$ rpki-client -vvf rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft File: uMGYUq7H2lGkUL59p9lYc77eNzQ.mft (raw, json) Hash identifier: Y0TCr6t2FCTf4ccdgY4XHp1YtkzgcoTv4CNNk2iPkA4= Subject key identifier: 60:F6:AC:E6:39:B8:F4:57:6E:F0:74:FC:D9:00:E4:6A:1C:B8:D8:DA Authority key identifier: B8:C1:98:52:AE:C7:DA:51:A4:50:BE:7D:A7:D9:58:73:BE:DE:37:34 Certificate issuer: /CN=A917C78E/serialNumber=B8C19852AEC7DA51A450BE7DA7D95873BEDE3734 Certificate serial: 0109 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft Manifest number: 0106 Signing time: Sun 01 Mar 2026 07:07:45 +0000 Manifest this update: Sun 01 Mar 2026 07:07:45 +0000 Manifest next update: Sun 08 Mar 2026 07:07:45 +0000 Files and hashes: 1: uMGYUq7H2lGkUL59p9lYc77eNzQ.crl (hash: D9POUjAn/zIH3QNzG6KWafZQaOznvv3528iN9BSvCds=) 2: 91F29F5E86DD11EFB3D7A929C4F9AE02.roa (hash: udgtuMa3OezEjQxE846Jm1mLIy8yYpsy592Ji6S+1EA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.crl rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:07:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C78E, serialNumber=B8C19852AEC7DA51A450BE7DA7D95873BEDE3734 Validity Not Before: Mar 1 07:07:45 2026 GMT Not After : Mar 8 07:07:45 2026 GMT Subject: CN=69a3e5c1-fa92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f4:3c:50:ac:c2:7c:f0:82:e1:d7:43:16:7d: 75:74:45:8a:1f:0b:0d:6d:0d:6f:57:7a:1c:ec:f8: 83:2a:d8:ee:04:1d:08:a2:fd:94:9d:ca:57:b0:1c: 4b:59:c1:cc:b6:0d:8f:8b:99:59:bb:db:7f:e2:fc: b7:92:47:ba:11:10:1b:7b:0a:36:f8:52:c4:8f:5a: e8:be:91:9f:2a:54:5c:01:bf:33:e8:23:6d:b2:7c: d5:bd:6f:e0:a7:e3:3b:11:8a:42:68:d1:dc:c0:0f: 99:cd:16:34:22:a0:5d:7b:6e:ca:75:11:53:a0:fb: b4:4f:b6:5c:9b:5e:9a:ad:04:87:0a:60:59:b0:61: 2d:f7:4d:c0:10:12:6a:64:7d:67:70:7a:a7:b2:c2: cf:91:59:bb:fc:a7:96:5b:23:fc:cc:27:93:d7:48: a9:62:cb:68:fa:16:73:0d:c3:28:c5:b9:67:8f:bd: ec:03:a5:76:7d:63:3b:80:2a:c7:a7:93:db:b5:e3: d3:2d:1e:f5:d3:4d:ec:ed:96:ef:f6:c6:1b:15:14: 80:3a:00:5e:cc:99:57:40:a7:d3:ac:6d:7a:8b:19: 70:b9:27:f5:d3:78:c2:3d:dd:c7:52:19:a1:ea:e8: a4:e2:53:91:0a:f2:1e:d8:c5:2c:d0:18:4b:19:70: ed:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:F6:AC:E6:39:B8:F4:57:6E:F0:74:FC:D9:00:E4:6A:1C:B8:D8:DA X509v3 Authority Key Identifier: keyid:B8:C1:98:52:AE:C7:DA:51:A4:50:BE:7D:A7:D9:58:73:BE:DE:37:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:27:1d:2b:a8:92:74:c1:8c:76:e0:f9:e4:c2:96:30:f9:13: cb:59:1f:2d:17:9d:7b:a4:c2:d1:f4:2c:de:f3:b8:a0:08:8d: 02:38:b9:01:c8:4f:81:21:3c:47:48:24:9e:08:ce:2c:12:7c: 05:f3:05:61:01:45:e0:dc:3a:e3:fc:99:81:7c:35:b8:25:72: 6e:25:c7:3c:cd:af:90:bb:8c:1e:4a:77:16:1f:de:ba:b9:a1: 15:78:fb:00:e5:72:bf:b8:86:85:6e:e1:3e:41:f5:77:28:92: 79:0e:6a:c3:9e:e3:7b:ca:18:d8:f3:84:2c:e5:ef:7d:ec:f1: 08:da:60:80:86:f6:ef:89:05:91:e3:2e:fd:e9:60:44:9b:23: 6c:9d:62:0b:de:4d:fd:39:2b:02:fe:68:dd:bc:cb:01:9f:bc: 17:68:65:9f:0b:6e:cf:1d:6d:4f:33:63:d4:04:98:40:e2:85: b9:c4:51:2f:27:ca:66:23:dc:fe:55:a2:80:ef:e5:58:0d:aa: 43:ed:54:64:6b:69:9c:07:c6:90:cd:c6:58:09:bc:bc:82:a9: 46:31:f9:12:07:75:4c:e0:9a:d1:37:87:f3:68:8a:21:64:f0: 65:56:d8:a2:71:d9:0e:e2:0d:79:7e:7b:de:9c:42:9f:62:51: 9c:81:a8:72 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M3OEUxMTAvBgNVBAUTKEI4QzE5ODUyQUVDN0RBNTFBNDUwQkU3REE3RDk1ODcz QkVERTM3MzQwHhcNMjYwMzAxMDcwNzQ1WhcNMjYwMzA4MDcwNzQ1WjAYMRYwFAYD VQQDEw02OWEzZTVjMS1mYTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/Q8UKzCfPCC4ddDFn11dEWKHwsNbQ1vV3oc7PiDKtjuBB0Iov2UncpXsBxL WcHMtg2Pi5lZu9t/4vy3kke6ERAbewo2+FLEj1rovpGfKlRcAb8z6CNtsnzVvW/g p+M7EYpCaNHcwA+ZzRY0IqBde27KdRFToPu0T7Zcm16arQSHCmBZsGEt903AEBJq ZH1ncHqnssLPkVm7/KeWWyP8zCeT10ipYsto+hZzDcMoxblnj73sA6V2fWM7gCrH p5PbtePTLR71003s7Zbv9sYbFRSAOgBezJlXQKfTrG16ixlwuSf103jCPd3HUhmh 6uik4lORCvIe2MUs0BhLGXDtjQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGD2rOY5 uPRXbvB0/NkA5GocuNjaMB8GA1UdIwQYMBaAFLjBmFKux9pRpFC+fafZWHO+3jc0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Qzc4RS9BMDIwMUIyMDg2 REMxMUVGQjlFQUQwMjdDNEY5QUUwMi91TUdZVXE3SDJsR2tVTDU5cDlsWWM3N2VO elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VNR1lVcTdIMmxHa1VMNTlwOWxZYzc3ZU56US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Qzc4RS9BMDIwMUIyMDg2REMxMUVGQjlFQUQwMjdDNEY5QUUwMi91TUdZVXE3SDJs R2tVTDU5cDlsWWM3N2VOelEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiycdK6iSdMGMduD55MKWMPkTy1kfLRede6TC0fQs3vO4oAiNAji5AchPgSE8 R0gkngjOLBJ8BfMFYQFF4Nw64/yZgXw1uCVybiXHPM2vkLuMHkp3Fh/eurmhFXj7 AOVyv7iGhW7hPkH1dyiSeQ5qw57je8oY2POELOXvfezxCNpggIb274kFkeMu/elg RJsjbJ1iC95N/TkrAv5o3bzLAZ+8F2hlnwtuzx1tTzNj1ASYQOKFucRRLyfKZiPc /lWigO/lWA2qQ+1UZGtpnAfGkM3GWAm8vIKpRjH5Egd1TOCa0TeH82iKIWTwZVbY onHZDuINeX573pxCn2JRnIGocg== -----END CERTIFICATE-----Generated at Mon Mar 2 13:36:34 2026 by rpki-client