$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft File: uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft (raw, json) Hash identifier: 51DTbdvMGuf2ZBK/S3MEEhFwfJwnUGI49kKmF4fwJ2Q= Subject key identifier: 6A:F9:4B:57:EB:60:4B:FA:09:8C:7E:B9:0B:4E:DA:95:9E:30:1E:6F Authority key identifier: B8:34:01:CF:BC:40:5C:FB:52:FD:A0:FE:BD:4A:02:B7:B1:CE:27:62 Certificate issuer: /CN=A91D1149/serialNumber=B83401CFBC405CFB52FDA0FEBD4A02B7B1CE2762 Certificate serial: 0EE9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft Manifest number: 0EDE Signing time: Sun 01 Mar 2026 22:28:00 +0000 Manifest this update: Sun 01 Mar 2026 22:27:59 +0000 Manifest next update: Sun 08 Mar 2026 22:27:59 +0000 Files and hashes: 1: uDQBz7xAXPtS_aD-vUoCt7HOJ2I.crl (hash: HTYOzE21jv24sHUk9YvcdFhAFVwckmttSwpE42Y4p/A=) 2: BD22841E9E4911E9A136D25AC4F9AE02.roa (hash: n9GvWb/+SrjUGxKELdg2q8EQPS5cGnIEX61vaZ7cU2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.crl rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3817 (0xee9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1149, serialNumber=B83401CFBC405CFB52FDA0FEBD4A02B7B1CE2762 Validity Not Before: Mar 1 22:27:59 2026 GMT Not After : Mar 8 22:27:59 2026 GMT Subject: CN=69a4bd70-497f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:18:0a:94:b1:5e:7e:c0:21:9e:fd:9d:08:e4: 2b:59:24:a4:b3:16:19:ab:c4:23:02:11:bb:1f:07: ff:ca:4f:b1:f8:db:c1:d2:9c:11:52:19:3b:20:cd: 6e:21:15:73:ee:cd:13:c3:b5:92:f0:ca:53:99:12: db:9f:dc:12:84:d2:3a:27:f7:13:41:3e:27:09:e5: 16:ed:1e:ee:eb:63:ef:f6:ff:f6:b5:f3:15:34:98: 45:a5:de:57:bd:2b:03:50:b1:a1:92:42:0f:68:0c: 36:52:e5:fd:62:54:b2:29:af:d1:41:9b:b7:fd:a2: f2:ea:36:32:a2:75:29:5f:8c:e1:d0:ab:9d:b4:47: d4:0b:db:22:b3:7f:96:89:ff:e4:bb:1a:99:5c:a4: 6a:53:21:7a:e8:31:ba:42:93:b9:7b:13:fc:3a:5f: 63:20:51:0c:a6:4a:22:d0:d9:55:b0:e6:16:d3:d3: b8:c3:78:4d:e0:a3:be:d5:b1:0b:84:09:56:2b:44: 2c:f0:3e:72:d3:35:36:fb:c0:1f:63:f9:1b:48:e3: 3d:25:ad:05:ba:9f:3c:c3:f6:b1:7b:f0:7b:73:19: 2a:4c:c2:38:3c:d4:d1:a1:b6:00:b2:14:cc:39:e3: d6:23:bf:69:ff:2f:6d:93:8b:9e:8a:85:1f:a3:ed: b5:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:F9:4B:57:EB:60:4B:FA:09:8C:7E:B9:0B:4E:DA:95:9E:30:1E:6F X509v3 Authority Key Identifier: keyid:B8:34:01:CF:BC:40:5C:FB:52:FD:A0:FE:BD:4A:02:B7:B1:CE:27:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:9b:39:20:9d:d2:15:be:62:e3:c9:e1:47:97:0c:f7:6e:ed: 84:12:d7:af:35:da:2c:c2:3a:42:d7:8d:ef:a5:e2:80:ca:47: 1c:1c:c4:60:47:87:bf:14:91:64:a6:ab:4f:e3:4f:df:54:ee: bc:ee:1c:8c:c7:42:61:b9:0b:af:20:e9:29:c9:70:a4:9c:2d: 52:62:0e:0b:d7:64:2d:79:f6:01:96:0f:34:ea:67:67:f0:05: d1:22:56:c2:6b:1d:21:eb:38:a0:ee:ae:f1:22:af:4a:6b:58: 7a:9a:85:3c:ab:7d:76:31:1c:8b:be:c8:6b:cc:60:60:17:57: db:13:1e:4c:8b:90:fa:53:80:e5:a3:3e:60:48:60:d1:0c:10: 6e:44:3c:b7:11:72:6d:bd:63:92:f9:af:43:b8:74:d5:67:a6: f5:3b:20:8f:16:ee:77:69:28:f0:e5:16:d7:9f:44:44:52:38: 08:ff:f0:3c:40:ac:8d:02:ed:00:85:9b:0b:e6:f9:06:4f:c7: 7d:f1:e2:ac:bd:51:a3:70:05:07:84:0b:5c:ba:25:25:ef:48: d0:c9:b0:b0:6a:cc:53:a6:60:e1:7c:96:f2:ae:dd:56:8f:0f: e3:22:9a:e2:94:91:9c:d7:05:ee:56:f2:fc:26:5a:14:09:78: bc:ec:27:b6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDExNDkxMTAvBgNVBAUTKEI4MzQwMUNGQkM0MDVDRkI1MkZEQTBGRUJENEEwMkI3 QjFDRTI3NjIwHhcNMjYwMzAxMjIyNzU5WhcNMjYwMzA4MjIyNzU5WjAYMRYwFAYD VQQDEw02OWE0YmQ3MC00OTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BgKlLFefsAhnv2dCOQrWSSksxYZq8QjAhG7Hwf/yk+x+NvB0pwRUhk7IM1u IRVz7s0Tw7WS8MpTmRLbn9wShNI6J/cTQT4nCeUW7R7u62Pv9v/2tfMVNJhFpd5X vSsDULGhkkIPaAw2UuX9YlSyKa/RQZu3/aLy6jYyonUpX4zh0KudtEfUC9sis3+W if/kuxqZXKRqUyF66DG6QpO5exP8Ol9jIFEMpkoi0NlVsOYW09O4w3hN4KO+1bEL hAlWK0Qs8D5y0zU2+8AfY/kbSOM9Ja0Fup88w/axe/B7cxkqTMI4PNTRobYAshTM OePWI79p/y9tk4ueioUfo+21SwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGr5S1fr YEv6CYx+uQtO2pWeMB5vMB8GA1UdIwQYMBaAFLg0Ac+8QFz7Uv2g/r1KArexzidi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTE0OS8yNEJCMjRDRTlF NDkxMUU5OUY4QkNDNTlDNEY5QUUwMi91RFFCejd4QVhQdFNfYUQtdlVvQ3Q3SE9K MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VEUUJ6N3hBWFB0U19hRC12VW9DdDdIT0oySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTE0OS8yNEJCMjRDRTlFNDkxMUU5OUY4QkNDNTlDNEY5QUUwMi91RFFCejd4QVhQ dFNfYUQtdlVvQ3Q3SE9KMkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABJs5IJ3SFb5i48nhR5cM927thBLXrzXaLMI6QteN76XigMpHHBzEYEeHvxSR ZKarT+NP31TuvO4cjMdCYbkLryDpKclwpJwtUmIOC9dkLXn2AZYPNOpnZ/AF0SJW wmsdIes4oO6u8SKvSmtYepqFPKt9djEci77Ia8xgYBdX2xMeTIuQ+lOA5aM+YEhg 0QwQbkQ8txFybb1jkvmvQ7h01Wem9Tsgjxbud2ko8OUW159ERFI4CP/wPECsjQLt AIWbC+b5Bk/HffHirL1Ro3AFB4QLXLolJe9I0MmwsGrMU6Zg4XyW8q7dVo8P4yKa 4pSRnNcF7lby/CZaFAl4vOwntg== -----END CERTIFICATE-----Generated at Mon Mar 2 05:58:21 2026 by rpki-client