$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft File: u-KUkERtaHB2W05h1-ubIsYARjg.mft (raw, json) Hash identifier: CMmfbHsohD5Jdfa5XXgEtZ7bsIqJflCA/ZXAkJxKZP8= Subject key identifier: 8E:61:0F:A1:E0:66:16:D2:F2:94:B6:14:A7:B4:1E:B8:1A:6B:60:C6 Authority key identifier: BB:E2:94:90:44:6D:68:70:76:5B:4E:61:D7:EB:9B:22:C6:00:46:38 Certificate issuer: /CN=A9186D83/serialNumber=BBE29490446D6870765B4E61D7EB9B22C6004638 Certificate serial: 0D01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft Manifest number: 0CE8 Signing time: Sat 28 Feb 2026 18:27:54 +0000 Manifest this update: Sat 28 Feb 2026 18:27:53 +0000 Manifest next update: Sat 07 Mar 2026 18:27:53 +0000 Files and hashes: 1: u-KUkERtaHB2W05h1-ubIsYARjg.crl (hash: 6t0lEq+kotjx6L3hfWjCkwDvDPAA0DTuXOwCoef1uPs=) 2: 8BA504FCB27911EB978CE10AC4F9AE02.roa (hash: n01/3EIjRvyLbA9XmobgbcsSzY3lQa7SmWy3AZPr1nQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.crl rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 18:27:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3329 (0xd01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D83, serialNumber=BBE29490446D6870765B4E61D7EB9B22C6004638 Validity Not Before: Feb 28 18:27:53 2026 GMT Not After : Mar 7 18:27:53 2026 GMT Subject: CN=69a333aa-bc44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f7:12:be:a6:1c:a6:f9:bf:07:6e:08:c8:d0: f7:b8:4d:2b:75:c6:9e:86:53:0e:64:a8:ce:cc:48: e2:f8:a0:76:70:09:91:37:0d:c6:be:e8:e3:32:47: 3e:aa:a4:bf:a5:11:ae:f6:f4:6b:a6:a6:73:83:a8: 5e:76:9c:81:68:25:60:07:e4:3e:f0:b4:3d:30:3c: 45:de:d8:f6:da:46:1d:b1:0b:2a:06:47:8c:91:f9: 0d:ce:72:21:72:ab:1f:d4:69:38:95:e5:90:25:fa: 9e:8f:e5:ae:e6:d6:12:8c:b7:f0:3b:ac:65:86:c7: a0:2b:8a:08:b2:bd:60:94:d0:99:f3:da:59:55:bb: 02:2a:db:b6:97:52:09:94:ac:6b:ce:74:36:5d:5e: b3:52:0b:2c:ee:ac:36:8f:00:02:62:c7:f0:55:9d: fb:8b:99:88:66:8a:93:92:24:80:67:7f:af:4c:cf: f6:90:b9:b0:93:76:30:99:e4:b9:77:d0:b5:be:df: 29:7e:20:19:d0:23:d6:bd:26:b3:e9:ff:b5:a0:d0: c8:23:40:e0:0c:66:24:87:42:5a:38:0b:3d:cd:cf: 22:63:0c:b9:5c:fb:54:73:5d:81:19:de:68:cf:45: b5:cd:cd:9f:00:71:9c:1a:75:4f:65:50:28:ee:73: 53:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:61:0F:A1:E0:66:16:D2:F2:94:B6:14:A7:B4:1E:B8:1A:6B:60:C6 X509v3 Authority Key Identifier: keyid:BB:E2:94:90:44:6D:68:70:76:5B:4E:61:D7:EB:9B:22:C6:00:46:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:69:65:5c:f2:70:a3:d0:4d:ba:2a:31:4f:e7:f9:15:ec:ef: 9b:15:cc:95:2a:83:b3:ec:d9:e2:24:74:e3:56:0a:7c:cc:71: 54:4e:d6:a2:7b:75:63:db:f7:4c:6f:84:ee:c7:58:e9:7b:3b: 17:56:c4:e5:b0:0c:2e:5b:79:15:80:6f:eb:74:37:ac:cc:02: e6:65:cc:be:2f:98:58:d8:70:ee:dd:dd:df:68:8c:84:50:8f: 12:76:31:b8:6b:07:2d:bb:6f:bc:13:dc:8c:d6:f1:f2:90:39: 5d:f5:30:84:39:42:08:11:20:9f:89:01:eb:54:34:1e:5f:77: d6:e3:32:07:8a:4e:68:d5:b4:18:1d:dd:1e:df:9c:77:b1:a3: 1c:03:d4:1a:e9:ba:b3:39:63:58:df:d0:fd:db:65:ed:18:46: 0a:e0:e1:12:a2:7c:bf:70:08:04:c5:c1:33:30:9a:0c:68:77: 44:e3:a1:4b:a5:a5:bd:8a:82:cb:f1:d1:28:9e:5c:8e:31:53: 3d:31:fe:68:86:02:54:55:92:5b:67:4a:a8:6a:cf:97:4c:a0: 3f:38:a1:f0:ed:e9:f8:cb:c4:32:d4:fa:3f:7a:b1:f7:c2:50: 64:db:9a:59:14:b6:7c:1a:ef:92:71:43:79:0a:5e:51:e1:3c: 33:d6:f9:c8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEODMxMTAvBgNVBAUTKEJCRTI5NDkwNDQ2RDY4NzA3NjVCNEU2MUQ3RUI5QjIy QzYwMDQ2MzgwHhcNMjYwMjI4MTgyNzUzWhcNMjYwMzA3MTgyNzUzWjAYMRYwFAYD VQQDDA02OWEzMzNhYS1iYzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/cSvqYcpvm/B24IyND3uE0rdcaehlMOZKjOzEji+KB2cAmRNw3GvujjMkc+ qqS/pRGu9vRrpqZzg6hedpyBaCVgB+Q+8LQ9MDxF3tj22kYdsQsqBkeMkfkNznIh cqsf1Gk4leWQJfqej+Wu5tYSjLfwO6xlhsegK4oIsr1glNCZ89pZVbsCKtu2l1IJ lKxrznQ2XV6zUgss7qw2jwACYsfwVZ37i5mIZoqTkiSAZ3+vTM/2kLmwk3YwmeS5 d9C1vt8pfiAZ0CPWvSaz6f+1oNDII0DgDGYkh0JaOAs9zc8iYwy5XPtUc12BGd5o z0W1zc2fAHGcGnVPZVAo7nNTOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI5hD6Hg ZhbS8pS2FKe0Hrgaa2DGMB8GA1UdIwQYMBaAFLvilJBEbWhwdltOYdfrmyLGAEY4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ4My8xNDk3NDdCRTA2 MkExMUVBOEM5QTc0NDRDNEY5QUUwMi91LUtVa0VSdGFIQjJXMDVoMS11YklzWUFS amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UtS1VrRVJ0YUhCMlcwNWgxLXViSXNZQVJqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkQ4My8xNDk3NDdCRTA2MkExMUVBOEM5QTc0NDRDNEY5QUUwMi91LUtVa0VSdGFI QjJXMDVoMS11YklzWUFSamcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnGllXPJwo9BNuioxT+f5FezvmxXMlSqDs+zZ4iR041YKfMxxVE7Wont1Y9v3 TG+E7sdY6Xs7F1bE5bAMLlt5FYBv63Q3rMwC5mXMvi+YWNhw7t3d32iMhFCPEnYx uGsHLbtvvBPcjNbx8pA5XfUwhDlCCBEgn4kB61Q0Hl931uMyB4pOaNW0GB3dHt+c d7GjHAPUGum6szljWN/Q/dtl7RhGCuDhEqJ8v3AIBMXBMzCaDGh3ROOhS6WlvYqC y/HRKJ5cjjFTPTH+aIYCVFWSW2dKqGrPl0ygPzih8O3p+MvEMtT6P3qx98JQZNua WRS2fBrvknFDeQpeUeE8M9b5yA== -----END CERTIFICATE-----Generated at Sun Mar 1 21:06:31 2026 by rpki-client