$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft File: umn8tA4zSXV_ok-OM1eRxfAEXVg.mft (raw, json) Hash identifier: 1r6Y9SeDipKrhOWbcfZHdIMUHk47vu67vtDbm9jCJsI= Subject key identifier: AA:A1:42:E2:87:58:3E:71:67:EA:30:69:21:BE:25:C6:5C:76:FB:74 Authority key identifier: BA:69:FC:B4:0E:33:49:75:7F:A2:4F:8E:33:57:91:C5:F0:04:5D:58 Certificate issuer: /CN=A91EBA81/serialNumber=BA69FCB40E3349757FA24F8E335791C5F0045D58 Certificate serial: 04B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft Manifest number: 04AC Signing time: Thu 26 Mar 2026 23:45:23 +0000 Manifest this update: Thu 26 Mar 2026 23:45:22 +0000 Manifest next update: Thu 02 Apr 2026 23:45:22 +0000 Files and hashes: 1: umn8tA4zSXV_ok-OM1eRxfAEXVg.crl (hash: wNvRAWRFCgB/Ltekx7DySuFPYBfQPrRmTrwm/J758Q0=) 2: 159DA092E9B711EFB8454123C4F9AE02.roa (hash: 7ShatlVB6jSiCRe5XmNvlt4TSEhHSPt1cgEmAve1hIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.crl rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 23:45:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1209 (0x4b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA81, serialNumber=BA69FCB40E3349757FA24F8E335791C5F0045D58 Validity Not Before: Mar 26 23:45:22 2026 GMT Not After : Apr 2 23:45:22 2026 GMT Subject: CN=69c5c512-dee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:28:64:98:9a:c8:65:83:e5:d0:e7:d5:1d:3b: 48:b8:a6:c9:19:a9:9a:41:54:f3:4a:c8:27:41:b3: 93:fb:e7:0d:31:f0:a4:2c:52:cd:c7:17:48:a7:43: eb:13:3c:1f:a3:88:08:4a:12:22:1b:4e:46:68:8c: 01:83:09:9a:7a:53:bd:19:95:7d:8f:c2:18:3a:e1: c3:da:5d:ae:68:48:4c:ae:42:e9:8a:8e:e7:9e:62: 13:b9:cc:99:ca:06:7b:52:66:98:73:40:98:91:7a: fc:b3:49:a5:c3:76:b7:13:57:46:2b:0c:c3:55:a4: 4d:2e:6d:04:8a:f5:40:d2:3c:52:7c:f7:c1:f8:0f: 67:ac:9d:f0:3f:37:4b:4b:3d:16:36:f7:a9:47:38: 3f:8c:53:39:00:ed:f2:51:ad:81:f9:6c:e3:44:b7: ac:ef:2d:0b:c4:48:89:90:71:a2:2a:f1:66:b1:fc: 12:86:50:10:6f:f4:f7:3e:b3:96:86:f1:7a:86:57: eb:7c:dc:64:10:42:a5:1a:97:68:cc:f6:7f:4a:27: a2:c3:d7:89:ae:b3:ad:fa:ff:d1:8d:1c:d6:f7:7d: 78:c7:de:17:f8:49:1f:bd:e2:90:10:4d:07:cf:79: 48:3d:15:aa:56:92:d6:16:73:c6:42:8c:e0:f0:53: 24:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A1:42:E2:87:58:3E:71:67:EA:30:69:21:BE:25:C6:5C:76:FB:74 X509v3 Authority Key Identifier: keyid:BA:69:FC:B4:0E:33:49:75:7F:A2:4F:8E:33:57:91:C5:F0:04:5D:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:8b:cd:be:f9:4e:8b:af:92:6f:a5:18:5a:39:48:e5:6e:5e: 89:dd:53:c3:c6:bc:0f:c7:5c:2e:c6:a9:f2:4e:be:c3:68:2c: e0:ee:c7:03:94:32:91:df:0b:8a:c3:58:b6:45:6f:a0:08:b1: fb:3b:9b:3c:64:a8:e3:6c:50:c7:34:ce:7b:d6:92:a0:fa:3f: e8:26:14:c8:8a:9c:70:59:ce:30:9a:e5:e3:d2:be:c2:fb:43: a8:bb:0a:12:c2:76:af:4b:86:d8:59:e4:90:d8:17:40:af:46: 10:e6:7c:fc:cf:23:8c:f7:9c:60:b7:4d:c2:d9:d6:02:a7:70: bf:7b:c3:6f:89:65:92:c1:70:39:1a:30:c1:23:e3:f1:6e:f6: 47:7c:01:bc:87:e2:d4:ca:2a:09:2e:94:c7:13:8a:d0:ff:70: af:1f:ab:c8:bb:66:4d:83:39:c4:c9:a4:13:38:fc:10:89:e3: 8b:03:6e:a3:69:b8:d3:9d:9f:0f:80:c0:de:8c:3b:87:50:8c: 15:c3:90:aa:a0:13:e3:52:02:64:fb:f0:6c:31:f2:b2:df:90: 3e:77:a8:40:6d:bd:7b:d2:f9:89:27:a9:9c:22:c9:d3:ae:d8: 63:8b:11:ff:70:97:7e:b8:33:c8:49:07:eb:34:3d:22:dd:52: 45:63:96:0f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBODExMTAvBgNVBAUTKEJBNjlGQ0I0MEUzMzQ5NzU3RkEyNEY4RTMzNTc5MUM1 RjAwNDVENTgwHhcNMjYwMzI2MjM0NTIyWhcNMjYwNDAyMjM0NTIyWjAYMRYwFAYD VQQDEw02OWM1YzUxMi1kZWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjihkmJrIZYPl0OfVHTtIuKbJGamaQVTzSsgnQbOT++cNMfCkLFLNxxdIp0Pr Ezwfo4gIShIiG05GaIwBgwmaelO9GZV9j8IYOuHD2l2uaEhMrkLpio7nnmITucyZ ygZ7UmaYc0CYkXr8s0mlw3a3E1dGKwzDVaRNLm0EivVA0jxSfPfB+A9nrJ3wPzdL Sz0WNvepRzg/jFM5AO3yUa2B+WzjRLes7y0LxEiJkHGiKvFmsfwShlAQb/T3PrOW hvF6hlfrfNxkEEKlGpdozPZ/Sieiw9eJrrOt+v/RjRzW9314x94X+EkfveKQEE0H z3lIPRWqVpLWFnPGQozg8FMkhQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKqhQuKH WD5xZ+owaSG+JcZcdvt0MB8GA1UdIwQYMBaAFLpp/LQOM0l1f6JPjjNXkcXwBF1Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkE4MS9DRTEzNkJEMDc0 NTcxMUVDQjM5ODc1MThDNEY5QUUwMi91bW44dEE0elNYVl9vay1PTTFlUnhmQUVY VmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vtbjh0QTR6U1hWX29rLU9NMWVSeGZBRVhWZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkE4MS9DRTEzNkJEMDc0NTcxMUVDQjM5ODc1MThDNEY5QUUwMi91bW44dEE0elNY Vl9vay1PTTFlUnhmQUVYVmcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMovNvvlOi6+Sb6UYWjlI5W5eid1Tw8a8D8dcLsap8k6+w2gs4O7HA5Qykd8L isNYtkVvoAix+zubPGSo42xQxzTOe9aSoPo/6CYUyIqccFnOMJrl49K+wvtDqLsK EsJ2r0uG2FnkkNgXQK9GEOZ8/M8jjPecYLdNwtnWAqdwv3vDb4llksFwORowwSPj 8W72R3wBvIfi1MoqCS6UxxOK0P9wrx+ryLtmTYM5xMmkEzj8EInjiwNuo2m4052f D4DA3ow7h1CMFcOQqqAT41ICZPvwbDHyst+QPneoQG29e9L5iSepnCLJ067YY4sR /3CXfrgzyEkH6zQ9It1SRWOWDw== -----END CERTIFICATE-----Generated at Fri Mar 27 04:13:47 2026 by rpki-client