$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft File: UMP9EvajMVgZtSurzBmPsNv9QTo.mft (raw, json) Hash identifier: czxD8xRoeuq1ZkPfmGXc0vpe+LUBJkNIWs/ruIFByUU= Subject key identifier: F7:FA:63:0D:F2:48:18:16:46:4F:EE:8A:F2:95:03:40:63:9E:8F:42 Authority key identifier: 50:C3:FD:12:F6:A3:31:58:19:B5:2B:AB:CC:19:8F:B0:DB:FD:41:3A Certificate issuer: /CN=A91CE616/serialNumber=50C3FD12F6A3315819B52BABCC198FB0DBFD413A Certificate serial: 0480 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft Manifest number: 0474 Signing time: Tue 24 Mar 2026 23:46:49 +0000 Manifest this update: Tue 24 Mar 2026 23:46:48 +0000 Manifest next update: Tue 31 Mar 2026 23:46:48 +0000 Files and hashes: 1: UMP9EvajMVgZtSurzBmPsNv9QTo.crl (hash: Nd6ixkkzVRrMhpKlI+AY9/iOqVO/Gy4ZhNlTIHh0qZc=) 2: 296C190484AD11EC9C3F837CC4F9AE02.roa (hash: lbtzXOv7fCZ9ldssOYWEkCJAJ4leYPGz3mQ8urYvDU8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.crl rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:46:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1152 (0x480) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE616, serialNumber=50C3FD12F6A3315819B52BABCC198FB0DBFD413A Validity Not Before: Mar 24 23:46:48 2026 GMT Not After : Mar 31 23:46:48 2026 GMT Subject: CN=69c32268-1928 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9d:ed:92:65:80:d0:cf:7a:fc:7d:cc:98:79: ca:41:b9:92:a8:48:94:6f:6f:d9:d2:0e:9d:9b:3e: dd:0b:9d:08:a8:70:fe:36:08:e2:85:f1:b5:9b:c9: 91:33:5d:2f:a8:41:b7:13:07:de:8f:28:df:10:97: 8f:db:7b:a1:9a:7c:f1:a2:8f:2e:4d:f0:4f:68:a4: 0b:a3:4b:50:b4:a7:e7:65:25:ee:71:36:8a:35:bc: ca:b6:df:0c:88:ca:b8:0c:a8:0a:bb:3f:ee:4c:f6: fd:9b:6b:30:94:d0:4a:91:c8:84:8b:57:eb:2c:c8: 68:4d:8d:95:ab:8e:b6:2b:b9:89:86:f1:65:c3:83: 7a:17:89:1f:bd:a4:8a:b6:80:59:a7:c2:4a:ad:92: c6:ca:ea:63:df:a3:53:81:69:43:fe:01:b9:ca:fd: 34:69:99:fc:fe:03:e0:f5:e0:07:d3:29:3a:84:76: 9b:85:b0:03:fb:48:c0:0c:c0:64:7f:7e:c1:78:18: 80:b2:86:8b:70:4a:b5:00:53:71:f9:f2:e3:9c:4b: df:e7:ad:29:a6:f8:80:65:4a:60:6c:ce:04:15:12: a1:5e:18:8e:b4:54:19:99:47:36:4b:2a:4f:2d:b4: d2:6d:0d:5f:17:95:95:ac:c2:ef:d0:f2:b4:a6:46: 42:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:FA:63:0D:F2:48:18:16:46:4F:EE:8A:F2:95:03:40:63:9E:8F:42 X509v3 Authority Key Identifier: keyid:50:C3:FD:12:F6:A3:31:58:19:B5:2B:AB:CC:19:8F:B0:DB:FD:41:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:ef:2f:ea:bb:23:6d:a6:37:c5:46:84:39:7d:15:33:bd:22: 88:78:f5:ac:76:fb:28:96:65:7e:54:71:3c:40:1c:9e:8c:ff: 12:20:25:5a:51:bb:f2:25:ce:d6:ef:d2:b3:a8:d2:94:00:6d: 9e:54:10:eb:78:cf:de:42:77:bf:c8:f3:e8:63:2c:98:f1:e1: 7e:c7:96:30:4f:ac:61:aa:fb:22:c1:43:71:a7:6c:2d:27:ae: a4:d2:77:06:28:91:1d:f5:54:e3:fe:62:88:45:15:8f:7e:af: 1e:f3:9a:5a:3f:27:6d:72:52:57:1d:72:0d:b3:b2:64:67:b0: 93:3c:30:eb:0f:08:19:4b:4a:2c:bb:de:e2:cc:cb:4d:d0:7c: 35:2c:b2:6f:68:54:e6:0f:6c:0b:5e:b7:5b:18:4b:d0:00:2b: 4c:80:04:56:f3:3f:1e:3a:81:57:2c:d9:a7:cd:b0:9c:b9:50: d1:1d:31:b6:f6:d5:4f:df:a7:aa:7b:98:3f:75:60:d6:02:23: 0c:9b:4f:4a:c1:1a:cb:87:e7:8c:41:78:9b:4b:46:60:f1:48: 46:ec:80:d6:4e:1a:65:4e:5c:a5:93:2a:78:65:2a:bc:dc:64: 7d:6c:bd:c8:f4:07:28:12:be:5f:57:8e:35:b3:7d:01:2e:e3: 91:94:c7:b4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2MTYxMTAvBgNVBAUTKDUwQzNGRDEyRjZBMzMxNTgxOUI1MkJBQkNDMTk4RkIw REJGRDQxM0EwHhcNMjYwMzI0MjM0NjQ4WhcNMjYwMzMxMjM0NjQ4WjAYMRYwFAYD VQQDEw02OWMzMjI2OC0xOTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx53tkmWA0M96/H3MmHnKQbmSqEiUb2/Z0g6dmz7dC50IqHD+NgjihfG1m8mR M10vqEG3EwfejyjfEJeP23uhmnzxoo8uTfBPaKQLo0tQtKfnZSXucTaKNbzKtt8M iMq4DKgKuz/uTPb9m2swlNBKkciEi1frLMhoTY2Vq462K7mJhvFlw4N6F4kfvaSK toBZp8JKrZLGyupj36NTgWlD/gG5yv00aZn8/gPg9eAH0yk6hHabhbAD+0jADMBk f37BeBiAsoaLcEq1AFNx+fLjnEvf560ppviAZUpgbM4EFRKhXhiOtFQZmUc2SypP LbTSbQ1fF5WVrMLv0PK0pkZCoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPf6Yw3y SBgWRk/uivKVA0Bjno9CMB8GA1UdIwQYMBaAFFDD/RL2ozFYGbUrq8wZj7Db/UE6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTYxNi9BN0U0MjkxNjg0 QTgxMUVDQjI1MDA4NzFDNEY5QUUwMi9VTVA5RXZhak1WZ1p0U3VyekJtUHNOdjlR VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VNUDlFdmFqTVZnWnRTdXJ6Qm1Qc052OVFUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTYxNi9BN0U0MjkxNjg0QTgxMUVDQjI1MDA4NzFDNEY5QUUwMi9VTVA5RXZhak1W Z1p0U3VyekJtUHNOdjlRVG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADe8v6rsjbaY3xUaEOX0VM70iiHj1rHb7KJZlflRxPEAcnoz/EiAlWlG78iXO 1u/Ss6jSlABtnlQQ63jP3kJ3v8jz6GMsmPHhfseWME+sYar7IsFDcadsLSeupNJ3 BiiRHfVU4/5iiEUVj36vHvOaWj8nbXJSVx1yDbOyZGewkzww6w8IGUtKLLve4szL TdB8NSyyb2hU5g9sC163WxhL0AArTIAEVvM/HjqBVyzZp82wnLlQ0R0xtvbVT9+n qnuYP3Vg1gIjDJtPSsEay4fnjEF4m0tGYPFIRuyA1k4aZU5cpZMqeGUqvNxkfWy9 yPQHKBK+X1eONbN9AS7jkZTHtA== -----END CERTIFICATE-----Generated at Thu Mar 26 00:52:00 2026 by rpki-client