$ rpki-client -vvf rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft File: up0lGkqfrMTkpmOHdQooZioxAFc.mft (raw, json) Hash identifier: uk/20vUiqYB1YfyPPVZLojXaNyv3xgHCEBTU7XsguUM= Subject key identifier: BC:65:E6:16:4C:8B:15:CD:4C:14:7C:E0:AF:F7:87:46:57:46:58:1C Authority key identifier: BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 Certificate issuer: /CN=A915B581/serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Certificate serial: 3541 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft Manifest number: 352B Signing time: Mon 02 Mar 2026 00:36:05 +0000 Manifest this update: Mon 02 Mar 2026 00:36:02 +0000 Manifest next update: Mon 09 Mar 2026 00:36:02 +0000 Files and hashes: 1: up0lGkqfrMTkpmOHdQooZioxAFc.crl (hash: aGLXT5BhLxXJc1KJ0dzTeWc3nDGb9esrm5uSnRXajhc=) 2: 7A38D6B854F311E7AC64ED3AC4F9AE02.roa (hash: wpF9ptajaxcFCU5XYXYL7kAycTSdDrhOWM0Rnpw1Xnw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:36:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13633 (0x3541) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B581, serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Validity Not Before: Mar 2 00:36:02 2026 GMT Not After : Mar 9 00:36:02 2026 GMT Subject: CN=69a4db74-37a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:25:70:9b:5b:9f:73:99:2e:cc:d7:60:a9:70: 8a:bb:23:ef:17:f8:db:19:a4:62:e9:99:04:71:d5: 54:dd:a4:70:63:f8:6a:83:2d:d2:50:37:74:36:3a: 63:93:d9:17:ed:03:c0:0f:24:d8:95:27:39:1c:44: 12:88:4b:0e:04:4f:88:40:96:e3:24:6f:d2:6b:0c: 2d:d7:81:6d:9f:04:8d:60:35:8c:06:d7:b0:7a:f8: cc:d7:cd:7b:d6:65:6f:54:1c:17:17:de:71:61:1a: 34:25:c0:e3:d3:0f:4c:7e:a9:a7:68:fc:5a:e6:b9: 33:5a:cd:aa:bd:55:65:6b:ab:a1:b7:f2:41:bf:61: 34:33:ca:3b:6e:01:17:bb:3b:9e:66:e2:75:2f:9c: b0:d5:cb:88:3e:5a:b7:bf:29:e4:d1:f2:ec:bc:c4: a4:ca:37:de:ab:cd:04:9f:96:3d:25:18:7a:45:13: 3e:35:25:c0:f8:c0:d8:1a:71:d9:8a:0f:b8:2d:d5: 51:2b:1a:3b:b4:02:ad:38:1c:e6:c0:b6:1d:0d:a9: 02:7c:7b:7a:69:2a:1e:f8:39:41:9e:1e:71:fa:b7: 9e:11:03:e5:f8:60:3d:11:35:b9:fd:b2:fc:b9:af: 62:a6:91:62:47:8c:0b:52:06:d0:32:cd:49:3a:65: f9:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:65:E6:16:4C:8B:15:CD:4C:14:7C:E0:AF:F7:87:46:57:46:58:1C X509v3 Authority Key Identifier: keyid:BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:c6:51:04:eb:de:dd:3d:8c:4f:ec:81:2f:33:dd:f7:56:65: d2:34:d5:bf:f1:e9:66:d9:7c:3f:19:e3:0c:07:69:79:da:4c: 81:25:9a:54:07:26:06:ba:b0:24:4c:64:67:ef:ab:b9:2e:c4: e1:7c:05:94:a3:9e:48:48:61:1e:fc:13:e5:a1:83:d3:82:30: 59:08:ac:d9:13:1f:4f:f8:21:2f:91:36:00:5a:a6:be:68:df: 2a:6f:d9:f6:aa:9d:5d:05:f8:ad:15:9e:db:7d:dd:99:c7:9b: 71:11:10:a0:4d:08:2a:61:46:ac:1c:7b:96:d5:b9:41:5c:f7: f6:a7:4c:61:d8:26:cc:f5:dc:76:eb:b7:24:aa:60:b0:e8:f9: ce:87:c3:d4:78:bc:0a:7e:25:f5:b7:7c:c3:07:cb:18:09:db: 23:fb:d5:fb:a3:4f:c8:41:61:37:7f:02:fd:73:45:f9:41:83: fb:59:45:2a:ce:4b:71:6f:14:1b:76:36:48:86:44:9d:34:f9: 12:3a:ef:6e:1b:f2:22:25:0f:ea:d6:bc:b0:68:41:55:e4:35: b2:58:cf:ce:e2:3f:63:47:ad:11:40:34:f1:66:e8:ff:1b:df: ea:10:df:e8:44:b4:10:dd:2e:32:8b:81:bc:ab:28:52:cf:90: 83:e3:80:80 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1ODExMTAvBgNVBAUTKEJBOUQyNTFBNEE5RkFDQzRFNEE2NjM4Nzc1MEEyODY2 MkEzMTAwNTcwHhcNMjYwMzAyMDAzNjAyWhcNMjYwMzA5MDAzNjAyWjAYMRYwFAYD VQQDEw02OWE0ZGI3NC0zN2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtiVwm1ufc5kuzNdgqXCKuyPvF/jbGaRi6ZkEcdVU3aRwY/hqgy3SUDd0Njpj k9kX7QPADyTYlSc5HEQSiEsOBE+IQJbjJG/Sawwt14FtnwSNYDWMBtewevjM1817 1mVvVBwXF95xYRo0JcDj0w9MfqmnaPxa5rkzWs2qvVVla6uht/JBv2E0M8o7bgEX uzueZuJ1L5yw1cuIPlq3vynk0fLsvMSkyjfeq80En5Y9JRh6RRM+NSXA+MDYGnHZ ig+4LdVRKxo7tAKtOBzmwLYdDakCfHt6aSoe+DlBnh5x+reeEQPl+GA9ETW5/bL8 ua9ippFiR4wLUgbQMs1JOmX5zwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLxl5hZM ixXNTBR84K/3h0ZXRlgcMB8GA1UdIwQYMBaAFLqdJRpKn6zE5KZjh3UKKGYqMQBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjU4MS9CQjhGREZGRTFE OTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJNVGtwbU9IZFFvb1ppb3hB RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMGxHa3Fmck1Ua3BtT0hkUW9vWmlveEFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjU4MS9CQjhGREZGRTFEOTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJN VGtwbU9IZFFvb1ppb3hBRmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGMZRBOve3T2MT+yBLzPd91Zl0jTVv/HpZtl8PxnjDAdpedpMgSWaVAcmBrqw JExkZ++ruS7E4XwFlKOeSEhhHvwT5aGD04IwWQis2RMfT/ghL5E2AFqmvmjfKm/Z 9qqdXQX4rRWe233dmcebcREQoE0IKmFGrBx7ltW5QVz39qdMYdgmzPXcduu3JKpg sOj5zofD1Hi8Cn4l9bd8wwfLGAnbI/vV+6NPyEFhN38C/XNF+UGD+1lFKs5LcW8U G3Y2SIZEnTT5EjrvbhvyIiUP6ta8sGhBVeQ1sljPzuI/Y0etEUA08Wbo/xvf6hDf 6ES0EN0uMouBvKsoUs+Qg+OAgA== -----END CERTIFICATE-----Generated at Mon Mar 2 14:22:48 2026 by rpki-client