$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft File: UoKkZCr301eZKRu6RH6hQlGk1fw.mft (raw, json) Hash identifier: iVcbG0kkBXD2sdKYkYeJtmZ3JeYRWVvs2z+ceZ552qw= Subject key identifier: 1F:17:84:5D:13:30:56:6D:B3:C7:36:7B:6C:8F:DB:92:DE:39:2B:AC Authority key identifier: 52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC Certificate issuer: /CN=A91582D9/serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Certificate serial: 08F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft Manifest number: 20E1 Signing time: Thu 16 Apr 2026 16:27:58 +0000 Manifest this update: Thu 16 Apr 2026 16:27:58 +0000 Manifest next update: Thu 23 Apr 2026 16:27:58 +0000 Files and hashes: 1: UoKkZCr301eZKRu6RH6hQlGk1fw.crl (hash: zyTPceTwVHhfDGZuiwhtWo1pTID4jEUyMe8nYMCoNDs=) 2: B5E806CC8BC711EE899A5284C4F9AE02.roa (hash: sQmmHynRplLfSEUYnUX91utp9ekEe+hXIjAXfGLYEZ0=) 3: 654665EA197611F09D2B1C76C4F9AE02.roa (hash: EKk887jvD91sa5mqsDwh0zo559XyowQgVll88eOizFM=) 4: 172C2B96197711F0A993397AC4F9AE02.roa (hash: KlRLli/SZyA/blQSDVf22qf7tBm9EE3kAalEgJQxMlA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:27:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2296 (0x8f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9, serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Validity Not Before: Apr 16 16:27:58 2026 GMT Not After : Apr 23 16:27:58 2026 GMT Subject: CN=69e10e0e-1817 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:62:a6:06:8f:2a:8c:2e:53:e0:1c:c7:14:9f: 98:90:d2:e2:5b:9a:c1:cc:1f:07:f4:d3:89:6e:95: a1:ba:cd:99:b2:fe:79:f2:be:3a:0f:3c:4a:25:a2: 9e:80:97:07:4e:87:96:5a:88:42:f1:29:d5:ce:4e: c5:db:ef:2a:6d:3a:d6:8d:f0:35:35:5a:fd:cd:2d: 30:5a:bb:e0:fb:47:87:7b:51:df:ca:3a:c9:f6:e9: c7:fc:3d:50:57:21:82:75:f3:30:77:fe:70:85:80: ce:a4:c4:68:5a:73:ca:e9:b3:72:63:23:b6:8f:3d: 34:18:f9:4c:fe:47:da:db:33:ae:7d:c2:48:0d:8d: fe:64:7d:63:23:36:57:5e:82:04:6b:f5:d2:c0:3d: ea:44:3d:0d:78:d4:0c:1e:c7:2e:8a:2b:34:78:92: 31:ff:fa:99:03:57:3b:38:29:f8:ac:d0:6e:a2:d7: 28:9c:93:97:28:bd:01:f3:bc:f2:70:7f:fb:d0:ea: 1e:70:de:19:c2:d6:34:09:11:89:9d:f5:9e:44:08: 73:54:09:bd:13:e9:1c:40:9e:7f:d8:09:33:9c:bc: d9:18:a1:64:72:59:6c:16:04:db:75:9d:3a:e5:53: 66:1e:ef:0f:0e:d0:2c:e5:92:25:8f:7f:6f:80:ce: 40:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:17:84:5D:13:30:56:6D:B3:C7:36:7B:6C:8F:DB:92:DE:39:2B:AC X509v3 Authority Key Identifier: keyid:52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:2f:99:5a:a1:96:b9:74:de:9c:79:b0:35:47:bb:02:1b:2e: cd:85:48:4f:d1:66:c3:0b:51:3c:b6:be:ad:2b:ac:4c:1f:f9: c7:81:68:0b:8c:0d:3d:ef:c7:31:3b:04:45:cf:6e:fe:bf:a7: 6b:de:be:e6:a6:e0:81:ba:12:24:c1:dc:9d:c5:5f:4c:ac:86: fd:ae:29:27:36:ec:82:e9:f3:b7:0d:10:30:b4:8b:57:f4:04: 95:d8:39:13:d9:39:4e:b2:65:c0:a2:ab:89:4d:be:1c:39:47: 96:fc:96:9e:79:d6:34:26:d5:bc:a6:8e:ed:53:b2:64:eb:8d: 55:bc:a9:b9:3c:f2:42:5a:9a:c5:18:46:37:33:3a:a2:88:19: 13:98:86:45:8f:76:cb:bd:18:06:af:5e:84:e7:11:7c:ff:1c: 50:d9:23:01:da:34:0f:f7:0f:d8:da:20:69:7e:bc:f5:e6:0b: 18:a1:ee:a7:0a:05:d5:6b:b1:dc:73:59:2f:be:f2:a3:cc:89: 65:b5:74:ef:a2:e7:31:2a:2a:b3:92:71:ec:cb:76:bd:f0:6f: 1c:8d:90:fa:b6:39:0b:31:8f:fe:78:5e:b3:17:31:9c:84:16: ef:04:48:23:b4:f7:3c:90:8b:ca:69:03:bf:45:56:44:85:f4: 95:2d:00:b7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDUyODJBNDY0MkFGN0QzNTc5OTI5MUJCQTQ0N0VBMTQy NTFBNEQ1RkMwHhcNMjYwNDE2MTYyNzU4WhcNMjYwNDIzMTYyNzU4WjAYMRYwFAYD VQQDEw02OWUxMGUwZS0xODE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGKmBo8qjC5T4BzHFJ+YkNLiW5rBzB8H9NOJbpWhus2Zsv558r46DzxKJaKe gJcHToeWWohC8SnVzk7F2+8qbTrWjfA1NVr9zS0wWrvg+0eHe1HfyjrJ9unH/D1Q VyGCdfMwd/5whYDOpMRoWnPK6bNyYyO2jz00GPlM/kfa2zOufcJIDY3+ZH1jIzZX XoIEa/XSwD3qRD0NeNQMHscuiis0eJIx//qZA1c7OCn4rNBuotconJOXKL0B87zy cH/70OoecN4ZwtY0CRGJnfWeRAhzVAm9E+kcQJ5/2AkznLzZGKFkcllsFgTbdZ06 5VNmHu8PDtAs5ZIlj39vgM5AgQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB8XhF0T MFZts8c2e2yP25LeOSusMB8GA1UdIwQYMBaAFFKCpGQq99NXmSkbukR+oUJRpNX8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAxZVpLUnU2Ukg2aFFsR2sx ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvS2taQ3IzMDFlWktSdTZSSDZoUWxHazFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODJEOS8wRURBNkQ1RUNEREExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAx ZVpLUnU2Ukg2aFFsR2sxZncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZy+ZWqGWuXTenHmwNUe7AhsuzYVIT9FmwwtRPLa+rSusTB/5x4FoC4wNPe/H MTsERc9u/r+na96+5qbggboSJMHcncVfTKyG/a4pJzbsgunztw0QMLSLV/QEldg5 E9k5TrJlwKKriU2+HDlHlvyWnnnWNCbVvKaO7VOyZOuNVbypuTzyQlqaxRhGNzM6 oogZE5iGRY92y70YBq9ehOcRfP8cUNkjAdo0D/cP2NogaX689eYLGKHupwoF1Wux 3HNZL77yo8yJZbV076LnMSoqs5Jx7Mt2vfBvHI2Q+rY5CzGP/nhesxcxnIQW7wRI I7T3PJCLymkDv0VWRIX0lS0Atw== -----END CERTIFICATE-----Generated at Sat Apr 18 00:30:11 2026 by rpki-client