$ rpki-client -vvf rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft File: UoaLCQH1W0B4uRpzRRym0iMSyKs.mft (raw, json) Hash identifier: +8eHrmTVV/mQPUHAxelNf5haegtIQ9RqrB2DXPV2yKs= Subject key identifier: B2:FE:39:4B:DF:BF:89:53:E4:75:39:B0:AE:ED:8F:94:E5:55:3B:68 Authority key identifier: 52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB Certificate issuer: /CN=A913E2B3/serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Certificate serial: 0CA6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft Manifest number: 0C96 Signing time: Mon 16 Mar 2026 18:15:20 +0000 Manifest this update: Mon 16 Mar 2026 18:15:20 +0000 Manifest next update: Mon 23 Mar 2026 18:15:20 +0000 Files and hashes: 1: UoaLCQH1W0B4uRpzRRym0iMSyKs.crl (hash: Ozeg/XMYVsLtvRF56oSA3jkZ4lYLkfz9mJI3UfeH7s8=) 2: 399AB6DA4ED511ED84336740C4F9AE02.roa (hash: 5GbxzBSfHfbTK/2PyRZ8YSXCEt+H6QAHiqTTaUK/ZBg=) 3: 3AB1E0D44ED511ED84336740C4F9AE02.roa (hash: UlK2XwEWcbOvFEYsFdkuj6xNj+WONsyKqb3Dor4n7pw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Mar 2026 18:15:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3238 (0xca6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E2B3, serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Validity Not Before: Mar 16 18:15:20 2026 GMT Not After : Mar 23 18:15:20 2026 GMT Subject: CN=69b848b8-a8ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ba:50:4c:77:bb:4d:22:b1:c3:34:e8:31:15: 57:97:27:6d:8d:39:cf:05:59:70:2b:ca:00:29:1c: 28:6b:6c:32:70:be:a2:8d:92:63:87:fe:9e:4c:79: 82:5d:eb:b3:82:e6:03:4b:df:13:56:b2:33:e0:c5: f3:4e:85:69:fe:f7:53:d0:91:3b:57:92:22:a3:6b: 1b:30:3b:4a:ab:91:48:76:2c:4a:6a:19:77:e1:de: a7:99:59:15:2e:ce:ed:eb:4b:9a:17:27:58:54:32: 86:5c:73:2f:1a:44:ca:9c:31:22:37:5a:0d:03:e5: 35:36:42:f5:95:56:eb:a6:84:aa:94:7d:4d:55:fe: c4:58:c7:f8:11:b7:06:e8:93:f0:d3:26:49:49:15: 4e:de:23:7f:9b:85:3c:b3:a3:63:ae:6c:bb:19:43: 57:e5:d4:12:5d:f6:4b:f3:fd:66:7e:1d:b9:d7:fc: 49:f1:e6:23:15:e5:9a:1d:60:c9:2c:6e:f5:dc:f6: 55:a9:fd:c0:99:7a:b8:a1:2c:c8:00:83:08:81:af: fb:9c:c8:8b:9d:07:c3:5c:35:fd:f6:cc:e8:84:63: ab:9d:4c:cb:86:3a:2f:ae:15:32:11:10:54:d2:de: fa:b6:b1:8e:4f:2d:c9:fd:fb:4f:a6:33:e2:da:19: bc:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:FE:39:4B:DF:BF:89:53:E4:75:39:B0:AE:ED:8F:94:E5:55:3B:68 X509v3 Authority Key Identifier: keyid:52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:91:b5:07:94:70:43:ab:dc:4c:17:ad:c9:70:fc:28:7a:73: 9e:18:55:a1:17:8b:a5:57:cc:4d:0e:8f:5d:41:1c:2c:4d:23: 00:57:3a:03:65:df:31:63:51:2f:c6:8c:f7:a4:60:c8:61:a0: 0c:d0:82:4a:60:41:6c:b3:52:6f:dd:86:80:59:ff:f8:83:5e: 72:73:53:0d:d0:c3:54:40:28:b1:1d:c6:9a:be:f5:59:1e:d4: 66:5b:34:17:f8:d4:df:dd:90:40:7a:9f:c8:20:14:22:c9:ff: b7:41:67:88:89:d9:1d:62:b0:a5:3a:be:24:62:64:33:b4:52: 1c:08:57:f2:b1:09:fd:af:5a:e1:32:7b:ba:48:e0:72:dc:f9: f7:28:49:f5:83:bc:88:60:5f:8b:21:b0:77:f1:6e:15:16:63: 0f:0d:f7:ac:f6:ea:88:63:d6:c5:cd:62:83:f5:1b:07:e9:5c: 7c:0f:89:ff:de:c3:3e:ad:11:ef:92:f2:c6:a1:2e:14:fa:b9: e7:d4:fd:09:f6:79:29:b7:36:80:57:8e:ba:28:a0:1c:27:0f: ab:28:08:fa:41:16:7a:ae:86:71:00:82:8f:90:87:d7:a8:1c: 2e:4b:24:7b:de:14:ee:b1:aa:bc:96:e0:af:45:3c:07:2b:d5: 0f:e1:cc:b3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UyQjMxMTAvBgNVBAUTKDUyODY4QjA5MDFGNTVCNDA3OEI5MUE3MzQ1MUNBNkQy MjMxMkM4QUIwHhcNMjYwMzE2MTgxNTIwWhcNMjYwMzIzMTgxNTIwWjAYMRYwFAYD VQQDEw02OWI4NDhiOC1hOGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbpQTHe7TSKxwzToMRVXlydtjTnPBVlwK8oAKRwoa2wycL6ijZJjh/6eTHmC XeuzguYDS98TVrIz4MXzToVp/vdT0JE7V5Iio2sbMDtKq5FIdixKahl34d6nmVkV Ls7t60uaFydYVDKGXHMvGkTKnDEiN1oNA+U1NkL1lVbrpoSqlH1NVf7EWMf4EbcG 6JPw0yZJSRVO3iN/m4U8s6Njrmy7GUNX5dQSXfZL8/1mfh251/xJ8eYjFeWaHWDJ LG713PZVqf3AmXq4oSzIAIMIga/7nMiLnQfDXDX99szohGOrnUzLhjovrhUyERBU 0t76trGOTy3J/ftPpjPi2hm8uwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLL+OUvf v4lT5HU5sK7tj5TlVTtoMB8GA1UdIwQYMBaAFFKGiwkB9VtAeLkac0UcptIjEsir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTJCMy8yMEU2N0REODEy RjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcwQjR1UnB6UlJ5bTBpTVN5 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvYUxDUUgxVzBCNHVScHpSUnltMGlNU3lLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTJCMy8yMEU2N0REODEyRjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcw QjR1UnB6UlJ5bTBpTVN5S3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjJG1B5RwQ6vcTBetyXD8KHpznhhVoReLpVfMTQ6PXUEcLE0jAFc6A2XfMWNR L8aM96RgyGGgDNCCSmBBbLNSb92GgFn/+INecnNTDdDDVEAosR3Gmr71WR7UZls0 F/jU392QQHqfyCAUIsn/t0FniInZHWKwpTq+JGJkM7RSHAhX8rEJ/a9a4TJ7ukjg ctz59yhJ9YO8iGBfiyGwd/FuFRZjDw33rPbqiGPWxc1ig/UbB+lcfA+J/97DPq0R 75LyxqEuFPq559T9CfZ5Kbc2gFeOuiigHCcPqygI+kEWeq6GcQCCj5CH16gcLksk e94U7rGqvJbgr0U8ByvVD+HMsw== -----END CERTIFICATE-----Generated at Tue Mar 17 12:30:41 2026 by rpki-client