$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft File: UlhBQeXpBP16_D4Noo2QCKGvkhI.mft (raw, json) Hash identifier: XlnE9mEmh3FxxXIUseZUmYMvYxKs+auw3vkCFSFVanw= Subject key identifier: B9:AD:21:0E:80:D4:6B:85:E7:2C:38:DD:99:B4:14:27:9D:BF:C7:D8 Authority key identifier: 52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 Certificate issuer: /CN=A91C2CCD/serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Certificate serial: 01E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft Manifest number: 01E6 Signing time: Sun 01 Mar 2026 04:06:11 +0000 Manifest this update: Sun 01 Mar 2026 04:06:10 +0000 Manifest next update: Sun 08 Mar 2026 04:06:10 +0000 Files and hashes: 1: UlhBQeXpBP16_D4Noo2QCKGvkhI.crl (hash: p+hCleuqWj8n/QRJdcbM/jsak0m8NUz4727BGbQboZ8=) 2: 41D133CC2B5911EE85AD762BC4F9AE02.roa (hash: 2h3iteWHWvj7eGZvRPLFqMA2o9nj7836hPNLX4DVTdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:06:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 489 (0x1e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CCD, serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Validity Not Before: Mar 1 04:06:10 2026 GMT Not After : Mar 8 04:06:10 2026 GMT Subject: CN=69a3bb33-cd6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:50:0e:a3:dc:db:d9:7f:c3:bc:b1:2b:7d:42: ec:94:fd:83:7e:a1:f4:8d:51:25:f6:d2:bc:36:33: 59:61:51:57:57:a3:a6:b1:06:6e:23:f7:a2:16:ba: dd:dd:99:e5:93:f1:46:63:bf:2b:a9:b7:1c:c2:78: 07:bf:50:80:8b:4c:b7:da:65:5e:2b:bd:50:4b:f2: 79:9d:62:1f:57:35:0b:1b:5a:39:06:9d:7f:be:e1: 0c:8e:b0:92:da:08:0a:29:ce:36:21:7e:8c:dc:e0: ff:c3:81:4d:22:a9:fd:4e:c3:7e:1e:0c:47:a8:3f: 1d:8f:da:9f:5b:aa:a7:f4:9f:94:ac:9f:87:6a:d7: 64:c5:09:2c:a8:5c:1b:8f:d5:cf:55:aa:fe:96:7e: 0b:ae:50:df:ee:89:dd:1b:24:3c:88:79:cd:07:c2: e0:5f:8d:ae:b4:5b:d0:7b:c1:05:db:fa:5d:f3:5f: f8:86:d6:b4:3b:b2:14:92:a6:fc:03:43:c3:61:a1: cb:d1:2a:b5:f5:e7:33:51:74:df:0a:9a:e1:a1:26: 6d:f1:9f:e7:b6:72:85:a6:d1:47:60:90:7e:75:3f: b3:9c:19:62:66:2c:98:3e:bf:24:62:57:a9:8b:5f: 5f:0c:72:e0:49:3d:4f:8a:2c:6d:61:d2:20:9d:d3: 2a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:AD:21:0E:80:D4:6B:85:E7:2C:38:DD:99:B4:14:27:9D:BF:C7:D8 X509v3 Authority Key Identifier: keyid:52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:9a:c4:a4:f6:a4:fd:f3:29:39:02:40:a3:ca:e1:c0:91:b0: f9:ef:7a:80:8d:56:86:10:a5:08:b4:4f:20:84:93:69:fe:b5: 14:61:22:b6:b4:9d:43:9b:1a:41:67:e2:c6:28:19:6e:d6:35: 10:0f:5d:26:bd:58:79:bf:11:1e:61:66:63:c7:58:0f:d4:e9: b1:a4:60:60:f8:f5:bf:57:30:75:00:c9:74:75:17:27:30:17: 0f:1d:a4:15:c0:67:a2:36:94:6f:2a:af:69:04:5c:8e:60:53: 6c:7c:14:03:a8:57:7c:6e:a4:e6:62:7d:14:06:fd:93:b4:5f: fe:64:d0:23:b1:5d:e9:ae:61:9c:fa:21:b1:e5:54:d9:b6:dd: 64:f7:a4:81:d8:dc:b1:e8:d2:fe:b1:17:c7:5d:19:bd:63:bd: 02:0f:4b:c5:92:ed:a6:49:63:fb:44:a8:a4:d4:37:68:a0:e3: 74:8a:b7:f2:21:e7:d9:dd:da:25:7e:af:73:f9:9e:54:ee:cb: 50:64:28:bb:5f:e1:65:e5:16:32:89:37:d4:de:a4:8c:f0:7f: 8c:79:ee:d7:d1:a4:a5:b6:49:a4:8b:97:3b:53:1f:3e:64:a8: ae:36:dc:1e:7b:71:e2:3e:d0:cf:d9:b7:74:70:ac:54:ac:39: ca:c4:91:02 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQ0QxMTAvBgNVBAUTKDUyNTg0MTQxRTVFOTA0RkQ3QUZDM0UwREEyOEQ5MDA4 QTFBRjkyMTIwHhcNMjYwMzAxMDQwNjEwWhcNMjYwMzA4MDQwNjEwWjAYMRYwFAYD VQQDDA02OWEzYmIzMy1jZDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6FAOo9zb2X/DvLErfULslP2DfqH0jVEl9tK8NjNZYVFXV6OmsQZuI/eiFrrd 3Znlk/FGY78rqbccwngHv1CAi0y32mVeK71QS/J5nWIfVzULG1o5Bp1/vuEMjrCS 2ggKKc42IX6M3OD/w4FNIqn9TsN+HgxHqD8dj9qfW6qn9J+UrJ+HatdkxQksqFwb j9XPVar+ln4LrlDf7ondGyQ8iHnNB8LgX42utFvQe8EF2/pd81/4hta0O7IUkqb8 A0PDYaHL0Sq19eczUXTfCprhoSZt8Z/ntnKFptFHYJB+dT+znBliZiyYPr8kYlep i19fDHLgST1PiixtYdIgndMqeQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLmtIQ6A 1GuF5yw43Zm0FCedv8fYMB8GA1UdIwQYMBaAFFJYQUHl6QT9evw+DaKNkAihr5IS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDRC9EQzM1MkI1RTJC NTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQMTZfRDROb28yUUNLR3Zr aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VsaEJRZVhwQlAxNl9ENE5vbzJRQ0tHdmtoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkNDRC9EQzM1MkI1RTJCNTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQ MTZfRDROb28yUUNLR3ZraEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASJrEpPak/fMpOQJAo8rhwJGw+e96gI1WhhClCLRPIISTaf61FGEitrSdQ5sa QWfixigZbtY1EA9dJr1Yeb8RHmFmY8dYD9TpsaRgYPj1v1cwdQDJdHUXJzAXDx2k FcBnojaUbyqvaQRcjmBTbHwUA6hXfG6k5mJ9FAb9k7Rf/mTQI7Fd6a5hnPohseVU 2bbdZPekgdjcsejS/rEXx10ZvWO9Ag9LxZLtpklj+0SopNQ3aKDjdIq38iHn2d3a JX6vc/meVO7LUGQou1/hZeUWMok31N6kjPB/jHnu19GkpbZJpIuXO1MfPmSorjbc Hntx4j7Qz9m3dHCsVKw5ysSRAg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:23:23 2026 by rpki-client