$ rpki-client -vvf rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft File: UqHEINgnwWzqoEKD3Si2QKMVY00.mft (raw, json) Hash identifier: yKug9vrhDzrw6sxcxB047gsZ8UboRGcp8n9JCVje0ak= Subject key identifier: 4E:C2:09:1F:1B:0A:65:0E:3B:01:01:29:2A:22:7D:76:C2:4F:F0:18 Authority key identifier: 52:A1:C4:20:D8:27:C1:6C:EA:A0:42:83:DD:28:B6:40:A3:15:63:4D Certificate issuer: /CN=A91B13FE/serialNumber=52A1C420D827C16CEAA04283DD28B640A315634D Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft Manifest number: 99 Signing time: Wed 25 Mar 2026 06:45:50 +0000 Manifest this update: Wed 25 Mar 2026 06:45:50 +0000 Manifest next update: Wed 01 Apr 2026 06:45:50 +0000 Files and hashes: 1: UqHEINgnwWzqoEKD3Si2QKMVY00.crl (hash: nLMJsBI5klQmSl5Yb8MHlQadnyghqJAEjpR6dwJbmDE=) 2: E5E9F8B8D0F711F0ACA5A85AC4F9AE02.roa (hash: 2A+skZNc+t58OX570Zwo1EzMJmLkr10Krf1yFSd9VZs=) 3: C577E392D0F711F0BC02385AC4F9AE02.roa (hash: CTMuUuvm60iZOQvAcnHXAUj2ZzggetCmxOqsP+wF50w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.crl rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:45:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B13FE, serialNumber=52A1C420D827C16CEAA04283DD28B640A315634D Validity Not Before: Mar 25 06:45:50 2026 GMT Not After : Apr 1 06:45:50 2026 GMT Subject: CN=69c3849e-3a51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3b:7a:65:f5:01:51:d9:12:da:7d:86:ef:57: 8b:74:90:92:bf:47:1c:0c:8b:51:38:c7:0e:d3:71: f7:ee:fc:f6:ab:a6:35:6d:a1:4f:29:c8:02:cb:15: 5c:59:48:49:c7:3a:33:1c:b5:67:eb:5c:67:8e:b5: c3:5c:34:fb:5c:c2:ea:7f:80:c8:6c:0b:fe:3e:f9: 61:c3:e2:5f:c1:2d:71:b5:94:c3:82:1b:9f:b4:77: b2:b1:b6:bc:00:52:2d:db:e6:80:47:0a:fb:c0:b0: 1d:52:b3:ed:c6:2e:3d:0c:da:7a:30:5b:bf:ef:a7: 32:af:2f:b9:54:b1:8b:cf:fe:91:08:5f:a0:88:4c: a0:b0:d8:5d:da:55:66:e5:23:68:2c:9a:b8:96:1c: 6e:cb:c4:67:86:a8:f5:4f:af:b0:52:b5:47:41:77: 1c:c2:9f:a2:9d:f5:9f:01:ae:9a:0e:84:66:01:31: 05:6a:e6:48:08:8b:61:4a:a8:d2:34:e3:d5:08:af: 54:83:b8:59:46:f8:dc:5c:88:b7:81:75:47:49:d7: b3:03:61:b0:f5:e2:53:cc:74:87:52:dc:9a:10:7f: e5:4f:60:57:6d:c3:77:ec:4a:bd:4b:b0:e1:5e:ab: fc:ac:14:e0:28:21:85:7a:77:9b:ce:3f:75:a1:c4: 62:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:C2:09:1F:1B:0A:65:0E:3B:01:01:29:2A:22:7D:76:C2:4F:F0:18 X509v3 Authority Key Identifier: keyid:52:A1:C4:20:D8:27:C1:6C:EA:A0:42:83:DD:28:B6:40:A3:15:63:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:f7:1e:17:db:3d:8e:4a:cd:bd:83:3e:ae:a3:ab:75:57:34: 0e:43:c5:43:19:9b:8f:5d:81:5e:68:76:9f:53:87:6c:3b:50: 2d:17:a3:f7:c3:a9:37:68:ae:3f:48:3e:5d:8b:00:22:05:75: 73:fe:90:1d:3b:86:3f:f4:85:43:a5:07:0a:7d:f6:32:28:38: 1e:2d:a8:17:b7:6b:a8:5e:f0:4f:0e:a8:91:6e:00:0f:9f:16: ae:88:2e:1d:fb:fa:b4:84:99:fa:f7:8c:64:43:0a:7f:64:3d: 43:17:84:11:42:5f:e8:56:98:50:19:af:1f:fe:a2:15:8a:17: 3a:d9:29:1c:75:fe:d5:0e:68:78:08:dc:59:c8:81:3f:68:ab: b7:bf:ea:1e:90:24:26:da:07:bc:36:1d:76:9e:2f:5e:f8:10: b0:67:09:2f:69:b0:39:45:7d:15:69:08:05:92:f8:a8:13:ab: de:4b:45:58:a9:32:f1:02:cd:6c:38:6b:ee:53:d3:6f:b5:b0: 9e:78:ef:c5:ee:f3:82:ae:3d:48:fe:aa:f3:2e:6b:5f:d7:65: 78:07:02:c4:a8:37:4c:6f:c4:ed:07:3e:72:96:b4:53:33:46: 25:f4:72:f8:0d:a5:4f:3d:ec:54:16:a3:67:38:26:c6:01:1d: 1d:be:dc:4b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEzRkUxMTAvBgNVBAUTKDUyQTFDNDIwRDgyN0MxNkNFQUEwNDI4M0REMjhCNjQw QTMxNTYzNEQwHhcNMjYwMzI1MDY0NTUwWhcNMjYwNDAxMDY0NTUwWjAYMRYwFAYD VQQDEw02OWMzODQ5ZS0zYTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDt6ZfUBUdkS2n2G71eLdJCSv0ccDItROMcO03H37vz2q6Y1baFPKcgCyxVc WUhJxzozHLVn61xnjrXDXDT7XMLqf4DIbAv+Pvlhw+JfwS1xtZTDghuftHeysba8 AFIt2+aARwr7wLAdUrPtxi49DNp6MFu/76cyry+5VLGLz/6RCF+giEygsNhd2lVm 5SNoLJq4lhxuy8Rnhqj1T6+wUrVHQXccwp+infWfAa6aDoRmATEFauZICIthSqjS NOPVCK9Ug7hZRvjcXIi3gXVHSdezA2Gw9eJTzHSHUtyaEH/lT2BXbcN37Eq9S7Dh Xqv8rBTgKCGFenebzj91ocRiwwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE7CCR8b CmUOOwEBKSoifXbCT/AYMB8GA1UdIwQYMBaAFFKhxCDYJ8Fs6qBCg90otkCjFWNN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTNGRS84RDhFMjJDMjU2 NDMxMUYwQjE2MjdBMTVDNEY5QUUwMi9VcUhFSU5nbndXenFvRUtEM1NpMlFLTVZZ MDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VxSEVJTmdud1d6cW9FS0QzU2kyUUtNVlkwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTNGRS84RDhFMjJDMjU2NDMxMUYwQjE2MjdBMTVDNEY5QUUwMi9VcUhFSU5nbndX enFvRUtEM1NpMlFLTVZZMDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAi/ceF9s9jkrNvYM+rqOrdVc0DkPFQxmbj12BXmh2n1OHbDtQLRej98OpN2iu P0g+XYsAIgV1c/6QHTuGP/SFQ6UHCn32Mig4Hi2oF7drqF7wTw6okW4AD58Wrogu Hfv6tISZ+veMZEMKf2Q9QxeEEUJf6FaYUBmvH/6iFYoXOtkpHHX+1Q5oeAjcWciB P2irt7/qHpAkJtoHvDYddp4vXvgQsGcJL2mwOUV9FWkIBZL4qBOr3ktFWKky8QLN bDhr7lPTb7Wwnnjvxe7zgq49SP6q8y5rX9dleAcCxKg3TG/E7Qc+cpa0UzNGJfRy +A2lTz3sVBajZzgmxgEdHb7cSw== -----END CERTIFICATE-----Generated at Thu Mar 26 22:37:40 2026 by rpki-client