$ rpki-client -vvf rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft File: uN9D7us1RpuyzAulIS0b_yaKe24.mft (raw, json) Hash identifier: f5YuGSRssM7r+JHrQC26IBmonqPOiDlYiXAvVlJqMK8= Subject key identifier: 34:0D:30:DB:BA:32:7B:11:BE:9E:45:27:72:9D:16:43:D0:3F:95:41 Authority key identifier: B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E Certificate issuer: /CN=A91F134A/serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Certificate serial: 027E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft Manifest number: 0277 Signing time: Sun 05 Apr 2026 01:33:21 +0000 Manifest this update: Sun 05 Apr 2026 01:33:21 +0000 Manifest next update: Sun 12 Apr 2026 01:33:21 +0000 Files and hashes: 1: uN9D7us1RpuyzAulIS0b_yaKe24.crl (hash: cU/UVmebNDqPdTgBDlsFXmNuZQsL4Dw6ce52fY5YLfA=) 2: 90269D3A716611ED9D80F448C4F9AE02.roa (hash: ogU/j3OOcAMtUhqvFDXyTh+nM/5Ri8VmgPSxYiiE5to=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 638 (0x27e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F134A, serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Validity Not Before: Apr 5 01:33:21 2026 GMT Not After : Apr 12 01:33:21 2026 GMT Subject: CN=69d1bbe1-28ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:94:e3:76:a0:0c:42:ab:4a:69:cd:68:e5:a7: d3:7d:fa:b2:0d:4b:aa:3f:d9:80:6e:d6:07:07:b1: e9:ad:7e:61:cc:27:0d:26:e4:db:94:f6:f4:02:1c: 72:4a:59:51:a9:c5:67:cb:67:1d:9a:45:1d:84:7b: 66:08:c8:28:72:2c:4e:70:d1:6f:0a:ab:f3:71:cc: 6c:5c:cd:73:dd:5b:a8:b2:35:96:8d:20:4a:79:2b: 4e:85:89:8e:3d:eb:75:68:2f:55:5a:eb:ff:fc:0c: ca:96:f3:97:6e:50:79:a2:ec:4d:f9:be:2e:11:fc: 69:ab:f5:2c:e5:fa:cd:fe:b5:8b:7a:b9:d9:97:c0: fc:ff:70:b7:eb:e0:d0:70:76:84:71:8a:a9:b7:db: f8:0f:0d:e8:4c:b0:19:f1:f0:bb:57:e5:7e:76:f7: 68:6e:ad:1d:36:be:d6:d6:cb:f6:53:b2:1e:c9:6f: 4a:33:46:ad:4f:37:8a:d5:63:2b:f3:b9:20:cc:14: f5:26:a2:9a:99:25:8f:f4:e3:4d:17:0e:54:a2:34: 36:03:84:a5:f8:5a:78:49:bb:5a:ef:51:dc:c1:ef: 12:1b:dd:46:08:72:dc:41:3c:a7:8e:04:f8:0c:f6: ad:75:d7:06:ca:56:86:f5:92:b1:4a:fd:70:e1:46: 62:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:0D:30:DB:BA:32:7B:11:BE:9E:45:27:72:9D:16:43:D0:3F:95:41 X509v3 Authority Key Identifier: keyid:B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:42:e1:c9:4a:b1:86:81:c3:bd:a5:57:8d:88:65:10:83:54: 03:4a:38:29:0e:c8:e0:11:19:8a:81:73:3a:35:04:23:d2:9d: 86:fa:0b:d1:75:2a:20:a4:5d:b1:2d:0c:dd:85:77:ba:77:40: 5a:34:1f:d8:80:7b:37:f0:34:32:c7:61:e2:07:98:b0:83:3c: 35:5c:12:63:ac:44:32:1f:49:79:3f:99:13:b4:d7:9d:b7:aa: 7e:2a:c1:d5:b3:b1:67:c3:3f:80:10:e0:bf:24:d0:c7:72:0a: d9:87:32:57:f7:5a:9c:6b:9a:fe:2e:df:c6:f2:77:d3:a8:03: 92:6f:91:e8:2e:12:a8:88:eb:1c:89:cd:d8:4d:24:01:5d:ea: 8a:6f:7c:72:8b:c2:c6:9b:e2:df:b6:96:bb:02:58:38:34:4f: cf:b6:bb:dc:ae:84:fe:6c:8b:8d:ed:e7:cc:f2:2c:3e:03:54: f7:e7:9c:cb:60:ee:9e:f4:23:cf:28:38:0b:c6:44:1c:ac:19: 50:75:64:bb:4b:0b:dc:f7:86:1a:d3:34:23:16:21:f4:39:d2: 1f:65:4d:bd:27:56:74:12:b0:41:93:3e:e1:2b:29:6a:e4:32: 33:df:b6:74:7f:4f:21:d2:9a:13:29:fb:11:be:62:7d:71:10: 7c:e5:78:c4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEzNEExMTAvBgNVBAUTKEI4REY0M0VFRUIzNTQ2OUJCMkNDMEJBNTIxMkQxQkZG MjY4QTdCNkUwHhcNMjYwNDA1MDEzMzIxWhcNMjYwNDEyMDEzMzIxWjAYMRYwFAYD VQQDEw02OWQxYmJlMS0yOGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAppTjdqAMQqtKac1o5afTffqyDUuqP9mAbtYHB7HprX5hzCcNJuTblPb0Ahxy SllRqcVny2cdmkUdhHtmCMgocixOcNFvCqvzccxsXM1z3VuosjWWjSBKeStOhYmO Pet1aC9VWuv//AzKlvOXblB5ouxN+b4uEfxpq/Us5frN/rWLernZl8D8/3C36+DQ cHaEcYqpt9v4Dw3oTLAZ8fC7V+V+dvdobq0dNr7W1sv2U7IeyW9KM0atTzeK1WMr 87kgzBT1JqKamSWP9ONNFw5UojQ2A4Sl+Fp4Sbta71Hcwe8SG91GCHLcQTynjgT4 DPatddcGylaG9ZKxSv1w4UZiXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDQNMNu6 MnsRvp5FJ3KdFkPQP5VBMB8GA1UdIwQYMBaAFLjfQ+7rNUabsswLpSEtG/8mintu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTM0QS9GOTc2QkZEQTcx NjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJwdXl6QXVsSVMwYl95YUtl MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VOOUQ3dXMxUnB1eXpBdWxJUzBiX3lhS2UyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTM0QS9GOTc2QkZEQTcxNjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJw dXl6QXVsSVMwYl95YUtlMjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZkLhyUqxhoHDvaVXjYhlEINUA0o4KQ7I4BEZioFzOjUEI9KdhvoL0XUqIKRd sS0M3YV3undAWjQf2IB7N/A0Msdh4geYsIM8NVwSY6xEMh9JeT+ZE7TXnbeqfirB 1bOxZ8M/gBDgvyTQx3IK2YcyV/danGua/i7fxvJ306gDkm+R6C4SqIjrHInN2E0k AV3qim98covCxpvi37aWuwJYODRPz7a73K6E/myLje3nzPIsPgNU9+ecy2DunvQj zyg4C8ZEHKwZUHVku0sL3PeGGtM0IxYh9DnSH2VNvSdWdBKwQZM+4SspauQyM9+2 dH9PIdKaEyn7Eb5ifXEQfOV4xA== -----END CERTIFICATE-----Generated at Sun Apr 5 19:44:13 2026 by rpki-client