$ rpki-client -vvf rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft File: UqHEINgnwWzqoEKD3Si2QKMVY00.mft (raw, json) Hash identifier: +G6XMGD+xqSSvk3KcDKK+sajTdhYCO9Vroybe7oAScQ= Subject key identifier: 37:C8:DF:E0:C7:81:F0:9B:D2:FC:BB:BC:7D:75:00:1C:D5:76:E4:F7 Authority key identifier: 52:A1:C4:20:D8:27:C1:6C:EA:A0:42:83:DD:28:B6:40:A3:15:63:4D Certificate issuer: /CN=A91B13FE/serialNumber=52A1C420D827C16CEAA04283DD28B640A315634D Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft Manifest number: A5 Signing time: Fri 17 Apr 2026 07:07:09 +0000 Manifest this update: Fri 17 Apr 2026 07:07:08 +0000 Manifest next update: Fri 24 Apr 2026 07:07:08 +0000 Files and hashes: 1: UqHEINgnwWzqoEKD3Si2QKMVY00.crl (hash: Ej4UTmwtlj9b79NnKYfkS+owq4Mt3lsCg4eCWo6sDl0=) 2: C577E392D0F711F0BC02385AC4F9AE02.roa (hash: CTMuUuvm60iZOQvAcnHXAUj2ZzggetCmxOqsP+wF50w=) 3: E5E9F8B8D0F711F0ACA5A85AC4F9AE02.roa (hash: 2A+skZNc+t58OX570Zwo1EzMJmLkr10Krf1yFSd9VZs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.crl rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 07:07:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B13FE, serialNumber=52A1C420D827C16CEAA04283DD28B640A315634D Validity Not Before: Apr 17 07:07:08 2026 GMT Not After : Apr 24 07:07:08 2026 GMT Subject: CN=69e1dc1d-ea41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:23:ec:0d:88:a8:c8:74:a5:a9:65:23:37:05: a1:f8:76:8c:c0:42:bc:53:99:28:10:c5:cb:70:ef: 14:f8:0a:17:67:27:1a:15:87:66:8c:9f:35:f5:1a: 51:54:0f:a1:85:9f:3c:6d:ce:17:b8:49:d4:34:aa: 12:f8:80:8a:19:3c:bf:ee:25:13:85:66:02:31:ca: d0:a0:62:bd:7e:69:52:9b:9a:9b:f1:bd:25:59:d6: 75:68:b5:3c:09:15:f7:20:8b:25:fc:4a:94:8b:d4: 75:f0:96:85:f4:72:c2:c0:55:d0:e3:d4:90:89:97: 90:0c:31:68:52:90:29:65:2c:51:98:75:38:96:55: c2:d9:1b:8d:b8:95:8f:7b:bb:f9:61:b1:d9:ba:d8: 08:80:21:bc:de:5c:30:61:82:54:fe:ce:41:d1:cb: 64:a7:56:49:ec:25:8c:5e:84:4f:d4:9f:86:76:d0: 0e:55:8f:32:67:93:e7:d6:58:dc:45:b7:0c:f2:29: 13:9f:b9:bc:e1:75:3e:80:72:aa:0b:8b:9d:3c:15: 0e:c0:83:94:b2:cf:06:d9:12:03:b8:33:0e:b3:d5: f2:07:37:b3:02:4c:34:60:f2:c1:d8:39:22:df:4f: 07:59:6b:67:b1:d6:de:3b:96:fc:21:61:d2:4d:ce: 15:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:C8:DF:E0:C7:81:F0:9B:D2:FC:BB:BC:7D:75:00:1C:D5:76:E4:F7 X509v3 Authority Key Identifier: keyid:52:A1:C4:20:D8:27:C1:6C:EA:A0:42:83:DD:28:B6:40:A3:15:63:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:c9:f9:1d:05:19:d0:94:1a:4f:5d:26:5c:a6:1c:d8:be:4c: 4f:41:67:da:ae:29:94:75:76:29:67:b4:53:8b:be:1d:22:a9: b4:ae:c0:a9:e7:d8:9b:2b:f6:7c:54:8d:7d:af:56:1e:dd:dc: 3a:0b:39:cf:b3:65:b9:a5:3f:53:6c:cf:37:6c:6b:e3:af:21: 37:2c:0a:f1:90:d3:fe:1f:8c:30:ee:e8:09:d6:aa:72:3c:1b: ef:58:38:31:e0:a5:44:3f:1f:88:3b:46:01:3e:d2:14:50:b2: 47:bb:c7:bf:ca:db:82:c5:d6:4b:e1:f5:39:5b:ef:77:73:a2: ba:7d:d1:f9:02:ea:57:34:c2:b8:de:a9:60:4a:94:82:b9:0e: 91:1d:91:cd:8e:8c:70:e6:5b:0e:b8:6e:0b:25:6b:0d:9a:6a: 47:dc:bf:b3:03:b5:86:de:ff:0a:56:df:18:65:39:d7:05:f3: b7:1a:90:8d:58:da:b5:00:25:ad:65:f9:49:f1:49:c7:11:ae: ab:ad:8a:f3:41:e3:12:d2:16:26:c8:a9:0d:f3:ba:dd:22:39: 51:f6:0b:f6:c4:e7:39:06:44:6d:c9:17:d3:28:2a:64:c0:2b: e7:5e:2b:68:c3:16:e3:5c:a6:1e:a0:a9:24:f1:1a:b4:db:40: 5d:97:de:45 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEzRkUxMTAvBgNVBAUTKDUyQTFDNDIwRDgyN0MxNkNFQUEwNDI4M0REMjhCNjQw QTMxNTYzNEQwHhcNMjYwNDE3MDcwNzA4WhcNMjYwNDI0MDcwNzA4WjAYMRYwFAYD VQQDEw02OWUxZGMxZC1lYTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxiPsDYioyHSlqWUjNwWh+HaMwEK8U5koEMXLcO8U+AoXZycaFYdmjJ819RpR VA+hhZ88bc4XuEnUNKoS+ICKGTy/7iUThWYCMcrQoGK9fmlSm5qb8b0lWdZ1aLU8 CRX3IIsl/EqUi9R18JaF9HLCwFXQ49SQiZeQDDFoUpApZSxRmHU4llXC2RuNuJWP e7v5YbHZutgIgCG83lwwYYJU/s5B0ctkp1ZJ7CWMXoRP1J+GdtAOVY8yZ5Pn1ljc RbcM8ikTn7m84XU+gHKqC4udPBUOwIOUss8G2RIDuDMOs9XyBzezAkw0YPLB2Dki 308HWWtnsdbeO5b8IWHSTc4VdQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDfI3+DH gfCb0vy7vH11ABzVduT3MB8GA1UdIwQYMBaAFFKhxCDYJ8Fs6qBCg90otkCjFWNN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTNGRS84RDhFMjJDMjU2 NDMxMUYwQjE2MjdBMTVDNEY5QUUwMi9VcUhFSU5nbndXenFvRUtEM1NpMlFLTVZZ MDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VxSEVJTmdud1d6cW9FS0QzU2kyUUtNVlkwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTNGRS84RDhFMjJDMjU2NDMxMUYwQjE2MjdBMTVDNEY5QUUwMi9VcUhFSU5nbndX enFvRUtEM1NpMlFLTVZZMDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZ8n5HQUZ0JQaT10mXKYc2L5MT0Fn2q4plHV2KWe0U4u+HSKptK7AqefYmyv2 fFSNfa9WHt3cOgs5z7NluaU/U2zPN2xr468hNywK8ZDT/h+MMO7oCdaqcjwb71g4 MeClRD8fiDtGAT7SFFCyR7vHv8rbgsXWS+H1OVvvd3Oiun3R+QLqVzTCuN6pYEqU grkOkR2RzY6McOZbDrhuCyVrDZpqR9y/swO1ht7/ClbfGGU51wXztxqQjVjatQAl rWX5SfFJxxGuq62K80HjEtIWJsipDfO63SI5UfYL9sTnOQZEbckX0ygqZMAr514r aMMW41ymHqCpJPEatNtAXZfeRQ== -----END CERTIFICATE-----Generated at Sat Apr 18 00:28:09 2026 by rpki-client