$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft File: KUHHFh7UouCbuRyrxEPIzLwDLtg.mft (raw, json) Hash identifier: XkqhD1e2de0UXSv+lauLXd1W/wDtfUPbFxiwbNJd6Zo= Subject key identifier: B0:CA:89:28:B3:88:11:53:55:EB:0D:F4:83:36:A7:2A:CC:3B:C5:16 Authority key identifier: 29:41:C7:16:1E:D4:A2:E0:9B:B9:1C:AB:C4:43:C8:CC:BC:03:2E:D8 Certificate issuer: /CN=A91FEEA9/serialNumber=2941C7161ED4A2E09BB91CABC443C8CCBC032ED8 Certificate serial: 353A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft Manifest number: 3532 Signing time: Thu 16 Apr 2026 14:51:41 +0000 Manifest this update: Thu 16 Apr 2026 14:51:40 +0000 Manifest next update: Thu 23 Apr 2026 14:51:40 +0000 Files and hashes: 1: KUHHFh7UouCbuRyrxEPIzLwDLtg.crl (hash: avqU/3fnoZI6cYWj2VIhYuHnLFkunERse+7rqsxuBbA=) 2: 796A04A6BA1A11F08C920A83C4F9AE02.roa (hash: ypLlMr/LNjZg16pw+UIO3Fp6461Fmui5r1d2RFjlO48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.crl rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:51:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13626 (0x353a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEEA9, serialNumber=2941C7161ED4A2E09BB91CABC443C8CCBC032ED8 Validity Not Before: Apr 16 14:51:40 2026 GMT Not After : Apr 23 14:51:40 2026 GMT Subject: CN=69e0f77c-9cf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:80:89:5c:6b:d2:02:34:d7:48:45:42:ec:a1: 0e:e4:06:90:a1:6b:37:fa:91:2e:bd:2f:20:90:99: 74:2a:88:58:1f:a1:ff:d3:10:a4:f8:3f:53:61:9f: 35:73:39:26:15:f4:06:9c:d1:80:d3:6a:32:44:46: f0:df:fc:b5:17:3e:f2:fb:e7:04:f6:f7:8f:e9:c7: c6:fc:11:b4:72:d5:6f:5c:09:52:fb:12:db:a3:1c: ac:8d:8e:19:fb:8c:e6:f2:03:a5:6a:3e:56:09:81: c5:38:71:4e:00:30:1a:2a:bf:3e:ae:4d:7b:b8:48: e6:66:fe:1b:a0:09:75:9c:4a:9f:bb:c6:e7:63:78: bd:36:06:62:af:bd:1d:c9:0d:1e:4c:94:25:27:4e: f2:7b:68:23:86:de:d2:56:5e:01:38:cc:40:a3:da: 81:dd:6f:e6:42:8d:f8:17:3e:d3:4a:99:ac:cf:c0: bf:e1:86:47:fe:6c:5a:64:a0:c7:bf:ce:a7:1c:99: a3:05:83:52:3d:dc:49:5a:f3:bc:a9:24:f6:0b:88: 25:81:55:bb:69:c7:f2:85:ae:73:2a:e0:04:ce:91: f8:94:4e:5e:25:09:04:b7:87:26:19:9e:b6:a0:f7: 0d:d1:db:4f:c4:f4:7d:0d:cc:73:56:51:c7:e7:b6: d0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:CA:89:28:B3:88:11:53:55:EB:0D:F4:83:36:A7:2A:CC:3B:C5:16 X509v3 Authority Key Identifier: keyid:29:41:C7:16:1E:D4:A2:E0:9B:B9:1C:AB:C4:43:C8:CC:BC:03:2E:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:0c:8a:57:fe:1f:01:92:e4:31:90:d1:12:0b:eb:6f:07:75: 93:31:58:16:3f:f6:e7:8e:19:81:28:eb:c8:6b:19:4c:f5:e7: 4f:fb:47:cb:e1:89:55:f9:38:68:a3:cc:56:7a:65:8b:99:47: 50:33:53:86:60:a6:23:7d:f1:3e:a9:9f:05:7b:2c:37:30:c2: 80:8c:10:4c:c1:46:45:ee:ec:6c:31:b3:c9:85:b1:82:f0:8a: a6:2e:be:e1:59:ca:aa:2d:38:11:8f:40:3f:c9:72:20:1b:90: dd:09:1c:86:b7:c3:7b:53:56:6a:b3:3b:d7:b3:c7:78:fc:6c: eb:3f:d0:a7:ee:0c:56:67:ab:dc:cc:12:ac:97:9a:79:cc:fd: 9c:c3:9d:58:c7:f6:44:95:bc:d0:4f:da:86:98:87:6d:0f:74: ce:93:92:9d:ea:19:5c:32:6e:67:23:46:0d:4d:0b:ae:fa:9f: e5:13:9e:93:4d:11:28:3c:95:4d:0a:fd:a8:8e:0f:82:5c:6c: e3:40:24:d1:39:18:aa:d6:01:db:6a:6d:f2:d9:39:ae:77:0a: 38:41:2b:08:db:7f:54:7d:25:a4:e5:2c:31:75:71:6a:66:3d: 05:9c:48:29:df:28:7b:92:73:69:8f:da:46:4b:5c:c9:44:e0: a5:2b:3d:82 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVFQTkxMTAvBgNVBAUTKDI5NDFDNzE2MUVENEEyRTA5QkI5MUNBQkM0NDNDOEND QkMwMzJFRDgwHhcNMjYwNDE2MTQ1MTQwWhcNMjYwNDIzMTQ1MTQwWjAYMRYwFAYD VQQDEw02OWUwZjc3Yy05Y2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA64CJXGvSAjTXSEVC7KEO5AaQoWs3+pEuvS8gkJl0KohYH6H/0xCk+D9TYZ81 czkmFfQGnNGA02oyREbw3/y1Fz7y++cE9veP6cfG/BG0ctVvXAlS+xLboxysjY4Z +4zm8gOlaj5WCYHFOHFOADAaKr8+rk17uEjmZv4boAl1nEqfu8bnY3i9NgZir70d yQ0eTJQlJ07ye2gjht7SVl4BOMxAo9qB3W/mQo34Fz7TSpmsz8C/4YZH/mxaZKDH v86nHJmjBYNSPdxJWvO8qST2C4glgVW7acfyha5zKuAEzpH4lE5eJQkEt4cmGZ62 oPcN0dtPxPR9DcxzVlHH57bQxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLDKiSiz iBFTVesN9IM2pyrMO8UWMB8GA1UdIwQYMBaAFClBxxYe1KLgm7kcq8RDyMy8Ay7Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUVBOS9DRUQwQTlFNjFE OTcxMUUyQkYzRTgxODEwOEIwMkNEMi9LVUhIRmg3VW91Q2J1UnlyeEVQSXpMd0RM dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tVSEhGaDdVb3VDYnVSeXJ4RVBJekx3REx0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUVBOS9DRUQwQTlFNjFEOTcxMUUyQkYzRTgxODEwOEIwMkNEMi9LVUhIRmg3VW91 Q2J1UnlyeEVQSXpMd0RMdGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlgyKV/4fAZLkMZDREgvrbwd1kzFYFj/2544ZgSjryGsZTPXnT/tHy+GJVfk4 aKPMVnpli5lHUDNThmCmI33xPqmfBXssNzDCgIwQTMFGRe7sbDGzyYWxgvCKpi6+ 4VnKqi04EY9AP8lyIBuQ3QkchrfDe1NWarM717PHePxs6z/Qp+4MVmer3MwSrJea ecz9nMOdWMf2RJW80E/ahpiHbQ90zpOSneoZXDJuZyNGDU0Lrvqf5ROek00RKDyV TQr9qI4Pglxs40Ak0TkYqtYB22pt8tk5rncKOEErCNt/VH0lpOUsMXVxamY9BZxI Kd8oe5JzaY/aRktcyUTgpSs9gg== -----END CERTIFICATE-----Generated at Fri Apr 17 15:18:55 2026 by rpki-client