$ rpki-client -vvf rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.mft File: _UnAZPyj6S3swYqPUElLIfwB8lY.mft (raw, json) Hash identifier: +RstpwAh1PNjEH2fW637nRYI+idrUUAgX78TKxKGBns= Subject key identifier: DD:E1:DC:4F:61:E9:CE:16:45:D6:CF:A5:FB:E7:0F:D7:60:2C:3C:5E Authority key identifier: FD:49:C0:64:FC:A3:E9:2D:EC:C1:8A:8F:50:49:4B:21:FC:01:F2:56 Certificate issuer: /CN=A91934DE/serialNumber=FD49C064FCA3E92DECC18A8F50494B21FC01F256 Certificate serial: 0250 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_UnAZPyj6S3swYqPUElLIfwB8lY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.mft Manifest number: 023F Signing time: Fri 17 Apr 2026 02:20:09 +0000 Manifest this update: Fri 17 Apr 2026 02:20:09 +0000 Manifest next update: Fri 24 Apr 2026 02:20:09 +0000 Files and hashes: 1: _UnAZPyj6S3swYqPUElLIfwB8lY.crl (hash: XwiR9hBLBknKtMPTWfwQ2aUxgtoijYkFW3maeD7x38E=) 2: 05F11BACDF4A11EDA4190947C4F9AE02.roa (hash: KoscC2+CKPk9KEZZ95MIfhzhcgEnyjRIFFpZQcedXxs=) 3: 358556D2D98F11EDA9A38028C4F9AE02.roa (hash: /K4XbNVu4etnNSZ7BxaN1k4jj6OscZNd232IO+CgOm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.crl rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_UnAZPyj6S3swYqPUElLIfwB8lY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:20:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 592 (0x250) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91934DE, serialNumber=FD49C064FCA3E92DECC18A8F50494B21FC01F256 Validity Not Before: Apr 17 02:20:09 2026 GMT Not After : Apr 24 02:20:09 2026 GMT Subject: CN=69e198d9-ae70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:cd:1a:fe:91:fe:e6:ec:c7:b6:08:8d:31:ed: 71:cd:9c:89:d9:ba:b1:4e:74:01:d5:47:7b:ec:d0: 85:f2:f4:f0:b5:d0:ea:dc:f0:69:91:7f:44:08:f1: 20:72:91:58:38:a2:00:c0:62:c7:f4:cb:e0:4e:49: 67:11:e1:6f:f0:2a:91:30:9b:03:ea:2d:cc:87:24: f0:c7:b1:4a:5d:01:c3:be:c1:02:c3:c6:e5:2d:8c: 81:a7:58:04:1c:e0:4c:aa:d7:c7:71:69:19:1c:3f: 80:61:02:ef:3a:f2:bd:3f:84:7d:64:37:6c:56:a8: 35:b2:87:5d:23:ec:81:19:a9:eb:ac:5d:b9:68:a8: 2a:49:4c:3d:3a:ca:0f:ac:fb:77:f4:55:fb:23:00: 10:1f:eb:27:a8:bb:4a:45:a0:bb:6b:9e:c1:0d:d1: db:eb:23:a2:0f:8d:b7:62:19:0e:ed:d9:0e:df:a2: 33:b8:bd:d8:90:a7:c0:5a:f0:1b:a9:0b:12:80:35: 3a:f1:e7:51:6e:26:f1:09:67:32:6f:a3:3a:b3:8d: 02:52:0f:48:9a:95:70:86:47:a6:aa:16:f7:30:c7: 17:41:f4:63:29:8d:da:03:b3:31:d3:5e:9c:a6:7d: 8d:10:fe:f1:16:36:97:af:ca:fc:0a:76:87:a8:c9: 60:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:E1:DC:4F:61:E9:CE:16:45:D6:CF:A5:FB:E7:0F:D7:60:2C:3C:5E X509v3 Authority Key Identifier: keyid:FD:49:C0:64:FC:A3:E9:2D:EC:C1:8A:8F:50:49:4B:21:FC:01:F2:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_UnAZPyj6S3swYqPUElLIfwB8lY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:09:10:9c:96:9c:2a:d8:c1:b9:bb:ed:0b:7f:a3:17:b6:d3: 7f:8f:8e:9e:27:a6:db:9b:f0:f1:dc:00:48:a2:24:06:30:a9: 0c:12:2a:3a:5d:93:29:db:e5:ab:a6:42:f8:4f:89:52:27:67: 12:22:32:cb:65:41:63:73:d5:08:86:da:1f:18:d0:f8:55:36: 7d:83:e1:e9:42:c8:73:59:51:19:9f:4b:57:9d:44:ff:f8:6c: e9:49:dc:85:b7:c5:56:31:a3:86:bc:9a:95:e7:db:c0:9c:9d: b7:5d:88:c4:9e:50:53:2e:35:3b:34:49:68:47:6a:b2:53:54: e7:65:41:62:c0:f0:b9:1c:a9:75:62:1f:17:c2:70:69:61:9f: d6:43:f6:e8:c8:d1:8b:ff:72:52:94:97:2c:82:56:07:93:87: 03:63:99:e8:3d:e4:91:ed:6f:4d:04:c4:7e:13:e5:65:d4:9e: 6d:45:e8:d6:87:10:cc:0f:f5:87:a4:8b:08:0c:7a:95:2c:19: 89:2b:83:3c:de:1e:94:a1:55:c8:03:07:14:a1:35:e1:21:79: 84:6f:27:75:62:eb:9d:ca:2d:ec:82:dd:81:e0:1e:01:25:c1: 4b:39:1e:e2:a9:66:db:3e:2c:7d:1e:65:74:32:41:07:f9:b5: e9:5d:5e:58 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM0REUxMTAvBgNVBAUTKEZENDlDMDY0RkNBM0U5MkRFQ0MxOEE4RjUwNDk0QjIx RkMwMUYyNTYwHhcNMjYwNDE3MDIyMDA5WhcNMjYwNDI0MDIyMDA5WjAYMRYwFAYD VQQDEw02OWUxOThkOS1hZTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAss0a/pH+5uzHtgiNMe1xzZyJ2bqxTnQB1Ud77NCF8vTwtdDq3PBpkX9ECPEg cpFYOKIAwGLH9MvgTklnEeFv8CqRMJsD6i3MhyTwx7FKXQHDvsECw8blLYyBp1gE HOBMqtfHcWkZHD+AYQLvOvK9P4R9ZDdsVqg1soddI+yBGanrrF25aKgqSUw9OsoP rPt39FX7IwAQH+snqLtKRaC7a57BDdHb6yOiD423YhkO7dkO36IzuL3YkKfAWvAb qQsSgDU68edRbibxCWcyb6M6s40CUg9ImpVwhkemqhb3MMcXQfRjKY3aA7Mx016c pn2NEP7xFjaXr8r8CnaHqMlg4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN3h3E9h 6c4WRdbPpfvnD9dgLDxeMB8GA1UdIwQYMBaAFP1JwGT8o+kt7MGKj1BJSyH8AfJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzRERS9BOTQxRDVFMkQ4 RTQxMUVEOTJFQTM2MjBDNEY5QUUwMi9fVW5BWlB5ajZTM3N3WXFQVUVsTElmd0I4 bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19VbkFaUHlqNlMzc3dZcVBVRWxMSWZ3QjhsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzRERS9BOTQxRDVFMkQ4RTQxMUVEOTJFQTM2MjBDNEY5QUUwMi9fVW5BWlB5ajZT M3N3WXFQVUVsTElmd0I4bFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcAkQnJacKtjBubvtC3+jF7bTf4+Oniem25vw8dwASKIkBjCpDBIqOl2TKdvl q6ZC+E+JUidnEiIyy2VBY3PVCIbaHxjQ+FU2fYPh6ULIc1lRGZ9LV51E//hs6Unc hbfFVjGjhryalefbwJydt12IxJ5QUy41OzRJaEdqslNU52VBYsDwuRypdWIfF8Jw aWGf1kP26MjRi/9yUpSXLIJWB5OHA2OZ6D3kke1vTQTEfhPlZdSebUXo1ocQzA/1 h6SLCAx6lSwZiSuDPN4elKFVyAMHFKE14SF5hG8ndWLrncot7ILdgeAeASXBSzke 4qlm2z4sfR5ldDJBB/m16V1eWA== -----END CERTIFICATE-----Generated at Fri Apr 17 07:22:33 2026 by rpki-client