$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft File: UgupTND7nnwUDfvAzFi5PPVMIvM.mft (raw, json) Hash identifier: KATS2+HkRoKRw84YVst3sIJhvu/OQUoyNsDusD3zR0s= Subject key identifier: 43:17:C6:97:63:30:7C:79:83:81:3B:5A:F5:AD:BE:1F:63:A4:AA:9F Authority key identifier: 52:0B:A9:4C:D0:FB:9E:7C:14:0D:FB:C0:CC:58:B9:3C:F5:4C:22:F3 Certificate issuer: /CN=A91F8981/serialNumber=520BA94CD0FB9E7C140DFBC0CC58B93CF54C22F3 Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft Manifest number: 013B Signing time: Mon 11 May 2026 05:29:14 +0000 Manifest this update: Mon 11 May 2026 05:29:14 +0000 Manifest next update: Mon 18 May 2026 05:29:14 +0000 Files and hashes: 1: UgupTND7nnwUDfvAzFi5PPVMIvM.crl (hash: XH11Mj2zssZGenOn22U81jFPfsmXFjkNb3YSjB6pyns=) 2: D79D112E6C7F11EF92105459C4F9AE02.roa (hash: no0SNYKpXHhN7AscUH3ZSqjYzZJUuDSOCn7JYbnOM8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.crl rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 05:29:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8981, serialNumber=520BA94CD0FB9E7C140DFBC0CC58B93CF54C22F3 Validity Not Before: May 11 05:29:14 2026 GMT Not After : May 18 05:29:14 2026 GMT Subject: CN=6a01692a-d5d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:15:1c:a2:18:25:5b:f3:d8:8c:cd:e4:63:7c: 73:fa:87:ae:bc:db:08:3a:d6:37:3b:fa:74:b6:c4: 94:81:ad:01:78:38:7a:ff:9d:86:03:d2:75:5a:a6: 2d:e7:be:dd:d4:65:15:8b:f9:22:70:d8:60:a7:99: 7f:ef:7a:4a:6a:ae:26:22:44:de:87:3d:df:82:9f: e8:13:ce:a5:00:c4:f1:32:a6:09:dc:d2:5f:f6:ff: f8:f6:64:c8:65:b7:5d:47:e0:85:a6:d6:98:2b:8c: 46:f4:9c:81:b3:a8:71:94:a2:f6:7d:c6:d2:26:9e: 1f:4f:b3:6b:63:22:49:1d:5b:0e:7e:7b:f6:93:14: ad:2b:eb:7a:fe:89:71:18:06:0e:42:1e:ec:39:cd: 72:06:98:bd:7f:c1:70:9d:32:a9:1d:53:e8:20:39: a8:c0:31:d4:18:f3:5e:c6:60:d8:cf:8b:41:35:f8: d7:e4:f5:b8:ce:3a:cd:a5:ab:23:b8:f1:2b:74:79: 06:39:a8:73:98:9f:2d:d3:c2:f3:35:f3:4d:6b:aa: bb:26:af:81:27:da:ea:c9:39:64:1b:50:d3:3c:11: 8e:ba:60:28:9e:d1:3f:1e:76:b2:28:04:04:7f:7c: b8:c0:7b:f2:90:b3:d1:06:80:cc:ac:a5:03:09:6d: ab:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:17:C6:97:63:30:7C:79:83:81:3B:5A:F5:AD:BE:1F:63:A4:AA:9F X509v3 Authority Key Identifier: keyid:52:0B:A9:4C:D0:FB:9E:7C:14:0D:FB:C0:CC:58:B9:3C:F5:4C:22:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:fd:9d:99:01:0a:32:5e:b2:87:1d:ae:73:6d:72:28:0e:c5: 87:9b:0c:cb:01:a8:10:90:bf:25:ae:17:e0:7a:76:44:20:20: ad:5a:08:47:d8:c6:f4:25:3f:41:a3:7d:33:34:e0:0c:ef:44: 14:ab:d3:d2:f2:9f:b2:16:41:39:6a:ad:81:bd:88:9a:64:13: ea:99:61:d0:4d:80:c1:30:d7:df:3c:b8:92:c9:22:07:4e:27: b4:b5:1b:08:8f:48:8d:fd:67:43:2e:ca:ad:fb:99:c1:59:94: dd:48:0c:23:25:d0:f2:ad:e3:ba:8a:5d:b4:a8:6a:ef:8a:e0: 2e:df:d6:37:ad:95:ca:a8:53:7b:35:3e:0b:0d:d6:a3:8c:b7: e2:66:c1:98:14:ca:18:8a:05:29:a2:ac:ef:0c:d0:40:91:72: 7c:49:1c:e0:82:04:8f:0b:12:7b:1c:c3:3f:af:06:b2:c0:15: bf:26:24:f0:c4:f4:99:49:a0:bc:86:5d:a8:45:be:ab:70:38: 76:bd:8f:f0:41:82:be:5c:49:34:3a:47:be:24:c8:a1:f0:65: 0a:5b:31:5d:21:38:c4:6a:84:ca:71:d1:19:60:56:ed:c7:44: 67:da:b7:a9:90:1d:30:de:fe:b4:64:f3:3e:78:b0:81:11:3c: d4:11:8e:19 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5ODExMTAvBgNVBAUTKDUyMEJBOTRDRDBGQjlFN0MxNDBERkJDMENDNThCOTND RjU0QzIyRjMwHhcNMjYwNTExMDUyOTE0WhcNMjYwNTE4MDUyOTE0WjAYMRYwFAYD VQQDEw02YTAxNjkyYS1kNWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApRUcohglW/PYjM3kY3xz+oeuvNsIOtY3O/p0tsSUga0BeDh6/52GA9J1WqYt 577d1GUVi/kicNhgp5l/73pKaq4mIkTehz3fgp/oE86lAMTxMqYJ3NJf9v/49mTI ZbddR+CFptaYK4xG9JyBs6hxlKL2fcbSJp4fT7NrYyJJHVsOfnv2kxStK+t6/olx GAYOQh7sOc1yBpi9f8FwnTKpHVPoIDmowDHUGPNexmDYz4tBNfjX5PW4zjrNpasj uPErdHkGOahzmJ8t08LzNfNNa6q7Jq+BJ9rqyTlkG1DTPBGOumAontE/HnayKAQE f3y4wHvykLPRBoDMrKUDCW2r1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEMXxpdj MHx5g4E7WvWtvh9jpKqfMB8GA1UdIwQYMBaAFFILqUzQ+558FA37wMxYuTz1TCLz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODk4MS8xQ0Y2Q0Q3NDZD N0YxMUVGOTE0RDdENTdDNEY5QUUwMi9VZ3VwVE5EN25ud1VEZnZBekZpNVBQVk1J dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VndXBUTkQ3bm53VURmdkF6Rmk1UFBWTUl2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODk4MS8xQ0Y2Q0Q3NDZDN0YxMUVGOTE0RDdENTdDNEY5QUUwMi9VZ3VwVE5EN25u d1VEZnZBekZpNVBQVk1Jdk0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAw/2dmQEKMl6yhx2uc21yKA7Fh5sMywGoEJC/Ja4X4Hp2RCAgrVoIR9jG9CU/ QaN9MzTgDO9EFKvT0vKfshZBOWqtgb2ImmQT6plh0E2AwTDX3zy4kskiB04ntLUb CI9Ijf1nQy7KrfuZwVmU3UgMIyXQ8q3juopdtKhq74rgLt/WN62VyqhTezU+Cw3W o4y34mbBmBTKGIoFKaKs7wzQQJFyfEkc4IIEjwsSexzDP68GssAVvyYk8MT0mUmg vIZdqEW+q3A4dr2P8EGCvlxJNDpHviTIofBlClsxXSE4xGqEynHRGWBW7cdEZ9q3 qZAdMN7+tGTzPniwgRE81BGOGQ== -----END CERTIFICATE-----Generated at Wed May 13 03:57:27 2026 by rpki-client