$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft File: up0rragmh4TwCuhYcC744p5ytLw.mft (raw, json) Hash identifier: Yv3JmWwGmU1bwfqBSqsUvbnaBG1MMtXR9GeeXwC0HjA= Subject key identifier: E2:25:3B:B8:B0:F3:42:13:44:C5:81:1F:91:66:A7:50:3D:72:00:3B Authority key identifier: BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC Certificate issuer: /CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Certificate serial: 3549 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft Manifest number: 352F Signing time: Sun 01 Mar 2026 23:42:53 +0000 Manifest this update: Sun 01 Mar 2026 23:42:51 +0000 Manifest next update: Sun 08 Mar 2026 23:42:51 +0000 Files and hashes: 1: up0rragmh4TwCuhYcC744p5ytLw.crl (hash: gOC52sy3GArRMhNHy+mBZkvUiim1jbxclquFlnK+nZ0=) 2: D4A8FF0273ED11F08E63C02DC4F9AE02.roa (hash: tHMeyTgXVjqu1F3xAY8dG3i7T9LkiFUkLAwr5V1RAGo=) 3: 58D5764A683311ECB9C17757C4F9AE02.roa (hash: y6Cb0qWIx1yRlu9RsKzzdkQCpXsOgAgmZ5vTiuWgcQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:42:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13641 (0x3549) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9EE2, serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Validity Not Before: Mar 1 23:42:51 2026 GMT Not After : Mar 8 23:42:51 2026 GMT Subject: CN=69a4cefd-c52f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:67:37:f6:68:c3:09:b8:ce:da:45:f8:04:c2: f7:2b:db:a9:cd:3f:da:da:02:b8:49:e0:97:9c:99: 9b:7a:5e:f6:99:59:24:42:8a:62:6c:ca:76:d1:e2: 64:d4:45:8a:f7:61:18:c8:40:51:3a:44:49:3e:47: 84:a7:62:4a:81:8f:0a:ef:4b:fd:02:e9:d4:33:52: 26:73:d1:48:9a:e3:92:08:be:ac:40:48:b0:bd:6c: 9f:19:ac:be:1d:a8:8b:0b:12:32:ee:80:f3:54:3c: c9:37:9b:cd:1e:9d:e1:13:ea:c2:b8:c2:84:3e:d6: 4a:af:14:d1:3f:f1:2c:bb:54:4e:b0:5e:f2:7f:2b: d9:29:e4:2c:81:f1:0c:ec:c1:93:24:c7:09:3f:94: a4:4d:ee:48:c1:8f:3b:a6:18:5c:ec:95:57:69:c3: ae:97:98:ac:b2:b7:5a:26:5f:c2:46:7d:8b:6e:c6: 19:81:64:91:0b:85:cf:e9:62:3f:f4:b1:6a:49:1a: a2:ef:6c:66:19:32:18:91:0c:0c:78:6a:95:df:56: 18:37:c4:42:43:74:b5:ff:47:1e:02:4f:a9:7f:31: 40:23:55:6d:d3:5e:5b:bb:70:76:6a:93:4c:3e:7f: 35:af:2f:1c:20:d4:28:e5:79:23:ef:7f:5c:8c:96: d9:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:25:3B:B8:B0:F3:42:13:44:C5:81:1F:91:66:A7:50:3D:72:00:3B X509v3 Authority Key Identifier: keyid:BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:df:21:ce:43:e7:d4:45:eb:79:b9:1a:6e:c5:f2:92:f0:c3: e8:e2:e7:e2:a1:00:f5:84:11:b9:c7:3f:ca:52:a2:b2:dd:3e: ad:0c:22:83:6f:d3:fd:04:f3:72:09:23:8e:df:f6:57:c3:63: c7:f1:6d:f6:ba:d8:63:ac:f9:0d:a8:d3:10:77:37:fc:a5:73: 47:5a:07:8e:ff:23:24:08:63:10:60:27:48:6d:48:03:80:73: 3e:0a:ed:9b:80:f9:42:9e:32:74:84:99:67:d3:fd:ea:46:10: da:42:64:d2:9c:a9:05:74:39:58:40:77:a5:bf:b7:e1:4d:00: c8:70:70:a9:3b:d9:ca:ad:60:56:3d:83:60:0d:ea:9a:38:95: 24:8f:ce:06:59:e4:69:04:fb:92:72:9d:02:14:61:c6:6b:46: e4:6c:bf:66:e3:31:31:cd:db:61:51:19:1a:38:55:6c:cf:36: e1:67:80:d8:75:92:3d:0f:7d:d5:dd:e2:6c:70:c3:d2:10:c8: 39:36:5a:b6:e3:ec:72:7a:4c:c1:22:4b:28:4a:25:ac:b9:2b: 29:95:96:15:c7:bc:b7:04:a2:3d:23:6b:64:55:74:1e:61:fd: eb:c4:6e:72:3a:a1:3f:64:8c:33:6b:a1:2b:fa:fe:c1:f7:7c: 85:16:7f:3a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFRTIxMTAvBgNVBAUTKEJBOUQyQkFEQTgyNjg3ODRGMDBBRTg1ODcwMkVGOEUy OUU3MkI0QkMwHhcNMjYwMzAxMjM0MjUxWhcNMjYwMzA4MjM0MjUxWjAYMRYwFAYD VQQDEw02OWE0Y2VmZC1jNTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtGc39mjDCbjO2kX4BML3K9upzT/a2gK4SeCXnJmbel72mVkkQopibMp20eJk 1EWK92EYyEBROkRJPkeEp2JKgY8K70v9AunUM1Imc9FImuOSCL6sQEiwvWyfGay+ HaiLCxIy7oDzVDzJN5vNHp3hE+rCuMKEPtZKrxTRP/Esu1ROsF7yfyvZKeQsgfEM 7MGTJMcJP5SkTe5IwY87phhc7JVXacOul5issrdaJl/CRn2LbsYZgWSRC4XP6WI/ 9LFqSRqi72xmGTIYkQwMeGqV31YYN8RCQ3S1/0ceAk+pfzFAI1Vt015bu3B2apNM Pn81ry8cINQo5Xkj739cjJbZSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOIlO7iw 80ITRMWBH5Fmp1A9cgA7MB8GA1UdIwQYMBaAFLqdK62oJoeE8AroWHAu+OKecrS8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUVFMi82NDMyNEREODFE ODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0VHdDdWhZY0M3NDRwNXl0 THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMHJyYWdtaDRUd0N1aFljQzc0NHA1eXRMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUVFMi82NDMyNEREODFEODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0 VHdDdWhZY0M3NDRwNXl0THcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkd8hzkPn1EXrebkabsXykvDD6OLn4qEA9YQRucc/ylKist0+rQwig2/T/QTz cgkjjt/2V8Njx/Ft9rrYY6z5DajTEHc3/KVzR1oHjv8jJAhjEGAnSG1IA4BzPgrt m4D5Qp4ydISZZ9P96kYQ2kJk0pypBXQ5WEB3pb+34U0AyHBwqTvZyq1gVj2DYA3q mjiVJI/OBlnkaQT7knKdAhRhxmtG5Gy/ZuMxMc3bYVEZGjhVbM824WeA2HWSPQ99 1d3ibHDD0hDIOTZatuPscnpMwSJLKEolrLkrKZWWFce8twSiPSNrZFV0HmH968Ru cjqhP2SMM2uhK/r+wfd8hRZ/Og== -----END CERTIFICATE-----Generated at Mon Mar 2 15:10:47 2026 by rpki-client