$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft File: KUHHFh7UouCbuRyrxEPIzLwDLtg.mft (raw, json) Hash identifier: u1PuRn8gdyi+m76GQ+mqxXqq6q5F6ZMYdLAbDftcBxU= Subject key identifier: 5F:90:E0:04:DD:2E:AF:49:B4:92:EC:A5:46:32:84:32:B6:5F:AB:2B Authority key identifier: 29:41:C7:16:1E:D4:A2:E0:9B:B9:1C:AB:C4:43:C8:CC:BC:03:2E:D8 Certificate issuer: /CN=A91FEEA9/serialNumber=2941C7161ED4A2E09BB91CABC443C8CCBC032ED8 Certificate serial: 3534 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft Manifest number: 352C Signing time: Sat 04 Apr 2026 14:51:06 +0000 Manifest this update: Sat 04 Apr 2026 14:51:05 +0000 Manifest next update: Sat 11 Apr 2026 14:51:05 +0000 Files and hashes: 1: KUHHFh7UouCbuRyrxEPIzLwDLtg.crl (hash: EH3cc5iXHvXh0fZboiCBK3QXz0i2S+/A32nH8T/Yo5Y=) 2: 796A04A6BA1A11F08C920A83C4F9AE02.roa (hash: ypLlMr/LNjZg16pw+UIO3Fp6461Fmui5r1d2RFjlO48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.crl rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 14:51:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13620 (0x3534) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEEA9, serialNumber=2941C7161ED4A2E09BB91CABC443C8CCBC032ED8 Validity Not Before: Apr 4 14:51:05 2026 GMT Not After : Apr 11 14:51:05 2026 GMT Subject: CN=69d12559-c008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:f3:a1:f3:39:ec:ce:5c:fc:ef:51:ee:6a:d4: 4b:6d:c2:71:8f:6d:6c:52:83:c3:19:ca:cd:a5:c2: 82:01:a2:47:c8:dd:fb:d0:cb:0e:0e:e1:ca:e0:0c: cf:24:51:81:9e:1f:5c:e3:0e:47:68:54:8c:d8:61: 64:ce:5d:6b:79:ff:d3:5d:86:1e:7c:38:53:f2:c9: e3:dd:9b:f2:99:89:49:a2:8a:cd:e2:31:f6:eb:d7: 4f:8e:f7:96:34:bc:54:03:fb:04:41:aa:08:78:8e: 4a:21:3e:2b:15:19:f8:bc:18:93:12:5a:9f:c0:92: 46:64:49:b7:8a:b8:28:aa:22:41:ad:5d:c2:cc:55: 71:c7:77:ba:2e:63:d8:fd:5c:bb:a7:b9:54:ca:10: be:8e:58:9c:40:0c:90:be:99:e9:6d:9e:4f:f7:3a: c9:5e:6f:bf:b0:d8:8a:6d:eb:68:4c:ef:73:93:96: 35:40:83:64:2f:24:fa:a0:65:32:85:6a:e5:f4:a3: 45:21:aa:cc:b2:d4:3e:42:fd:db:cc:7e:b9:41:88: 95:ef:53:e2:28:f6:49:82:0b:d4:c9:3c:ce:d9:a9: 76:35:44:41:3e:c3:b4:f4:4b:38:15:4e:89:f6:0f: 87:5d:0f:a7:74:ff:1b:2b:eb:3b:12:98:b4:17:5d: 8a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:90:E0:04:DD:2E:AF:49:B4:92:EC:A5:46:32:84:32:B6:5F:AB:2B X509v3 Authority Key Identifier: keyid:29:41:C7:16:1E:D4:A2:E0:9B:B9:1C:AB:C4:43:C8:CC:BC:03:2E:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:9d:1a:97:b0:b3:7a:e5:87:00:ce:89:61:66:19:c7:59:cd: 71:09:4c:56:66:26:e8:bd:cf:f7:8c:e2:46:7a:05:1f:06:2a: 68:e3:da:35:b9:74:10:43:33:93:77:8e:ac:95:4e:45:68:fe: ab:72:8e:a0:a4:df:00:53:50:eb:ae:0d:60:a4:4f:05:f0:61: 11:41:fe:c3:33:c4:eb:f0:03:df:b0:b7:ae:d3:f0:fa:c3:4a: fb:93:05:dc:67:f5:d6:2d:da:d1:e7:4d:ef:47:a9:3e:be:cf: 05:b2:9e:21:6d:4a:17:73:e0:0f:de:de:4e:3d:98:c7:f3:d0: 46:76:ad:76:11:cb:5f:db:2a:44:42:1b:3e:50:96:47:b2:5d: 02:89:6b:ca:c0:08:98:ec:d3:5a:0b:2a:ec:a3:9f:e4:11:fc: b9:8b:39:e4:49:4a:ca:7d:67:9d:a7:4a:b8:c4:83:93:13:75: 50:dd:d0:1c:60:47:e5:6a:38:0e:f7:e5:4f:66:8b:b1:f2:8c: 77:cb:09:c1:b6:4c:b0:e7:0a:98:82:aa:07:06:95:08:39:dc: ce:03:3d:25:75:d7:a6:f2:c3:60:b1:8f:fa:e9:8f:57:06:eb: cd:ea:ef:f7:40:20:bb:9e:02:9d:2f:36:5b:97:93:a0:2b:1c: 12:35:99:78 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNTQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVFQTkxMTAvBgNVBAUTKDI5NDFDNzE2MUVENEEyRTA5QkI5MUNBQkM0NDNDOEND QkMwMzJFRDgwHhcNMjYwNDA0MTQ1MTA1WhcNMjYwNDExMTQ1MTA1WjAYMRYwFAYD VQQDEw02OWQxMjU1OS1jMDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkfOh8znszlz871HuatRLbcJxj21sUoPDGcrNpcKCAaJHyN370MsODuHK4AzP JFGBnh9c4w5HaFSM2GFkzl1ref/TXYYefDhT8snj3ZvymYlJoorN4jH269dPjveW NLxUA/sEQaoIeI5KIT4rFRn4vBiTElqfwJJGZEm3irgoqiJBrV3CzFVxx3e6LmPY /Vy7p7lUyhC+jlicQAyQvpnpbZ5P9zrJXm+/sNiKbetoTO9zk5Y1QINkLyT6oGUy hWrl9KNFIarMstQ+Qv3bzH65QYiV71PiKPZJggvUyTzO2al2NURBPsO09Es4FU6J 9g+HXQ+ndP8bK+s7Epi0F12KcwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF+Q4ATd Lq9JtJLspUYyhDK2X6srMB8GA1UdIwQYMBaAFClBxxYe1KLgm7kcq8RDyMy8Ay7Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUVBOS9DRUQwQTlFNjFE OTcxMUUyQkYzRTgxODEwOEIwMkNEMi9LVUhIRmg3VW91Q2J1UnlyeEVQSXpMd0RM dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tVSEhGaDdVb3VDYnVSeXJ4RVBJekx3REx0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUVBOS9DRUQwQTlFNjFEOTcxMUUyQkYzRTgxODEwOEIwMkNEMi9LVUhIRmg3VW91 Q2J1UnlyeEVQSXpMd0RMdGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAl50al7CzeuWHAM6JYWYZx1nNcQlMVmYm6L3P94ziRnoFHwYqaOPaNbl0EEMz k3eOrJVORWj+q3KOoKTfAFNQ664NYKRPBfBhEUH+wzPE6/AD37C3rtPw+sNK+5MF 3Gf11i3a0edN70epPr7PBbKeIW1KF3PgD97eTj2Yx/PQRnatdhHLX9sqREIbPlCW R7JdAolrysAImOzTWgsq7KOf5BH8uYs55ElKyn1nnadKuMSDkxN1UN3QHGBH5Wo4 DvflT2aLsfKMd8sJwbZMsOcKmIKqBwaVCDnczgM9JXXXpvLDYLGP+umPVwbrzerv 90Agu54CnS82W5eToCscEjWZeA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:51:35 2026 by rpki-client