$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft File: U8lIF-sTZfHejDwrRAIjmIHBlD0.mft (raw, json) Hash identifier: PbmwjPkC2c3sTbNLZm4+zXs7UeIDmbA05xo0L9BLoPs= Subject key identifier: F6:4B:C0:BF:64:C6:B3:12:8D:CC:C5:F9:9B:3F:6E:58:01:C5:BE:F5 Authority key identifier: 53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D Certificate issuer: /CN=A91D3307/serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Certificate serial: 055A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft Manifest number: 0539 Signing time: Sat 04 Apr 2026 23:30:21 +0000 Manifest this update: Sat 04 Apr 2026 23:30:20 +0000 Manifest next update: Sat 11 Apr 2026 23:30:20 +0000 Files and hashes: 1: U8lIF-sTZfHejDwrRAIjmIHBlD0.crl (hash: 8M7w/PD8PEF5xCMCTspaNnw7vBoCX3y9deaZFz3p8hU=) 2: C908B72A696F11EFA4DA475FC4F9AE02.roa (hash: W6dcDrB3RcselU+HE/a3UN93ZRWn0E/P0SOzXj78T2A=) 3: C9C70AEA696F11EFA4DA475FC4F9AE02.roa (hash: 593+o8elVRSxa1C/n0n+gLQTiowZqiqwRC7MRYiWVSc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1370 (0x55a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3307, serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Validity Not Before: Apr 4 23:30:20 2026 GMT Not After : Apr 11 23:30:20 2026 GMT Subject: CN=69d19f0d-cc16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:b9:89:75:94:06:93:4e:53:3a:1f:20:1a:ad: cc:60:82:9a:06:64:32:17:32:e0:ed:ac:60:47:d8: e4:5a:78:97:d9:41:1d:28:90:4a:38:bd:0f:a0:9f: 5d:da:0a:2c:99:fe:5a:ba:a3:52:f8:77:a4:0b:b4: 90:97:6d:e0:ca:d8:aa:9c:f0:52:bc:06:e3:52:cb: b3:47:4a:60:06:ad:71:65:0c:3b:f7:62:95:99:6c: cf:10:fc:13:a2:91:e6:88:7e:e2:fa:a9:88:47:ad: 94:67:03:27:13:c3:6d:f6:28:0b:82:6d:8d:ba:6a: ec:15:1b:9d:67:82:43:57:b3:50:d4:2f:5d:fa:c4: 7d:05:f8:a8:5d:3d:47:43:a4:5d:09:21:bb:ac:0d: b0:aa:c3:71:29:62:c1:84:81:c0:bd:c8:53:92:90: 0b:6f:9c:07:27:58:8e:e2:19:68:09:f3:3e:3a:f7: 0a:30:7d:f9:21:5b:72:0a:33:43:60:24:6b:26:23: f8:09:68:ca:f2:c6:29:a7:a6:06:2c:70:d8:49:0e: cb:66:c5:de:57:b8:7c:83:de:2b:04:d4:f3:05:c4: fb:89:43:55:64:41:76:d2:fe:9d:9d:ed:46:90:b5: ca:dc:0a:b7:1f:c9:b1:4b:b1:fc:b9:ba:36:bb:c5: 74:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:4B:C0:BF:64:C6:B3:12:8D:CC:C5:F9:9B:3F:6E:58:01:C5:BE:F5 X509v3 Authority Key Identifier: keyid:53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:0e:18:02:d9:96:48:ca:de:b6:e7:37:6f:07:cd:9e:4f:5f: 0f:9e:af:4a:89:d1:5a:10:02:c5:66:11:59:97:11:78:c6:90: 08:a6:8b:e2:b7:ee:13:83:59:e4:27:de:c1:97:57:8a:89:16: 0c:d7:06:b1:fc:07:20:85:ba:2a:fe:bb:41:e1:26:59:c7:57: ed:0c:c6:18:92:37:61:3e:c1:95:82:62:36:92:0b:57:81:ea: 1d:15:52:8f:5e:fb:6a:17:37:8b:36:02:af:10:3e:16:70:98: c4:71:86:31:c4:38:7a:4e:e0:d5:c8:93:ae:05:6f:20:06:06: a9:b7:c7:fb:e0:03:d7:a2:90:db:17:fe:23:a6:ee:67:25:89: 76:64:36:b2:ad:c6:e2:72:3c:05:22:91:c9:52:b2:dd:8d:03: ef:35:45:cf:5e:b3:c9:a8:47:04:64:61:db:64:c2:8b:c2:75: a4:24:2a:3b:d4:bc:ca:0e:2e:e7:d2:5f:a1:5a:81:22:87:95: 4e:21:b6:b1:5d:ae:2b:d7:e4:b9:45:f0:fd:b7:69:79:e3:32: ca:a8:f1:62:97:9b:66:6f:d1:e7:48:16:5f:13:fc:97:77:7a: 2c:a8:05:38:47:ba:8d:f4:45:93:98:d8:1b:98:14:6a:8c:f1: 7c:c1:32:c6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMzMDcxMTAvBgNVBAUTKDUzQzk0ODE3RUIxMzY1RjFERThDM0MyQjQ0MDIyMzk4 ODFDMTk0M0QwHhcNMjYwNDA0MjMzMDIwWhcNMjYwNDExMjMzMDIwWjAYMRYwFAYD VQQDEw02OWQxOWYwZC1jYzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAibmJdZQGk05TOh8gGq3MYIKaBmQyFzLg7axgR9jkWniX2UEdKJBKOL0PoJ9d 2gosmf5auqNS+HekC7SQl23gytiqnPBSvAbjUsuzR0pgBq1xZQw792KVmWzPEPwT opHmiH7i+qmIR62UZwMnE8Nt9igLgm2NumrsFRudZ4JDV7NQ1C9d+sR9BfioXT1H Q6RdCSG7rA2wqsNxKWLBhIHAvchTkpALb5wHJ1iO4hloCfM+OvcKMH35IVtyCjND YCRrJiP4CWjK8sYpp6YGLHDYSQ7LZsXeV7h8g94rBNTzBcT7iUNVZEF20v6dne1G kLXK3Aq3H8mxS7H8ubo2u8V0iQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPZLwL9k xrMSjczF+Zs/blgBxb71MB8GA1UdIwQYMBaAFFPJSBfrE2Xx3ow8K0QCI5iBwZQ9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzMwNy8zNDJEODMyODQy Q0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpmSGVqRHdyUkFJam1JSEJs RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4bElGLXNUWmZIZWpEd3JSQUlqbUlIQmxEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzMwNy8zNDJEODMyODQyQ0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpm SGVqRHdyUkFJam1JSEJsRDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKA4YAtmWSMretuc3bwfNnk9fD56vSonRWhACxWYRWZcReMaQCKaL4rfuE4NZ 5CfewZdXiokWDNcGsfwHIIW6Kv67QeEmWcdX7QzGGJI3YT7BlYJiNpILV4HqHRVS j177ahc3izYCrxA+FnCYxHGGMcQ4ek7g1ciTrgVvIAYGqbfH++AD16KQ2xf+I6bu ZyWJdmQ2sq3G4nI8BSKRyVKy3Y0D7zVFz16zyahHBGRh22TCi8J1pCQqO9S8yg4u 59JfoVqBIoeVTiG2sV2uK9fkuUXw/bdpeeMyyqjxYpebZm/R50gWXxP8l3d6LKgF OEe6jfRFk5jYG5gUaozxfMEyxg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:48:52 2026 by rpki-client