$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft File: U8lIF-sTZfHejDwrRAIjmIHBlD0.mft (raw, json) Hash identifier: 7/j/OMj64obY138PZJnsBfJGJ3NS/2QCg3UA3NRCbqs= Subject key identifier: F8:70:F9:02:27:59:B7:B3:4B:67:F2:E8:0C:BE:B1:26:4F:14:8B:82 Authority key identifier: 53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D Certificate issuer: /CN=A91D3307/serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Certificate serial: 0544 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft Manifest number: 0525 Signing time: Mon 02 Mar 2026 00:43:08 +0000 Manifest this update: Mon 02 Mar 2026 00:43:06 +0000 Manifest next update: Mon 09 Mar 2026 00:43:06 +0000 Files and hashes: 1: U8lIF-sTZfHejDwrRAIjmIHBlD0.crl (hash: n1KZuEyNtIxSa+rlKzxyWEl5m6feKk+M2KqAacPWNg0=) 2: C908B72A696F11EFA4DA475FC4F9AE02.roa (hash: oQeIjJKF4m+yoz5ARZ8Odn0EX0eZ3fwE10IEl/U1Ga4=) 3: C9C70AEA696F11EFA4DA475FC4F9AE02.roa (hash: G3ta6bjmQeSaT0qJsBoVB7T2S4RSGUGqGrYt6/OLVUw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:43:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1348 (0x544) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3307, serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Validity Not Before: Mar 2 00:43:06 2026 GMT Not After : Mar 9 00:43:06 2026 GMT Subject: CN=69a4dd1c-0dfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b0:a9:f5:8a:ea:33:65:ba:ed:85:b7:0d:84: c4:68:a3:97:95:65:19:a4:19:d3:a7:8e:a7:93:1e: c0:ef:c6:ab:15:15:61:b7:d0:4d:b5:bc:83:15:af: 83:91:80:eb:aa:53:a5:54:f7:30:33:3a:5d:25:9c: ee:a3:d9:c5:e8:9b:ac:ac:11:a7:0d:9e:90:19:66: a8:98:5e:e8:1c:ab:6c:64:38:aa:7f:ee:5f:eb:99: 24:48:4c:52:67:cd:87:ee:9e:9e:40:d2:25:40:6c: 4b:dd:b1:6c:d2:e1:a2:88:4e:85:ff:51:db:84:06: ce:2e:a6:43:6c:51:e3:5e:d2:96:e1:9f:2a:ef:fa: b6:7d:cb:2d:87:5c:43:76:30:02:ec:2f:db:d8:24: 5e:03:06:a0:ff:48:08:36:1d:43:71:05:17:cc:9f: 42:4d:69:99:1a:62:3d:8e:9e:fd:62:ab:eb:e1:da: 6a:5b:87:6d:97:30:2f:b4:58:ec:f2:92:1f:24:29: e3:5b:54:df:80:81:71:4f:8f:8a:2c:cd:69:00:b1: d8:d0:61:6b:61:b2:7c:06:45:fd:2d:8a:b5:ab:4a: bc:05:3f:b8:1a:2b:1e:48:54:d8:64:1d:44:c1:ea: 0c:ad:5c:28:d9:af:d8:1c:af:17:e5:5d:d5:1a:65: a0:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:70:F9:02:27:59:B7:B3:4B:67:F2:E8:0C:BE:B1:26:4F:14:8B:82 X509v3 Authority Key Identifier: keyid:53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:38:5a:ba:0f:80:d1:c9:79:87:95:25:df:e0:7e:f2:ac:0c: f4:23:5b:6e:db:e8:03:74:db:3d:2b:a2:d1:d8:75:ed:53:df: fd:42:22:3b:e7:18:cb:ec:bd:20:f6:5d:c8:47:09:5f:be:30: 06:99:5c:87:ce:4d:19:7d:bb:5d:c2:1b:0e:6b:b8:d9:bf:7b: 8c:81:a6:53:ef:ff:8f:f4:fb:ad:53:e7:e1:06:32:00:29:94: e8:57:45:81:7d:05:16:32:eb:7b:d9:d3:19:95:d3:91:de:8d: b5:ca:86:24:aa:5e:74:2c:c4:05:e4:c2:33:eb:d5:29:fd:83: 9a:36:9e:a9:d0:2f:1e:11:c2:ba:dc:4e:a5:09:1b:f5:b0:14: 8c:81:4f:ed:21:49:10:af:b7:ce:a7:13:f3:fd:6e:24:64:55: 03:be:4a:54:24:a0:81:42:41:62:74:90:e8:30:7d:1d:1a:aa: 32:3f:dd:ec:30:d0:35:5e:cb:9e:94:41:09:24:69:26:71:40: 92:7b:e8:cd:e5:f9:70:6d:a4:cf:99:af:2d:ad:b2:86:0b:e6: 4e:31:6b:77:24:37:df:6a:af:1b:04:c6:d7:b7:99:04:63:bf: 9e:f1:13:8f:8e:6f:20:c1:11:52:4b:65:0c:2c:c2:82:30:17: bd:b0:38:3c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMzMDcxMTAvBgNVBAUTKDUzQzk0ODE3RUIxMzY1RjFERThDM0MyQjQ0MDIyMzk4 ODFDMTk0M0QwHhcNMjYwMzAyMDA0MzA2WhcNMjYwMzA5MDA0MzA2WjAYMRYwFAYD VQQDEw02OWE0ZGQxYy0wZGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrCp9YrqM2W67YW3DYTEaKOXlWUZpBnTp46nkx7A78arFRVht9BNtbyDFa+D kYDrqlOlVPcwMzpdJZzuo9nF6JusrBGnDZ6QGWaomF7oHKtsZDiqf+5f65kkSExS Z82H7p6eQNIlQGxL3bFs0uGiiE6F/1HbhAbOLqZDbFHjXtKW4Z8q7/q2fcsth1xD djAC7C/b2CReAwag/0gINh1DcQUXzJ9CTWmZGmI9jp79Yqvr4dpqW4dtlzAvtFjs 8pIfJCnjW1TfgIFxT4+KLM1pALHY0GFrYbJ8BkX9LYq1q0q8BT+4GiseSFTYZB1E weoMrVwo2a/YHK8X5V3VGmWgJwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPhw+QIn WbezS2fy6Ay+sSZPFIuCMB8GA1UdIwQYMBaAFFPJSBfrE2Xx3ow8K0QCI5iBwZQ9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzMwNy8zNDJEODMyODQy Q0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpmSGVqRHdyUkFJam1JSEJs RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4bElGLXNUWmZIZWpEd3JSQUlqbUlIQmxEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzMwNy8zNDJEODMyODQyQ0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpm SGVqRHdyUkFJam1JSEJsRDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAszhaug+A0cl5h5Ul3+B+8qwM9CNbbtvoA3TbPSui0dh17VPf/UIiO+cYy+y9 IPZdyEcJX74wBplch85NGX27XcIbDmu42b97jIGmU+//j/T7rVPn4QYyACmU6FdF gX0FFjLre9nTGZXTkd6NtcqGJKpedCzEBeTCM+vVKf2DmjaeqdAvHhHCutxOpQkb 9bAUjIFP7SFJEK+3zqcT8/1uJGRVA75KVCSggUJBYnSQ6DB9HRqqMj/d7DDQNV7L npRBCSRpJnFAknvozeX5cG2kz5mvLa2yhgvmTjFrdyQ332qvGwTG17eZBGO/nvET j45vIMERUktlDCzCgjAXvbA4PA== -----END CERTIFICATE-----Generated at Mon Mar 2 10:54:30 2026 by rpki-client