$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft File: KUHHFh7UouCbuRyrxEPIzLwDLtg.mft (raw, json) Hash identifier: GqVO4puAXtZ4fth+xVVXsQxJwZdsJ+Wp/lj+zS7ujNo= Subject key identifier: 75:0E:BA:DB:1E:E8:52:F8:3D:7B:2E:AE:C0:83:15:B8:AE:88:B1:C1 Authority key identifier: 29:41:C7:16:1E:D4:A2:E0:9B:B9:1C:AB:C4:43:C8:CC:BC:03:2E:D8 Certificate issuer: /CN=A91FEEA9/serialNumber=2941C7161ED4A2E09BB91CABC443C8CCBC032ED8 Certificate serial: 352E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft Manifest number: 3526 Signing time: Tue 24 Mar 2026 14:51:18 +0000 Manifest this update: Tue 24 Mar 2026 14:51:18 +0000 Manifest next update: Tue 31 Mar 2026 14:51:18 +0000 Files and hashes: 1: KUHHFh7UouCbuRyrxEPIzLwDLtg.crl (hash: LfOeMaij9LU4FbJpL1lpOjtsTsDioLyuKbjmig6QWfY=) 2: 796A04A6BA1A11F08C920A83C4F9AE02.roa (hash: ypLlMr/LNjZg16pw+UIO3Fp6461Fmui5r1d2RFjlO48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.crl rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13614 (0x352e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEEA9, serialNumber=2941C7161ED4A2E09BB91CABC443C8CCBC032ED8 Validity Not Before: Mar 24 14:51:18 2026 GMT Not After : Mar 31 14:51:18 2026 GMT Subject: CN=69c2a4e6-e57b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1f:fe:9f:d1:20:ef:0a:fd:36:d4:1c:85:37: 43:62:be:2c:6b:43:21:16:c4:2f:2b:f1:a0:73:52: ec:52:d8:2d:de:53:6f:ae:89:3f:00:b5:82:ff:a5: 29:36:80:ec:a4:6a:27:f4:03:8f:df:40:67:b7:cb: e3:eb:40:89:05:f5:99:f5:cc:af:c1:01:e7:13:95: c3:89:b3:b2:2c:de:e4:2d:fa:3b:31:ae:2c:6c:9b: fa:df:4c:a7:3f:bd:65:e1:35:9a:d4:47:c1:75:15: 22:f3:35:41:d6:62:6b:1a:57:8c:8c:fd:0f:5a:2c: 8c:64:5b:60:27:ef:ad:62:b0:71:e9:60:df:f0:53: f8:03:a7:12:79:e3:c2:a5:2e:7e:72:12:bb:08:9b: 02:dd:df:18:90:82:d1:7b:f8:57:9b:19:1a:e7:2d: 6f:f5:59:ba:d8:6d:92:6e:14:d2:72:43:b6:60:e6: 4a:a9:a2:50:31:07:5c:a0:06:91:51:68:49:2b:4c: 94:36:95:a8:ef:6d:73:25:07:28:ca:60:2b:0a:45: b0:91:89:30:36:cc:ef:88:87:a5:ed:e4:8c:b9:2e: 47:cf:b9:01:8d:40:ce:95:ba:e9:56:8a:a2:8e:9b: 8a:9d:8e:6f:18:4c:66:69:2f:74:91:75:e2:b5:b3: aa:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:0E:BA:DB:1E:E8:52:F8:3D:7B:2E:AE:C0:83:15:B8:AE:88:B1:C1 X509v3 Authority Key Identifier: keyid:29:41:C7:16:1E:D4:A2:E0:9B:B9:1C:AB:C4:43:C8:CC:BC:03:2E:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUHHFh7UouCbuRyrxEPIzLwDLtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEEA9/CED0A9E61D9711E2BF3E818108B02CD2/KUHHFh7UouCbuRyrxEPIzLwDLtg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:66:66:1d:58:bb:f1:00:96:ba:3b:7e:40:cc:8b:3d:88:5e: 1c:64:79:e5:dd:da:ef:52:5d:2a:86:14:8c:f9:90:3a:75:40: 3e:3b:39:93:a2:ca:58:47:aa:35:18:3d:7a:f5:a5:fb:39:76: 3b:e7:b9:4a:19:54:2a:c8:b1:4f:82:4a:32:6c:6a:d8:22:b1: 0d:cc:e2:49:de:31:84:ad:8e:14:35:0c:73:67:ec:d0:9a:8c: 99:a3:1e:63:0e:65:43:f9:18:fd:2e:7c:28:82:53:76:63:ce: 49:fc:00:7a:0a:4c:c5:a5:9c:63:f4:87:19:e5:35:64:27:8f: 14:dd:5d:1f:f8:3b:ee:a6:da:1f:f7:6e:37:86:81:b8:77:87: 3d:f0:ba:b9:ce:8e:c6:90:3f:6f:eb:7d:f3:cf:44:e8:ec:85: 30:06:d7:73:5b:83:0a:ae:e2:47:42:e2:91:36:3f:0c:99:72: 1c:9c:4e:b7:b4:64:98:f7:a1:cf:ab:0b:ad:89:c8:7e:78:c5: f9:f4:1b:1b:df:16:a8:bd:22:52:fd:d7:22:cb:fb:09:0e:7f: c0:b5:9d:62:1d:76:1b:53:09:ab:0c:48:fa:f6:c1:cd:ec:17: cd:af:77:92:f2:3f:27:4e:f1:cd:33:a6:d5:a8:eb:56:58:2a: cf:c9:6d:18 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVFQTkxMTAvBgNVBAUTKDI5NDFDNzE2MUVENEEyRTA5QkI5MUNBQkM0NDNDOEND QkMwMzJFRDgwHhcNMjYwMzI0MTQ1MTE4WhcNMjYwMzMxMTQ1MTE4WjAYMRYwFAYD VQQDEw02OWMyYTRlNi1lNTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApB/+n9Eg7wr9NtQchTdDYr4sa0MhFsQvK/Ggc1LsUtgt3lNvrok/ALWC/6Up NoDspGon9AOP30Bnt8vj60CJBfWZ9cyvwQHnE5XDibOyLN7kLfo7Ma4sbJv630yn P71l4TWa1EfBdRUi8zVB1mJrGleMjP0PWiyMZFtgJ++tYrBx6WDf8FP4A6cSeePC pS5+chK7CJsC3d8YkILRe/hXmxka5y1v9Vm62G2SbhTSckO2YOZKqaJQMQdcoAaR UWhJK0yUNpWo721zJQcoymArCkWwkYkwNszviIel7eSMuS5Hz7kBjUDOlbrpVoqi jpuKnY5vGExmaS90kXXitbOqswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHUOutse 6FL4PXsursCDFbiuiLHBMB8GA1UdIwQYMBaAFClBxxYe1KLgm7kcq8RDyMy8Ay7Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUVBOS9DRUQwQTlFNjFE OTcxMUUyQkYzRTgxODEwOEIwMkNEMi9LVUhIRmg3VW91Q2J1UnlyeEVQSXpMd0RM dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tVSEhGaDdVb3VDYnVSeXJ4RVBJekx3REx0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUVBOS9DRUQwQTlFNjFEOTcxMUUyQkYzRTgxODEwOEIwMkNEMi9LVUhIRmg3VW91 Q2J1UnlyeEVQSXpMd0RMdGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANWZmHVi78QCWujt+QMyLPYheHGR55d3a71JdKoYUjPmQOnVAPjs5k6LKWEeq NRg9evWl+zl2O+e5ShlUKsixT4JKMmxq2CKxDcziSd4xhK2OFDUMc2fs0JqMmaMe Yw5lQ/kY/S58KIJTdmPOSfwAegpMxaWcY/SHGeU1ZCePFN1dH/g77qbaH/duN4aB uHeHPfC6uc6OxpA/b+t9889E6OyFMAbXc1uDCq7iR0LikTY/DJlyHJxOt7RkmPeh z6sLrYnIfnjF+fQbG98WqL0iUv3XIsv7CQ5/wLWdYh12G1MJqwxI+vbBzewXza93 kvI/J07xzTOm1ajrVlgqz8ltGA== -----END CERTIFICATE-----Generated at Thu Mar 26 00:55:26 2026 by rpki-client