzNTIwWjAYMRYwFAYD VQQDEw02OWE0Y2QzOS1jMzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1G2HWFT3vqHqD2O5kBp74Hu3bTSe4UQrISce8Bl8HbcrD/PBbFvnBrdrcESC sOnc06dl1dnUYKBr7JUnsl5ajKAa9gz/zw77hph5YdfEA0eOjgwzYlrC7ARs5XD7 ezyTNAGQZPKofqXqBfO36a7HYztfVvTwV72BviBULxbCiKRvvI2Tg8y355wQHcSJ iGrRDMGRTIpkI53Y7S3N/4FibRyUtzgfJ9BDAId+dX3NsP9u2uGxdnpS92Lqq4Tc tmOcLab5KQHPeM+QoC5eocEw8MQP+NJh7Idg27FBQ1s/0sA+vfe2+jgyJKMSlMa/ iimgGKCsnki8WQDPbkQkTvELrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIuGQuK/ DXvHoLou6ICI3+8gL1d/MB8GA1UdIwQYMBaAFFKCpGQq99NXmSkbukR+oUJRpNX8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAxZVpLUnU2Ukg2aFFsR2sx ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvS2taQ3IzMDFlWktSdTZSSDZoUWxHazFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODJEOS8wRURBNkQ1RUNEREExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAx ZVpLUnU2Ukg2aFFsR2sxZncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOShohtGUDoPOKyPOGX3Rxwc9Jd6AyxqTmXYSWetiphGwgPajWg5+EoXN7eCD kMTOT91vvc8DHNmJgx0QBWzQw9YgWtGLxEMgntEfxU09jvI7cH0Jp9GkVXmmSmdE mCORnoyyGiaEDYo4Pv/VSEy/tnNnjb4tN3IGw14fVEmHJ4Amu86cY/sUVfwt+LdE /i2kToVUOs8TYpxUQ2L/kA6UKA2InTAHApXVqFeDRGGYSsp5L7d6r9F3ITfXMK/N pp/cLs04fEYSvxpSSTXlCgIREUCjFFQxpijUy7JHO1zfAnePolOlj239wgwgfYvN HEG8zgGYljnb6RnUBJb0rjNcpw== -----END CERTIFICATE-----Generated at Mon Mar 2 18:51:22 2026 by rpki-client