$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft File: U8lIF-sTZfHejDwrRAIjmIHBlD0.mft (raw, json) Hash identifier: jZjbXQGhVnnDuwQOjzUXDPFuGc+wXcUfnuEyiwfeenk= Subject key identifier: CD:FF:43:24:B8:0F:93:23:AF:F6:C6:67:55:86:5F:F7:C5:CE:8E:DA Authority key identifier: 53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D Certificate issuer: /CN=A91D3307/serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Certificate serial: 0560 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft Manifest number: 053F Signing time: Thu 16 Apr 2026 23:28:48 +0000 Manifest this update: Thu 16 Apr 2026 23:28:48 +0000 Manifest next update: Thu 23 Apr 2026 23:28:48 +0000 Files and hashes: 1: U8lIF-sTZfHejDwrRAIjmIHBlD0.crl (hash: 5HLwB6LIlOOcyQ2jvEkgGq9BasHZyL2bbMhlutP89v0=) 2: C9C70AEA696F11EFA4DA475FC4F9AE02.roa (hash: 593+o8elVRSxa1C/n0n+gLQTiowZqiqwRC7MRYiWVSc=) 3: C908B72A696F11EFA4DA475FC4F9AE02.roa (hash: W6dcDrB3RcselU+HE/a3UN93ZRWn0E/P0SOzXj78T2A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:28:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1376 (0x560) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3307, serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Validity Not Before: Apr 16 23:28:48 2026 GMT Not After : Apr 23 23:28:48 2026 GMT Subject: CN=69e170b0-8dba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c0:cf:fb:8b:e8:73:f6:03:b6:58:d2:39:65: 2f:a6:71:3a:32:68:45:af:b3:fa:5b:9f:d8:7c:e3: b8:5e:68:71:37:ee:c6:dd:39:22:c8:6c:6d:16:7d: 3d:be:19:0b:f7:99:69:15:0b:96:00:66:bf:0d:22: 95:f7:e2:17:e7:59:e6:b0:e0:27:0b:4e:8f:1c:e9: ee:a1:a2:d2:25:25:66:a5:33:77:24:10:36:3c:55: 06:5b:71:cf:d1:50:4d:93:d7:b6:f2:0b:a0:29:35: 45:5b:11:22:86:f9:ea:10:34:51:39:aa:36:d9:e4: cc:5e:bf:8b:70:e7:72:f1:9c:05:90:e7:cb:62:80: 99:2b:ea:30:05:de:ef:67:2b:dd:01:b0:01:62:ec: 7e:95:1f:f9:af:ad:22:5c:73:47:f9:c3:c4:62:e8: 41:53:52:d7:3c:fb:85:10:49:3c:29:c9:2b:92:cf: 4b:f7:43:d1:d1:b8:d8:ab:9c:ff:f4:1b:88:63:76: 2a:2b:2e:6b:d2:23:59:68:e4:3b:88:40:6c:9b:5d: 64:8b:c0:46:74:69:38:99:f3:fc:5a:63:5b:97:cb: 2d:ac:d9:f5:76:d1:41:98:a0:84:53:d4:87:c1:a8: 88:64:63:ce:f8:c1:3a:a7:57:ad:5b:63:99:f0:66: 34:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:FF:43:24:B8:0F:93:23:AF:F6:C6:67:55:86:5F:F7:C5:CE:8E:DA X509v3 Authority Key Identifier: keyid:53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:12:88:2f:9c:5d:70:75:dc:50:cc:7d:b8:d0:46:26:e3:f3: d4:1c:42:62:ee:e8:ca:e4:c1:44:6d:6e:f1:3d:41:df:e2:ae: 42:2f:ac:da:ca:1c:a6:84:99:e4:d8:19:ef:99:d3:2b:af:93: 75:20:04:01:55:e6:be:9c:e8:ed:8f:f9:fe:b5:3e:b5:d7:ff: 34:85:da:3d:4d:de:da:07:e1:2b:bf:3c:e1:cf:1e:62:31:bf: ce:21:cb:8f:27:2a:df:a4:3a:d5:d4:5c:2f:e3:9c:34:63:32: f3:9f:3b:88:df:77:57:b0:bd:b6:c7:59:8d:65:df:e5:5a:da: c0:ea:70:68:cc:b2:6d:b9:8e:1b:32:c3:a0:46:be:b0:dc:ab: 0d:90:1d:5a:8e:e3:c0:91:4f:e1:59:13:fb:b7:a3:ae:c1:48: 59:4b:66:af:d4:61:f1:88:26:34:be:60:e9:a1:93:23:3d:e8: b6:77:dd:23:85:4a:cc:42:66:ba:91:4c:46:09:e8:99:9d:d0: 53:63:bb:7f:4a:71:34:40:c4:e1:ea:99:af:3e:f7:4d:d5:84: 99:33:eb:45:13:34:ef:09:d1:7b:84:38:b7:2f:32:cd:ea:99: c3:cb:d4:65:3a:4e:2e:64:ba:e4:29:41:3f:a5:94:e1:ef:14: 07:e5:47:13 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMzMDcxMTAvBgNVBAUTKDUzQzk0ODE3RUIxMzY1RjFERThDM0MyQjQ0MDIyMzk4 ODFDMTk0M0QwHhcNMjYwNDE2MjMyODQ4WhcNMjYwNDIzMjMyODQ4WjAYMRYwFAYD VQQDEw02OWUxNzBiMC04ZGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMDP+4voc/YDtljSOWUvpnE6MmhFr7P6W5/YfOO4XmhxN+7G3TkiyGxtFn09 vhkL95lpFQuWAGa/DSKV9+IX51nmsOAnC06PHOnuoaLSJSVmpTN3JBA2PFUGW3HP 0VBNk9e28gugKTVFWxEihvnqEDRROao22eTMXr+LcOdy8ZwFkOfLYoCZK+owBd7v ZyvdAbABYux+lR/5r60iXHNH+cPEYuhBU1LXPPuFEEk8Kckrks9L90PR0bjYq5z/ 9BuIY3YqKy5r0iNZaOQ7iEBsm11ki8BGdGk4mfP8WmNbl8strNn1dtFBmKCEU9SH waiIZGPO+ME6p1etW2OZ8GY0PwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM3/QyS4 D5Mjr/bGZ1WGX/fFzo7aMB8GA1UdIwQYMBaAFFPJSBfrE2Xx3ow8K0QCI5iBwZQ9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzMwNy8zNDJEODMyODQy Q0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpmSGVqRHdyUkFJam1JSEJs RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4bElGLXNUWmZIZWpEd3JSQUlqbUlIQmxEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzMwNy8zNDJEODMyODQyQ0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpm SGVqRHdyUkFJam1JSEJsRDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAyhKIL5xdcHXcUMx9uNBGJuPz1BxCYu7oyuTBRG1u8T1B3+KuQi+s2socpoSZ 5NgZ75nTK6+TdSAEAVXmvpzo7Y/5/rU+tdf/NIXaPU3e2gfhK7884c8eYjG/ziHL jycq36Q61dRcL+OcNGMy8587iN93V7C9tsdZjWXf5VrawOpwaMyybbmOGzLDoEa+ sNyrDZAdWo7jwJFP4VkT+7ejrsFIWUtmr9Rh8YgmNL5g6aGTIz3otnfdI4VKzEJm upFMRgnomZ3QU2O7f0pxNEDE4eqZrz73TdWEmTPrRRM07wnRe4Q4ty8yzeqZw8vU ZTpOLmS65ClBP6WU4e8UB+VHEw== -----END CERTIFICATE-----Generated at Fri Apr 17 11:12:45 2026 by rpki-client