$ rpki-client -vvf rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/_UmlE0ai96yBGwCtYuvvDpSiobI.mft File: _UmlE0ai96yBGwCtYuvvDpSiobI.mft (raw, json) Hash identifier: 5I3YDzLAcL68tl9BSTzOfqwFh4HLjioJktjc4oXSe/A= Subject key identifier: 72:74:99:C6:A1:FC:1B:C6:EB:1A:AF:31:60:6F:26:1D:64:C7:C8:2B Authority key identifier: FD:49:A5:13:46:A2:F7:AC:81:1B:00:AD:62:EB:EF:0E:94:A2:A1:B2 Certificate issuer: /CN=A91652B5/serialNumber=FD49A51346A2F7AC811B00AD62EBEF0E94A2A1B2 Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_UmlE0ai96yBGwCtYuvvDpSiobI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/_UmlE0ai96yBGwCtYuvvDpSiobI.mft Manifest number: 54 Signing time: Fri 17 Apr 2026 07:56:13 +0000 Manifest this update: Fri 17 Apr 2026 07:56:13 +0000 Manifest next update: Fri 24 Apr 2026 07:56:13 +0000 Files and hashes: 1: _UmlE0ai96yBGwCtYuvvDpSiobI.crl (hash: rqIf4mxkYFWhmGjpXKn1bD9M20bzXA1WrlVtUdWkMaA=) 2: 535DB56CD1AF11F0A278C10CC4F9AE02.roa (hash: BXUEY5m+3lonf61CO2Aq4e6KwB/tUlOeMJ88DFpi710=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/_UmlE0ai96yBGwCtYuvvDpSiobI.crl rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/_UmlE0ai96yBGwCtYuvvDpSiobI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_UmlE0ai96yBGwCtYuvvDpSiobI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 07:56:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91652B5, serialNumber=FD49A51346A2F7AC811B00AD62EBEF0E94A2A1B2 Validity Not Before: Apr 17 07:56:13 2026 GMT Not After : Apr 24 07:56:13 2026 GMT Subject: CN=69e1e79d-fdf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:da:0f:ea:84:28:e4:4d:d4:29:59:d7:9c:eb: 3e:75:d3:bc:37:fc:e3:f9:b9:f8:89:9f:90:2c:cf: 37:0d:61:dd:1f:ae:f9:bc:8d:1d:2f:6c:5c:54:86: 8b:51:7e:12:65:46:a3:41:08:42:24:23:37:2a:4c: dc:43:03:de:b1:2d:ad:e5:46:d8:07:20:aa:06:36: 3f:2c:26:03:04:41:72:6a:97:ea:a5:3e:7c:d9:46: a5:4b:4e:01:25:df:51:be:54:1f:42:86:32:a9:43: e6:1e:84:a5:d5:33:d0:4b:1e:1b:7d:60:b4:0b:f1: 0e:83:ce:a4:49:89:ed:c7:67:de:9e:8e:fc:42:a4: 05:bf:88:9f:3a:1d:df:61:85:bb:c4:c0:df:78:74: 39:5f:02:b0:86:33:1d:1f:d4:9f:17:c4:c8:93:dd: d1:d1:3d:8e:07:5b:a4:62:74:14:e8:7e:d8:65:77: 02:ae:bc:25:ce:f8:64:49:93:a6:90:e3:d1:6f:2d: 28:55:dd:cf:3c:8e:59:e9:69:04:34:3e:bb:22:4d: f2:ab:2c:df:fc:54:04:c2:76:cc:cf:b4:0b:45:4f: 76:5f:bc:2d:77:03:3f:a5:f0:82:75:5a:70:bc:d4: 26:99:77:47:2d:d1:5b:c9:35:47:c7:16:81:e7:db: e5:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:74:99:C6:A1:FC:1B:C6:EB:1A:AF:31:60:6F:26:1D:64:C7:C8:2B X509v3 Authority Key Identifier: keyid:FD:49:A5:13:46:A2:F7:AC:81:1B:00:AD:62:EB:EF:0E:94:A2:A1:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/_UmlE0ai96yBGwCtYuvvDpSiobI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_UmlE0ai96yBGwCtYuvvDpSiobI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/_UmlE0ai96yBGwCtYuvvDpSiobI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:07:51:1e:d8:77:27:92:b6:06:cb:be:79:27:84:da:d5:6a: f4:cb:61:db:dd:9c:da:4b:48:71:f4:dc:6e:ed:25:0b:a5:c9: 0c:b6:33:cc:65:10:53:c1:80:23:c8:d1:4b:2c:3a:5c:8c:04: 7b:f2:90:74:0e:d7:94:fc:b4:5d:e6:3b:da:0c:6c:19:19:c6: d4:33:78:9e:b5:00:c7:db:75:f4:ba:13:11:52:14:94:52:4c: c5:fc:8c:65:df:7e:67:79:4b:0f:f6:51:56:2c:f7:40:10:74: 03:da:dd:b8:8d:f6:50:cf:8c:2e:7c:75:26:6b:99:12:ad:4d: 7f:44:58:a0:62:32:a0:1e:31:a9:5a:f6:45:e6:f9:f2:9a:4a: d0:de:94:c4:6e:a8:c8:39:01:4f:96:4b:08:e4:40:ea:d8:4d: 32:33:de:21:d4:b6:b7:e1:59:50:6b:b4:69:27:3a:72:1d:67: b3:1e:b5:89:ca:5b:b9:9c:e9:c4:fe:e3:97:46:ee:4e:4d:3e: a5:c1:d2:88:ae:93:f8:50:a5:d1:05:ef:4b:a7:4b:1f:28:b2: 8a:c9:91:7c:21:85:b1:71:77:41:f5:93:26:55:43:cd:27:cc: e3:e7:6a:76:de:32:ba:0a:2b:f6:c1:4a:3e:70:9d:02:62:5f: 9d:eb:63:b5 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTJCNTExMC8GA1UEBRMoRkQ0OUE1MTM0NkEyRjdBQzgxMUIwMEFENjJFQkVGMEU5 NEEyQTFCMjAeFw0yNjA0MTcwNzU2MTNaFw0yNjA0MjQwNzU2MTNaMBgxFjAUBgNV BAMTDTY5ZTFlNzlkLWZkZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCY2g/qhCjkTdQpWdec6z5107w3/OP5ufiJn5AszzcNYd0frvm8jR0vbFxUhotR fhJlRqNBCEIkIzcqTNxDA96xLa3lRtgHIKoGNj8sJgMEQXJql+qlPnzZRqVLTgEl 31G+VB9ChjKpQ+YehKXVM9BLHht9YLQL8Q6DzqRJie3HZ96ejvxCpAW/iJ86Hd9h hbvEwN94dDlfArCGMx0f1J8XxMiT3dHRPY4HW6RidBTofthldwKuvCXO+GRJk6aQ 49FvLShV3c88jlnpaQQ0PrsiTfKrLN/8VATCdszPtAtFT3ZfvC13Az+l8IJ1WnC8 1CaZd0ct0VvJNUfHFoHn2+XbAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUcnSZxqH8 G8brGq8xYG8mHWTHyCswHwYDVR0jBBgwFoAU/UmlE0ai96yBGwCtYuvvDpSiobIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MkI1LzY2NzlEOEJFQzVC MjExRjA4NjIyNzkyQkM0RjlBRTAyL19VbWxFMGFpOTZ5Qkd3Q3RZdXZ2RHBTaW9i SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvX1VtbEUwYWk5NnlCR3dDdFl1dnZEcFNpb2JJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 MkI1LzY2NzlEOEJFQzVCMjExRjA4NjIyNzkyQkM0RjlBRTAyL19VbWxFMGFpOTZ5 Qkd3Q3RZdXZ2RHBTaW9iSS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAnB1Ee2HcnkrYGy755J4Ta1Wr0y2Hb3ZzaS0hx9Nxu7SULpckMtjPMZRBTwYAj yNFLLDpcjAR78pB0DteU/LRd5jvaDGwZGcbUM3ietQDH23X0uhMRUhSUUkzF/Ixl 335neUsP9lFWLPdAEHQD2t24jfZQz4wufHUma5kSrU1/RFigYjKgHjGpWvZF5vny mkrQ3pTEbqjIOQFPlksI5EDq2E0yM94h1La34VlQa7RpJzpyHWezHrWJylu5nOnE /uOXRu5OTT6lwdKIrpP4UKXRBe9Lp0sfKLKKyZF8IYWxcXdB9ZMmVUPNJ8zj52p2 3jK6Civ2wUo+cJ0CYl+d62O1 -----END CERTIFICATE-----Generated at Fri Apr 17 21:18:08 2026 by rpki-client