$ rpki-client -vvf rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft File: U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft (raw, json) Hash identifier: baz9DrxvE1zmzM8zopYD3M8mhDpO6z7Zyq+xKCCMLSU= Subject key identifier: 68:43:4E:5C:5B:6D:95:D0:E3:B4:F7:75:2A:02:8C:71:59:4D:4B:71 Authority key identifier: 53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B Certificate issuer: /CN=A914E070/serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Certificate serial: 01B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft Manifest number: 01A8 Signing time: Fri 17 Apr 2026 03:54:16 +0000 Manifest this update: Fri 17 Apr 2026 03:54:16 +0000 Manifest next update: Fri 24 Apr 2026 03:54:16 +0000 Files and hashes: 1: U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl (hash: AfCcCHr9QLxeL/Qjn6ZzorZ3Jv6ALjoOxOp0Co0KxIM=) 2: 3772F678BC1211EE8C54FD2EC4F9AE02.roa (hash: 0+cim1nNJ/HzloRjHXoa1S1TFcu0JHUvJvdwHP5Hs9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:54:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E070, serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Validity Not Before: Apr 17 03:54:16 2026 GMT Not After : Apr 24 03:54:16 2026 GMT Subject: CN=69e1aee8-ecb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3a:29:85:d1:38:0c:87:9f:f5:05:c7:1f:67: 9d:d9:80:7f:8a:7b:84:23:1a:36:44:5e:d0:a8:8e: dd:23:1d:a1:3f:1a:1b:f6:16:c1:6c:a9:d2:c8:1b: 83:e6:f0:0d:49:24:4d:7c:39:57:b3:cb:e3:2f:12: ea:4b:d7:22:cd:f9:59:6c:9e:43:18:b5:fb:6a:d5: 87:94:33:09:18:18:a8:39:9a:16:91:47:50:11:4c: c4:83:a5:e9:cf:5c:20:47:f2:59:7f:fa:45:f5:66: 80:74:97:20:e6:3c:81:45:93:4c:e6:86:f4:dc:70: 01:29:13:2f:5f:14:08:d8:83:db:8b:04:dc:ed:be: 45:50:df:32:04:ca:20:12:78:2d:5d:62:ee:40:4c: 33:ff:2c:4e:44:bf:7e:c3:0c:3b:97:be:1e:dc:5f: 8c:36:dd:8b:c7:2d:74:20:ce:59:98:86:f9:ad:5e: 16:8c:51:92:0e:ce:e1:cf:7b:d6:f2:87:b8:36:70: 2b:e0:f5:73:8d:3b:99:d8:69:8f:bc:18:e7:bb:99: d3:d6:d2:65:66:67:01:fb:08:52:0d:eb:ca:90:f8: 63:70:1a:74:7e:2e:7a:32:60:9f:1c:78:b0:3b:21: 82:a0:af:a7:f0:6d:d9:ce:9b:59:c6:38:3c:7b:1b: 97:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:43:4E:5C:5B:6D:95:D0:E3:B4:F7:75:2A:02:8C:71:59:4D:4B:71 X509v3 Authority Key Identifier: keyid:53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:e4:2f:90:99:86:1b:3e:b7:7f:81:bc:b4:6e:2e:7e:3d:b5: e4:a7:18:69:49:d0:bc:b2:1e:97:2b:dd:bb:3c:33:42:1b:8b: 46:81:9b:e4:01:f3:56:4f:90:16:a1:85:43:2f:61:62:39:2b: 0a:e4:69:84:c0:20:48:53:31:03:f1:a5:8d:b4:4e:f0:57:5f: 0c:84:32:7f:e0:0c:66:83:06:42:d2:f4:63:e1:d0:be:62:cd: 80:41:24:44:24:ab:8e:bf:d8:d6:d6:ac:7a:11:e9:32:ad:62: be:0e:0c:46:7d:8e:6f:3c:24:55:42:0c:b8:96:5b:f1:ab:39: 2d:42:3a:97:96:dd:5f:a1:7c:4e:7a:1c:a4:c7:65:b3:16:40: f4:a6:06:2c:75:e7:36:c3:4a:be:fe:51:0a:e0:da:3a:04:0c: a2:99:87:70:a8:e1:c1:54:8f:79:dc:9e:23:84:1a:9d:4a:a2: c6:f7:b1:af:f5:56:f9:b2:47:ba:90:ee:30:85:5f:ea:b9:21: 0f:df:15:d5:01:38:a5:04:84:dc:de:f6:f0:4e:7d:f7:6d:14: f2:3f:f5:50:01:30:dd:77:3b:f9:5b:e8:ff:84:7f:21:8f:84: 7a:21:41:78:99:23:0a:85:c1:ef:05:e8:36:9e:dc:0d:d6:81: e7:75:43:be -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwNzAxMTAvBgNVBAUTKDUzOUJCNzZDOEE0Mzc5QTRERTM5OUMwNTJEMzhDMUI0 NTNBNjZGMUIwHhcNMjYwNDE3MDM1NDE2WhcNMjYwNDI0MDM1NDE2WjAYMRYwFAYD VQQDEw02OWUxYWVlOC1lY2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujophdE4DIef9QXHH2ed2YB/inuEIxo2RF7QqI7dIx2hPxob9hbBbKnSyBuD 5vANSSRNfDlXs8vjLxLqS9cizflZbJ5DGLX7atWHlDMJGBioOZoWkUdQEUzEg6Xp z1wgR/JZf/pF9WaAdJcg5jyBRZNM5ob03HABKRMvXxQI2IPbiwTc7b5FUN8yBMog EngtXWLuQEwz/yxORL9+www7l74e3F+MNt2Lxy10IM5ZmIb5rV4WjFGSDs7hz3vW 8oe4NnAr4PVzjTuZ2GmPvBjnu5nT1tJlZmcB+whSDevKkPhjcBp0fi56MmCfHHiw OyGCoK+n8G3ZzptZxjg8exuXbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGhDTlxb bZXQ47T3dSoCjHFZTUtxMB8GA1UdIwQYMBaAFFObt2yKQ3mk3jmcBS04wbRTpm8b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTA3MC84OUM1NTk3Q0JD MTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVhVGVPWndGTFRqQnRGT21i eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1dTNiSXBEZWFUZU9ad0ZMVGpCdEZPbWJ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTA3MC84OUM1NTk3Q0JDMTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVh VGVPWndGTFRqQnRGT21ieHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVOQvkJmGGz63f4G8tG4ufj215KcYaUnQvLIelyvduzwzQhuLRoGb5AHzVk+Q FqGFQy9hYjkrCuRphMAgSFMxA/GljbRO8FdfDIQyf+AMZoMGQtL0Y+HQvmLNgEEk RCSrjr/Y1tasehHpMq1ivg4MRn2ObzwkVUIMuJZb8as5LUI6l5bdX6F8TnocpMdl sxZA9KYGLHXnNsNKvv5RCuDaOgQMopmHcKjhwVSPedyeI4QanUqixvexr/VW+bJH upDuMIVf6rkhD98V1QE4pQSE3N728E59920U8j/1UAEw3Xc7+Vvo/4R/IY+EeiFB eJkjCoXB7wXoNp7cDdaB53VDvg== -----END CERTIFICATE-----Generated at Fri Apr 17 21:30:50 2026 by rpki-client