$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft File: KUHHFh7UouCbuRyrxEPIzLwDLtg.mft (raw, json) Hash identifier: Nv1l8nJpRxVb8I2BgOPFrn8kfcvL+7WjLXz9a83UUAw= Subject key identifier: C3:CF:A5:F4:9B:56:7E:A5:96:40:27:63:73:22:C6:B3:01:6F:59:D8 Authority key identifier: 29:41:C7:16:1E:D4:A2:E0:9B:B9:1C:AB:C4:43:C8:CC:BC:03:2E:D8 Certificate issuer: /CN=A91FEEA9/serialNumber=2941C7161ED4A2E09BB91CABC443C8CCBC032ED8 Certificate serial: 354E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft Manifest number: 3545 Signing time: Wed 20 May 2026 14:52:49 +0000 Manifest this update: Wed 20 May 2026 14:52:49 +0000 Manifest next update: Wed 27 May 2026 14:52:49 +0000 Files and hashes: 1: KUHHFh7UouCbuRyrxEPIzLwDLtg.crl (hash: nDvx91stWWECgEZwfwbRTV/UQ1gipNORMtXH/A2mucg=) 2: 796A04A6BA1A11F08C920A83C4F9AE02.roa (hash: obYL84rEidQqf3PGOj0TCR0aB0CKEWuDcGzuDXBidKY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.crl rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 14:52:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13646 (0x354e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEEA9, serialNumber=2941C7161ED4A2E09BB91CABC443C8CCBC032ED8 Validity Not Before: May 20 14:52:49 2026 GMT Not After : May 27 14:52:49 2026 GMT Subject: CN=6a0dcac1-f685 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2a:0b:52:84:83:0c:f7:5a:96:46:39:4a:e4: bb:49:1f:a7:f1:06:c3:0f:6a:22:4e:3d:6a:e0:7d: 3c:27:c5:77:f5:c5:56:df:5a:c3:a1:72:c4:89:7e: 2d:dd:67:7b:cb:76:94:c2:df:21:0a:1b:63:a8:49: 37:fa:f4:96:96:cf:61:51:4c:1d:7c:96:ac:2f:7f: 63:5b:05:2b:38:50:67:ac:03:24:71:c2:ae:0b:86: b2:d9:b2:9d:ac:26:96:27:5d:75:94:c1:2a:01:65: 06:e2:b8:e8:60:59:9d:92:a5:10:5a:3f:44:b7:40: 17:d9:38:03:72:63:64:59:c3:7b:4a:4b:84:3f:ac: 5f:ef:9f:c7:28:f4:d5:03:ac:d4:d1:a8:e4:bc:ec: 78:89:fd:9f:96:34:8e:81:a1:d0:2c:7a:25:6e:db: 7e:16:f6:e8:41:77:81:ed:3b:c6:ab:e4:7d:04:bf: f4:80:84:10:64:6c:ae:54:0d:70:ef:06:7b:ec:b8: 0d:4c:f6:21:47:aa:d3:f2:b3:a4:a5:06:27:db:54: e6:a5:52:2c:f9:d9:bd:cc:bf:ef:7d:53:f3:80:d6: 42:66:f9:63:81:ad:3b:b2:8a:58:de:c8:3d:12:36: cf:cf:68:45:67:20:31:3a:9d:7c:76:f8:ed:bb:0e: 2b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:CF:A5:F4:9B:56:7E:A5:96:40:27:63:73:22:C6:B3:01:6F:59:D8 X509v3 Authority Key Identifier: keyid:29:41:C7:16:1E:D4:A2:E0:9B:B9:1C:AB:C4:43:C8:CC:BC:03:2E:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:51:3c:4f:68:24:2b:ba:d1:05:8f:62:e1:78:18:31:e7:82: 48:ea:3c:5e:3d:cd:81:91:1c:c2:06:41:ac:09:d6:8e:84:a8: 24:47:62:e9:31:07:e0:00:25:bf:fe:d3:4b:7d:09:96:69:99: 6c:1b:be:86:cc:f6:99:1c:36:49:08:b0:b1:fc:c0:de:96:ec: 6c:f2:2d:f4:06:8b:69:05:57:6b:fc:12:24:8e:d6:77:17:d2: 64:b7:db:b4:21:16:6a:6b:7f:e3:40:da:a9:a5:be:a6:24:63: bb:81:0e:8e:c7:6b:2a:85:6f:b1:3d:7f:ae:f5:c2:81:47:ec: 69:d3:c8:3a:fc:9f:40:a7:0f:1f:38:f7:2a:4e:49:e0:05:c9: f7:7e:51:ff:4a:86:57:a1:fe:54:78:9a:c4:8f:91:3b:23:4b: e8:1c:e0:b0:20:23:36:84:d6:b6:8b:8a:a8:db:51:94:19:08: 22:56:da:73:79:b2:a6:4b:d1:b2:e2:74:69:76:12:08:b3:f2: 5d:98:13:b3:df:13:08:05:70:47:30:6e:c8:a3:00:cd:b0:9a: 55:b7:67:ad:0a:88:1b:0b:de:3c:4a:02:f7:8c:5e:c1:47:f9: 95:f3:0f:2d:56:76:07:06:3a:a4:a1:79:ac:7e:1a:40:bd:2e: 59:d6:19:e0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVFQTkxMTAvBgNVBAUTKDI5NDFDNzE2MUVENEEyRTA5QkI5MUNBQkM0NDNDOEND QkMwMzJFRDgwHhcNMjYwNTIwMTQ1MjQ5WhcNMjYwNTI3MTQ1MjQ5WjAYMRYwFAYD VQQDEw02YTBkY2FjMS1mNjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxyoLUoSDDPdalkY5SuS7SR+n8QbDD2oiTj1q4H08J8V39cVW31rDoXLEiX4t 3Wd7y3aUwt8hChtjqEk3+vSWls9hUUwdfJasL39jWwUrOFBnrAMkccKuC4ay2bKd rCaWJ111lMEqAWUG4rjoYFmdkqUQWj9Et0AX2TgDcmNkWcN7SkuEP6xf75/HKPTV A6zU0ajkvOx4if2fljSOgaHQLHolbtt+FvboQXeB7TvGq+R9BL/0gIQQZGyuVA1w 7wZ77LgNTPYhR6rT8rOkpQYn21TmpVIs+dm9zL/vfVPzgNZCZvljga07sopY3sg9 EjbPz2hFZyAxOp18dvjtuw4rnQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMPPpfSb Vn6llkAnY3MixrMBb1nYMB8GA1UdIwQYMBaAFClBxxYe1KLgm7kcq8RDyMy8Ay7Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUVBOS9DRUQwQTlFNjFE OTcxMUUyQkYzRTgxODEwOEIwMkNEMi9LVUhIRmg3VW91Q2J1UnlyeEVQSXpMd0RM dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tVSEhGaDdVb3VDYnVSeXJ4RVBJekx3REx0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUVBOS9DRUQwQTlFNjFEOTcxMUUyQkYzRTgxODEwOEIwMkNEMi9LVUhIRmg3VW91 Q2J1UnlyeEVQSXpMd0RMdGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgVE8T2gkK7rRBY9i4XgYMeeCSOo8Xj3NgZEcwgZBrAnWjoSoJEdi6TEH4AAl v/7TS30JlmmZbBu+hsz2mRw2SQiwsfzA3pbsbPIt9AaLaQVXa/wSJI7WdxfSZLfb tCEWamt/40DaqaW+piRju4EOjsdrKoVvsT1/rvXCgUfsadPIOvyfQKcPHzj3Kk5J 4AXJ935R/0qGV6H+VHiaxI+ROyNL6BzgsCAjNoTWtouKqNtRlBkIIlbac3mypkvR suJ0aXYSCLPyXZgTs98TCAVwRzBuyKMAzbCaVbdnrQqIGwvePEoC94xewUf5lfMP LVZ2BwY6pKF5rH4aQL0uWdYZ4A== -----END CERTIFICATE-----Generated at Thu May 21 14:14:19 2026 by rpki-client