$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft File: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft (raw, json) Hash identifier: Sztqu1B1MHAYUrlyizp/uOAfIEb3rLHe4jeV5qyAE5Q= Subject key identifier: E8:1B:8A:2E:98:EB:83:25:19:9E:6A:80:E7:A9:C4:2C:07:0C:36:9E Authority key identifier: 53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 Certificate issuer: /CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Certificate serial: 361A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft Manifest number: 357E Signing time: Mon 02 Mar 2026 00:33:00 +0000 Manifest this update: Mon 02 Mar 2026 00:32:59 +0000 Manifest next update: Mon 09 Mar 2026 00:32:59 +0000 Files and hashes: 1: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl (hash: M9YOYjFYz4to7MCPR3BJV5y6Np7opAb4rztjRbB5zwo=) 2: 9F3A919468D811EFB2FE405FC4F9AE02.roa (hash: GK0larljqDnIZSIDwqWiFQo4BToMGpYrvOsSZwaLGDI=) 3: 80222864027211F19767E73A2C3D8C67.roa (hash: ywqZnsw0viWQVsstxlcIR8TqE6o6V9nWSSr21sJVdy4=) 4: AB9889725E5E11EDB5361D3BC4F9AE02.roa (hash: 2+uDGIyNCQwdI4kpyLzkpL270iQx3eFCTQmOCW4llcA=) 5: DF8602D05E5B11ED994E491CC4F9AE02.roa (hash: Aq2aXJwiDmleCL4Y5dXro6eaNkC/MLx9wlaLd0aot6I=) 6: 491E49AECDCA11ED8F57D386C4F9AE02.roa (hash: AAS+jxhp2xik0OYMSPq+B01L4sPGFryRO2dGHyui2mE=) 7: D0886954188811EC8E86754FC4F9AE02.roa (hash: W4C6/CMmIu13G3sy+4epSwhK8wjgstVqttIzDULu+ak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:32:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13850 (0x361a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F47, serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Validity Not Before: Mar 2 00:32:59 2026 GMT Not After : Mar 9 00:32:59 2026 GMT Subject: CN=69a4dabc-f9f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f5:94:84:04:9d:9b:db:d8:89:c7:cd:ca:02: c9:5d:0f:9e:15:49:13:73:04:76:ea:0f:a2:91:e2: 34:be:30:74:d5:e5:79:9d:72:e9:a6:27:e7:6c:45: 22:5d:60:69:8c:ed:5c:04:4a:59:5f:bb:2f:12:fe: de:6c:aa:7d:32:2d:4b:1a:de:ce:c5:26:5e:b5:e1: 0f:10:f0:dd:99:33:af:09:46:76:75:a4:7f:89:82: 62:f2:b9:e4:07:a5:5f:cb:6d:1b:0f:fd:ad:21:48: 18:74:f0:ac:cf:98:5c:cd:55:99:bc:68:57:25:fb: 38:14:88:1c:b2:1f:dc:8e:d9:4f:0d:11:ad:5c:54: 94:74:91:bd:ac:87:7d:cc:f2:8d:af:a4:7d:1e:52: f0:53:88:69:52:5f:30:ca:f1:6c:a7:4b:fa:b5:7f: 00:08:d9:22:be:a1:76:db:0d:dd:95:2e:7d:83:61: a4:b6:89:c0:3d:52:f1:ba:76:d0:62:ae:0a:08:17: cf:97:43:2a:5c:44:31:68:37:6f:75:5d:54:2d:5a: 11:07:42:b7:3c:2a:cb:e5:6b:d4:eb:fc:73:40:d9: eb:15:5d:5a:22:2a:dc:6d:7d:7d:b3:84:3e:c0:19: 96:24:29:51:e7:6d:79:b4:62:43:a4:5f:b1:9f:26: 8a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:1B:8A:2E:98:EB:83:25:19:9E:6A:80:E7:A9:C4:2C:07:0C:36:9E X509v3 Authority Key Identifier: keyid:53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:ba:d8:94:60:70:d5:bb:a8:f8:43:2c:e0:59:40:4e:c4:67: e9:2e:df:29:ce:2d:d0:6b:5e:da:63:b8:3b:b6:75:d2:c1:35: 86:0f:0e:bf:f3:d3:f8:d5:25:eb:92:d5:97:d4:8a:40:5c:5d: e3:7b:dc:05:64:c2:9f:44:b3:4b:49:89:05:ba:e3:a4:47:b8: 80:84:09:08:8b:08:40:65:7e:3c:67:05:5e:c6:f7:bb:2c:12: 9d:2a:f2:96:4c:4b:10:90:b5:e9:4d:13:9f:7a:ae:9e:0a:91: d4:0a:8a:72:63:dc:62:fa:28:00:3f:00:15:c3:91:3b:fd:21: a2:99:52:17:ea:a3:80:b2:6d:bb:fb:49:53:ea:24:22:b1:74: d7:c7:0b:30:77:61:42:5f:bb:99:94:ac:35:45:04:21:b8:71: 4f:7a:76:dc:47:5e:42:8a:bb:01:03:ee:6d:81:a3:19:e2:59: 0a:9c:64:4e:08:01:ab:d9:c8:78:a2:68:6f:87:56:65:67:db: 5e:d0:f1:04:6d:f7:4d:56:c5:c9:b4:52:15:d2:e8:8a:99:9c: cd:95:d0:25:cc:34:c2:cb:af:2e:09:65:ba:dd:61:1e:8c:fe: 9f:35:87:5d:63:85:ab:29:0c:dc:60:46:c7:3a:62:c7:a6:0c: 42:2c:54:ce -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGNDcxMTAvBgNVBAUTKDUzOEIwNzZFMEFBREQ4RkFFMjk3MEM5NTQzRTg0OUE5 MEZFNzM3NTIwHhcNMjYwMzAyMDAzMjU5WhcNMjYwMzA5MDAzMjU5WjAYMRYwFAYD VQQDEw02OWE0ZGFiYy1mOWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAovWUhASdm9vYicfNygLJXQ+eFUkTcwR26g+ikeI0vjB01eV5nXLppifnbEUi XWBpjO1cBEpZX7svEv7ebKp9Mi1LGt7OxSZeteEPEPDdmTOvCUZ2daR/iYJi8rnk B6Vfy20bD/2tIUgYdPCsz5hczVWZvGhXJfs4FIgcsh/cjtlPDRGtXFSUdJG9rId9 zPKNr6R9HlLwU4hpUl8wyvFsp0v6tX8ACNkivqF22w3dlS59g2GktonAPVLxunbQ Yq4KCBfPl0MqXEQxaDdvdV1ULVoRB0K3PCrL5WvU6/xzQNnrFV1aIircbX19s4Q+ wBmWJClR5215tGJDpF+xnyaKSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOgbii6Y 64MlGZ5qgOepxCwHDDaeMB8GA1UdIwQYMBaAFFOLB24Krdj64pcMlUPoSakP5zdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY0Ny9CNEE4NkMzODFE ODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQcmlsd3lWUS1oSnFRX25O MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0c0hiZ3F0MlByaWx3eVZRLWhKcVFfbk4xSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkY0Ny9CNEE4NkMzODFEODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQ cmlsd3lWUS1oSnFRX25OMUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAM7rYlGBw1buo+EMs4FlATsRn6S7fKc4t0Gte2mO4O7Z10sE1hg8Ov/PT+NUl 65LVl9SKQFxd43vcBWTCn0SzS0mJBbrjpEe4gIQJCIsIQGV+PGcFXsb3uywSnSry lkxLEJC16U0Tn3qungqR1AqKcmPcYvooAD8AFcORO/0hoplSF+qjgLJtu/tJU+ok IrF018cLMHdhQl+7mZSsNUUEIbhxT3p23EdeQoq7AQPubYGjGeJZCpxkTggBq9nI eKJob4dWZWfbXtDxBG33TVbFybRSFdLoipmczZXQJcw0wsuvLgllut1hHoz+nzWH XWOFqykM3GBGxzpix6YMQixUzg== -----END CERTIFICATE-----Generated at Mon Mar 2 14:07:16 2026 by rpki-client