$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft File: uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft (raw, json) Hash identifier: uvKlScZHS26tjbJpT0oV1DYU6S4Tq47wOKiD9sKvHGA= Subject key identifier: 34:2F:04:3A:8D:4A:84:22:63:B1:F7:68:01:6D:67:BC:99:DC:9E:8A Authority key identifier: B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 Certificate issuer: /CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Certificate serial: 04CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft Manifest number: 04C4 Signing time: Wed 20 May 2026 23:55:58 +0000 Manifest this update: Wed 20 May 2026 23:55:58 +0000 Manifest next update: Wed 27 May 2026 23:55:58 +0000 Files and hashes: 1: uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl (hash: UktlgHQAat87nYqVH1em/dJ/A6CjPojoO3415w1uXKo=) 2: 5AFB85086EC411ECB8E7492BC4F9AE02.roa (hash: OpFOQ/Qs7pTcBKY6eGcg4iGZBHwfeCp3YAy8fBKvp0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 23:55:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1227 (0x4cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195A3D, serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Validity Not Before: May 20 23:55:58 2026 GMT Not After : May 27 23:55:58 2026 GMT Subject: CN=6a0e4a0e-8ff5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:68:a4:07:9e:0b:6d:ed:6c:d4:ed:0a:4a:2a: 26:fc:87:49:d6:49:89:a6:19:71:e2:4f:89:36:71: 8a:ae:91:04:75:df:f1:b5:87:96:92:bb:f6:e4:d2: bc:c5:ec:40:69:33:b7:5a:bc:79:77:99:c4:db:ba: 42:39:6d:c9:9e:28:04:04:23:2e:2b:70:f7:1d:18: 23:8d:4e:e3:b4:39:7b:a6:7f:c2:3c:5f:4c:8c:69: 71:9e:4d:f9:bf:6d:65:f7:88:c2:5e:d5:5e:42:95: 5b:1c:4f:6a:21:ab:4b:b4:70:55:a2:a0:f6:f9:cc: 12:b1:d1:76:19:8a:0c:3b:a6:70:38:70:3b:ff:65: 3a:2b:a1:e1:5f:e0:50:0b:27:ce:3e:c8:5f:ff:bf: 6b:14:17:23:28:d0:a3:d4:f9:d8:22:44:0a:69:8d: c1:ba:7c:a2:1c:cc:83:e4:99:c4:3a:2b:8e:fc:eb: bc:bb:a8:f2:7c:d7:ed:c1:e0:24:1d:89:cb:80:8c: 3f:5c:f4:15:54:86:68:2f:66:0c:55:49:5a:fe:5a: d9:0a:a9:f0:99:2e:d6:71:4f:4e:b4:fd:8a:ad:7c: b3:91:61:ca:64:97:9a:81:2b:08:6b:9c:9d:0f:94: 2d:f6:20:99:12:97:96:3d:76:35:e0:a0:82:0c:d5: 0b:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:2F:04:3A:8D:4A:84:22:63:B1:F7:68:01:6D:67:BC:99:DC:9E:8A X509v3 Authority Key Identifier: keyid:B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:22:ed:9f:b6:38:1d:4b:be:f5:59:00:29:91:9b:cd:2f:f9: 8d:96:f0:20:88:3f:a3:f1:05:b0:13:b4:d4:5e:fd:06:7a:6c: 49:a3:81:e5:44:e7:49:ae:a2:35:92:d4:df:a8:14:60:ca:f4: 08:ec:ba:c2:aa:e7:d4:02:d5:92:06:8d:67:bf:94:a7:e1:18: 48:26:c6:17:9a:7c:63:8b:0f:5e:13:dd:20:76:76:02:47:e3: b8:08:d7:6a:11:0b:a6:08:e3:1e:3b:ef:06:ed:c8:7a:57:30: a1:2a:0e:1b:6d:73:56:9d:99:0b:bb:db:d5:dc:2f:30:99:9f: 7b:85:48:ac:0e:f6:54:96:ea:3a:00:7f:1d:77:85:89:50:1c: 82:ce:c2:9b:6d:a9:6b:e5:c1:06:04:73:25:97:ba:f6:42:23: af:1f:62:51:e8:14:08:b0:40:23:0d:b2:b1:20:5e:f4:79:17: e0:9c:67:c4:95:ec:49:a4:26:9e:e7:cb:e4:17:aa:d3:3f:df: f5:2c:d7:67:f4:a9:92:45:39:e0:9f:c2:d5:7f:f0:f9:06:ef: ae:6d:1b:de:04:72:3b:da:2e:7a:d0:41:f6:f9:4e:4b:68:3e: 5f:d8:e8:f0:2d:a1:ea:13:ad:07:f4:ba:9c:ab:e7:82:3f:62: 88:b8:42:be -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBM0QxMTAvBgNVBAUTKEI4MjI1RjFFQjg2NzY2NDdDMzU5REJDMTEwQkZFRURF QjQ0RkQ1RTgwHhcNMjYwNTIwMjM1NTU4WhcNMjYwNTI3MjM1NTU4WjAYMRYwFAYD VQQDEw02YTBlNGEwZS04ZmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymikB54Lbe1s1O0KSiom/IdJ1kmJphlx4k+JNnGKrpEEdd/xtYeWkrv25NK8 xexAaTO3Wrx5d5nE27pCOW3JnigEBCMuK3D3HRgjjU7jtDl7pn/CPF9MjGlxnk35 v21l94jCXtVeQpVbHE9qIatLtHBVoqD2+cwSsdF2GYoMO6ZwOHA7/2U6K6HhX+BQ CyfOPshf/79rFBcjKNCj1PnYIkQKaY3BunyiHMyD5JnEOiuO/Ou8u6jyfNftweAk HYnLgIw/XPQVVIZoL2YMVUla/lrZCqnwmS7WcU9OtP2KrXyzkWHKZJeagSsIa5yd D5Qt9iCZEpeWPXY14KCCDNULFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDQvBDqN SoQiY7H3aAFtZ7yZ3J6KMB8GA1UdIwQYMBaAFLgiXx64Z2ZHw1nbwRC/7t60T9Xo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUEzRC82OUVGQ0REMjZF QzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblprZkRXZHZCRUxfdTNyUlAx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VDSmZIcmhuWmtmRFdkdkJFTF91M3JSUDFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUEzRC82OUVGQ0REMjZFQzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblpr ZkRXZHZCRUxfdTNyUlAxZWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmiLtn7Y4HUu+9VkAKZGbzS/5jZbwIIg/o/EFsBO01F79BnpsSaOB5UTnSa6i NZLU36gUYMr0COy6wqrn1ALVkgaNZ7+Up+EYSCbGF5p8Y4sPXhPdIHZ2AkfjuAjX ahELpgjjHjvvBu3IelcwoSoOG21zVp2ZC7vb1dwvMJmfe4VIrA72VJbqOgB/HXeF iVAcgs7Cm22pa+XBBgRzJZe69kIjrx9iUegUCLBAIw2ysSBe9HkX4JxnxJXsSaQm nufL5Beq0z/f9SzXZ/SpkkU54J/C1X/w+Qbvrm0b3gRyO9ouetBB9vlOS2g+X9jo 8C2h6hOtB/S6nKvngj9iiLhCvg== -----END CERTIFICATE-----Generated at Thu May 21 09:38:06 2026 by rpki-client