$ rpki-client -vvf rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft File: UZQtJe28pR36Vs4J7TYet6JtvSU.mft (raw, json) Hash identifier: /QHE+Gm5aXJBJFFdQgkzbR8pbo7OQv4+1ZNeUvxsEPo= Subject key identifier: B3:4B:5E:0D:25:01:95:FF:9C:1E:9D:DF:8C:44:EA:0D:12:63:81:6C Authority key identifier: 51:94:2D:25:ED:BC:A5:1D:FA:56:CE:09:ED:36:1E:B7:A2:6D:BD:25 Certificate issuer: /CN=A912AFA4/serialNumber=51942D25EDBCA51DFA56CE09ED361EB7A26DBD25 Certificate serial: 0A2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZQtJe28pR36Vs4J7TYet6JtvSU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft Manifest number: 09E8 Signing time: Sat 04 Apr 2026 19:48:44 +0000 Manifest this update: Sat 04 Apr 2026 19:48:44 +0000 Manifest next update: Sat 11 Apr 2026 19:48:44 +0000 Files and hashes: 1: UZQtJe28pR36Vs4J7TYet6JtvSU.crl (hash: yDSTWK7UZzcKVyNTTYnonbHLrDkMfxhf0PmeIHQsd1s=) 2: A476C8C41EA011F187B67505113D8C67.roa (hash: W8WqvCmfqjbYm/Nsa9FcNN92lO+HROWGL8GeAXxnfuk=) 3: E2891A621EA111F1917EDCD9123D8C67.roa (hash: gEX8Atz/LLQf1n/y8rRUMSuwdmjVhyMahE2Jamzx/nI=) 4: C37BD92A1EA111F1B2DD47B2123D8C67.roa (hash: ATlrZQLMN1i/u5Bq0wuL1/pAApfhNtO3TRUif4rFqr0=) 5: C1D6AD981EA111F1B2DD47B2123D8C67.roa (hash: t7Va3DBJIf7NqIYUpRn9OjFokUb0h7zcGhor8Wmv+E4=) 6: A837ACBA072311F1857499832B3D8C67.roa (hash: kLIQMU/1+OWEQ00tXB9bahteZuevt4BTHzYh2B2K2I0=) 7: 4729B9CC10B011F19AF5FC353C3D8C67.roa (hash: XieuBOApj93vMX/PSd4DPB5YCJHLqVArIOgws7wb0zA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.crl rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZQtJe28pR36Vs4J7TYet6JtvSU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:48:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2605 (0xa2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AFA4, serialNumber=51942D25EDBCA51DFA56CE09ED361EB7A26DBD25 Validity Not Before: Apr 4 19:48:44 2026 GMT Not After : Apr 11 19:48:44 2026 GMT Subject: CN=69d16b1c-118f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c9:b8:e0:7a:13:f5:c9:2e:7f:48:4b:cb:ff: 11:bb:66:62:fa:da:a6:ee:9f:77:83:d2:1e:21:87: 29:3e:75:79:cb:7b:ce:1c:90:5f:dd:61:02:04:d1: c0:48:71:08:6a:01:12:a8:84:29:94:20:ba:3b:c2: 1b:37:41:8a:6e:6e:98:14:2a:e0:2c:f2:0c:aa:94: 91:93:98:40:50:2c:b5:19:6d:4d:c0:99:0e:0c:ce: 2a:b9:8d:37:3b:73:45:cf:1a:c0:14:4e:ca:18:8c: ea:aa:59:20:43:8e:a0:1e:b7:7c:8c:e2:57:19:e6: 9f:c0:37:9c:b2:15:01:33:a0:e3:6e:8a:b6:7e:06: 35:ac:95:a2:0b:c9:9e:39:dd:2d:45:7b:23:aa:d8: 23:15:a1:77:1c:22:81:bb:a6:f5:5a:81:63:a8:ec: e5:ee:52:7a:46:cd:06:9e:c9:4b:36:c1:91:09:51: 1f:1a:04:ed:2b:1d:61:cb:01:a1:bb:1c:54:ce:42: d8:73:2a:19:dc:9c:fc:97:f9:dd:17:6c:41:ab:5e: 64:2e:91:12:68:6e:39:87:c6:06:ca:0a:29:02:b4: 96:42:93:27:92:47:fc:d5:99:e7:bf:d1:b5:59:0e: ce:0e:95:94:70:3b:a7:0b:f8:ea:46:c0:c2:49:ea: b6:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:4B:5E:0D:25:01:95:FF:9C:1E:9D:DF:8C:44:EA:0D:12:63:81:6C X509v3 Authority Key Identifier: keyid:51:94:2D:25:ED:BC:A5:1D:FA:56:CE:09:ED:36:1E:B7:A2:6D:BD:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZQtJe28pR36Vs4J7TYet6JtvSU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:9b:f2:ff:df:08:7f:2f:1d:02:a3:ea:75:7b:33:2d:86:76: b5:a4:50:c4:7b:65:8a:96:19:da:9a:2d:0f:a6:33:08:aa:ea: fb:a0:52:8f:8d:6f:db:40:af:d1:23:c6:6b:97:01:4e:2b:d1: 2b:72:2b:e1:e9:7f:08:5e:15:1a:37:09:91:eb:06:47:61:f5: 28:cd:e2:6c:c6:b3:8b:42:2a:e5:6d:2b:56:96:b7:55:c9:35: 78:36:a6:82:ed:77:3d:29:e9:8a:98:4f:fe:f7:d3:40:9c:40: 29:df:8c:f5:0a:e9:c6:53:33:28:b1:e3:9b:68:0a:65:97:5d: 71:f7:11:4f:2a:be:33:69:63:70:df:22:ac:7f:85:4f:02:7e: f9:a4:5b:85:f3:14:2b:16:64:4a:ca:70:ec:eb:44:7c:64:a4: 20:09:3e:fa:c7:d4:a2:e7:ce:29:9e:fb:ca:0b:5c:01:0e:ae: 7f:4e:5d:01:4a:a6:fa:d4:57:54:fc:a3:ed:c1:02:6d:3c:ff: ca:8b:bd:a4:f0:fb:0c:b3:f9:9d:33:95:ab:f0:41:03:79:71: 7c:12:36:56:82:68:3e:aa:15:8f:9f:4f:f3:f9:17:eb:b5:c0: 9a:7c:8a:6f:91:59:9d:b7:be:5f:33:e0:fe:94:63:fd:f6:01: 18:69:7e:64 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFGQTQxMTAvBgNVBAUTKDUxOTQyRDI1RURCQ0E1MURGQTU2Q0UwOUVEMzYxRUI3 QTI2REJEMjUwHhcNMjYwNDA0MTk0ODQ0WhcNMjYwNDExMTk0ODQ0WjAYMRYwFAYD VQQDEw02OWQxNmIxYy0xMThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMm44HoT9ckuf0hLy/8Ru2Zi+tqm7p93g9IeIYcpPnV5y3vOHJBf3WECBNHA SHEIagESqIQplCC6O8IbN0GKbm6YFCrgLPIMqpSRk5hAUCy1GW1NwJkODM4quY03 O3NFzxrAFE7KGIzqqlkgQ46gHrd8jOJXGeafwDecshUBM6Djboq2fgY1rJWiC8me Od0tRXsjqtgjFaF3HCKBu6b1WoFjqOzl7lJ6Rs0GnslLNsGRCVEfGgTtKx1hywGh uxxUzkLYcyoZ3Jz8l/ndF2xBq15kLpESaG45h8YGygopArSWQpMnkkf81Znnv9G1 WQ7ODpWUcDunC/jqRsDCSeq2wQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLNLXg0l AZX/nB6d34xE6g0SY4FsMB8GA1UdIwQYMBaAFFGULSXtvKUd+lbOCe02Hreibb0l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUZBNC9CNjc4NjJGQUFC OTUxMUVBQjI1NTlDNUJDNEY5QUUwMi9VWlF0SmUyOHBSMzZWczRKN1RZZXQ2SnR2 U1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VaUXRKZTI4cFIzNlZzNEo3VFlldDZKdHZTVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUZBNC9CNjc4NjJGQUFCOTUxMUVBQjI1NTlDNUJDNEY5QUUwMi9VWlF0SmUyOHBS MzZWczRKN1RZZXQ2SnR2U1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHJvy/98Ify8dAqPqdXszLYZ2taRQxHtlipYZ2potD6YzCKrq+6BSj41v20Cv 0SPGa5cBTivRK3Ir4el/CF4VGjcJkesGR2H1KM3ibMazi0Iq5W0rVpa3Vck1eDam gu13PSnpiphP/vfTQJxAKd+M9QrpxlMzKLHjm2gKZZddcfcRTyq+M2ljcN8irH+F TwJ++aRbhfMUKxZkSspw7OtEfGSkIAk++sfUoufOKZ77ygtcAQ6uf05dAUqm+tRX VPyj7cECbTz/you9pPD7DLP5nTOVq/BBA3lxfBI2VoJoPqoVj59P8/kX67XAmnyK b5FZnbe+XzPg/pRj/fYBGGl+ZA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:52:26 2026 by rpki-client