$ rpki-client -vvf rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft File: UqHEINgnwWzqoEKD3Si2QKMVY00.mft (raw, json) Hash identifier: oYN8Iu/KXJamjZ/9isUzxSTqWhzapmGmQfPxWWzdli8= Subject key identifier: 64:8C:9A:87:CC:8B:60:09:08:B3:AA:4E:3A:C7:50:28:B7:A5:F2:F0 Authority key identifier: 52:A1:C4:20:D8:27:C1:6C:EA:A0:42:83:DD:28:B6:40:A3:15:63:4D Certificate issuer: /CN=A91B13FE/serialNumber=52A1C420D827C16CEAA04283DD28B640A315634D Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft Manifest number: 8D Signing time: Mon 02 Mar 2026 13:34:53 +0000 Manifest this update: Mon 02 Mar 2026 13:34:52 +0000 Manifest next update: Mon 09 Mar 2026 13:34:52 +0000 Files and hashes: 1: UqHEINgnwWzqoEKD3Si2QKMVY00.crl (hash: 8pl7Le/JMZFPK+DVNGm42lnKiVSAIgPhENFOYwzr83E=) 2: C577E392D0F711F0BC02385AC4F9AE02.roa (hash: CTMuUuvm60iZOQvAcnHXAUj2ZzggetCmxOqsP+wF50w=) 3: E5E9F8B8D0F711F0ACA5A85AC4F9AE02.roa (hash: 2A+skZNc+t58OX570Zwo1EzMJmLkr10Krf1yFSd9VZs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.crl rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:34:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B13FE, serialNumber=52A1C420D827C16CEAA04283DD28B640A315634D Validity Not Before: Mar 2 13:34:52 2026 GMT Not After : Mar 9 13:34:52 2026 GMT Subject: CN=69a591fd-945a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:aa:37:84:04:9b:53:65:c7:f9:1c:1c:04:66: 11:39:89:2c:74:c5:06:31:da:40:3f:e4:23:99:fa: a0:59:8d:4d:e7:63:65:ab:71:f0:91:1a:56:35:3d: a4:1d:e2:a3:81:a1:37:37:c0:83:14:ae:d5:ea:a7: 41:e2:83:f0:6d:39:6b:8c:a5:3e:4c:3f:6a:8b:e5: 68:ab:02:03:4b:69:4c:8a:e6:82:ab:bc:64:4a:8a: 05:81:88:10:1e:19:20:90:c9:f3:e9:5d:e5:3d:99: 5f:25:e2:42:5c:70:af:e5:00:ec:58:01:30:69:9a: eb:55:24:d7:d6:07:cc:8e:5c:9b:d8:31:cb:97:67: c4:32:57:da:1a:e3:1a:0e:4b:a3:0a:50:99:2d:c4: c5:ca:11:97:d9:04:de:9b:ba:59:7e:bc:35:5a:10: f1:61:05:81:ea:ca:7d:a3:cf:09:71:72:4f:db:95: 7e:79:d1:5d:05:d6:86:f0:45:8c:a6:ec:99:95:1f: 52:8e:75:2f:1c:e0:be:47:fc:cc:56:7d:03:aa:7a: 66:d3:f2:2c:da:df:1d:da:fe:f0:f9:0e:2e:39:ce: cb:a0:c2:89:04:80:ea:a2:0d:ed:6c:10:63:53:e3: e5:95:ab:6b:84:1b:1c:4b:cf:e1:28:e0:ca:ec:b1: 5c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:8C:9A:87:CC:8B:60:09:08:B3:AA:4E:3A:C7:50:28:B7:A5:F2:F0 X509v3 Authority Key Identifier: keyid:52:A1:C4:20:D8:27:C1:6C:EA:A0:42:83:DD:28:B6:40:A3:15:63:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:f2:be:56:b9:ab:e3:05:7b:4b:fc:95:7e:91:53:7e:6b:54: 7e:cd:69:0d:21:f4:b6:79:e1:2c:3a:44:dc:38:65:7c:fb:83: 7b:f2:6c:92:ca:f4:a1:ef:07:40:d1:9f:e5:79:3d:cf:f8:dc: 88:f8:cb:7f:ab:42:79:2f:3d:35:d4:8e:21:f7:85:4b:15:6d: 89:c2:ac:82:17:de:8a:12:b0:1f:81:fa:6d:03:74:ee:6a:e2: f2:86:25:07:4b:92:9e:af:e8:7b:49:3e:9b:05:3b:4a:81:11: fe:63:a4:a3:04:96:7d:3f:7e:f3:48:0d:e1:82:56:88:4a:7b: c6:4b:28:37:ec:8b:df:18:97:27:5b:4c:3a:bc:27:1f:96:7d: a9:7a:46:04:bd:0d:6c:90:e8:9d:99:db:80:56:bb:b4:ac:65: aa:11:98:dc:90:15:74:0b:4f:5a:b5:6a:9a:95:c3:51:9d:3d: b9:0e:5f:85:8e:ec:89:42:a2:bd:38:5a:b0:32:07:3f:4e:f5: 4c:3a:99:1d:6a:e0:9c:77:6d:78:ea:75:33:98:92:2d:87:26: a6:b0:3d:fe:32:e5:d8:38:61:02:16:13:51:90:ec:03:ba:26: 82:11:13:e8:9d:d6:7e:41:ee:d7:28:39:72:85:26:bc:35:e3: 29:a0:b8:bc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEzRkUxMTAvBgNVBAUTKDUyQTFDNDIwRDgyN0MxNkNFQUEwNDI4M0REMjhCNjQw QTMxNTYzNEQwHhcNMjYwMzAyMTMzNDUyWhcNMjYwMzA5MTMzNDUyWjAYMRYwFAYD VQQDEw02OWE1OTFmZC05NDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzao3hASbU2XH+RwcBGYROYksdMUGMdpAP+QjmfqgWY1N52Nlq3HwkRpWNT2k HeKjgaE3N8CDFK7V6qdB4oPwbTlrjKU+TD9qi+VoqwIDS2lMiuaCq7xkSooFgYgQ HhkgkMnz6V3lPZlfJeJCXHCv5QDsWAEwaZrrVSTX1gfMjlyb2DHLl2fEMlfaGuMa DkujClCZLcTFyhGX2QTem7pZfrw1WhDxYQWB6sp9o88JcXJP25V+edFdBdaG8EWM puyZlR9SjnUvHOC+R/zMVn0Dqnpm0/Is2t8d2v7w+Q4uOc7LoMKJBIDqog3tbBBj U+PllatrhBscS8/hKODK7LFcLwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGSMmofM i2AJCLOqTjrHUCi3pfLwMB8GA1UdIwQYMBaAFFKhxCDYJ8Fs6qBCg90otkCjFWNN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTNGRS84RDhFMjJDMjU2 NDMxMUYwQjE2MjdBMTVDNEY5QUUwMi9VcUhFSU5nbndXenFvRUtEM1NpMlFLTVZZ MDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VxSEVJTmdud1d6cW9FS0QzU2kyUUtNVlkwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTNGRS84RDhFMjJDMjU2NDMxMUYwQjE2MjdBMTVDNEY5QUUwMi9VcUhFSU5nbndX enFvRUtEM1NpMlFLTVZZMDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqfK+Vrmr4wV7S/yVfpFTfmtUfs1pDSH0tnnhLDpE3DhlfPuDe/Jsksr0oe8H QNGf5Xk9z/jciPjLf6tCeS89NdSOIfeFSxVticKsghfeihKwH4H6bQN07mri8oYl B0uSnq/oe0k+mwU7SoER/mOkowSWfT9+80gN4YJWiEp7xksoN+yL3xiXJ1tMOrwn H5Z9qXpGBL0NbJDonZnbgFa7tKxlqhGY3JAVdAtPWrVqmpXDUZ09uQ5fhY7siUKi vThasDIHP071TDqZHWrgnHdteOp1M5iSLYcmprA9/jLl2DhhAhYTUZDsA7omghET 6J3WfkHu1yg5coUmvDXjKaC4vA== -----END CERTIFICATE-----Generated at Mon Mar 2 17:15:54 2026 by rpki-client