$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft File: UoKkZCr301eZKRu6RH6hQlGk1fw.mft (raw, json) Hash identifier: lOYtLK47r3cTcU/A2LZXYBuQMZzZCeDJIWGUuYeP1jY= Subject key identifier: 69:D4:3A:CE:E7:76:AD:CD:39:5A:F2:89:0F:DC:9E:5B:C3:D4:B3:91 Authority key identifier: 52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC Certificate issuer: /CN=A91582D9/serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Certificate serial: 0905 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft Manifest number: 20FB Signing time: Tue 12 May 2026 16:31:34 +0000 Manifest this update: Tue 12 May 2026 16:31:33 +0000 Manifest next update: Tue 19 May 2026 16:31:33 +0000 Files and hashes: 1: UoKkZCr301eZKRu6RH6hQlGk1fw.crl (hash: 8AQR7fS6n7h3uTThz0SRSdJHTlAOaTAqFZaZSSi5FF8=) 2: 172C2B96197711F0A993397AC4F9AE02.roa (hash: KlRLli/SZyA/blQSDVf22qf7tBm9EE3kAalEgJQxMlA=) 3: B5E806CC8BC711EE899A5284C4F9AE02.roa (hash: sQmmHynRplLfSEUYnUX91utp9ekEe+hXIjAXfGLYEZ0=) 4: 654665EA197611F09D2B1C76C4F9AE02.roa (hash: EKk887jvD91sa5mqsDwh0zo559XyowQgVll88eOizFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 16:31:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2309 (0x905) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9, serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Validity Not Before: May 12 16:31:33 2026 GMT Not After : May 19 16:31:33 2026 GMT Subject: CN=6a0355e5-24aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f0:64:96:19:1f:a6:04:42:ac:b2:47:cd:8c: c3:6f:96:d1:86:a7:dd:3c:43:b8:11:79:9a:1b:16: 58:5c:c9:3a:6d:e2:1e:e7:e9:04:56:77:99:91:d3: c3:0e:03:2f:1c:8b:17:0d:c9:10:9a:1d:7f:6b:77: 09:16:ef:83:e5:a3:47:d8:4e:01:00:10:4b:ef:19: c2:6a:68:1f:d6:f9:9c:d0:ae:59:c5:4e:7e:14:e3: 02:c6:88:a6:83:ac:3d:cf:d4:3d:d6:20:42:6a:5d: 9b:da:60:d0:7a:8d:eb:4a:85:6b:5d:2f:ed:e5:1e: 97:0f:7e:ce:f9:50:e7:53:24:a0:53:45:cb:41:0e: 42:76:00:28:f2:43:6a:43:20:3f:34:26:dd:c7:a6: a2:08:fa:00:11:c6:67:3c:2d:ef:1b:90:a2:7b:bc: df:a2:ae:a1:aa:35:fb:d4:87:e4:b1:46:65:99:ca: e7:91:6f:c1:3b:9d:26:4a:4a:6c:46:c1:79:0b:23: 60:d3:41:be:cd:56:98:6b:ac:a1:6d:f1:a9:12:41: 88:59:4b:0b:d0:6f:79:da:71:80:d3:38:dc:6a:f7: 34:3e:9e:b9:ff:34:48:ad:42:00:11:19:bd:89:23: fd:17:4f:58:d3:88:b7:50:63:63:eb:7c:1d:42:87: 04:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:D4:3A:CE:E7:76:AD:CD:39:5A:F2:89:0F:DC:9E:5B:C3:D4:B3:91 X509v3 Authority Key Identifier: keyid:52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:d0:91:f1:f9:d4:7c:5c:61:f1:58:6f:91:90:b2:94:01:74: b3:9d:35:5f:56:7d:98:c5:ff:1b:50:ca:d6:3c:a3:08:6b:5e: bd:69:59:a1:58:8b:5e:ac:fb:16:1f:9f:ed:ad:9b:6d:a0:ac: e7:62:a0:65:f9:0a:e0:10:59:fe:b7:dc:cc:b7:5a:07:f7:57: 5c:3d:a8:df:a3:b5:cc:4d:96:dd:d5:5e:ce:7c:97:95:58:20: e3:16:3d:97:c7:11:35:61:e9:9d:55:cd:c1:2c:5f:eb:ac:50: 6c:c5:f5:4f:3e:4e:4e:72:30:aa:8c:cf:09:40:e8:55:8d:2b: d1:80:f0:cf:ab:e3:b4:36:a3:76:8a:15:22:a3:58:2f:b7:ca: d0:bf:9c:07:bf:e8:cc:a0:df:48:03:20:57:02:54:b6:13:58: 43:e2:5e:c6:c9:9d:40:27:fc:e2:81:86:5d:2e:57:26:07:c5: c4:8b:04:4e:d9:71:1d:be:8e:a0:84:59:e0:72:de:3f:54:ec: 0a:de:2a:be:1b:59:cf:dc:47:37:af:7c:5c:fb:1b:de:95:eb: 39:a0:e1:55:36:76:f5:a4:70:2d:68:82:58:7c:34:b7:c8:e4: 14:4a:a3:9f:cf:b0:cb:93:2f:1c:ea:40:35:54:88:fe:39:03: 08:38:76:f6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDUyODJBNDY0MkFGN0QzNTc5OTI5MUJCQTQ0N0VBMTQy NTFBNEQ1RkMwHhcNMjYwNTEyMTYzMTMzWhcNMjYwNTE5MTYzMTMzWjAYMRYwFAYD VQQDEw02YTAzNTVlNS0yNGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fBklhkfpgRCrLJHzYzDb5bRhqfdPEO4EXmaGxZYXMk6beIe5+kEVneZkdPD DgMvHIsXDckQmh1/a3cJFu+D5aNH2E4BABBL7xnCamgf1vmc0K5ZxU5+FOMCxoim g6w9z9Q91iBCal2b2mDQeo3rSoVrXS/t5R6XD37O+VDnUySgU0XLQQ5CdgAo8kNq QyA/NCbdx6aiCPoAEcZnPC3vG5Cie7zfoq6hqjX71IfksUZlmcrnkW/BO50mSkps RsF5CyNg00G+zVaYa6yhbfGpEkGIWUsL0G952nGA0zjcavc0Pp65/zRIrUIAERm9 iSP9F09Y04i3UGNj63wdQocEoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGnUOs7n dq3NOVryiQ/cnlvD1LORMB8GA1UdIwQYMBaAFFKCpGQq99NXmSkbukR+oUJRpNX8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAxZVpLUnU2Ukg2aFFsR2sx ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvS2taQ3IzMDFlWktSdTZSSDZoUWxHazFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODJEOS8wRURBNkQ1RUNEREExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAx ZVpLUnU2Ukg2aFFsR2sxZncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArtCR8fnUfFxh8VhvkZCylAF0s501X1Z9mMX/G1DK1jyjCGtevWlZoViLXqz7 Fh+f7a2bbaCs52KgZfkK4BBZ/rfczLdaB/dXXD2o36O1zE2W3dVeznyXlVgg4xY9 l8cRNWHpnVXNwSxf66xQbMX1Tz5OTnIwqozPCUDoVY0r0YDwz6vjtDajdooVIqNY L7fK0L+cB7/ozKDfSAMgVwJUthNYQ+JexsmdQCf84oGGXS5XJgfFxIsETtlxHb6O oIRZ4HLeP1TsCt4qvhtZz9xHN698XPsb3pXrOaDhVTZ29aRwLWiCWHw0t8jkFEqj n8+wy5MvHOpANVSI/jkDCDh29g== -----END CERTIFICATE-----Generated at Wed May 13 16:27:51 2026 by rpki-client