$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft File: U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft (raw, json) Hash identifier: 1Ya7suhb4fMqYIOewq5/6YaIpv4E5AXa3wA8CNjDOl4= Subject key identifier: 4D:39:D9:6D:F3:3F:22:84:72:FA:AC:C1:34:53:86:0E:B7:8A:14:3A Authority key identifier: 53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 Certificate issuer: /CN=A9187325/serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Certificate serial: F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft Manifest number: F5 Signing time: Mon 02 Mar 2026 01:38:56 +0000 Manifest this update: Mon 02 Mar 2026 01:38:54 +0000 Manifest next update: Mon 09 Mar 2026 01:38:54 +0000 Files and hashes: 1: U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl (hash: hjxrbULa0o6JoUUdH/QlaV8ifO9HlmmdfiMEUXXN3/E=) 2: 30BF0192D5B411F0BA49041CC4F9AE02.roa (hash: 7Xq/xrlaF1i6pCbhVMnZT3OZ5U9fhM3Ebdid2BeEwH8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:38:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Validity Not Before: Mar 2 01:38:54 2026 GMT Not After : Mar 9 01:38:54 2026 GMT Subject: CN=69a4ea30-8166 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a2:1a:b0:1a:b5:e6:eb:72:df:b5:1b:db:f2: 01:3e:25:3a:28:83:a2:e6:49:f2:1e:06:8f:65:9b: e7:8c:94:3a:5e:0b:87:dc:31:a6:b0:eb:d7:76:cd: 7c:8f:e5:f7:1d:76:c5:0b:97:6e:4b:81:01:0e:ab: 90:8f:13:6e:58:d8:3d:0f:80:11:0b:73:5b:af:dd: be:ab:75:70:fc:03:23:10:ce:7e:aa:06:e4:41:fe: 5e:66:3d:cc:05:82:1e:ba:38:26:a5:86:ce:45:6c: fa:0d:bb:5a:12:3c:9c:e4:37:19:22:43:ea:be:1b: 20:3c:8a:06:f2:5d:a5:b9:25:7c:93:4e:6d:6f:db: b4:52:fa:9c:ad:5a:9f:aa:95:09:f8:cd:67:f3:a6: 11:2d:9f:ac:7e:d7:25:45:ed:e2:11:b6:2c:a8:3a: cd:ff:b7:1d:7c:ab:96:91:bb:cb:2e:80:67:7f:d8: de:b8:31:16:4e:cf:3d:02:98:7d:48:66:a2:df:ae: 13:ba:da:f2:a6:a0:da:ef:59:21:28:01:4c:4e:80: fb:35:62:c0:b0:d3:00:6a:03:7f:11:e4:3f:b2:5f: c0:88:55:f7:e5:4b:44:7b:39:90:62:fa:21:15:ef: 4d:61:39:7c:de:b3:c8:ac:72:d5:73:f9:ef:78:ea: b2:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:39:D9:6D:F3:3F:22:84:72:FA:AC:C1:34:53:86:0E:B7:8A:14:3A X509v3 Authority Key Identifier: keyid:53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:b1:5b:f5:eb:53:ab:25:79:99:7f:53:97:f3:1f:45:43:d5: a5:5e:22:8c:b4:99:9a:6a:54:31:cc:5c:51:44:f1:6c:23:e7: 59:45:1b:2c:36:e8:9f:76:1c:7e:77:91:3a:97:da:3e:62:8c: 77:b8:b8:e0:81:04:4d:5f:ca:7a:cd:ed:02:4c:45:e7:e2:e9: 5b:d3:13:04:dc:14:fe:57:44:36:e3:2a:56:67:a8:b2:04:9a: 1f:75:06:94:a1:a7:ef:80:fe:31:91:16:02:38:f2:ba:f3:02: ce:f8:45:05:9e:0e:61:ba:d8:2e:27:d6:75:4a:05:74:7a:f1: 3c:7d:3d:98:2e:f2:7d:d8:6a:51:38:f2:c7:c8:5e:6b:2f:26: 7e:ba:0d:d1:9d:aa:a9:1e:f5:98:0f:5a:e1:ea:15:64:d6:d0: 68:d4:2d:fa:c3:48:7e:bd:b5:3e:62:96:86:dc:09:f9:87:e4: 1f:28:35:25:c8:6f:52:4d:27:66:79:c0:84:45:44:a4:75:bb: 07:97:55:8b:18:36:af:e9:40:22:cf:14:c1:7f:51:f0:f0:42: 26:71:28:69:54:eb:ed:fc:6b:d7:8d:28:20:2d:62:1e:8d:52: 4d:77:77:91:af:da:bd:fd:60:76:8a:59:2d:e8:0b:e8:a4:49: 33:cb:21:53 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczMjUxMTAvBgNVBAUTKDUzQzA4QkRBMDRCQzA1MzIyMUVCMjczQUEyMTVDQ0Q5 NUMwMEMzOTIwHhcNMjYwMzAyMDEzODU0WhcNMjYwMzA5MDEzODU0WjAYMRYwFAYD VQQDEw02OWE0ZWEzMC04MTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3qIasBq15uty37Ub2/IBPiU6KIOi5knyHgaPZZvnjJQ6XguH3DGmsOvXds18 j+X3HXbFC5duS4EBDquQjxNuWNg9D4ARC3Nbr92+q3Vw/AMjEM5+qgbkQf5eZj3M BYIeujgmpYbORWz6DbtaEjyc5DcZIkPqvhsgPIoG8l2luSV8k05tb9u0UvqcrVqf qpUJ+M1n86YRLZ+sftclRe3iEbYsqDrN/7cdfKuWkbvLLoBnf9jeuDEWTs89Aph9 SGai364TutrypqDa71khKAFMToD7NWLAsNMAagN/EeQ/sl/AiFX35UtEezmQYvoh Fe9NYTl83rPIrHLVc/nveOqy/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE052W3z PyKEcvqswTRThg63ihQ6MB8GA1UdIwQYMBaAFFPAi9oEvAUyIesnOqIVzNlcAMOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzMyNS84MzM4QzRENkFB RTkxMUVGQjcyMUMyNURDNEY5QUUwMi9VOENMMmdTOEJUSWg2eWM2b2hYTTJWd0F3 NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4Q0wyZ1M4QlRJaDZ5YzZvaFhNMlZ3QXc1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzMyNS84MzM4QzRENkFBRTkxMUVGQjcyMUMyNURDNEY5QUUwMi9VOENMMmdTOEJU SWg2eWM2b2hYTTJWd0F3NUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAyrFb9etTqyV5mX9Tl/MfRUPVpV4ijLSZmmpUMcxcUUTxbCPnWUUbLDbon3Yc fneROpfaPmKMd7i44IEETV/Kes3tAkxF5+LpW9MTBNwU/ldENuMqVmeosgSaH3UG lKGn74D+MZEWAjjyuvMCzvhFBZ4OYbrYLifWdUoFdHrxPH09mC7yfdhqUTjyx8he ay8mfroN0Z2qqR71mA9a4eoVZNbQaNQt+sNIfr21PmKWhtwJ+YfkHyg1JchvUk0n ZnnAhEVEpHW7B5dVixg2r+lAIs8UwX9R8PBCJnEoaVTr7fxr140oIC1iHo1STXd3 ka/avf1gdopZLegL6KRJM8shUw== -----END CERTIFICATE-----Generated at Mon Mar 2 10:55:30 2026 by rpki-client