$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft File: tU-K0c7KwTb8r0eS6_0A5o6h02g.mft (raw, json) Hash identifier: UGtU4+QH7mU77O6OGxQ85kFSIzzaNMDXTHxvUFa/Ykk= Subject key identifier: 2A:7E:7B:7E:4F:FF:41:E0:60:A0:57:6B:72:D4:2F:45:D8:F7:25:EC Authority key identifier: B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 Certificate issuer: /CN=A91B7DCB/serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft Manifest number: A1 Signing time: Sat 07 Mar 2026 06:34:10 +0000 Manifest this update: Sat 07 Mar 2026 06:34:10 +0000 Manifest next update: Sat 14 Mar 2026 06:34:10 +0000 Files and hashes: 1: tU-K0c7KwTb8r0eS6_0A5o6h02g.crl (hash: tnlE5gltVXsVeNXUEQcr8bspA71pIWux4K4Jvx5loEw=) 2: D470A60E294511F0B1412377C4F9AE02.roa (hash: GSkbxwT7s713aepzAHb1asdunZV2hHHIcFkvDpvvdJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 06:34:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Validity Not Before: Mar 7 06:34:10 2026 GMT Not After : Mar 14 06:34:10 2026 GMT Subject: CN=69abc6e2-dc6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:8e:f4:4b:2d:9e:b4:7f:39:eb:d6:e0:31:07: d3:e1:bf:a7:c6:2b:ac:76:d8:83:61:50:f0:fa:12: 2a:50:2c:f3:32:6d:66:77:26:c2:34:c9:16:cd:d9: 91:ef:e6:08:84:e5:a5:f1:47:e2:d8:a6:07:ad:e8: 90:7c:8d:9d:5b:aa:a5:65:b5:e3:c3:3c:e0:c4:a4: 6d:bd:d5:66:3f:dc:bb:f1:63:ee:33:86:4d:68:b5: 2e:74:2c:27:6f:0d:9c:ff:40:06:45:3e:cf:81:99: 6d:3a:89:3f:b3:a4:55:26:50:ec:c3:a9:05:ac:4b: 67:22:69:0c:38:ed:cf:30:9c:c2:bd:fe:51:7d:de: 1e:05:ab:4b:02:ec:cf:32:8f:09:77:e4:c2:eb:f1: e6:27:77:76:26:24:d6:69:fa:f1:42:d9:49:87:fc: 9c:87:e8:b8:2a:ae:22:7a:fe:07:49:e9:a5:c2:a5: 33:e9:b5:1c:bd:ff:d3:af:6b:0a:0c:1e:17:e0:a9: 7c:f4:c2:db:5c:1f:c6:bb:f4:0d:66:1b:e9:3e:a4: b1:e2:3d:dc:b8:64:a0:3c:1b:9b:68:4b:81:a1:e5: c9:66:ae:39:a5:8c:26:9f:a4:a9:59:5e:76:da:e8: a0:70:a3:fa:6e:63:82:84:01:2b:da:db:7a:f5:48: 3a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:7E:7B:7E:4F:FF:41:E0:60:A0:57:6B:72:D4:2F:45:D8:F7:25:EC X509v3 Authority Key Identifier: keyid:B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:31:10:0b:3e:0c:91:6b:ca:ea:97:aa:bc:a8:7b:9e:38:b3: ba:92:71:be:90:8e:ee:46:64:6e:ff:cb:2e:c7:df:18:b4:61: 4a:78:40:71:30:7e:fc:50:c2:a3:76:de:63:56:ee:1d:fa:8a: bc:a7:7f:a9:55:f3:95:1a:4c:b0:64:23:74:91:da:bc:59:16: 5f:33:be:bb:f6:44:8b:6e:0a:d5:49:9d:af:11:c1:bf:8a:0c: 74:63:16:26:b1:60:91:64:f1:9e:ba:ae:c3:d6:44:b2:ab:7d: 5d:bc:00:d0:55:45:ab:e2:a4:b8:83:5b:ab:86:ca:df:f2:0d: 4c:09:19:31:bd:07:1b:c9:1f:f4:ae:b6:55:fb:54:ef:46:a3: 84:76:93:73:af:1d:41:14:09:8c:a9:7f:db:7a:aa:ca:58:10: de:f4:d1:55:35:07:7b:81:de:8e:15:c4:b5:9f:5e:28:5f:62: 9f:3a:98:d1:79:53:b9:9a:80:5c:32:4e:85:37:20:1d:ea:ac: 23:92:57:f2:e5:fb:e6:16:42:82:27:7e:3d:ae:82:2c:a9:dc: ca:5d:ed:bd:45:7b:e9:b5:28:b3:d6:9f:5a:f5:66:41:95:aa: a4:c0:5c:9c:74:79:c0:1b:f9:0c:16:09:18:44:2a:19:f1:02: 19:bd:dd:19 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdEQ0IxMTAvBgNVBAUTKEI1NEY4QUQxQ0VDQUMxMzZGQ0FGNDc5MkVCRkQwMEU2 OEVBMUQzNjgwHhcNMjYwMzA3MDYzNDEwWhcNMjYwMzE0MDYzNDEwWjAYMRYwFAYD VQQDEw02OWFiYzZlMi1kYzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Y70Sy2etH8569bgMQfT4b+nxiusdtiDYVDw+hIqUCzzMm1mdybCNMkWzdmR 7+YIhOWl8Ufi2KYHreiQfI2dW6qlZbXjwzzgxKRtvdVmP9y78WPuM4ZNaLUudCwn bw2c/0AGRT7PgZltOok/s6RVJlDsw6kFrEtnImkMOO3PMJzCvf5Rfd4eBatLAuzP Mo8Jd+TC6/HmJ3d2JiTWafrxQtlJh/ych+i4Kq4iev4HSemlwqUz6bUcvf/Tr2sK DB4X4Kl89MLbXB/Gu/QNZhvpPqSx4j3cuGSgPBubaEuBoeXJZq45pYwmn6SpWV52 2uigcKP6bmOChAEr2tt69Ug69wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCp+e35P /0HgYKBXa3LUL0XY9yXsMB8GA1UdIwQYMBaAFLVPitHOysE2/K9Hkuv9AOaOodNo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0RDQi9GODNBQzQ5NDI5 NDQxMUYwQUUxQUJDNzRDNEY5QUUwMi90VS1LMGM3S3dUYjhyMGVTNl8wQTVvNmgw MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RVLUswYzdLd1RiOHIwZVM2XzBBNW82aDAyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0RDQi9GODNBQzQ5NDI5NDQxMUYwQUUxQUJDNzRDNEY5QUUwMi90VS1LMGM3S3dU YjhyMGVTNl8wQTVvNmgwMmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYjEQCz4MkWvK6peqvKh7njizupJxvpCO7kZkbv/LLsffGLRhSnhAcTB+/FDC o3beY1buHfqKvKd/qVXzlRpMsGQjdJHavFkWXzO+u/ZEi24K1UmdrxHBv4oMdGMW JrFgkWTxnrquw9ZEsqt9XbwA0FVFq+KkuINbq4bK3/INTAkZMb0HG8kf9K62VftU 70ajhHaTc68dQRQJjKl/23qqylgQ3vTRVTUHe4HejhXEtZ9eKF9inzqY0XlTuZqA XDJOhTcgHeqsI5JX8uX75hZCgid+Pa6CLKncyl3tvUV76bUos9afWvVmQZWqpMBc nHR5wBv5DBYJGEQqGfECGb3dGQ== -----END CERTIFICATE-----Generated at Sun Mar 8 03:49:06 2026 by rpki-client