$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft File: U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft (raw, json) Hash identifier: OP49Ah2J6Xm15lnRXWY2Co4geoj5vc3F8hf0Ye5CTD4= Subject key identifier: 8C:61:00:FC:A8:44:BB:FB:6A:FC:1A:94:48:B5:59:81:57:A6:4F:FD Authority key identifier: 53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 Certificate issuer: /CN=A91CA735/serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Certificate serial: 0124 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft Manifest number: 0121 Signing time: Sun 01 Mar 2026 06:48:42 +0000 Manifest this update: Sun 01 Mar 2026 06:48:42 +0000 Manifest next update: Sun 08 Mar 2026 06:48:42 +0000 Files and hashes: 1: U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl (hash: +nnWZIStzwVKVe63bzHlREmRM74lWMOS1MAAF34YEeI=) 2: 38D25300639D11EFB668775FC4F9AE02.roa (hash: GCMBGFfjL07x7SqicgzDicIqCejugsZ+LueaE228tBc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA735, serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Validity Not Before: Mar 1 06:48:42 2026 GMT Not After : Mar 8 06:48:42 2026 GMT Subject: CN=69a3e14a-57c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:25:a6:59:14:cc:e7:50:32:8f:76:20:88:30: fa:f3:aa:e0:16:ef:9c:a4:8c:09:9a:2f:4e:f8:5e: d1:a3:a1:24:6e:6f:ef:78:d4:6a:6d:78:d3:bd:41: c9:3a:ec:16:0f:57:46:ec:b9:13:88:16:58:d6:cb: 25:67:6b:fd:37:ea:c6:9b:1e:11:3a:9e:07:f2:52: fc:9d:f7:de:9a:6b:4c:d7:bd:c6:51:44:f5:f7:20: 6e:9d:d0:5e:b7:55:8d:e2:48:cf:f1:ed:79:2e:6b: 18:2a:75:48:bc:9d:fe:95:17:fc:5f:4a:ef:2e:e2: d4:e4:33:f9:fc:b1:64:bf:c5:d4:5c:f8:32:45:b1: 3f:80:10:1a:d8:cb:0e:4a:7d:ca:84:4d:d8:2f:71: 17:33:3b:9c:42:63:59:7a:ea:be:74:c7:23:28:64: 58:2b:9d:11:52:f0:72:e4:7c:88:a6:90:97:11:12: 00:a3:ae:14:1a:4e:eb:15:1c:70:42:55:59:55:89: 83:fb:4a:75:f1:4f:0f:37:52:2f:14:fb:f5:5c:2f: 6f:01:f0:ac:05:39:17:d7:18:39:ab:77:ea:f4:ec: cf:d8:b2:41:9a:db:99:90:56:22:04:82:94:40:25: ca:ec:98:41:cb:98:b1:f0:4f:c5:1c:d8:97:cf:89: b6:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:61:00:FC:A8:44:BB:FB:6A:FC:1A:94:48:B5:59:81:57:A6:4F:FD X509v3 Authority Key Identifier: keyid:53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:23:3c:ae:89:ea:39:85:fa:a1:57:d0:3e:99:a5:fa:6f:bb: 6a:00:44:23:74:c5:79:fa:7b:8e:e5:2b:3b:cc:ad:db:c0:19: 45:2b:7b:d9:1f:2b:13:a6:d7:e2:85:32:8a:cc:5f:7e:1d:7e: 98:fd:39:6a:ae:52:50:c9:fa:a4:78:54:4e:81:8c:fe:e2:9b: 8e:93:9e:2f:8f:25:b9:c7:bd:68:85:f9:d8:34:28:7c:15:41: ed:5a:38:ab:ff:e2:44:14:4d:0e:83:4b:cf:1b:fb:e4:f9:b9: 2e:e5:b7:43:82:5e:68:a9:31:45:38:64:95:ab:f8:a5:3a:be: 45:c2:99:e1:e8:d2:76:b2:2c:ca:a1:15:1d:2f:26:3f:63:7c: 07:3a:21:5d:6b:32:f8:bd:18:b7:02:db:02:c0:41:65:ec:b9: ff:c2:46:c4:dd:eb:30:29:c2:f4:e4:9b:99:ed:b1:32:e6:bb: 11:94:ce:73:11:48:d1:8e:aa:3e:4b:65:75:06:9d:8a:7b:67: 51:1f:a2:98:5a:fb:eb:6f:29:dd:6c:89:59:28:43:58:8c:39: 57:dd:f0:40:e4:c9:12:f2:2c:6e:58:65:1e:7e:05:94:ac:51: d1:05:60:1a:25:82:6f:78:9e:e9:80:c1:36:35:f7:05:e3:92: 6e:8c:83:a5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E3MzUxMTAvBgNVBAUTKDUzN0IxQkExQzAxQjQ4NjM0NzM4QUExMTU5QUUyQjk1 NTkwREREOTEwHhcNMjYwMzAxMDY0ODQyWhcNMjYwMzA4MDY0ODQyWjAYMRYwFAYD VQQDEw02OWEzZTE0YS01N2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAriWmWRTM51Ayj3YgiDD686rgFu+cpIwJmi9O+F7Ro6Ekbm/veNRqbXjTvUHJ OuwWD1dG7LkTiBZY1sslZ2v9N+rGmx4ROp4H8lL8nffemmtM173GUUT19yBundBe t1WN4kjP8e15LmsYKnVIvJ3+lRf8X0rvLuLU5DP5/LFkv8XUXPgyRbE/gBAa2MsO Sn3KhE3YL3EXMzucQmNZeuq+dMcjKGRYK50RUvBy5HyIppCXERIAo64UGk7rFRxw QlVZVYmD+0p18U8PN1IvFPv1XC9vAfCsBTkX1xg5q3fq9OzP2LJBmtuZkFYiBIKU QCXK7JhBy5ix8E/FHNiXz4m2aQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIxhAPyo RLv7avwalEi1WYFXpk/9MB8GA1UdIwQYMBaAFFN7G6HAG0hjRziqEVmuK5VZDd2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTczNS9EMEU5QjFFRTYz OUIxMUVGOUI0RDJBNURDNEY5QUUwMi9VM3Nib2NBYlNHTkhPS29SV2E0cmxWa04z WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Uzc2JvY0FiU0dOSE9Lb1JXYTRybFZrTjNaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTczNS9EMEU5QjFFRTYzOUIxMUVGOUI0RDJBNURDNEY5QUUwMi9VM3Nib2NBYlNH TkhPS29SV2E0cmxWa04zWkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASSM8ronqOYX6oVfQPpml+m+7agBEI3TFefp7juUrO8yt28AZRSt72R8rE6bX 4oUyisxffh1+mP05aq5SUMn6pHhUToGM/uKbjpOeL48luce9aIX52DQofBVB7Vo4 q//iRBRNDoNLzxv75Pm5LuW3Q4JeaKkxRThklav4pTq+RcKZ4ejSdrIsyqEVHS8m P2N8BzohXWsy+L0YtwLbAsBBZey5/8JGxN3rMCnC9OSbme2xMua7EZTOcxFI0Y6q PktldQadintnUR+imFr7628p3WyJWShDWIw5V93wQOTJEvIsblhlHn4FlKxR0QVg GiWCb3ie6YDBNjX3BeOSboyDpQ== -----END CERTIFICATE-----Generated at Mon Mar 2 16:44:55 2026 by rpki-client