$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft File: tU-K0c7KwTb8r0eS6_0A5o6h02g.mft (raw, json) Hash identifier: cxKRJKki2r3y1zc9tqthGrj3oHu4wHYnE3w+08AzpMc= Subject key identifier: B8:C4:79:AB:23:8B:C2:9D:FF:03:4B:EF:40:A4:74:6C:51:AB:2B:9D Authority key identifier: B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 Certificate issuer: /CN=A91B7DCB/serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft Manifest number: 9E Signing time: Sun 01 Mar 2026 23:39:58 +0000 Manifest this update: Sun 01 Mar 2026 23:39:56 +0000 Manifest next update: Sun 08 Mar 2026 23:39:56 +0000 Files and hashes: 1: tU-K0c7KwTb8r0eS6_0A5o6h02g.crl (hash: Rf8eQ+XY2kvgxGKZ1VN38BFXALVFGl/snnNMBWWes0w=) 2: D470A60E294511F0B1412377C4F9AE02.roa (hash: GSkbxwT7s713aepzAHb1asdunZV2hHHIcFkvDpvvdJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:39:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Validity Not Before: Mar 1 23:39:56 2026 GMT Not After : Mar 8 23:39:56 2026 GMT Subject: CN=69a4ce4e-2671 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:4b:f9:64:fe:fa:c4:ed:2f:59:9d:df:6b:d8: 98:d6:dd:79:df:a4:f8:7a:13:24:11:91:52:85:c6: 5e:ac:f1:75:5a:f7:d2:8d:bf:5b:a3:97:90:ba:5b: be:d3:da:f4:6a:92:10:74:3d:26:3c:1e:04:24:01: f7:c9:a3:ef:8c:4a:e6:ec:82:b9:e9:d7:9f:e6:50: ea:21:1c:3d:68:d6:61:f5:12:3f:f1:c0:a8:da:31: d9:47:30:cb:3f:8c:87:6e:58:c6:e1:e0:5f:1e:d3: 1b:d6:c2:81:b0:6b:50:b2:18:1c:05:d2:6b:c0:92: 68:8b:8b:1f:ee:ea:ae:28:d3:5b:7c:7e:d9:64:fc: b9:98:db:f0:d0:0e:99:aa:a6:04:82:3e:80:b4:57: 5a:e7:4f:3b:ea:0b:d0:3f:84:65:16:b2:97:70:7b: ee:56:f0:ed:47:61:33:56:13:35:a4:cb:40:1e:ef: 11:39:8f:d2:81:f2:1e:7d:1a:0f:25:78:86:8c:27: 7d:59:c3:01:86:25:1a:b8:4f:29:09:99:a0:dc:70: e6:94:f7:23:60:d9:7a:a6:ad:06:73:9e:0a:f4:62: dd:6c:e5:26:ce:bb:59:08:6c:42:17:73:63:9d:55: c9:05:20:1e:d8:bb:0a:00:d7:2c:fc:5a:ae:35:25: 75:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:C4:79:AB:23:8B:C2:9D:FF:03:4B:EF:40:A4:74:6C:51:AB:2B:9D X509v3 Authority Key Identifier: keyid:B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:ae:e6:45:00:11:6a:79:5e:a5:bd:9f:64:0c:0a:e2:a1:eb: e1:a6:b2:cc:a7:03:19:42:19:12:8e:53:dc:35:5c:d8:90:b5: 0c:41:13:05:9c:ad:3f:d7:9b:6d:35:c1:13:26:c5:8e:66:03: 0a:04:f7:46:09:97:7c:dc:73:2c:11:09:e7:8d:58:f1:0c:75: b3:92:38:3b:b7:9b:d2:99:c1:4c:4b:f2:70:f5:a2:03:28:91: a1:2e:8a:d2:de:19:07:51:6b:3f:71:e5:4f:5f:c5:3b:ea:9f: 05:72:ce:e0:6f:ba:b4:28:83:71:90:b5:5a:3f:bc:00:c9:68: e6:47:b7:4c:7d:f3:ee:92:12:5a:cb:5b:f8:b1:da:6f:81:8e: 5a:aa:d1:a7:56:fb:26:8a:53:85:6e:c7:6a:4b:2b:9a:1c:b2: 20:68:ad:d6:16:6e:6b:96:84:3c:6a:0e:a7:11:53:09:9c:9d: 06:bf:d0:9b:09:2b:d6:ec:dc:ac:3a:f0:00:31:9d:d7:c5:2a: af:7e:ae:d2:cb:cc:e0:9f:ba:3e:2f:d6:20:4c:5d:fb:84:22: 7f:29:31:fb:65:48:23:c3:a7:90:5a:03:95:e7:89:3c:ed:69: 44:4a:7a:b8:8f:ec:52:21:d1:cf:bc:f8:93:4b:3d:52:b4:28: 99:11:55:0a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdEQ0IxMTAvBgNVBAUTKEI1NEY4QUQxQ0VDQUMxMzZGQ0FGNDc5MkVCRkQwMEU2 OEVBMUQzNjgwHhcNMjYwMzAxMjMzOTU2WhcNMjYwMzA4MjMzOTU2WjAYMRYwFAYD VQQDEw02OWE0Y2U0ZS0yNjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAokv5ZP76xO0vWZ3fa9iY1t1536T4ehMkEZFShcZerPF1WvfSjb9bo5eQulu+ 09r0apIQdD0mPB4EJAH3yaPvjErm7IK56def5lDqIRw9aNZh9RI/8cCo2jHZRzDL P4yHbljG4eBfHtMb1sKBsGtQshgcBdJrwJJoi4sf7uquKNNbfH7ZZPy5mNvw0A6Z qqYEgj6AtFda50876gvQP4RlFrKXcHvuVvDtR2EzVhM1pMtAHu8ROY/SgfIefRoP JXiGjCd9WcMBhiUauE8pCZmg3HDmlPcjYNl6pq0Gc54K9GLdbOUmzrtZCGxCF3Nj nVXJBSAe2LsKANcs/FquNSV1PQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLjEeasj i8Kd/wNL70CkdGxRqyudMB8GA1UdIwQYMBaAFLVPitHOysE2/K9Hkuv9AOaOodNo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0RDQi9GODNBQzQ5NDI5 NDQxMUYwQUUxQUJDNzRDNEY5QUUwMi90VS1LMGM3S3dUYjhyMGVTNl8wQTVvNmgw MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RVLUswYzdLd1RiOHIwZVM2XzBBNW82aDAyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0RDQi9GODNBQzQ5NDI5NDQxMUYwQUUxQUJDNzRDNEY5QUUwMi90VS1LMGM3S3dU YjhyMGVTNl8wQTVvNmgwMmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADa7mRQARanlepb2fZAwK4qHr4aayzKcDGUIZEo5T3DVc2JC1DEETBZytP9eb bTXBEybFjmYDCgT3RgmXfNxzLBEJ541Y8Qx1s5I4O7eb0pnBTEvycPWiAyiRoS6K 0t4ZB1FrP3HlT1/FO+qfBXLO4G+6tCiDcZC1Wj+8AMlo5ke3TH3z7pISWstb+LHa b4GOWqrRp1b7JopThW7HaksrmhyyIGit1hZua5aEPGoOpxFTCZydBr/Qmwkr1uzc rDrwADGd18Uqr36u0svM4J+6Pi/WIExd+4Qifykx+2VII8OnkFoDleeJPO1pREp6 uI/sUiHRz7z4k0s9UrQomRFVCg== -----END CERTIFICATE-----Generated at Mon Mar 2 17:06:32 2026 by rpki-client