$ rpki-client -vvf rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/_UmlE0ai96yBGwCtYuvvDpSiobI.mft File: _UmlE0ai96yBGwCtYuvvDpSiobI.mft (raw, json) Hash identifier: ke5RJal/6QvP6kRdKLhOOpqA0+VAUwA3rx5CY4PIZFw= Subject key identifier: 2C:BE:1B:38:9A:12:84:49:C3:C9:83:DB:06:10:75:38:97:A7:7E:AE Authority key identifier: FD:49:A5:13:46:A2:F7:AC:81:1B:00:AD:62:EB:EF:0E:94:A2:A1:B2 Certificate issuer: /CN=A91652B5/serialNumber=FD49A51346A2F7AC811B00AD62EBEF0E94A2A1B2 Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_UmlE0ai96yBGwCtYuvvDpSiobI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/_UmlE0ai96yBGwCtYuvvDpSiobI.mft Manifest number: 3C Signing time: Mon 02 Mar 2026 14:12:48 +0000 Manifest this update: Mon 02 Mar 2026 14:12:48 +0000 Manifest next update: Mon 09 Mar 2026 14:12:48 +0000 Files and hashes: 1: _UmlE0ai96yBGwCtYuvvDpSiobI.crl (hash: UmmJOR7crD+AlYG2RHViPrhc9XURrR/uYR8XHn1r4sA=) 2: 535DB56CD1AF11F0A278C10CC4F9AE02.roa (hash: BXUEY5m+3lonf61CO2Aq4e6KwB/tUlOeMJ88DFpi710=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/_UmlE0ai96yBGwCtYuvvDpSiobI.crl rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/_UmlE0ai96yBGwCtYuvvDpSiobI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_UmlE0ai96yBGwCtYuvvDpSiobI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:12:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91652B5, serialNumber=FD49A51346A2F7AC811B00AD62EBEF0E94A2A1B2 Validity Not Before: Mar 2 14:12:48 2026 GMT Not After : Mar 9 14:12:48 2026 GMT Subject: CN=69a59ae0-5d0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4e:c5:ac:b9:4e:a0:b3:bf:17:ab:ea:0f:6d: b2:97:05:f9:22:ea:9f:d2:c6:d9:2b:62:a4:a9:16: 89:98:e3:97:c0:98:da:75:29:e1:83:25:7a:c8:f8: 0d:2a:db:a7:ae:e3:af:28:c9:f0:91:fd:04:47:5c: ac:5b:a2:b1:3e:5e:f3:17:b0:1b:55:28:e1:96:77: 2c:6d:d4:58:70:7f:78:5f:65:5b:f6:fa:9f:ec:9d: 1e:07:c9:5a:2f:6b:2f:82:a8:ea:6a:35:4e:52:13: 11:f7:6d:18:e6:01:e7:21:52:55:4a:5f:dc:fb:93: 4d:e5:1b:dc:a1:67:bf:43:35:f5:49:68:89:3d:c8: a8:a4:c1:5a:37:a6:d0:9d:18:33:ad:7d:0d:78:ce: 0c:dd:7c:93:db:b9:1c:e8:ec:a8:71:e4:1a:51:dc: 59:1b:e4:bd:28:f2:f8:c1:58:ea:fb:f1:24:a9:8d: d3:dc:54:eb:dc:2b:44:b5:f3:d3:2a:b7:4c:d8:5b: ff:a8:10:84:eb:79:ba:7f:85:8a:8c:aa:34:a7:7f: 2d:bb:99:eb:31:98:e3:3d:e9:f5:72:37:30:f7:b4: b5:32:fa:13:d9:2c:db:90:ea:da:61:84:57:33:93: 4f:27:8d:2d:24:7e:c1:b3:32:55:f3:af:53:4f:26: 30:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:BE:1B:38:9A:12:84:49:C3:C9:83:DB:06:10:75:38:97:A7:7E:AE X509v3 Authority Key Identifier: keyid:FD:49:A5:13:46:A2:F7:AC:81:1B:00:AD:62:EB:EF:0E:94:A2:A1:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/_UmlE0ai96yBGwCtYuvvDpSiobI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_UmlE0ai96yBGwCtYuvvDpSiobI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/_UmlE0ai96yBGwCtYuvvDpSiobI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:ce:ab:92:6e:2a:df:b5:d0:cd:11:b8:d9:b9:f0:42:de:ae: 6b:57:32:5e:ad:0e:3c:e5:c0:aa:e4:b5:a7:23:78:6a:e1:b4: 0a:e6:30:b8:6a:9c:7c:03:bf:69:54:c6:99:64:80:36:e8:3e: 41:7c:44:7c:86:20:0c:06:d2:49:6f:dd:fb:83:59:9b:1c:14: 61:65:a3:38:fb:b0:fd:1f:14:52:ff:92:a2:c4:1d:80:98:6a: 5f:22:8f:dc:0c:28:5a:e6:d2:98:7c:42:9b:31:47:98:5b:f2: 4d:98:41:e3:30:3a:bf:6b:db:05:c9:26:74:7b:aa:d7:59:94: 0a:2c:f4:60:00:9e:a1:45:67:ce:f4:d5:bd:79:a8:f2:43:e3: 1c:df:49:eb:be:8e:97:46:cc:2a:26:2c:d6:55:2e:4f:81:fb: e1:2b:64:36:06:fc:95:c4:cd:6e:b9:89:8e:13:48:b5:ed:2d: 90:45:fb:59:31:e5:7e:0f:65:31:08:91:61:27:85:37:1f:b8: 54:1f:0a:7a:d8:a7:af:d1:bc:d9:5e:c1:89:67:59:3c:70:7f: 9b:fe:ff:20:e9:f5:4b:6a:0f:a4:4f:47:c5:b7:52:d8:85:87: 9d:7e:1f:79:7f:da:21:fa:2a:27:81:51:28:bc:af:86:04:60: 58:c3:be:b3 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTJCNTExMC8GA1UEBRMoRkQ0OUE1MTM0NkEyRjdBQzgxMUIwMEFENjJFQkVGMEU5 NEEyQTFCMjAeFw0yNjAzMDIxNDEyNDhaFw0yNjAzMDkxNDEyNDhaMBgxFjAUBgNV BAMTDTY5YTU5YWUwLTVkMGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0TsWsuU6gs78Xq+oPbbKXBfki6p/SxtkrYqSpFomY45fAmNp1KeGDJXrI+A0q 26eu468oyfCR/QRHXKxborE+XvMXsBtVKOGWdyxt1Fhwf3hfZVv2+p/snR4HyVov ay+CqOpqNU5SExH3bRjmAechUlVKX9z7k03lG9yhZ79DNfVJaIk9yKikwVo3ptCd GDOtfQ14zgzdfJPbuRzo7Khx5BpR3Fkb5L0o8vjBWOr78SSpjdPcVOvcK0S189Mq t0zYW/+oEITrebp/hYqMqjSnfy27mesxmOM96fVyNzD3tLUy+hPZLNuQ6tphhFcz k08njS0kfsGzMlXzr1NPJjAfAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQULL4bOJoS hEnDyYPbBhB1OJenfq4wHwYDVR0jBBgwFoAU/UmlE0ai96yBGwCtYuvvDpSiobIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MkI1LzY2NzlEOEJFQzVC MjExRjA4NjIyNzkyQkM0RjlBRTAyL19VbWxFMGFpOTZ5Qkd3Q3RZdXZ2RHBTaW9i SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvX1VtbEUwYWk5NnlCR3dDdFl1dnZEcFNpb2JJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 MkI1LzY2NzlEOEJFQzVCMjExRjA4NjIyNzkyQkM0RjlBRTAyL19VbWxFMGFpOTZ5 Qkd3Q3RZdXZ2RHBTaW9iSS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQArzquSbirftdDNEbjZufBC3q5rVzJerQ485cCq5LWnI3hq4bQK5jC4apx8A79p VMaZZIA26D5BfER8hiAMBtJJb937g1mbHBRhZaM4+7D9HxRS/5KixB2AmGpfIo/c DCha5tKYfEKbMUeYW/JNmEHjMDq/a9sFySZ0e6rXWZQKLPRgAJ6hRWfO9NW9eajy Q+Mc30nrvo6XRswqJizWVS5PgfvhK2Q2BvyVxM1uuYmOE0i17S2QRftZMeV+D2Ux CJFhJ4U3H7hUHwp62Kev0bzZXsGJZ1k8cH+b/v8g6fVLag+kT0fFt1LYhYedfh95 f9oh+iongVEovK+GBGBYw76z -----END CERTIFICATE-----Generated at Mon Mar 2 21:26:12 2026 by rpki-client