$ rpki-client -vvf rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft File: 25LUPJBhJQWzr0bpZKaMyfXzsq8.mft (raw, json) Hash identifier: VfGPt95ldxqo+KZNGBbE3UimNXvZCi3Dsz2hwuW9Da8= Subject key identifier: 50:06:49:52:AE:12:11:63:7F:D6:AA:9B:F0:47:3D:3E:89:B2:7B:01 Authority key identifier: DB:92:D4:3C:90:61:25:05:B3:AF:46:E9:64:A6:8C:C9:F5:F3:B2:AF Certificate issuer: /CN=A918213B/serialNumber=DB92D43C90612505B3AF46E964A68CC9F5F3B2AF Certificate serial: 03C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft Manifest number: 03AB Signing time: Sun 01 Mar 2026 01:38:41 +0000 Manifest this update: Sun 01 Mar 2026 01:38:41 +0000 Manifest next update: Sun 08 Mar 2026 01:38:41 +0000 Files and hashes: 1: 25LUPJBhJQWzr0bpZKaMyfXzsq8.crl (hash: BA+YSICBu0Op8hG8VWvh/yAKsTH0s81+3NAa4N9RbDY=) 2: 9ABE08C606F311F08407D351C4F9AE02.roa (hash: Oo/z3Tl848fDTqTqN7CA+y187n0AUvuUe1PsbRy+loY=) 3: 299F07F2E15611EFA15DF23DC4F9AE02.roa (hash: fuFQR3XBNeUBp3GuT5Rq8XdFNfctvFuOXUDcjAZyCQA=) 4: B2FCF1C07FF911F08FAAC57FC4F9AE02.roa (hash: MnpTevKrhY7L4cqXUyU9PXlqHjDSUZYAGeApiPXwlBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.crl rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:38:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 967 (0x3c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918213B, serialNumber=DB92D43C90612505B3AF46E964A68CC9F5F3B2AF Validity Not Before: Mar 1 01:38:41 2026 GMT Not After : Mar 8 01:38:41 2026 GMT Subject: CN=69a398a1-2faa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a9:a7:7f:db:c4:73:9b:49:8a:50:9b:ca:49: ab:ef:60:f4:0a:d0:7a:b3:65:04:44:b0:93:a9:73: b8:0c:49:04:98:38:f1:57:bc:49:27:b7:9f:12:39: 15:d9:89:6e:58:c6:f3:a9:a8:df:d5:08:c2:83:75: 99:66:5a:55:c6:35:91:36:78:bf:73:2e:20:60:a3: 38:b7:f5:ae:d0:8a:33:bc:c9:cf:1a:16:e9:07:76: 6f:9f:bb:03:9a:31:77:c7:11:ea:5b:c0:be:44:75: 54:81:d3:75:dd:03:9e:43:b0:4b:88:61:9b:8c:b1: 41:dd:ea:76:49:ad:c2:4b:db:9a:4b:cc:5d:ab:44: 18:5d:a9:10:bf:3a:d6:86:c2:47:62:28:a6:6e:a8: d9:33:54:23:df:14:74:2f:bb:85:0a:df:da:eb:19: c7:ab:55:d7:85:1a:92:a8:b0:f9:85:8c:e8:7b:5f: 52:83:77:ab:d8:34:ae:00:0e:98:c0:53:36:c7:48: 9b:04:b7:86:a8:40:d2:0b:18:4e:40:e6:72:64:e5: f0:0d:be:3d:10:ef:9d:fa:22:7a:da:f2:2f:6e:a3: cf:7e:6f:67:69:aa:82:2c:b0:68:e8:7d:01:f1:f1: ef:cf:60:e9:2b:d4:07:28:94:9a:3e:c9:e8:4f:e0: 23:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:06:49:52:AE:12:11:63:7F:D6:AA:9B:F0:47:3D:3E:89:B2:7B:01 X509v3 Authority Key Identifier: keyid:DB:92:D4:3C:90:61:25:05:B3:AF:46:E9:64:A6:8C:C9:F5:F3:B2:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:ba:03:94:5d:06:58:de:f1:4b:88:62:b2:ea:1b:8f:4f:74: 12:70:7a:81:10:94:fc:80:ba:14:27:36:44:35:3a:c4:3a:76: 78:be:12:35:13:e4:ba:c3:d2:f2:62:2f:35:ba:23:4a:ba:cb: 1f:7f:05:4e:49:00:46:06:32:25:d5:5f:e5:cd:43:78:71:7e: 49:3d:6e:74:b4:cc:0b:1d:62:2c:b5:a6:2d:5a:ff:a0:0e:e7: ce:01:d2:d7:5f:16:c6:61:53:8b:0e:67:63:e0:c6:6c:af:dc: a4:cb:d1:b2:5e:5c:c5:be:ce:03:59:a2:a0:ee:70:59:a5:49: dc:a4:86:71:db:f6:ac:2a:29:43:7f:33:48:4a:64:fa:6e:5f: 46:60:94:87:dd:56:ac:17:1d:be:44:4a:40:85:3a:37:5e:eb: a9:52:24:53:00:66:da:3f:2b:3f:a7:8b:37:81:61:5c:a2:3f: 54:a4:60:4f:b0:70:9a:82:fe:2c:5a:8e:fe:46:9b:48:ab:b4: df:3a:f8:e9:69:be:3e:81:61:ee:59:1c:a6:c2:d1:0e:07:4d: 5b:34:fd:9f:0b:14:be:3f:a2:65:08:e7:47:ef:21:47:c6:05: 43:cf:0a:c2:18:fd:3d:e7:cf:17:dd:5f:de:65:99:b2:14:1c: 24:36:bb:35 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIxM0IxMTAvBgNVBAUTKERCOTJENDNDOTA2MTI1MDVCM0FGNDZFOTY0QTY4Q0M5 RjVGM0IyQUYwHhcNMjYwMzAxMDEzODQxWhcNMjYwMzA4MDEzODQxWjAYMRYwFAYD VQQDDA02OWEzOThhMS0yZmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKmnf9vEc5tJilCbykmr72D0CtB6s2UERLCTqXO4DEkEmDjxV7xJJ7efEjkV 2YluWMbzqajf1QjCg3WZZlpVxjWRNni/cy4gYKM4t/Wu0IozvMnPGhbpB3Zvn7sD mjF3xxHqW8C+RHVUgdN13QOeQ7BLiGGbjLFB3ep2Sa3CS9uaS8xdq0QYXakQvzrW hsJHYiimbqjZM1Qj3xR0L7uFCt/a6xnHq1XXhRqSqLD5hYzoe19Sg3er2DSuAA6Y wFM2x0ibBLeGqEDSCxhOQOZyZOXwDb49EO+d+iJ62vIvbqPPfm9naaqCLLBo6H0B 8fHvz2DpK9QHKJSaPsnoT+Aj1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFAGSVKu EhFjf9aqm/BHPT6JsnsBMB8GA1UdIwQYMBaAFNuS1DyQYSUFs69G6WSmjMn187Kv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjEzQi8wNzA3NkZBMEQ5 QzkxMUVDQkUwMDdGNkFDNEY5QUUwMi8yNUxVUEpCaEpRV3pyMGJwWkthTXlmWHpz cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI1TFVQSkJoSlFXenIwYnBaS2FNeWZYenNxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjEzQi8wNzA3NkZBMEQ5QzkxMUVDQkUwMDdGNkFDNEY5QUUwMi8yNUxVUEpCaEpR V3pyMGJwWkthTXlmWHpzcTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA1boDlF0GWN7xS4hisuobj090EnB6gRCU/IC6FCc2RDU6xDp2eL4SNRPkusPS 8mIvNbojSrrLH38FTkkARgYyJdVf5c1DeHF+ST1udLTMCx1iLLWmLVr/oA7nzgHS 118WxmFTiw5nY+DGbK/cpMvRsl5cxb7OA1mioO5wWaVJ3KSGcdv2rCopQ38zSEpk +m5fRmCUh91WrBcdvkRKQIU6N17rqVIkUwBm2j8rP6eLN4FhXKI/VKRgT7BwmoL+ LFqO/kabSKu03zr46Wm+PoFh7lkcpsLRDgdNWzT9nwsUvj+iZQjnR+8hR8YFQ88K whj9PefPF91f3mWZshQcJDa7NQ== -----END CERTIFICATE-----Generated at Mon Mar 2 04:36:11 2026 by rpki-client