$ rpki-client -vvf rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft File: uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft (raw, json) Hash identifier: 87UvapkxR5gZ48v2D6/BI5NVFNxeVWpvKn9wC/oLxT0= Subject key identifier: 03:A3:CD:E3:81:C7:7D:FB:D4:EC:CE:06:75:11:42:F2:A3:CE:03:B3 Authority key identifier: B8:AD:8D:91:6C:D9:48:2B:6D:A5:5D:30:7C:E9:5C:07:A9:5B:2F:74 Certificate issuer: /CN=A91103CF/serialNumber=B8AD8D916CD9482B6DA55D307CE95C07A95B2F74 Certificate serial: 0435 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft Manifest number: 042A Signing time: Sun 05 Apr 2026 00:09:45 +0000 Manifest this update: Sun 05 Apr 2026 00:09:44 +0000 Manifest next update: Sun 12 Apr 2026 00:09:44 +0000 Files and hashes: 1: uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl (hash: MTZPXUgUGmAIhRtuWTrQEJGBfSQJXW4GJbQWJSNoLGk=) 2: 931A51C07F5811EE82ECE456C4F9AE02.roa (hash: iqRn8MuwHOm1OeP7OiaBzMQDUZroez3UjhhvxuLDGhc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:09:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1077 (0x435) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91103CF, serialNumber=B8AD8D916CD9482B6DA55D307CE95C07A95B2F74 Validity Not Before: Apr 5 00:09:44 2026 GMT Not After : Apr 12 00:09:44 2026 GMT Subject: CN=69d1a849-b7bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ee:5c:d1:9b:4d:24:4a:f9:5e:e2:8d:0c:b2: e2:bc:fd:9c:3e:ef:32:59:a7:43:13:83:ae:d6:40: 4c:2d:5d:f1:b9:e3:a9:13:81:cc:a2:e3:07:32:6f: 90:bd:79:7f:41:cd:ed:c3:49:c1:79:16:19:b2:1f: 30:6c:b4:14:81:a2:aa:99:e4:7a:5b:33:40:1a:5a: c5:6d:9b:ad:c6:53:26:d4:52:5b:99:96:87:b3:4c: 5c:08:64:37:55:be:5a:8e:2d:0c:15:f6:bc:a6:44: 91:50:cf:3f:96:f0:67:65:9a:be:91:94:1d:21:fc: 84:60:b3:a9:7e:b9:85:bf:99:22:d1:97:89:55:aa: 66:8f:33:a5:c9:3c:d5:fa:51:a9:c4:b5:99:84:2d: 62:e4:01:70:1f:9b:d9:8b:3f:de:2b:49:7c:df:d6: 01:31:35:7c:13:b4:30:f1:5d:a3:4d:d0:5d:83:76: 3d:21:20:08:76:4f:bb:ff:f4:32:7a:aa:38:4a:2e: 5b:b8:f4:c8:10:83:29:57:4f:91:23:0c:3f:d4:35: 72:20:c2:fc:ad:86:97:72:4c:39:cb:81:55:c2:7f: bc:db:0c:14:b9:8e:f7:62:f3:f6:3e:27:72:44:0e: 03:8e:9b:e9:5a:ea:af:3a:fd:bb:0c:34:ec:f7:8a: ec:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:A3:CD:E3:81:C7:7D:FB:D4:EC:CE:06:75:11:42:F2:A3:CE:03:B3 X509v3 Authority Key Identifier: keyid:B8:AD:8D:91:6C:D9:48:2B:6D:A5:5D:30:7C:E9:5C:07:A9:5B:2F:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:a3:3b:bc:aa:69:1c:78:f7:0b:3f:76:1e:67:63:54:e8:82: 9c:6d:90:96:d1:32:8e:f4:0b:42:38:00:cb:a6:c6:0e:a2:de: 32:f2:ae:9d:aa:c2:29:fd:cc:7a:9a:43:d0:ea:e9:20:47:29: 0f:d0:a1:88:5d:d1:f8:47:7b:24:d6:d9:2d:42:8e:27:0f:55: b2:54:e7:91:3f:dc:e8:c0:d9:f1:b0:2d:d3:59:9a:60:40:02: 31:ab:c9:e4:80:6f:25:a0:09:31:bf:79:3f:b4:2b:4e:26:37: fb:d3:48:99:3b:be:1d:96:ed:85:3f:e0:b1:28:2b:aa:b5:5e: ee:68:ca:15:b2:27:3d:35:1b:6a:06:ea:89:e8:73:b4:fb:dc: 12:a6:96:73:4c:e0:81:ec:2d:36:9c:29:81:6d:04:3d:ac:51: e7:1e:c7:33:5f:e2:79:62:a8:da:15:f6:53:d8:75:3e:30:74: cc:66:15:85:ab:a0:7a:8c:13:0c:37:30:fd:d2:a9:09:42:91: f3:00:fa:4e:46:35:f6:78:24:c2:a3:5a:a4:38:2b:ad:35:8d: e7:d7:aa:ac:57:33:e0:7a:c6:0c:bf:3e:c0:84:51:e8:c8:cf: ad:21:5e:bc:f9:a2:18:df:98:f4:f8:b5:fb:b5:d3:b2:69:df: 48:06:85:91 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzQ0YxMTAvBgNVBAUTKEI4QUQ4RDkxNkNEOTQ4MkI2REE1NUQzMDdDRTk1QzA3 QTk1QjJGNzQwHhcNMjYwNDA1MDAwOTQ0WhcNMjYwNDEyMDAwOTQ0WjAYMRYwFAYD VQQDEw02OWQxYTg0OS1iN2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvO5c0ZtNJEr5XuKNDLLivP2cPu8yWadDE4Ou1kBMLV3xueOpE4HMouMHMm+Q vXl/Qc3tw0nBeRYZsh8wbLQUgaKqmeR6WzNAGlrFbZutxlMm1FJbmZaHs0xcCGQ3 Vb5aji0MFfa8pkSRUM8/lvBnZZq+kZQdIfyEYLOpfrmFv5ki0ZeJVapmjzOlyTzV +lGpxLWZhC1i5AFwH5vZiz/eK0l839YBMTV8E7Qw8V2jTdBdg3Y9ISAIdk+7//Qy eqo4Si5buPTIEIMpV0+RIww/1DVyIML8rYaXckw5y4FVwn+82wwUuY73YvP2Pidy RA4DjpvpWuqvOv27DDTs94rsfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAOjzeOB x3371OzOBnURQvKjzgOzMB8GA1UdIwQYMBaAFLitjZFs2UgrbaVdMHzpXAepWy90 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDNDRi8xN0Q2RTRDMkE2 OEExMUVDQTlBNjM1NTFDNEY5QUUwMi91SzJOa1d6WlNDdHRwVjB3Zk9sY0I2bGJM M1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VLMk5rV3paU0N0dHBWMHdmT2xjQjZsYkwzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDNDRi8xN0Q2RTRDMkE2OEExMUVDQTlBNjM1NTFDNEY5QUUwMi91SzJOa1d6WlND dHRwVjB3Zk9sY0I2bGJMM1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAK6M7vKppHHj3Cz92HmdjVOiCnG2QltEyjvQLQjgAy6bGDqLeMvKunarCKf3M eppD0OrpIEcpD9ChiF3R+Ed7JNbZLUKOJw9VslTnkT/c6MDZ8bAt01maYEACMavJ 5IBvJaAJMb95P7QrTiY3+9NImTu+HZbthT/gsSgrqrVe7mjKFbInPTUbagbqiehz tPvcEqaWc0zggewtNpwpgW0EPaxR5x7HM1/ieWKo2hX2U9h1PjB0zGYVhaugeowT DDcw/dKpCUKR8wD6TkY19ngkwqNapDgrrTWN59eqrFcz4HrGDL8+wIRR6MjPrSFe vPmiGN+Y9Pi1+7XTsmnfSAaFkQ== -----END CERTIFICATE-----Generated at Sun Apr 5 19:43:11 2026 by rpki-client