$ rpki-client -vvf rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.mft File: uEHIC-gYxhquhBeUDKPmnMFB348.mft (raw, json) Hash identifier: 8+JcvSjUM9+bQb5jmM1zHbI3YDb3ZxNu6Pt19jQlZ8c= Subject key identifier: 6D:60:D5:73:94:BC:B9:BE:BB:01:90:E8:9D:8B:78:9A:3B:7E:7F:3B Authority key identifier: B8:41:C8:0B:E8:18:C6:1A:AE:84:17:94:0C:A3:E6:9C:C1:41:DF:8F Certificate issuer: /CN=A91859A3/serialNumber=B841C80BE818C61AAE8417940CA3E69CC141DF8F Certificate serial: 102B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uEHIC-gYxhquhBeUDKPmnMFB348.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.mft Manifest number: 1019 Signing time: Tue 24 Mar 2026 17:19:14 +0000 Manifest this update: Tue 24 Mar 2026 17:19:13 +0000 Manifest next update: Tue 31 Mar 2026 17:19:13 +0000 Files and hashes: 1: uEHIC-gYxhquhBeUDKPmnMFB348.crl (hash: kDUFqP1GwaAmSE7Ybsf6IpQo7nYTnPRMi279vM0+ZCo=) 2: FB45F610638211E9A58B4C45C4F9AE02.roa (hash: DdJ/Gda5cLDZgecTbgPAmh+If4SrjgCwjMQ/0F6ywFk=) 3: 65EADA381A8011ECAD1E4B30C4F9AE02.roa (hash: Btv6VMAjhz/7gHDz8tz5vzOXf88yboA619m83tithOo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.crl rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uEHIC-gYxhquhBeUDKPmnMFB348.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:19:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4139 (0x102b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91859A3, serialNumber=B841C80BE818C61AAE8417940CA3E69CC141DF8F Validity Not Before: Mar 24 17:19:13 2026 GMT Not After : Mar 31 17:19:13 2026 GMT Subject: CN=69c2c792-9ca0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9d:8c:8d:fd:c2:4c:a4:91:c3:00:37:5e:05: 28:52:86:1b:a8:78:74:cf:eb:f8:9a:a2:97:22:7c: a8:88:c0:3c:03:ed:7d:b4:31:a7:0c:a5:bd:a2:a0: bd:b7:df:e5:90:f4:8a:55:a5:40:fd:0c:1e:ab:96: 0e:ad:e1:cc:08:71:cb:4f:e5:36:7a:4b:ee:23:50: d7:f4:c0:fc:3e:40:b0:72:85:cc:83:23:d0:74:26: b1:3c:54:c0:80:bf:b0:70:55:e8:25:0a:91:e5:c8: 2d:68:94:aa:32:5a:7d:e5:64:1c:c6:9d:7f:f7:78: cd:07:46:26:63:7c:64:ac:40:55:ac:dd:19:4c:90: 61:cf:49:24:aa:53:23:4c:a5:0b:7f:b9:2e:41:c9: ea:a1:0c:b8:1c:4e:70:76:d4:e3:15:a5:14:7a:00: f3:48:96:4a:16:40:65:1c:46:fe:b6:ad:d0:7e:58: c8:a6:2e:f4:ee:90:ff:10:e0:a9:63:6f:ea:21:3e: b5:5d:af:9c:74:4f:41:bb:4f:0c:9f:c9:5e:02:2c: 32:45:4c:55:32:28:3e:84:d2:4c:a9:44:ab:ea:1d: 8b:d4:d3:3d:da:e1:72:0b:d5:7b:b3:b6:90:90:4e: 30:34:67:23:c3:1b:a5:4d:d2:dc:80:3c:ad:55:94: 42:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:60:D5:73:94:BC:B9:BE:BB:01:90:E8:9D:8B:78:9A:3B:7E:7F:3B X509v3 Authority Key Identifier: keyid:B8:41:C8:0B:E8:18:C6:1A:AE:84:17:94:0C:A3:E6:9C:C1:41:DF:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uEHIC-gYxhquhBeUDKPmnMFB348.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:3e:d7:0d:ac:39:a1:38:d4:b9:55:13:a8:1a:bf:6b:ed:80: f7:db:53:ef:ca:f8:a3:07:1c:5c:1e:8a:90:0d:30:82:33:15: 69:e8:91:cc:3f:9d:c8:49:f6:10:c0:e1:1c:72:b1:e6:58:14: 6f:75:51:ee:0f:2f:7e:d9:96:e9:bc:af:45:dc:a6:af:96:11: 34:23:14:b4:ad:86:1b:df:2e:01:cf:05:6d:f3:2c:e2:03:9f: fd:4f:3f:d4:c9:48:36:7f:23:3a:17:34:c5:c0:40:97:80:df: d6:fb:97:18:92:01:aa:81:4d:27:30:b1:0c:78:88:c1:48:bd: 1a:d6:6d:e1:99:3b:47:70:eb:5f:93:54:fb:ad:e5:e5:32:36: 8a:3d:e8:e7:4a:1d:23:b7:f4:50:07:76:9c:0a:67:9a:bc:3b: 09:f8:b3:e5:12:83:c2:3b:dc:29:08:77:1f:42:49:87:81:df: a3:c0:5b:df:fe:14:96:b5:0d:ac:1c:c8:7b:97:82:b2:32:43: c5:3e:d4:0b:ca:b2:52:10:a4:3c:10:89:48:ca:24:d1:56:eb: 0d:d2:43:37:cc:ae:d1:72:5f:ae:19:00:dc:de:29:a7:6b:b1: e5:04:40:ed:94:12:30:e0:68:8d:0e:44:a0:ea:cb:1d:97:b0: c3:b4:36:a3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICECswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU5QTMxMTAvBgNVBAUTKEI4NDFDODBCRTgxOEM2MUFBRTg0MTc5NDBDQTNFNjlD QzE0MURGOEYwHhcNMjYwMzI0MTcxOTEzWhcNMjYwMzMxMTcxOTEzWjAYMRYwFAYD VQQDEw02OWMyYzc5Mi05Y2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZ2Mjf3CTKSRwwA3XgUoUoYbqHh0z+v4mqKXInyoiMA8A+19tDGnDKW9oqC9 t9/lkPSKVaVA/Qweq5YOreHMCHHLT+U2ekvuI1DX9MD8PkCwcoXMgyPQdCaxPFTA gL+wcFXoJQqR5cgtaJSqMlp95WQcxp1/93jNB0YmY3xkrEBVrN0ZTJBhz0kkqlMj TKULf7kuQcnqoQy4HE5wdtTjFaUUegDzSJZKFkBlHEb+tq3QfljIpi707pD/EOCp Y2/qIT61Xa+cdE9Bu08Mn8leAiwyRUxVMig+hNJMqUSr6h2L1NM92uFyC9V7s7aQ kE4wNGcjwxulTdLcgDytVZRCYQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG1g1XOU vLm+uwGQ6J2LeJo7fn87MB8GA1UdIwQYMBaAFLhByAvoGMYaroQXlAyj5pzBQd+P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTlBMy83NjQzNUZFRTYz ODExMUU5OUE1MUE2NDJDNEY5QUUwMi91RUhJQy1nWXhocXVoQmVVREtQbW5NRkIz NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VFSElDLWdZeGhxdWhCZVVES1Btbk1GQjM0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTlBMy83NjQzNUZFRTYzODExMUU5OUE1MUE2NDJDNEY5QUUwMi91RUhJQy1nWXho cXVoQmVVREtQbW5NRkIzNDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXj7XDaw5oTjUuVUTqBq/a+2A99tT78r4owccXB6KkA0wgjMVaeiRzD+dyEn2 EMDhHHKx5lgUb3VR7g8vftmW6byvRdymr5YRNCMUtK2GG98uAc8FbfMs4gOf/U8/ 1MlINn8jOhc0xcBAl4Df1vuXGJIBqoFNJzCxDHiIwUi9GtZt4Zk7R3DrX5NU+63l 5TI2ij3o50odI7f0UAd2nApnmrw7Cfiz5RKDwjvcKQh3H0JJh4Hfo8Bb3/4UlrUN rBzIe5eCsjJDxT7UC8qyUhCkPBCJSMok0VbrDdJDN8yu0XJfrhkA3N4pp2ux5QRA 7ZQSMOBojQ5EoOrLHZeww7Q2ow== -----END CERTIFICATE-----Generated at Thu Mar 26 06:21:06 2026 by rpki-client