$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft File: EK5_oM-c-qh-uthEzYxCasHDpec.mft (raw, json) Hash identifier: FCiJYQf4IPo2zIT5RoWAMVngxtf1OIpeGRHIWWFzrWQ= Subject key identifier: 09:22:18:D2:B2:AD:23:AC:83:9F:61:23:39:2B:D7:7F:02:4D:67:5F Authority key identifier: 10:AE:7F:A0:CF:9C:FA:A8:7E:BA:D8:44:CD:8C:42:6A:C1:C3:A5:E7 Certificate issuer: /CN=A9123BFF/serialNumber=10AE7FA0CF9CFAA87EBAD844CD8C426AC1C3A5E7 Certificate serial: 2114 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft Manifest number: 2109 Signing time: Tue 24 Mar 2026 15:52:19 +0000 Manifest this update: Tue 24 Mar 2026 15:52:19 +0000 Manifest next update: Tue 31 Mar 2026 15:52:19 +0000 Files and hashes: 1: EK5_oM-c-qh-uthEzYxCasHDpec.crl (hash: WRgl//xn6N2mZhfqyA0SGV6uTou9bQi9GzDkv8lmCV0=) 2: 449C08948D1211EBB9548186C4F9AE02.roa (hash: CkrD7mjSYB1KxMhffEe1r6e55NIjcWqRcIt0BrrvQjw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.crl rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:52:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8468 (0x2114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF, serialNumber=10AE7FA0CF9CFAA87EBAD844CD8C426AC1C3A5E7 Validity Not Before: Mar 24 15:52:19 2026 GMT Not After : Mar 31 15:52:19 2026 GMT Subject: CN=69c2b333-3491 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f3:3f:c6:43:57:f9:66:6a:5c:47:3b:54:7f: b6:53:c8:c1:4e:6b:a4:29:05:0f:bd:42:85:f9:05: f0:6d:a2:69:03:58:54:39:56:8a:a7:be:9d:2b:78: f0:7b:b4:c0:96:e7:8b:cb:d9:ec:01:00:5d:cd:97: 9c:ba:91:d3:11:cb:cf:bc:f6:40:21:fe:a1:8a:46: e1:4c:1a:9f:b2:17:ce:cd:52:08:0d:07:bd:e2:af: c3:a3:29:7d:40:73:b3:5b:48:20:d1:4f:85:1b:b7: d0:35:2a:c1:64:6e:57:b1:18:46:5c:ed:f7:90:44: 41:58:d6:f4:a6:df:e9:a3:06:ec:03:34:7d:97:f4: 5b:1f:bc:13:87:3e:cd:dd:12:b0:a0:e0:c9:31:7f: 40:b2:42:9c:0b:79:f6:1b:1d:f7:a4:67:42:41:dd: 04:9d:35:cc:9c:a6:da:e6:ca:9e:b5:af:53:0e:8b: f4:cd:e6:1d:9e:03:4b:55:1a:a2:3d:9c:f7:cc:f6: 0f:b1:4d:2f:04:13:ef:89:bc:87:c8:f2:03:04:bc: 74:64:19:e9:c1:f2:4d:64:54:40:11:01:4c:0d:df: 6e:98:a6:6b:79:73:47:eb:6c:b1:cb:28:e8:a1:cd: 91:cb:aa:a0:dc:51:95:d0:6e:d2:e2:1e:20:2a:7a: b2:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:22:18:D2:B2:AD:23:AC:83:9F:61:23:39:2B:D7:7F:02:4D:67:5F X509v3 Authority Key Identifier: keyid:10:AE:7F:A0:CF:9C:FA:A8:7E:BA:D8:44:CD:8C:42:6A:C1:C3:A5:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:04:4b:04:4b:b4:6e:6a:2d:77:d2:48:21:64:f7:ba:96:9a: 24:e1:dd:e2:f3:9d:75:19:b3:13:73:f8:52:80:90:e5:87:e1: d0:ff:d9:92:2e:0e:62:a5:f4:93:69:8b:5d:02:3b:20:aa:d3: 8b:20:77:d2:01:4a:81:23:64:b8:30:de:fd:4e:52:51:73:ef: 7f:c6:38:22:c3:52:3e:98:f4:4b:b2:4f:53:3c:28:5b:f4:d8: 34:98:45:12:39:b8:7a:72:58:2a:35:29:f4:7d:4d:b3:b7:b5: 2a:78:81:1a:7d:0d:bb:9c:ca:11:28:64:77:db:60:9f:a4:55: 4a:74:74:1f:c9:cc:db:04:ee:c8:63:3d:28:41:63:9b:cb:d1: f8:5a:f2:3e:37:60:70:01:e1:0f:98:03:59:2b:a6:87:56:5b: ab:3a:70:61:6d:01:a6:5c:51:78:53:30:fd:f6:ba:0a:00:69: 42:49:b0:02:11:3f:0e:21:bb:27:a3:70:32:4c:92:0e:ac:2c: 5a:47:9d:6c:8e:95:2d:91:04:c5:e9:8d:d0:d0:5c:71:a2:f1: 59:b3:65:7a:b5:40:07:3f:cd:bb:e5:c8:0a:6e:3f:7a:5b:b4: 8c:bf:3d:c5:67:34:e5:35:31:1c:37:97:7e:52:4e:0e:48:bb: 8b:fe:0f:09 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICIRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKDEwQUU3RkEwQ0Y5Q0ZBQTg3RUJBRDg0NENEOEM0MjZB QzFDM0E1RTcwHhcNMjYwMzI0MTU1MjE5WhcNMjYwMzMxMTU1MjE5WjAYMRYwFAYD VQQDEw02OWMyYjMzMy0zNDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsPM/xkNX+WZqXEc7VH+2U8jBTmukKQUPvUKF+QXwbaJpA1hUOVaKp76dK3jw e7TAlueLy9nsAQBdzZecupHTEcvPvPZAIf6hikbhTBqfshfOzVIIDQe94q/Doyl9 QHOzW0gg0U+FG7fQNSrBZG5XsRhGXO33kERBWNb0pt/powbsAzR9l/RbH7wThz7N 3RKwoODJMX9AskKcC3n2Gx33pGdCQd0EnTXMnKba5sqeta9TDov0zeYdngNLVRqi PZz3zPYPsU0vBBPvibyHyPIDBLx0ZBnpwfJNZFRAEQFMDd9umKZreXNH62yxyyjo oc2Ry6qg3FGV0G7S4h4gKnqyDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAkiGNKy rSOsg59hIzkr138CTWdfMB8GA1UdIwQYMBaAFBCuf6DPnPqofrrYRM2MQmrBw6Xn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi9GMjkwODI5QTEw REExMUU2ODVDNEJCM0RDNEY5QUUwMi9FSzVfb00tYy1xaC11dGhFell4Q2FzSERw ZWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VLNV9vTS1jLXFoLXV0aEV6WXhDYXNIRHBlYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0JGRi9GMjkwODI5QTEwREExMUU2ODVDNEJCM0RDNEY5QUUwMi9FSzVfb00tYy1x aC11dGhFell4Q2FzSERwZWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsQRLBEu0bmotd9JIIWT3upaaJOHd4vOddRmzE3P4UoCQ5Yfh0P/Zki4OYqX0 k2mLXQI7IKrTiyB30gFKgSNkuDDe/U5SUXPvf8Y4IsNSPpj0S7JPUzwoW/TYNJhF Ejm4enJYKjUp9H1Ns7e1KniBGn0Nu5zKEShkd9tgn6RVSnR0H8nM2wTuyGM9KEFj m8vR+FryPjdgcAHhD5gDWSumh1ZbqzpwYW0BplxReFMw/fa6CgBpQkmwAhE/DiG7 J6NwMkySDqwsWkedbI6VLZEExemN0NBccaLxWbNlerVABz/Nu+XICm4/elu0jL89 xWc05TUxHDeXflJODki7i/4PCQ== -----END CERTIFICATE-----Generated at Thu Mar 26 17:57:28 2026 by rpki-client