$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft File: UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft (raw, json) Hash identifier: TUeE6aVWs9Unkw1RMpspUl381BKG+fW1fTr71RsxsTs= Subject key identifier: 3C:58:09:F7:35:77:90:42:81:80:B3:25:F4:6A:F7:DC:15:DF:20:28 Authority key identifier: 51:E0:94:C0:57:BE:DA:70:A4:C2:B2:00:91:92:8D:E7:26:4B:46:C5 Certificate issuer: /CN=A91BA8F5/serialNumber=51E094C057BEDA70A4C2B20091928DE7264B46C5 Certificate serial: 042E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft Manifest number: 0428 Signing time: Sun 05 Apr 2026 00:07:51 +0000 Manifest this update: Sun 05 Apr 2026 00:07:51 +0000 Manifest next update: Sun 12 Apr 2026 00:07:51 +0000 Files and hashes: 1: UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl (hash: td2sG5xAHdwQot1z8KW6HZqStNL7j5fTaYU79BBu8dY=) 2: 713001A0A35811EC88C42869C4F9AE02.roa (hash: s5U793qEtJmZ50jI1PKHJL9KYnBCltIk3a71UAxFy04=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:07:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1070 (0x42e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA8F5, serialNumber=51E094C057BEDA70A4C2B20091928DE7264B46C5 Validity Not Before: Apr 5 00:07:51 2026 GMT Not After : Apr 12 00:07:51 2026 GMT Subject: CN=69d1a7d7-3c24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:2e:29:61:a9:63:5f:e4:b1:32:83:06:c7:40: f5:6f:b0:bf:cc:5d:42:44:b3:66:60:ac:c7:07:2d: c0:6f:50:9d:f1:ec:e1:44:59:96:87:09:2d:98:e0: bc:44:03:5b:25:85:03:db:48:19:47:10:42:a7:65: b2:89:37:a0:74:7e:19:9c:18:e5:e7:1f:7c:30:d6: 8f:43:8c:97:02:86:5f:8b:db:06:f1:27:2d:c3:78: a5:2f:f4:0f:6c:a1:c1:42:9b:be:32:80:08:13:0f: bb:ea:ab:b1:35:5c:de:53:b3:7b:6e:31:07:3a:a7: ae:44:67:49:95:ff:d8:51:d3:6d:09:16:07:2d:da: c1:3e:9f:d1:da:d1:b3:14:f5:c8:38:a7:ea:0e:a4: 3c:24:c2:c3:27:66:8d:f8:94:99:24:cd:f8:62:b5: 76:a1:43:c5:cf:76:d3:11:82:51:4f:1e:1f:21:dd: 52:21:78:fe:f0:c8:5b:33:a4:64:f5:f1:49:13:f5: 61:87:82:90:27:05:37:67:c9:4c:b8:9a:0d:6c:6d: 1b:89:d2:a5:21:05:0a:21:1b:da:f4:b2:19:f4:88: 0a:93:e9:59:c8:7a:32:68:02:b4:a2:ac:22:e4:bd: b0:96:a7:22:03:16:59:99:6e:c1:fe:58:51:8c:e1: 9c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:58:09:F7:35:77:90:42:81:80:B3:25:F4:6A:F7:DC:15:DF:20:28 X509v3 Authority Key Identifier: keyid:51:E0:94:C0:57:BE:DA:70:A4:C2:B2:00:91:92:8D:E7:26:4B:46:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:46:e9:52:20:d9:b2:40:00:65:55:46:61:e4:c8:14:b6:75: 54:0f:2b:20:1d:5f:c9:8f:fd:cf:ea:c1:86:56:13:0c:17:60: 3e:ec:8d:88:4d:6b:cc:84:b2:7b:5d:fd:43:31:e4:04:2e:5d: cb:22:77:ff:d3:aa:e5:01:53:0b:5d:8e:d2:15:4b:ec:7f:23: 77:c4:33:d3:35:83:0e:23:71:69:61:05:ba:ef:cc:6b:33:8e: 2f:2b:45:1a:b1:86:79:b1:51:2a:bd:81:78:e5:70:7a:60:95: e4:13:e6:cc:2f:4b:71:3a:74:97:31:fe:54:74:e9:f6:d8:bb: 10:51:db:50:d1:02:21:c3:91:2a:db:35:65:e6:35:0b:da:65: 0f:ff:b4:58:3f:b6:15:b4:25:fe:cd:19:68:a6:5e:7b:dd:39: 56:b8:4a:be:58:d2:66:50:70:b6:33:7f:0f:7d:b1:57:14:ec: b5:bc:cc:a2:4d:b2:f5:13:24:56:ec:53:d3:bc:89:ac:ce:4b: e3:74:51:05:2d:dc:dd:3e:c3:b8:01:56:6f:aa:b1:9c:15:7b: 00:c7:47:61:a0:36:70:44:5e:e7:00:3a:c8:5a:36:42:99:d4: 32:16:49:5a:fe:9d:2a:83:09:79:12:de:56:b3:d9:8c:2d:21: cd:2c:95:42 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE4RjUxMTAvBgNVBAUTKDUxRTA5NEMwNTdCRURBNzBBNEMyQjIwMDkxOTI4REU3 MjY0QjQ2QzUwHhcNMjYwNDA1MDAwNzUxWhcNMjYwNDEyMDAwNzUxWjAYMRYwFAYD VQQDEw02OWQxYTdkNy0zYzI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAgy4pYaljX+SxMoMGx0D1b7C/zF1CRLNmYKzHBy3Ab1Cd8ezhRFmWhwktmOC8 RANbJYUD20gZRxBCp2WyiTegdH4ZnBjl5x98MNaPQ4yXAoZfi9sG8Sctw3ilL/QP bKHBQpu+MoAIEw+76quxNVzeU7N7bjEHOqeuRGdJlf/YUdNtCRYHLdrBPp/R2tGz FPXIOKfqDqQ8JMLDJ2aN+JSZJM34YrV2oUPFz3bTEYJRTx4fId1SIXj+8MhbM6Rk 9fFJE/Vhh4KQJwU3Z8lMuJoNbG0bidKlIQUKIRva9LIZ9IgKk+lZyHoyaAK0oqwi 5L2wlqciAxZZmW7B/lhRjOGcbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDxYCfc1 d5BCgYCzJfRq99wV3yAoMB8GA1UdIwQYMBaAFFHglMBXvtpwpMKyAJGSjecmS0bF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQThGNS85NUFBMUVFQ0Ez NTUxMUVDODYxRkUxNjZDNEY5QUUwMi9VZUNVd0ZlLTJuQ2t3cklBa1pLTjV5WkxS c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VlQ1V3RmUtMm5Da3dySUFrWktONXlaTFJzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QThGNS85NUFBMUVFQ0EzNTUxMUVDODYxRkUxNjZDNEY5QUUwMi9VZUNVd0ZlLTJu Q2t3cklBa1pLTjV5WkxSc1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYUbpUiDZskAAZVVGYeTIFLZ1VA8rIB1fyY/9z+rBhlYTDBdgPuyNiE1rzISy e139QzHkBC5dyyJ3/9Oq5QFTC12O0hVL7H8jd8Qz0zWDDiNxaWEFuu/MazOOLytF GrGGebFRKr2BeOVwemCV5BPmzC9LcTp0lzH+VHTp9ti7EFHbUNECIcORKts1ZeY1 C9plD/+0WD+2FbQl/s0ZaKZee905VrhKvljSZlBwtjN/D32xVxTstbzMok2y9RMk VuxT07yJrM5L43RRBS3c3T7DuAFWb6qxnBV7AMdHYaA2cERe5wA6yFo2QpnUMhZJ Wv6dKoMJeRLeVrPZjC0hzSyVQg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:29:11 2026 by rpki-client