$ rpki-client -vvf rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft File: Ul6ia2phflqvwFQjzOWI3hnsWEc.mft (raw, json) Hash identifier: yUI0ijol2ZN9Kt7Wagc6G5m6F+RTvofLk//ZoulrAHc= Subject key identifier: 24:B1:F0:9D:59:1C:DF:2F:EA:26:39:5D:4F:0C:34:07:3A:D0:AC:24 Authority key identifier: 52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47 Certificate issuer: /CN=A91975F1/serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847 Certificate serial: 0356 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft Manifest number: 0353 Signing time: Sun 01 Mar 2026 01:47:09 +0000 Manifest this update: Sun 01 Mar 2026 01:47:09 +0000 Manifest next update: Sun 08 Mar 2026 01:47:09 +0000 Files and hashes: 1: Ul6ia2phflqvwFQjzOWI3hnsWEc.crl (hash: cbPCzfn0OT5KdmWukpNaNd9t3hBmMj3YxULHUMp33ao=) 2: 412DD396EE3B11EC8EE6DA63C4F9AE02.roa (hash: E4JlmSxgf5/1+dN+C7clJrcgIOSoxnaAMP6CuZCG7yc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 854 (0x356) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975F1, serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847 Validity Not Before: Mar 1 01:47:09 2026 GMT Not After : Mar 8 01:47:09 2026 GMT Subject: CN=69a39a9d-a87c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:45:26:7e:50:10:eb:de:ae:69:92:b7:04:ca: b6:ab:1d:d7:42:35:b1:11:83:c0:c6:1a:61:0f:7e: b8:43:f2:eb:02:ee:eb:f5:ed:13:53:fc:50:2c:b3: 01:97:1a:11:af:e2:9b:ad:45:e4:28:cb:32:ac:ca: 73:70:77:c1:d7:e2:f3:61:d0:11:fa:1a:1e:bc:e3: ee:a6:e3:65:12:28:ec:a3:b1:b4:1f:e5:57:dd:48: 1a:c8:7c:02:2a:ff:6a:6f:fe:f7:63:42:6c:81:69: 63:7b:30:a0:6e:a4:b5:73:72:00:91:78:7a:3a:c4: f7:01:91:c5:8b:79:80:46:f7:7e:16:39:98:7a:90: b9:02:1e:69:36:56:33:45:6a:d6:d0:8d:b2:34:60: f1:47:40:73:26:16:0a:eb:81:0e:84:3f:da:10:2a: 4e:18:4c:c5:b2:07:e0:de:b4:e2:a1:fe:0c:45:fe: 15:5b:7e:51:19:d2:ac:06:cc:10:61:1e:64:1f:5e: 06:af:90:f8:2c:8b:d0:4d:55:a4:0f:be:b5:9d:85: f7:79:e8:85:b0:b5:a9:14:4c:c5:2e:5f:0e:a1:a1: 90:59:28:f4:6f:61:8b:13:48:5d:78:69:38:68:6a: 55:49:cf:03:dd:37:22:b6:ae:64:80:dc:f9:f5:7b: 7c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:B1:F0:9D:59:1C:DF:2F:EA:26:39:5D:4F:0C:34:07:3A:D0:AC:24 X509v3 Authority Key Identifier: keyid:52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:1a:5e:a0:25:6c:3c:fd:37:9c:8c:53:4a:f6:bd:4a:0d:d5: b3:63:3e:c1:59:3b:f4:68:64:ff:dc:94:50:15:c9:41:b8:f1: e5:ed:d4:a4:08:c2:30:6c:02:b6:e6:28:71:e5:86:be:6d:ea: 70:ca:01:9d:5e:86:28:b9:79:60:40:ff:43:f6:5b:4d:8b:3f: fe:8c:bf:16:d7:42:21:69:79:9d:4d:4e:3a:0c:5c:64:8a:eb: d9:16:b9:7a:70:68:c3:22:d9:65:c8:9f:88:15:f9:9c:e0:ed: 42:95:ee:aa:cd:5d:2f:69:3c:31:53:d6:43:8c:4c:5e:b8:86: fe:a6:e3:9f:26:d0:6a:e8:43:4d:b6:6b:de:fd:ef:f5:01:ba: fb:65:a3:24:f2:81:f3:d5:e4:b8:26:a6:d5:70:74:f1:bb:15: 17:5b:d8:3f:52:23:62:29:30:25:11:27:60:4a:20:99:d7:a4: 94:03:c6:92:d0:7a:04:ae:91:cc:6f:ae:bc:2d:58:70:07:2e: be:c8:91:d0:f7:c6:f6:b8:82:59:45:cf:d5:86:96:72:e6:68: e8:9f:f4:9a:c2:a7:e4:c9:f4:ca:da:3f:1b:b8:31:66:f0:96: 6e:33:7d:fe:ed:64:de:cb:94:70:4d:2b:1e:78:c1:12:ca:1a: 11:f9:d9:e5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA1YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1RjExMTAvBgNVBAUTKDUyNUVBMjZCNkE2MTdFNUFBRkMwNTQyM0NDRTU4OERF MTlFQzU4NDcwHhcNMjYwMzAxMDE0NzA5WhcNMjYwMzA4MDE0NzA5WjAYMRYwFAYD VQQDDA02OWEzOWE5ZC1hODdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvkUmflAQ696uaZK3BMq2qx3XQjWxEYPAxhphD364Q/LrAu7r9e0TU/xQLLMB lxoRr+KbrUXkKMsyrMpzcHfB1+LzYdAR+hoevOPupuNlEijso7G0H+VX3UgayHwC Kv9qb/73Y0JsgWljezCgbqS1c3IAkXh6OsT3AZHFi3mARvd+FjmYepC5Ah5pNlYz RWrW0I2yNGDxR0BzJhYK64EOhD/aECpOGEzFsgfg3rTiof4MRf4VW35RGdKsBswQ YR5kH14Gr5D4LIvQTVWkD761nYX3eeiFsLWpFEzFLl8OoaGQWSj0b2GLE0hdeGk4 aGpVSc8D3Tcitq5kgNz59Xt8DQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCSx8J1Z HN8v6iY5XU8MNAc60KwkMB8GA1UdIwQYMBaAFFJeomtqYX5ar8BUI8zliN4Z7FhH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVGMS9DQjY2MzMwQUVF MkMxMUVDOTU2QjJDNEZDNEY5QUUwMi9VbDZpYTJwaGZscXZ3RlFqek9XSTNobnNX RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VsNmlhMnBoZmxxdndGUWp6T1dJM2huc1dFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzVGMS9DQjY2MzMwQUVFMkMxMUVDOTU2QjJDNEZDNEY5QUUwMi9VbDZpYTJwaGZs cXZ3RlFqek9XSTNobnNXRWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHxpeoCVsPP03nIxTSva9Sg3Vs2M+wVk79Ghk/9yUUBXJQbjx5e3UpAjCMGwC tuYoceWGvm3qcMoBnV6GKLl5YED/Q/ZbTYs//oy/FtdCIWl5nU1OOgxcZIrr2Ra5 enBowyLZZcifiBX5nODtQpXuqs1dL2k8MVPWQ4xMXriG/qbjnybQauhDTbZr3v3v 9QG6+2WjJPKB89XkuCam1XB08bsVF1vYP1IjYikwJREnYEogmdeklAPGktB6BK6R zG+uvC1YcAcuvsiR0PfG9riCWUXP1YaWcuZo6J/0msKn5Mn0yto/G7gxZvCWbjN9 /u1k3suUcE0rHnjBEsoaEfnZ5Q== -----END CERTIFICATE-----Generated at Sun Mar 1 22:38:44 2026 by rpki-client