$ rpki-client -vvf rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft File: D5BpKh7v5_ChrGi14awJ9wJpccw.mft (raw, json) Hash identifier: Ll8KcHEw0kMwRrKgvjf0+5myp4V48yqYdxKhWlJtUlk= Subject key identifier: F5:DC:5B:5D:A9:24:B9:E4:B4:19:CD:DB:0D:AA:2A:21:65:E4:A1:BD Authority key identifier: 0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC Certificate issuer: /CN=A91185B8/serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Certificate serial: 023D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft Manifest number: 023D Signing time: Wed 25 Mar 2026 01:54:09 +0000 Manifest this update: Wed 25 Mar 2026 01:54:08 +0000 Manifest next update: Wed 01 Apr 2026 01:54:08 +0000 Files and hashes: 1: D5BpKh7v5_ChrGi14awJ9wJpccw.crl (hash: t6LzGYo3InCUxYiHCrgoNogKRcUlDHInAcdwyDw4MV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:54:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 573 (0x23d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91185B8, serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Validity Not Before: Mar 25 01:54:08 2026 GMT Not After : Apr 1 01:54:08 2026 GMT Subject: CN=69c34041-1859 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2e:a4:59:e7:20:31:99:3b:f4:9f:bb:f5:bf: 80:d8:38:50:ce:a3:81:d3:b6:20:b9:94:98:59:31: e2:4f:35:64:0e:68:54:f4:3e:ee:c1:c1:84:c9:51: 0f:a2:37:6c:7e:c3:3b:6a:45:88:67:ea:59:a1:a0: fc:7f:cf:20:35:dd:2d:86:8b:92:b8:12:8a:93:d5: ab:08:33:0f:78:c8:09:b8:9d:77:76:99:46:df:99: 36:a0:54:82:28:a8:fd:78:9e:8f:72:ae:20:89:c2: 09:89:d0:e8:6c:d0:a4:9f:35:a8:1a:95:7c:24:a1: 35:8d:b4:5e:5b:f8:5b:ad:4d:d7:49:eb:8a:49:6e: 16:db:f1:ab:69:b4:9a:db:bb:8b:e0:fc:04:89:66: 6e:46:f9:48:6a:c1:9e:21:b3:48:fb:8f:9e:b2:bc: 29:d9:41:63:b4:17:4a:11:e5:e2:c4:62:e0:ed:3a: 53:ef:ec:a5:53:d5:33:ca:fb:53:c8:ab:f1:79:95: 1e:f2:ce:f9:93:8b:9d:d6:4b:e1:34:52:56:95:0a: 22:d4:bd:18:97:16:f9:02:c6:18:1f:b7:cc:eb:14: ec:b9:27:39:6f:16:22:0d:33:16:ec:b3:33:8b:70: fa:fc:e0:73:be:80:ba:38:50:57:4f:c0:52:47:73: 74:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:DC:5B:5D:A9:24:B9:E4:B4:19:CD:DB:0D:AA:2A:21:65:E4:A1:BD X509v3 Authority Key Identifier: keyid:0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:97:b3:b6:c9:a5:99:6f:5e:11:c9:62:19:f4:00:fa:1a:a8: f0:be:cd:d5:6a:f4:42:b3:1f:70:c0:8a:a3:e8:50:d2:06:15: 32:0a:4a:e7:ab:98:c1:ee:cf:dc:14:66:dc:7d:42:7d:1f:4d: bf:99:76:65:0f:6b:8a:1e:0c:64:8f:98:3c:a9:e0:1e:0b:a3: b8:9b:35:c3:14:b7:0c:44:c2:a5:72:97:0b:48:cf:d1:3e:92: fd:c8:b4:fb:af:65:62:e9:9a:ff:2c:a8:a0:61:24:c2:82:27: ff:21:5f:57:cc:f8:27:23:2a:28:1d:96:23:f9:1e:2a:7c:ec: ba:ea:1d:28:f8:56:f4:41:71:3e:71:ef:54:53:41:a7:ef:85: b5:5a:89:6a:bf:12:9b:98:59:77:a4:87:68:2f:a6:50:29:b2: 00:80:e0:b7:1a:0f:f2:bc:2d:d5:cb:61:17:94:51:e6:d3:dd: 0c:6c:6a:5c:dd:ba:85:13:fd:03:c1:0c:9f:33:e4:4a:4b:06: ef:26:ba:4c:21:22:c8:38:90:52:53:ad:e5:39:58:43:84:79: f3:b4:a7:c7:5a:7b:20:cd:09:76:04:98:fd:9e:53:03:4a:df: 9b:d6:32:87:87:ee:b3:40:4c:22:61:d6:be:4d:c6:ae:ae:96: 01:09:25:49 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg1QjgxMTAvBgNVBAUTKDBGOTA2OTJBMUVFRkU3RjBBMUFDNjhCNUUxQUMwOUY3 MDI2OTcxQ0MwHhcNMjYwMzI1MDE1NDA4WhcNMjYwNDAxMDE1NDA4WjAYMRYwFAYD VQQDEw02OWMzNDA0MS0xODU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzi6kWecgMZk79J+79b+A2DhQzqOB07YguZSYWTHiTzVkDmhU9D7uwcGEyVEP ojdsfsM7akWIZ+pZoaD8f88gNd0thouSuBKKk9WrCDMPeMgJuJ13dplG35k2oFSC KKj9eJ6Pcq4gicIJidDobNCknzWoGpV8JKE1jbReW/hbrU3XSeuKSW4W2/GrabSa 27uL4PwEiWZuRvlIasGeIbNI+4+esrwp2UFjtBdKEeXixGLg7TpT7+ylU9UzyvtT yKvxeZUe8s75k4ud1kvhNFJWlQoi1L0Ylxb5AsYYH7fM6xTsuSc5bxYiDTMW7LMz i3D6/OBzvoC6OFBXT8BSR3N0mwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPXcW12p JLnktBnN2w2qKiFl5KG9MB8GA1UdIwQYMBaAFA+QaSoe7+fwoaxoteGsCfcCaXHM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODVCOC9DRkEzNDA5QUJF MzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVfQ2hyR2kxNGF3Sjl3SnBj Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q1QnBLaDd2NV9DaHJHaTE0YXdKOXdKcGNjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODVCOC9DRkEzNDA5QUJFMzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVf Q2hyR2kxNGF3Sjl3SnBjY3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvpeztsmlmW9eEcliGfQA+hqo8L7N1Wr0QrMfcMCKo+hQ0gYVMgpK56uYwe7P 3BRm3H1CfR9Nv5l2ZQ9rih4MZI+YPKngHgujuJs1wxS3DETCpXKXC0jP0T6S/ci0 +69lYuma/yyooGEkwoIn/yFfV8z4JyMqKB2WI/keKnzsuuodKPhW9EFxPnHvVFNB p++FtVqJar8Sm5hZd6SHaC+mUCmyAIDgtxoP8rwt1cthF5RR5tPdDGxqXN26hRP9 A8EMnzPkSksG7ya6TCEiyDiQUlOt5TlYQ4R587Snx1p7IM0JdgSY/Z5TA0rfm9Yy h4fus0BMImHWvk3Grq6WAQklSQ== -----END CERTIFICATE-----Generated at Thu Mar 26 15:41:29 2026 by rpki-client