$ rpki-client -vvf rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft File: uKIid-zGsQo9ICqjkMyn-7kqRuA.mft (raw, json) Hash identifier: XA+C6wQ7UJUEaDPAh/T0ZEIFcDwHrEzm8dhmS27jYtw= Subject key identifier: 71:6B:08:CD:E3:8F:BF:B0:9C:85:52:1B:1B:63:E5:E6:31:44:CE:58 Authority key identifier: B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 Certificate issuer: /CN=A91975CC/serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Certificate serial: 0417 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft Manifest number: 0410 Signing time: Fri 17 Apr 2026 00:19:05 +0000 Manifest this update: Fri 17 Apr 2026 00:19:05 +0000 Manifest next update: Fri 24 Apr 2026 00:19:05 +0000 Files and hashes: 1: uKIid-zGsQo9ICqjkMyn-7kqRuA.crl (hash: +K1fadmHUFTHlgVXSZArk1FmspjNWsXZajt4O6dzbts=) 2: AF08CB4CC77511EC81DCA645C4F9AE02.roa (hash: epKRw41KBWpJS0cS06bdYab65bSZPCjDLsCD9m8JyLg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:19:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1047 (0x417) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975CC, serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Validity Not Before: Apr 17 00:19:05 2026 GMT Not After : Apr 24 00:19:05 2026 GMT Subject: CN=69e17c79-b8da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:25:f0:95:87:7f:a1:64:2a:74:08:34:7f:de: 8c:00:fa:58:63:d1:17:74:76:59:94:c0:27:f9:31: ee:22:94:96:fc:e0:b7:d9:9d:ac:ed:71:fc:f7:3e: 26:72:b1:1c:6e:68:b4:1c:ec:a6:32:47:99:95:ee: 82:fb:41:00:c4:85:90:86:d7:d5:d6:22:bf:af:a2: 06:24:b7:fd:0a:24:63:c5:81:48:c0:6c:cf:70:2d: 30:de:0f:f0:e1:6b:ca:2f:d5:5b:82:28:1d:b3:aa: a1:98:02:a7:bc:2c:bd:9f:0b:b6:c4:67:a5:2e:4f: 56:8e:8b:bd:f3:82:22:8c:1b:7a:59:fd:07:fc:75: 7a:82:10:69:e8:8c:d1:21:8d:77:2c:43:47:9e:cd: c0:55:1c:e2:71:48:1b:9d:55:9b:28:c6:d0:1e:ae: 0c:3a:e0:40:ca:1c:d9:f8:92:ea:d8:bd:91:13:e7: c5:1a:9d:8c:df:32:92:9a:b6:d4:9e:33:f3:de:17: 3f:0a:8c:3f:f4:48:b6:33:d4:4a:bd:77:64:10:4c: 1e:87:c9:29:96:e0:1b:0b:c2:20:20:d6:ba:35:3e: 0e:eb:7b:5d:f6:51:81:e0:e1:5d:ad:7e:b3:e9:3d: b6:07:6e:c3:85:55:ce:f6:75:f8:27:69:25:f4:c6: c3:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:6B:08:CD:E3:8F:BF:B0:9C:85:52:1B:1B:63:E5:E6:31:44:CE:58 X509v3 Authority Key Identifier: keyid:B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:d0:f0:f8:6e:02:60:27:4f:fe:02:b6:4d:68:6d:33:e7:80: 23:6a:13:46:23:b6:cb:c7:bd:e8:ee:6a:6c:25:71:64:23:b3: 29:dd:d7:0b:1b:6a:c4:80:fd:68:1c:59:b2:21:9a:83:5c:00: 8c:74:1c:2d:47:75:89:52:22:73:74:5a:0d:bf:20:e5:56:0e: dc:b6:0d:85:34:7c:dd:76:c3:9c:da:4f:40:91:dd:75:f2:8a: 18:b7:93:4d:c4:a7:73:72:37:9a:aa:fe:3e:ea:bd:9f:b0:25: ab:81:f7:32:da:03:08:9f:68:6f:c4:53:8b:92:c1:a3:f1:61: 61:e0:1a:e9:37:78:f0:2f:61:5a:09:f4:24:26:3b:bb:5c:13: 27:29:c7:69:b4:43:42:4f:3e:5a:a3:a6:99:e7:b1:28:62:a4: d5:84:14:0f:ca:b8:d1:24:ff:60:45:2e:c8:51:5b:44:ab:88: a4:2a:d7:85:25:4c:ed:7f:90:67:c6:2f:e4:f7:dc:82:8d:1d: f8:82:49:28:5c:12:c8:f7:7f:bf:02:a4:9f:61:e9:d4:29:60: 3a:b7:22:83:e9:07:40:33:b1:12:26:eb:c5:5b:11:62:01:8d: 2b:54:54:9f:39:04:08:fd:3d:71:23:3f:a1:cf:cc:3e:d2:33: 2f:aa:d7:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1Q0MxMTAvBgNVBAUTKEI4QTIyMjc3RUNDNkIxMEEzRDIwMkFBMzkwQ0NBN0ZC QjkyQTQ2RTAwHhcNMjYwNDE3MDAxOTA1WhcNMjYwNDI0MDAxOTA1WjAYMRYwFAYD VQQDEw02OWUxN2M3OS1iOGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApiXwlYd/oWQqdAg0f96MAPpYY9EXdHZZlMAn+THuIpSW/OC32Z2s7XH89z4m crEcbmi0HOymMkeZle6C+0EAxIWQhtfV1iK/r6IGJLf9CiRjxYFIwGzPcC0w3g/w 4WvKL9Vbgigds6qhmAKnvCy9nwu2xGelLk9Wjou984IijBt6Wf0H/HV6ghBp6IzR IY13LENHns3AVRzicUgbnVWbKMbQHq4MOuBAyhzZ+JLq2L2RE+fFGp2M3zKSmrbU njPz3hc/Cow/9Ei2M9RKvXdkEEweh8kpluAbC8IgINa6NT4O63td9lGB4OFdrX6z 6T22B27DhVXO9nX4J2kl9MbDDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHFrCM3j j7+wnIVSGxtj5eYxRM5YMB8GA1UdIwQYMBaAFLiiInfsxrEKPSAqo5DMp/u5Kkbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVDQy8xM0U3RDcyRUFG RTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NRbzlJQ3Fqa015bi03a3FS dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3VLSWlkLXpHc1FvOUlDcWprTXluLTdrcVJ1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzVDQy8xM0U3RDcyRUFGRTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NR bzlJQ3Fqa015bi03a3FSdUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkNDw+G4CYCdP/gK2TWhtM+eAI2oTRiO2y8e96O5qbCVxZCOzKd3XCxtqxID9 aBxZsiGag1wAjHQcLUd1iVIic3RaDb8g5VYO3LYNhTR83XbDnNpPQJHddfKKGLeT TcSnc3I3mqr+Puq9n7Alq4H3MtoDCJ9ob8RTi5LBo/FhYeAa6Td48C9hWgn0JCY7 u1wTJynHabRDQk8+WqOmmeexKGKk1YQUD8q40ST/YEUuyFFbRKuIpCrXhSVM7X+Q Z8Yv5Pfcgo0d+IJJKFwSyPd/vwKkn2Hp1ClgOrcig+kHQDOxEibrxVsRYgGNK1RU nzkECP09cSM/oc/MPtIzL6rXsg== -----END CERTIFICATE-----Generated at Fri Apr 17 15:06:07 2026 by rpki-client