$ rpki-client -vvf rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft File: U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft (raw, json) Hash identifier: jgfGDgLt7yvox+q9QD0EferYmuDkK5SgeyBi4UHw1SQ= Subject key identifier: ED:21:31:1A:BB:67:BC:E0:3D:0E:07:6D:6F:22:6A:12:AC:DA:76:9D Authority key identifier: 53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 Certificate issuer: /CN=A91736BD/serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Certificate serial: 0284 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft Manifest number: 027D Signing time: Fri 17 Apr 2026 01:40:57 +0000 Manifest this update: Fri 17 Apr 2026 01:40:57 +0000 Manifest next update: Fri 24 Apr 2026 01:40:57 +0000 Files and hashes: 1: U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl (hash: //5818VgzjLJ0leTdsxknOsISWogw9k3UzuxPtM+yxI=) 2: EB8C9B546EE911ED8F07B022C4F9AE02.roa (hash: g3eOenNLDa9Ly+07FwWBJj8yKQrhF0dtKDBoP9nh0/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:40:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 644 (0x284) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91736BD, serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Validity Not Before: Apr 17 01:40:57 2026 GMT Not After : Apr 24 01:40:57 2026 GMT Subject: CN=69e18fa9-fbf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:72:0b:35:ea:78:0f:b2:c7:86:56:7e:21:46: e3:f9:8e:4b:6f:46:70:d2:33:37:1d:7a:37:9a:61: 8f:ab:2c:d0:52:f5:55:13:83:87:7c:af:ec:47:db: b9:c6:47:08:74:8a:0d:8d:d4:8e:cd:1c:6d:cc:98: 48:d6:0a:60:76:a3:67:e9:5a:9b:ac:77:1d:21:05: fc:6d:2d:3e:85:42:0a:91:ed:c0:ba:79:38:67:70: f9:88:58:f7:bd:c8:29:74:1d:cd:20:a3:94:f8:03: c0:d1:95:ec:fb:aa:9a:79:c8:44:ff:02:69:65:ad: e7:ef:d5:03:71:2d:f7:a5:3a:ef:f8:e3:af:ac:54: 9b:e4:13:87:a8:23:e9:ad:f7:2b:76:20:5c:b6:8d: 8f:2a:ca:f1:0f:46:4a:77:4d:b5:12:9e:0e:c7:2e: e1:f3:92:6e:45:89:09:85:d8:59:fa:c1:71:3c:bc: 15:2d:7b:4c:68:c2:28:82:0e:20:4f:14:0b:a6:c1: 08:64:5b:4f:e7:c9:a0:bf:f6:bc:09:b1:2f:fa:ed: 6c:88:62:f8:1e:4d:3c:c5:da:36:43:61:cc:a2:d1: af:e7:98:53:c5:90:c6:ac:bb:0e:bf:ff:02:51:c2: f5:bd:ab:a3:fe:ac:cb:cb:d9:93:5a:25:fe:4c:4d: 2b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:21:31:1A:BB:67:BC:E0:3D:0E:07:6D:6F:22:6A:12:AC:DA:76:9D X509v3 Authority Key Identifier: keyid:53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:c8:c6:87:cd:33:aa:2e:90:12:ab:f3:9e:54:81:8a:2c:34: 2a:d3:3c:b3:04:e8:6d:8e:f1:76:f0:e0:4c:f6:d0:89:61:72: d6:e6:9d:d9:5e:25:ca:66:92:3c:51:d0:79:9d:f1:cd:7b:38: e3:c4:f3:cd:65:89:27:7d:b0:43:d5:e4:b5:ef:b2:b7:83:1b: 27:87:8e:a5:5b:f9:1a:da:3d:98:db:f0:b0:d3:db:58:86:d6: a9:0a:d2:02:f6:81:92:6e:1c:65:6c:77:a4:20:30:9b:1e:bf: 07:ee:8a:1d:3c:c5:19:fe:a8:0d:e3:72:68:e3:0a:d7:92:1b: 25:9e:8e:48:3c:b6:48:40:1f:2f:90:57:1c:4f:a6:ba:97:97: 0f:b4:c8:cb:cd:2c:1b:af:7b:cd:e5:09:9e:8b:5c:cf:bf:51: 6d:7f:10:ed:fa:89:f6:84:f5:6f:ee:d8:dd:11:75:ca:51:f3: 57:d9:b5:8c:50:32:43:2a:f7:e8:a8:39:b7:a1:90:76:39:bb: fa:c8:ec:e4:06:26:e9:ca:ca:07:25:fe:97:0a:71:d6:36:83: ab:af:68:ef:c8:c9:0d:15:bf:0a:0d:b9:af:0d:fd:53:aa:03: 86:ca:c1:25:60:a6:ba:60:89:cc:1a:97:65:59:c3:08:ce:01: ae:a1:4f:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM2QkQxMTAvBgNVBAUTKDUzRTJFMTM0NTI0NTdERjIxRUYyNUNCQTNCMjYxMEQw MTJBOTA2RDIwHhcNMjYwNDE3MDE0MDU3WhcNMjYwNDI0MDE0MDU3WjAYMRYwFAYD VQQDEw02OWUxOGZhOS1mYmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiXILNep4D7LHhlZ+IUbj+Y5Lb0Zw0jM3HXo3mmGPqyzQUvVVE4OHfK/sR9u5 xkcIdIoNjdSOzRxtzJhI1gpgdqNn6VqbrHcdIQX8bS0+hUIKke3Aunk4Z3D5iFj3 vcgpdB3NIKOU+APA0ZXs+6qaechE/wJpZa3n79UDcS33pTrv+OOvrFSb5BOHqCPp rfcrdiBcto2PKsrxD0ZKd021Ep4Oxy7h85JuRYkJhdhZ+sFxPLwVLXtMaMIogg4g TxQLpsEIZFtP58mgv/a8CbEv+u1siGL4Hk08xdo2Q2HMotGv55hTxZDGrLsOv/8C UcL1vauj/qzLy9mTWiX+TE0rRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO0hMRq7 Z7zgPQ4HbW8iahKs2nadMB8GA1UdIwQYMBaAFFPi4TRSRX3yHvJcujsmENASqQbS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzZCRC8yMkM2MjFBODZF RTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZmSWU4bHk2T3lZUTBCS3BC dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtTGhORkpGZmZJZThseTZPeVlRMEJLcEJ0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzZCRC8yMkM2MjFBODZFRTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZm SWU4bHk2T3lZUTBCS3BCdEkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFMjGh80zqi6QEqvznlSBiiw0KtM8swTobY7xdvDgTPbQiWFy1uad2V4lymaS PFHQeZ3xzXs448TzzWWJJ32wQ9Xkte+yt4MbJ4eOpVv5Gto9mNvwsNPbWIbWqQrS AvaBkm4cZWx3pCAwmx6/B+6KHTzFGf6oDeNyaOMK15IbJZ6OSDy2SEAfL5BXHE+m upeXD7TIy80sG697zeUJnotcz79RbX8Q7fqJ9oT1b+7Y3RF1ylHzV9m1jFAyQyr3 6Kg5t6GQdjm7+sjs5AYm6crKByX+lwpx1jaDq69o78jJDRW/Cg25rw39U6oDhsrB JWCmumCJzBqXZVnDCM4BrqFPqQ== -----END CERTIFICATE-----Generated at Fri Apr 17 16:39:32 2026 by rpki-client