$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft File: SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft (raw, json) Hash identifier: Xu9zfTUJBDPX5xNU/I2Ba85Hslc8tpXFBUqIUaDaxhA= Subject key identifier: 47:CB:38:A3:F0:F3:69:D4:7F:91:78:10:93:97:E1:90:78:CF:FF:1D Authority key identifier: 48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 Certificate issuer: /CN=A91DA389/serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Certificate serial: 022A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft Manifest number: 0223 Signing time: Mon 02 Mar 2026 00:13:44 +0000 Manifest this update: Mon 02 Mar 2026 00:13:43 +0000 Manifest next update: Mon 09 Mar 2026 00:13:43 +0000 Files and hashes: 1: SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl (hash: ytBDuXKgReq0HDbpTvaCIhOvL3fVMlJLNbNd9m/Rxu4=) 2: 4F467C58D3AA11ED91B0C532C4F9AE02.roa (hash: h5AorI3QkOoBAwObfVPrh+bfy5EutI9s6EKcaVcQGYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:13:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 554 (0x22a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA389, serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Validity Not Before: Mar 2 00:13:43 2026 GMT Not After : Mar 9 00:13:43 2026 GMT Subject: CN=69a4d638-4672 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:0a:b1:ee:eb:08:b9:b4:19:03:ef:0e:51:9b: 80:4c:bb:79:7e:ff:6d:f5:35:8f:d6:55:06:12:cb: e9:14:ee:4a:8e:e9:8b:45:23:b6:01:90:61:15:a0: f9:f1:db:c3:84:da:1e:27:76:85:76:ce:95:81:7a: ff:41:3d:24:0e:9e:88:5c:c8:7c:4f:ae:6b:4a:95: 63:f0:1c:80:78:6f:92:66:98:e5:c0:47:03:29:f6: f6:48:9e:d6:f0:67:06:32:e6:67:e0:90:6f:f4:12: 16:e0:64:6d:95:04:a2:92:a6:2f:f4:56:26:0a:8d: 01:bd:4d:1e:02:f2:4f:dd:a0:04:17:a0:25:5d:ae: 3a:c8:50:b8:d1:3f:04:48:6f:ae:0c:24:7f:4f:16: b4:09:af:6e:01:37:34:dd:c1:b7:d4:c0:d6:28:42: a4:54:09:3f:02:38:24:76:c7:7e:db:58:8e:39:1e: d2:ec:f8:e0:f3:4e:d7:80:02:1f:22:15:3a:7f:03: 9c:b6:43:ec:bb:8e:b0:d7:ed:e0:36:14:24:16:89: 30:c8:df:b6:4c:d6:c2:1b:e1:0f:f4:d0:a4:7d:c3: fa:d9:4c:3d:71:21:63:74:bf:21:06:44:6b:37:ed: cd:bc:be:02:07:e9:9d:cb:84:4a:04:6e:ba:27:b1: 5c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:CB:38:A3:F0:F3:69:D4:7F:91:78:10:93:97:E1:90:78:CF:FF:1D X509v3 Authority Key Identifier: keyid:48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:92:a4:d8:30:be:b1:f4:b5:97:73:e0:7a:59:92:9f:1d:28: 75:0b:7d:89:db:d2:5c:69:bf:cc:1a:f7:bf:43:05:24:dc:e0: 13:5a:ec:ce:f5:92:86:91:61:b3:0c:45:fb:61:d9:3a:89:3f: d1:56:b0:8d:94:08:d1:7f:74:4d:13:86:7b:55:ba:f4:62:61: 14:f8:81:6f:c2:64:ba:0b:4b:4a:d6:7f:3f:a4:cb:d6:6e:ec: 91:b8:d6:f5:1a:95:0b:ae:cb:23:b4:42:0c:1e:b8:05:89:4c: 5b:d5:8d:c3:6d:74:1c:bc:85:4d:46:48:7e:3b:7e:81:aa:38: 3a:56:f7:b7:30:f7:2d:53:3f:ef:21:cc:98:e4:a8:49:e8:c4: 52:3e:a2:5d:dc:d7:27:68:4b:a2:2f:5e:c7:3f:7e:89:35:ad: 71:04:5c:63:ae:c2:4e:a4:d8:23:d6:f0:d7:03:d5:f9:83:05: 1e:19:ee:dd:c0:87:74:3f:54:65:81:2b:de:77:e2:97:cd:25: 38:5c:87:ac:30:e9:eb:64:e7:55:91:cf:96:58:58:79:b5:ef: 7b:a3:b1:4a:62:d3:58:19:1f:55:75:af:69:0e:94:64:00:3d: 6f:9f:de:5e:98:81:f2:bf:7a:8e:c8:41:f0:3f:e6:6f:3f:c1: 1a:50:8c:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEzODkxMTAvBgNVBAUTKDQ4RjUwRTE2QjgzMDVBQTJDNzU2RDIxQzhGMEZENTA5 MzM4QTVDMjkwHhcNMjYwMzAyMDAxMzQzWhcNMjYwMzA5MDAxMzQzWjAYMRYwFAYD VQQDEw02OWE0ZDYzOC00NjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmQqx7usIubQZA+8OUZuATLt5fv9t9TWP1lUGEsvpFO5KjumLRSO2AZBhFaD5 8dvDhNoeJ3aFds6VgXr/QT0kDp6IXMh8T65rSpVj8ByAeG+SZpjlwEcDKfb2SJ7W 8GcGMuZn4JBv9BIW4GRtlQSikqYv9FYmCo0BvU0eAvJP3aAEF6AlXa46yFC40T8E SG+uDCR/Txa0Ca9uATc03cG31MDWKEKkVAk/Ajgkdsd+21iOOR7S7Pjg807XgAIf IhU6fwOctkPsu46w1+3gNhQkFokwyN+2TNbCG+EP9NCkfcP62Uw9cSFjdL8hBkRr N+3NvL4CB+mdy4RKBG66J7FcsQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEfLOKPw 82nUf5F4EJOX4ZB4z/8dMB8GA1UdIwQYMBaAFEj1Dha4MFqix1bSHI8P1Qkzilwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTM4OS9CMjE3MEI3NEQz QTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dxTEhWdEljandfVkNUT0tY Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQVU9Gcmd3V3FMSFZ0SWNqd19WQ1RPS1hDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTM4OS9CMjE3MEI3NEQzQTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dx TEhWdEljandfVkNUT0tYQ2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiZKk2DC+sfS1l3PgelmSnx0odQt9idvSXGm/zBr3v0MFJNzgE1rszvWShpFh swxF+2HZOok/0VawjZQI0X90TROGe1W69GJhFPiBb8JkugtLStZ/P6TL1m7skbjW 9RqVC67LI7RCDB64BYlMW9WNw210HLyFTUZIfjt+gao4Olb3tzD3LVM/7yHMmOSo SejEUj6iXdzXJ2hLoi9exz9+iTWtcQRcY67CTqTYI9bw1wPV+YMFHhnu3cCHdD9U ZYEr3nfil80lOFyHrDDp62TnVZHPllhYebXve6OxSmLTWBkfVXWvaQ6UZAA9b5/e XpiB8r96jshB8D/mbz/BGlCMsg== -----END CERTIFICATE-----Generated at Mon Mar 2 07:34:23 2026 by rpki-client