$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft File: umn8tA4zSXV_ok-OM1eRxfAEXVg.mft (raw, json) Hash identifier: QkUJsAl7o9cI3dRj2xkD61ejMFbEBX2inKOsUUmCaMg= Subject key identifier: C2:C1:D6:5A:DD:E7:04:F9:40:07:58:63:22:50:C2:73:78:3A:6B:62 Authority key identifier: BA:69:FC:B4:0E:33:49:75:7F:A2:4F:8E:33:57:91:C5:F0:04:5D:58 Certificate issuer: /CN=A91EBA81/serialNumber=BA69FCB40E3349757FA24F8E335791C5F0045D58 Certificate serial: 04A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft Manifest number: 049D Signing time: Sun 01 Mar 2026 01:21:36 +0000 Manifest this update: Sun 01 Mar 2026 01:21:35 +0000 Manifest next update: Sun 08 Mar 2026 01:21:35 +0000 Files and hashes: 1: umn8tA4zSXV_ok-OM1eRxfAEXVg.crl (hash: z3xqkKbFkVOaz8bS5W/sZEzdPftmcNi5P9oLbaYl6R4=) 2: 159DA092E9B711EFB8454123C4F9AE02.roa (hash: xfaaUmP7J5tjslbVKVEyYRhat1jBi1VQSF4Lt/ZV+o0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.crl rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1193 (0x4a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA81, serialNumber=BA69FCB40E3349757FA24F8E335791C5F0045D58 Validity Not Before: Mar 1 01:21:35 2026 GMT Not After : Mar 8 01:21:35 2026 GMT Subject: CN=69a394a0-f1aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:3e:98:83:40:bd:83:90:46:a0:99:22:38:c9: 6c:10:15:86:db:c3:bd:52:41:02:c9:c4:a5:26:80: 81:b1:fb:36:f2:01:27:74:ab:ca:fe:ca:51:0c:bb: 4f:9d:a1:cf:47:db:94:29:2e:86:0a:42:a8:a6:81: 8b:4f:ff:bf:74:a9:21:03:e8:fd:f5:d8:2a:4a:66: 7e:ff:71:58:11:0d:43:e9:94:d4:3a:50:23:e9:f1: 6f:bb:69:4d:d5:16:3b:50:40:6b:82:ad:2c:c5:87: 55:7e:eb:07:ee:37:05:82:ee:de:56:47:9a:9d:d9: 78:05:ca:75:f4:07:03:7e:e6:15:54:08:cd:b6:ae: 3f:b4:fa:ed:3c:b5:0a:2a:2a:c4:a8:36:10:75:59: dd:b6:58:40:c9:17:45:09:07:e8:29:ff:d3:98:d2: 59:44:57:9f:71:87:ba:dd:1c:62:38:2b:c9:ef:57: c6:fe:57:5d:c2:2b:81:61:ea:70:ea:df:90:c3:64: df:78:c8:bc:e4:4a:21:df:31:f2:c5:4e:03:2a:c4: fe:51:2b:d9:cf:7b:4c:54:f8:da:93:ba:75:d2:b6: 25:f9:fc:fc:30:fe:14:94:0b:d2:fe:ba:0c:77:66: c7:4b:b5:96:26:59:f9:96:cf:51:8f:1f:33:37:83: 55:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:C1:D6:5A:DD:E7:04:F9:40:07:58:63:22:50:C2:73:78:3A:6B:62 X509v3 Authority Key Identifier: keyid:BA:69:FC:B4:0E:33:49:75:7F:A2:4F:8E:33:57:91:C5:F0:04:5D:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:45:14:0c:05:6d:b8:5e:03:07:83:10:24:c0:30:6a:52:95: 8a:5d:6b:5e:68:ba:a3:7d:74:aa:06:6b:28:8c:a6:26:1f:05: da:f4:8a:63:ee:bd:b1:9a:7e:09:1d:82:3d:0d:56:0b:8a:89: 0c:fd:74:fe:98:da:38:09:0f:30:d3:0a:ed:af:3b:5d:3c:fc: cd:35:ad:01:4a:0a:49:e4:a7:42:c5:6c:ca:fd:34:b1:a8:a5: 1e:41:4c:9c:fa:22:c6:68:a0:0c:0e:1d:30:30:0c:67:67:65: b8:f8:7a:82:7c:ee:97:ec:95:03:04:4b:3f:21:92:c7:10:c5: 76:19:cd:8e:b2:cc:da:a0:f2:da:26:04:8e:76:b6:e1:90:31: 82:78:7f:56:45:2c:1b:5a:dc:24:61:c8:49:cf:95:a8:fa:76: 02:48:1c:fa:68:52:81:2d:e9:28:ff:d2:32:af:e0:52:11:0f: 7e:b4:c9:eb:3d:93:6c:cf:8b:aa:23:bb:a0:5b:a5:9e:71:12: 31:86:21:61:bb:90:67:6d:ee:c3:e3:61:4f:33:32:c8:d2:ee: e4:99:f9:98:24:bb:eb:54:06:c9:86:10:95:14:cc:dd:66:1d: a3:99:72:7e:68:08:5c:ec:89:fb:6f:b9:37:0b:dc:a6:21:62: 7a:0f:14:48 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBODExMTAvBgNVBAUTKEJBNjlGQ0I0MEUzMzQ5NzU3RkEyNEY4RTMzNTc5MUM1 RjAwNDVENTgwHhcNMjYwMzAxMDEyMTM1WhcNMjYwMzA4MDEyMTM1WjAYMRYwFAYD VQQDDA02OWEzOTRhMC1mMWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmD6Yg0C9g5BGoJkiOMlsEBWG28O9UkECycSlJoCBsfs28gEndKvK/spRDLtP naHPR9uUKS6GCkKopoGLT/+/dKkhA+j99dgqSmZ+/3FYEQ1D6ZTUOlAj6fFvu2lN 1RY7UEBrgq0sxYdVfusH7jcFgu7eVkeandl4Bcp19AcDfuYVVAjNtq4/tPrtPLUK KirEqDYQdVndtlhAyRdFCQfoKf/TmNJZRFefcYe63RxiOCvJ71fG/lddwiuBYepw 6t+Qw2TfeMi85Eoh3zHyxU4DKsT+USvZz3tMVPjak7p10rYl+fz8MP4UlAvS/roM d2bHS7WWJln5ls9Rjx8zN4NVfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMLB1lrd 5wT5QAdYYyJQwnN4OmtiMB8GA1UdIwQYMBaAFLpp/LQOM0l1f6JPjjNXkcXwBF1Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkE4MS9DRTEzNkJEMDc0 NTcxMUVDQjM5ODc1MThDNEY5QUUwMi91bW44dEE0elNYVl9vay1PTTFlUnhmQUVY VmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vtbjh0QTR6U1hWX29rLU9NMWVSeGZBRVhWZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkE4MS9DRTEzNkJEMDc0NTcxMUVDQjM5ODc1MThDNEY5QUUwMi91bW44dEE0elNY Vl9vay1PTTFlUnhmQUVYVmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArEUUDAVtuF4DB4MQJMAwalKVil1rXmi6o310qgZrKIymJh8F2vSKY+69sZp+ CR2CPQ1WC4qJDP10/pjaOAkPMNMK7a87XTz8zTWtAUoKSeSnQsVsyv00sailHkFM nPoixmigDA4dMDAMZ2dluPh6gnzul+yVAwRLPyGSxxDFdhnNjrLM2qDy2iYEjna2 4ZAxgnh/VkUsG1rcJGHISc+VqPp2Akgc+mhSgS3pKP/SMq/gUhEPfrTJ6z2TbM+L qiO7oFulnnESMYYhYbuQZ23uw+NhTzMyyNLu5Jn5mCS761QGyYYQlRTM3WYdo5ly fmgIXOyJ+2+5NwvcpiFieg8USA== -----END CERTIFICATE-----Generated at Sun Mar 1 21:11:36 2026 by rpki-client