$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft File: 5D3SMzFr8OKboG0g3sJdtMwRbgg.mft (raw, json) Hash identifier: wZg9AfJbIGU/2lIAEMqHK5PqNlN6mda5u8Gz9L+dXDw= Subject key identifier: 88:97:18:E1:3F:48:1F:4A:8B:DE:F4:3D:32:DA:5E:B4:4B:43:44:51 Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 0561 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft Manifest number: 054F Signing time: Tue 24 Mar 2026 23:07:54 +0000 Manifest this update: Tue 24 Mar 2026 23:07:53 +0000 Manifest next update: Tue 31 Mar 2026 23:07:53 +0000 Files and hashes: 1: 5D3SMzFr8OKboG0g3sJdtMwRbgg.crl (hash: Dh4SB+8nBW1WHDqFLb3Hu+aT5t8Nz/CctL8ApYEy1k0=) 2: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (hash: MUl/v1p+vm1Iz1fhfXWdiu0rlYEkwrSBTJH5GlDUE7w=) 3: 579B33AE886F11F0A02D4009C4F9AE02.roa (hash: kvqSrwpHPLZJw/K+1ltO2ek3REXXe9HMAbW/Edna9+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:07:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1377 (0x561) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: Mar 24 23:07:53 2026 GMT Not After : Mar 31 23:07:53 2026 GMT Subject: CN=69c3194a-4ad8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e5:d8:98:fc:15:2c:5b:b0:4c:b8:b9:62:c9: 2f:27:83:01:97:36:7d:8a:01:32:06:f2:87:d4:25: 47:d8:4f:26:c6:5a:c5:6b:32:f2:e1:2a:e1:b1:ed: cf:ce:73:16:6e:df:fb:f5:93:f9:da:06:e4:ce:0e: 4a:f9:7e:db:55:a2:fd:ba:af:5b:43:cd:7d:17:5f: 73:c0:8f:e8:b4:04:d8:0f:40:4d:72:14:cb:29:68: f8:98:5b:c8:ff:d7:12:71:f3:ff:4e:f1:4f:ec:eb: 39:45:5f:a0:7f:23:a1:3d:2e:69:d8:d2:f9:94:2a: 03:fe:fc:db:52:59:8d:3e:e9:9e:80:65:f2:e9:45: 37:44:9a:09:5d:68:cc:3a:43:0a:b2:04:75:a2:d8: 9b:4c:37:05:00:ef:50:30:1a:13:e9:9a:f0:ef:8a: 8a:9f:36:eb:30:73:80:93:48:ef:eb:fd:93:e2:df: 04:e6:29:34:ef:d4:67:9b:1c:fe:f4:10:63:82:07: 9e:18:ab:23:49:79:07:98:a7:0b:fc:78:05:fa:a5: 41:1d:69:0a:5c:41:33:39:70:bf:2c:db:49:2a:61: 6f:e6:6b:d3:49:00:e4:6a:b8:62:33:61:6d:cc:63: 6f:6e:3a:ac:57:84:a7:f3:fd:2a:15:a5:9e:ed:e6: 82:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:97:18:E1:3F:48:1F:4A:8B:DE:F4:3D:32:DA:5E:B4:4B:43:44:51 X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:35:fa:54:7e:d9:c6:a1:27:0a:8a:c5:e6:f0:c4:78:70:56: e3:c5:bc:fa:cc:6b:b4:ef:c7:62:3a:92:d8:89:ad:59:fe:1d: f8:d9:a3:5e:8c:1a:ce:d9:53:d2:e7:cd:90:fc:f8:90:bd:8a: f0:3f:59:70:f4:10:09:5f:cb:d1:f0:63:db:7e:16:2e:06:6f: 16:e3:5c:8f:e1:39:e5:58:c8:f3:8e:b9:73:cf:fe:5d:b3:71: ac:2f:9e:ee:6b:b5:a4:be:de:39:94:48:e3:80:7d:29:0d:83: ee:2d:0a:e1:7c:16:62:1c:74:ec:bd:65:ed:c3:29:3d:d6:6f: 3a:42:a6:24:ed:be:43:34:af:af:71:38:ed:78:a8:f8:f1:84: 9f:99:72:22:f2:4f:32:2e:4f:6a:c9:19:cf:22:04:4e:64:f6: 6c:40:6c:5f:a8:8e:84:07:9b:bf:99:20:df:8a:f5:59:90:c3: 5d:bc:d0:5d:a8:21:e2:40:90:8e:bf:61:09:58:a0:73:59:eb: 1f:72:4c:7e:92:0d:a4:53:45:a7:2f:a6:f3:9a:1b:d0:9a:d1: 5b:b4:12:2b:42:b8:ac:43:8d:84:66:97:f2:bc:50:da:bc:1a: 9c:66:6b:7c:6f:1f:2a:4b:da:ba:2f:89:38:8f:d9:c4:2d:84: a9:cd:96:df -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjYwMzI0MjMwNzUzWhcNMjYwMzMxMjMwNzUzWjAYMRYwFAYD VQQDEw02OWMzMTk0YS00YWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteXYmPwVLFuwTLi5YskvJ4MBlzZ9igEyBvKH1CVH2E8mxlrFazLy4Srhse3P znMWbt/79ZP52gbkzg5K+X7bVaL9uq9bQ819F19zwI/otATYD0BNchTLKWj4mFvI /9cScfP/TvFP7Os5RV+gfyOhPS5p2NL5lCoD/vzbUlmNPumegGXy6UU3RJoJXWjM OkMKsgR1otibTDcFAO9QMBoT6Zrw74qKnzbrMHOAk0jv6/2T4t8E5ik079Rnmxz+ 9BBjggeeGKsjSXkHmKcL/HgF+qVBHWkKXEEzOXC/LNtJKmFv5mvTSQDkarhiM2Ft zGNvbjqsV4Sn8/0qFaWe7eaCywIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIiXGOE/ SB9Ki970PTLaXrRLQ0RRMB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zRTlBNEFFMDMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhP S2JvRzBnM3NKZHRNd1JiZ2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmjX6VH7ZxqEnCorF5vDEeHBW48W8+sxrtO/HYjqS2ImtWf4d+NmjXowaztlT 0ufNkPz4kL2K8D9ZcPQQCV/L0fBj234WLgZvFuNcj+E55VjI8465c8/+XbNxrC+e 7mu1pL7eOZRI44B9KQ2D7i0K4XwWYhx07L1l7cMpPdZvOkKmJO2+QzSvr3E47Xio +PGEn5lyIvJPMi5PaskZzyIETmT2bEBsX6iOhAebv5kg34r1WZDDXbzQXagh4kCQ jr9hCVigc1nrH3JMfpINpFNFpy+m85ob0JrRW7QSK0K4rEONhGaX8rxQ2rwanGZr fG8fKkvaui+JOI/ZxC2Eqc2W3w== -----END CERTIFICATE-----Generated at Thu Mar 26 14:06:37 2026 by rpki-client