$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft File: U5TlfShXd_11FCjRXLD7L8WSx6Y.mft (raw, json) Hash identifier: fFHq+wBUIBlUYUKh9aIQbJGfa6/N834jw1kFyxG4xKk= Subject key identifier: 21:8A:8B:7C:79:45:3E:0E:9B:D5:2E:03:CF:84:7E:85:03:B7:11:7F Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 05F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft Manifest number: 05DD Signing time: Thu 16 Apr 2026 22:55:36 +0000 Manifest this update: Thu 16 Apr 2026 22:55:35 +0000 Manifest next update: Thu 23 Apr 2026 22:55:35 +0000 Files and hashes: 1: U5TlfShXd_11FCjRXLD7L8WSx6Y.crl (hash: saPz9veFL+JdLMw4SIObj9q6UxGoFJVaiHWFe8Guksc=) 2: E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa (hash: O5HnlLR1hWWyTNRUt4LdbaUFp1yGwksal5ksV0pwNV4=) 3: C25659465C9D11EC99F7D10BC4F9AE02.roa (hash: NXzX7R7NLEazsVeUoaLWbp54rjvi9QQud2skYKW4OZQ=) 4: C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa (hash: +8k4rfDonzqcIXzrPnc9G+NWKEIwjetXPPpI12xDWO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 22:55:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1529 (0x5f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9, serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: Apr 16 22:55:35 2026 GMT Not After : Apr 23 22:55:35 2026 GMT Subject: CN=69e168e7-f529 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ca:85:c2:11:1d:f6:f4:9c:75:f5:56:32:1f: bc:ac:c6:fe:cb:57:e3:92:46:7a:d7:eb:ca:14:50: a3:e9:63:88:d1:64:29:43:95:5f:ca:cc:87:a5:60: a4:97:42:d9:d1:df:a1:db:f5:4e:4b:ff:7b:b0:ba: 37:f2:a6:a0:9c:ed:9d:2a:41:dd:86:39:6b:66:9f: 12:a8:22:e2:c8:0f:49:f4:d6:bc:a0:6d:f2:e5:82: 54:c6:34:3c:6e:f9:17:5d:a0:3f:b0:f4:cc:02:87: fc:4a:e8:0c:25:45:cb:86:06:46:af:18:07:7f:e7: a7:fc:24:83:9d:1d:b5:00:4a:3c:91:2a:8a:96:27: 75:68:fc:fa:7e:a9:19:da:3d:3d:84:47:ed:c9:ef: 67:d3:31:f3:23:fa:ec:2b:4d:dd:b9:b5:c8:45:4f: e8:c2:be:84:05:43:b5:58:00:9a:11:46:46:ae:ae: 3d:4c:18:54:dc:44:5d:99:9e:9f:50:7a:49:8f:ed: 03:1c:3e:4c:25:0b:b0:58:c5:a6:09:09:ea:37:02: 3c:d4:5c:1f:bd:f2:d3:dd:0c:a1:19:a1:5d:1e:f9: 1e:b7:d0:13:44:ed:6d:f4:fa:7b:7c:49:53:86:85: 8c:af:cb:84:14:e7:46:8c:54:fd:3a:c8:e5:e1:72: 9e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:8A:8B:7C:79:45:3E:0E:9B:D5:2E:03:CF:84:7E:85:03:B7:11:7F X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:7f:11:5e:60:0f:2d:a3:85:c5:92:13:3a:b8:64:3e:82:66: cf:45:e5:8e:3f:cc:2f:4c:69:b5:ad:47:e0:b1:9a:c3:0e:33: cb:c2:e4:e0:4e:0b:dc:1b:42:8c:dc:97:a4:a6:8b:67:2e:ff: b4:f9:69:4a:a1:0d:3e:29:78:3d:8d:12:0e:12:83:e0:8d:36: e7:93:98:53:d2:14:8a:22:27:4b:05:fb:12:8a:ee:0c:f1:4b: df:5b:3d:6b:ff:15:b7:46:94:aa:41:91:45:c2:4a:8c:02:34: 40:25:a8:48:68:2c:e5:35:c0:9e:e4:a0:49:17:05:2a:c6:ba: 4b:00:29:01:d9:5f:34:e7:b2:df:9d:80:09:09:43:0e:1b:a5: c9:ad:df:35:f4:e7:c1:3d:48:98:c6:3a:67:22:46:26:b8:da: 2f:42:3e:1f:74:49:74:8e:ec:d2:0c:d2:7b:39:30:fb:f5:91: bb:59:cf:3f:17:03:c3:5d:67:cf:a7:ad:35:ce:96:47:38:86: 7c:e5:3d:09:fd:02:0b:df:21:dd:b4:31:f8:8c:08:27:4b:02: 63:9c:13:69:57:10:84:c3:5b:5c:8c:a3:fd:a8:6c:b0:e4:38: d3:8c:36:d1:1c:9c:08:ca:cb:37:f3:8b:e6:8c:98:50:bd:0f: c4:0c:86:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjYwNDE2MjI1NTM1WhcNMjYwNDIzMjI1NTM1WjAYMRYwFAYD VQQDEw02OWUxNjhlNy1mNTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArcqFwhEd9vScdfVWMh+8rMb+y1fjkkZ61+vKFFCj6WOI0WQpQ5VfysyHpWCk l0LZ0d+h2/VOS/97sLo38qagnO2dKkHdhjlrZp8SqCLiyA9J9Na8oG3y5YJUxjQ8 bvkXXaA/sPTMAof8SugMJUXLhgZGrxgHf+en/CSDnR21AEo8kSqKlid1aPz6fqkZ 2j09hEftye9n0zHzI/rsK03dubXIRU/owr6EBUO1WACaEUZGrq49TBhU3ERdmZ6f UHpJj+0DHD5MJQuwWMWmCQnqNwI81FwfvfLT3QyhGaFdHvket9ATRO1t9Pp7fElT hoWMr8uEFOdGjFT9Osjl4XKe6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCGKi3x5 RT4Om9UuA8+EfoUDtxF/MB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTdBOS81Rjg5RjZFQ0ZCMzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRf MTFGQ2pSWExEN0w4V1N4NlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJn8RXmAPLaOFxZITOrhkPoJmz0Xljj/ML0xpta1H4LGaww4zy8Lk4E4L3BtC jNyXpKaLZy7/tPlpSqENPil4PY0SDhKD4I0255OYU9IUiiInSwX7EoruDPFL31s9 a/8Vt0aUqkGRRcJKjAI0QCWoSGgs5TXAnuSgSRcFKsa6SwApAdlfNOey352ACQlD Dhulya3fNfTnwT1ImMY6ZyJGJrjaL0I+H3RJdI7s0gzSezkw+/WRu1nPPxcDw11n z6etNc6WRziGfOU9Cf0CC98h3bQx+IwIJ0sCY5wTaVcQhMNbXIyj/ahssOQ404w2 0RycCMrLN/OL5oyYUL0PxAyGQw== -----END CERTIFICATE-----Generated at Fri Apr 17 07:56:30 2026 by rpki-client