$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft File: KUHHFh7UouCbuRyrxEPIzLwDLtg.mft (raw, json) Hash identifier: 9FCQOkk+Ea+WVjavImGb0aRCeeg1256K0hIgze1rp7M= Subject key identifier: DF:23:A1:5F:FC:3F:6F:23:A1:6B:EC:EC:FE:E9:A8:D3:40:AF:38:51 Authority key identifier: 29:41:C7:16:1E:D4:A2:E0:9B:B9:1C:AB:C4:43:C8:CC:BC:03:2E:D8 Certificate issuer: /CN=A91FEEA9/serialNumber=2941C7161ED4A2E09BB91CABC443C8CCBC032ED8 Certificate serial: 354A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft Manifest number: 3541 Signing time: Tue 12 May 2026 14:52:55 +0000 Manifest this update: Tue 12 May 2026 14:52:54 +0000 Manifest next update: Tue 19 May 2026 14:52:54 +0000 Files and hashes: 1: KUHHFh7UouCbuRyrxEPIzLwDLtg.crl (hash: tPAxx6npFNf3WY/Qc5bPKdbe92OeAjIC+yrFkp+QLYs=) 2: 796A04A6BA1A11F08C920A83C4F9AE02.roa (hash: obYL84rEidQqf3PGOj0TCR0aB0CKEWuDcGzuDXBidKY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.crl rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:52:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13642 (0x354a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEEA9, serialNumber=2941C7161ED4A2E09BB91CABC443C8CCBC032ED8 Validity Not Before: May 12 14:52:54 2026 GMT Not After : May 19 14:52:54 2026 GMT Subject: CN=6a033ec7-26a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:fc:ab:1b:44:2e:d8:f2:3c:46:49:f4:f8:ef: ba:75:35:6f:fa:b7:b3:05:e6:15:f3:f2:69:b0:b9: f2:a4:ab:16:89:64:8f:52:f2:11:b3:b4:b8:06:2f: 9c:45:11:8f:e5:24:36:7a:04:0c:df:32:1a:36:ac: c0:bb:e8:ae:e0:66:d7:ff:7c:1d:ca:7a:c1:b6:0e: e6:6d:74:9e:fe:32:d4:e1:fe:bb:9d:47:4a:ca:cb: c8:bb:5f:ea:c5:55:cd:57:20:b9:f8:50:97:7a:e9: b4:15:c2:8f:6a:5f:d7:56:65:e9:eb:6a:9f:28:cc: 1a:0e:07:66:39:2d:26:2d:29:48:64:3f:61:05:b8: 71:1b:3f:cd:17:3f:49:3d:5b:7f:26:a0:bb:26:74: 87:6b:10:83:3d:e9:31:d6:fb:4a:a8:33:ed:70:da: 77:00:a7:02:39:9b:db:04:bb:7e:94:b3:e6:42:e3: 5d:51:3a:aa:bf:f9:0f:8a:61:e1:c6:ba:e2:35:99: 00:66:29:20:5e:4b:1c:e6:03:fd:4d:1a:25:33:aa: d4:94:87:2f:2f:65:57:e5:a5:86:55:67:5a:e9:ab: a7:45:f5:2a:c1:fc:f1:78:1f:2c:67:e6:39:93:23: 4f:0c:f6:0d:19:aa:db:bf:1e:29:d2:97:a6:f1:8e: 6f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:23:A1:5F:FC:3F:6F:23:A1:6B:EC:EC:FE:E9:A8:D3:40:AF:38:51 X509v3 Authority Key Identifier: keyid:29:41:C7:16:1E:D4:A2:E0:9B:B9:1C:AB:C4:43:C8:CC:BC:03:2E:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:1b:4b:dd:23:d6:df:88:08:e5:a0:e2:05:2a:d3:e1:ce:db: ee:e9:14:61:51:36:07:da:7f:a2:31:ba:52:34:a7:eb:30:02: 3c:f2:3b:54:c0:ed:c3:ee:f4:e3:f4:77:6a:23:e0:dc:59:02: 1b:d7:cc:08:a6:a8:72:78:11:f4:95:6b:f4:ea:c8:05:61:9f: 62:b0:85:96:62:9e:91:26:94:57:f5:b5:4a:fe:e1:0a:30:9d: ac:a3:77:3f:00:66:be:90:3a:9f:ac:5c:df:ee:d6:48:f9:06: d4:f2:bd:7b:eb:34:5f:9b:00:a9:48:d1:8c:82:da:f1:00:f4: 16:9b:7f:cf:ef:cd:6b:2f:f1:86:55:f3:12:07:e7:e4:17:5a: 34:f0:01:73:2f:4d:14:c0:5d:e2:8a:f7:a4:bd:e6:d7:1b:6d: 2e:36:ed:7d:e6:b0:58:5b:a7:2b:ec:56:65:50:dd:98:0d:85: 8d:82:7d:40:e6:9e:e9:73:a8:70:d5:7e:48:64:75:38:02:ec: 9f:94:43:b5:26:3e:27:3e:fa:de:0b:67:cb:0d:f5:15:ce:5b: dc:bc:60:50:da:c8:e2:e1:02:45:72:20:c8:2c:66:a8:ea:70: 1e:a0:a5:8c:d1:17:48:2f:4b:37:d2:ec:47:14:47:dd:d5:6d: 17:9a:7f:16 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVFQTkxMTAvBgNVBAUTKDI5NDFDNzE2MUVENEEyRTA5QkI5MUNBQkM0NDNDOEND QkMwMzJFRDgwHhcNMjYwNTEyMTQ1MjU0WhcNMjYwNTE5MTQ1MjU0WjAYMRYwFAYD VQQDEw02YTAzM2VjNy0yNmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1vyrG0Qu2PI8Rkn0+O+6dTVv+rezBeYV8/JpsLnypKsWiWSPUvIRs7S4Bi+c RRGP5SQ2egQM3zIaNqzAu+iu4GbX/3wdynrBtg7mbXSe/jLU4f67nUdKysvIu1/q xVXNVyC5+FCXeum0FcKPal/XVmXp62qfKMwaDgdmOS0mLSlIZD9hBbhxGz/NFz9J PVt/JqC7JnSHaxCDPekx1vtKqDPtcNp3AKcCOZvbBLt+lLPmQuNdUTqqv/kPimHh xrriNZkAZikgXksc5gP9TRolM6rUlIcvL2VX5aWGVWda6aunRfUqwfzxeB8sZ+Y5 kyNPDPYNGarbvx4p0pem8Y5vgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN8joV/8 P28joWvs7P7pqNNArzhRMB8GA1UdIwQYMBaAFClBxxYe1KLgm7kcq8RDyMy8Ay7Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUVBOS9DRUQwQTlFNjFE OTcxMUUyQkYzRTgxODEwOEIwMkNEMi9LVUhIRmg3VW91Q2J1UnlyeEVQSXpMd0RM dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tVSEhGaDdVb3VDYnVSeXJ4RVBJekx3REx0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUVBOS9DRUQwQTlFNjFEOTcxMUUyQkYzRTgxODEwOEIwMkNEMi9LVUhIRmg3VW91 Q2J1UnlyeEVQSXpMd0RMdGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlhtL3SPW34gI5aDiBSrT4c7b7ukUYVE2B9p/ojG6UjSn6zACPPI7VMDtw+70 4/R3aiPg3FkCG9fMCKaocngR9JVr9OrIBWGfYrCFlmKekSaUV/W1Sv7hCjCdrKN3 PwBmvpA6n6xc3+7WSPkG1PK9e+s0X5sAqUjRjILa8QD0Fpt/z+/Nay/xhlXzEgfn 5BdaNPABcy9NFMBd4or3pL3m1xttLjbtfeawWFunK+xWZVDdmA2FjYJ9QOae6XOo cNV+SGR1OALsn5RDtSY+Jz763gtnyw31Fc5b3LxgUNrI4uECRXIgyCxmqOpwHqCl jNEXSC9LN9LsRxRH3dVtF5p/Fg== -----END CERTIFICATE-----Generated at Wed May 13 06:45:35 2026 by rpki-client