$ rpki-client -vvf rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft File: cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft (raw, json) Hash identifier: /L5F+tyIf6uuOhj9ZbTViYa36U+hsIo+OYknaz3cU2I= Subject key identifier: DD:45:A9:15:E6:E1:48:89:0F:F9:BE:2E:F7:B8:F0:C6:0B:0B:CA:74 Authority key identifier: 71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 Certificate issuer: /CN=A91238D6/serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Certificate serial: 230D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft Manifest number: 22D9 Signing time: Sat 04 Apr 2026 15:46:53 +0000 Manifest this update: Sat 04 Apr 2026 15:46:52 +0000 Manifest next update: Sat 11 Apr 2026 15:46:52 +0000 Files and hashes: 1: cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl (hash: fp1U8hmNyI0t2t1f7peX+ITJ/BTig0Se0+jQ5W5vXDA=) 2: BB62FBD82AEC11EA972CB627C4F9AE02.roa (hash: vG/5CBup8bwvo9IJijCwtmm7X5EaDb/8G9msczvTawM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:46:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8973 (0x230d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238D6, serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Validity Not Before: Apr 4 15:46:52 2026 GMT Not After : Apr 11 15:46:52 2026 GMT Subject: CN=69d1326d-449d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:dd:50:be:f3:cc:cb:43:68:22:67:10:d9:a6: 39:d5:2e:10:bc:f7:f5:4e:19:f6:86:35:4a:40:9d: 6e:68:b6:98:74:ad:24:e8:f4:70:63:1e:e3:d2:e8: 2a:5b:fd:d7:87:3c:76:7b:40:36:60:2b:24:45:78: 35:1a:87:17:ed:e1:6e:d6:71:ee:26:98:95:dd:e9: 25:18:61:b3:34:96:34:a6:a3:cf:1e:1d:06:28:c5: 41:fb:b7:f3:85:cd:27:11:68:2e:81:f5:fb:33:cc: bd:17:45:d0:8d:07:43:0d:02:b2:ee:4a:23:ae:9f: 29:a7:aa:84:1a:b3:3e:21:4e:66:0d:5f:33:f2:a3: 1d:2d:8b:e6:6e:92:ac:55:47:3c:26:a0:f6:61:9b: 68:bb:44:44:4d:76:45:e4:2e:6d:33:8c:71:e1:60: 7f:00:10:cb:6d:47:89:fe:f8:38:6c:81:1e:59:8a: 84:d8:6c:6b:17:2f:73:e1:be:f6:c2:48:1f:5b:a7: 0c:f7:64:3c:ea:c5:95:38:c2:a5:1a:25:d5:3a:51: 5c:da:e5:43:0e:f5:3b:2c:a5:91:35:c3:f8:91:2b: 85:c8:a9:47:39:8a:d2:9c:eb:6a:36:74:3b:af:32: ab:a3:6b:73:af:d0:44:e3:89:ef:be:8b:c4:90:ff: eb:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:45:A9:15:E6:E1:48:89:0F:F9:BE:2E:F7:B8:F0:C6:0B:0B:CA:74 X509v3 Authority Key Identifier: keyid:71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:61:35:b4:a9:63:e1:3c:b4:45:79:09:e8:de:d0:60:75:48: 44:d5:31:bb:09:d9:0d:50:da:14:b9:92:f5:f2:a4:d0:06:94: 0b:68:aa:3d:ef:00:73:f9:06:f4:d4:05:dc:dc:41:7f:f0:45: b9:e7:c0:69:ea:c5:d5:81:a1:5b:29:c2:4f:78:4c:86:9d:ce: d0:0a:f8:0a:80:a0:a9:ab:73:3e:bc:34:53:98:66:68:ec:44: 7a:75:70:f7:38:e0:b9:65:54:b5:45:56:b0:29:f3:c1:d8:e1: e9:1f:82:85:14:90:bf:05:cc:bf:15:0b:70:86:85:ca:2c:33: 8c:73:ae:c0:8c:cb:fc:8d:b8:22:ca:b8:ec:66:40:23:b9:da: ec:21:1e:99:19:be:b3:84:b7:cd:42:a7:de:b3:b2:4b:73:4f: ad:a1:31:cd:bf:c4:d9:8c:e3:ac:f9:b7:62:15:42:a7:79:ee: 0d:ea:01:38:4b:b6:54:ea:d2:87:ed:14:78:5e:1b:e7:f5:aa: 9e:67:6f:16:08:c5:4d:11:3d:6e:92:5b:6a:b5:de:66:88:f5: 0d:e4:f2:9e:ef:67:81:04:7e:93:a2:17:08:df:a1:43:53:cd: 65:2a:ad:2d:07:20:5e:54:65:e8:07:27:37:d1:eb:7c:09:7b: 0e:45:a3:a0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RDYxMTAvBgNVBAUTKDcxNEJBMjhERDgzNUE3RDQxOTcwMUZBRDM3MkEzNEI3 QzY2Q0ZBQTAwHhcNMjYwNDA0MTU0NjUyWhcNMjYwNDExMTU0NjUyWjAYMRYwFAYD VQQDEw02OWQxMzI2ZC00NDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmN1QvvPMy0NoImcQ2aY51S4QvPf1Thn2hjVKQJ1uaLaYdK0k6PRwYx7j0ugq W/3Xhzx2e0A2YCskRXg1GocX7eFu1nHuJpiV3eklGGGzNJY0pqPPHh0GKMVB+7fz hc0nEWgugfX7M8y9F0XQjQdDDQKy7kojrp8pp6qEGrM+IU5mDV8z8qMdLYvmbpKs VUc8JqD2YZtou0RETXZF5C5tM4xx4WB/ABDLbUeJ/vg4bIEeWYqE2GxrFy9z4b72 wkgfW6cM92Q86sWVOMKlGiXVOlFc2uVDDvU7LKWRNcP4kSuFyKlHOYrSnOtqNnQ7 rzKro2tzr9BE44nvvovEkP/rYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN1FqRXm 4UiJD/m+Lve48MYLC8p0MB8GA1UdIwQYMBaAFHFLoo3YNafUGXAfrTcqNLfGbPqg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhENi8yODk5MDUzMEJF NTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5UVpjQi10TnlvMHQ4WnMt cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVdWlqZGcxcDlRWmNCLXROeW8wdDhacy1xQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhENi8yODk5MDUzMEJFNTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5 UVpjQi10TnlvMHQ4WnMtcUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYmE1tKlj4Ty0RXkJ6N7QYHVIRNUxuwnZDVDaFLmS9fKk0AaUC2iqPe8Ac/kG 9NQF3NxBf/BFuefAaerF1YGhWynCT3hMhp3O0Ar4CoCgqatzPrw0U5hmaOxEenVw 9zjguWVUtUVWsCnzwdjh6R+ChRSQvwXMvxULcIaFyiwzjHOuwIzL/I24Isq47GZA I7na7CEemRm+s4S3zUKn3rOyS3NPraExzb/E2YzjrPm3YhVCp3nuDeoBOEu2VOrS h+0UeF4b5/WqnmdvFgjFTRE9bpJbarXeZoj1DeTynu9ngQR+k6IXCN+hQ1PNZSqt LQcgXlRl6AcnN9HrfAl7DkWjoA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:53:47 2026 by rpki-client