$ rpki-client -vvf rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft File: 5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft (raw, json) Hash identifier: 4f+dg0it+lZSPBWxTNb71xlZulalpgGSbnXklLQbqwY= Subject key identifier: 91:4E:D8:D8:50:7C:3E:A5:14:34:7B:DB:58:BB:F3:6F:9B:A4:01:99 Authority key identifier: E5:88:C7:3E:6C:B4:FD:B3:8B:84:EE:40:F8:F9:B6:4C:50:BE:4B:73 Certificate issuer: /CN=A913ABFE/serialNumber=E588C73E6CB4FDB38B84EE40F8F9B64C50BE4B73 Certificate serial: 021A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft Manifest number: 020A Signing time: Fri 27 Mar 2026 02:39:47 +0000 Manifest this update: Fri 27 Mar 2026 02:39:47 +0000 Manifest next update: Fri 03 Apr 2026 02:39:47 +0000 Files and hashes: 1: 5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl (hash: m7i3bNsrIRS2tayyoPsxuuzhtc+ZjDGal0QNdzWMebs=) 2: F4C13F18066811F0B521BF2FC4F9AE02.roa (hash: vikoVGSeuK7o+QN57vEWLxUrr4D0Lg0WytucvEu92c0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 02:39:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 538 (0x21a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ABFE, serialNumber=E588C73E6CB4FDB38B84EE40F8F9B64C50BE4B73 Validity Not Before: Mar 27 02:39:47 2026 GMT Not After : Apr 3 02:39:47 2026 GMT Subject: CN=69c5edf3-baae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:23:a5:3b:12:fd:d6:65:66:f3:cb:3f:d0:31: c6:2e:76:0b:13:5e:bd:c1:97:29:ee:a4:d7:9b:96: e7:ce:ef:22:96:29:38:31:0f:ac:9d:94:1f:b8:e1: 5b:95:a0:0b:1f:fd:c4:6e:0d:45:e2:e9:11:a5:62: 42:86:38:40:ad:02:14:66:a0:34:74:0b:4d:be:b0: 86:bf:d4:e3:2e:f1:a5:d4:60:c4:aa:f1:53:25:1b: f6:53:af:73:90:2d:14:17:a1:7a:94:72:da:a7:aa: 3d:74:8d:0c:fa:a5:6a:eb:f4:b2:d7:f0:35:dd:14: 3e:bc:95:cd:45:35:df:78:02:6b:76:d6:2e:cb:fa: 56:58:49:03:40:07:cf:ea:c3:04:b7:22:0b:62:39: 4d:29:3e:61:c4:b0:fb:4e:c4:b1:08:fe:17:d1:1b: 82:14:a9:0d:ae:c4:3e:ef:31:6e:da:d0:f5:5e:da: 03:48:7b:42:25:a7:59:0c:b2:1f:b5:1c:2c:75:5f: 13:b6:c5:d8:83:19:c6:ab:29:1f:cf:76:e9:1e:c4: 16:37:c6:5e:b6:a7:ca:33:47:19:4e:68:03:b8:e2: 63:a1:96:ad:93:32:67:e2:f9:aa:01:ce:9d:30:b3: 67:2c:77:b9:14:10:0f:eb:92:1f:aa:e0:44:a8:92: e6:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:4E:D8:D8:50:7C:3E:A5:14:34:7B:DB:58:BB:F3:6F:9B:A4:01:99 X509v3 Authority Key Identifier: keyid:E5:88:C7:3E:6C:B4:FD:B3:8B:84:EE:40:F8:F9:B6:4C:50:BE:4B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:55:7f:13:e8:d4:0c:42:3e:44:5d:85:11:26:81:f4:77:8a: df:b5:dc:0a:67:15:13:cb:6d:f6:35:82:a3:63:4d:ca:2c:59: 67:8a:60:b3:a5:02:08:cf:65:8c:4a:01:f6:fd:ad:e0:fb:0f: d8:12:fc:60:65:83:a1:86:8d:91:d0:11:86:c3:ea:7a:28:16: e0:7d:8a:4f:e7:b3:c4:c1:0a:f1:92:5f:da:73:98:e9:40:1e: dd:bd:a8:b7:84:95:5f:20:c4:73:78:25:07:35:c3:19:69:00: ca:fc:0d:61:2e:c6:02:2a:e7:ef:61:3f:bf:ae:87:65:87:d2: d2:79:59:2c:66:76:43:16:15:3a:3d:9d:6e:42:13:c2:16:2c: 8a:28:ab:6e:45:f0:07:20:e1:7b:d7:0b:72:c2:a7:85:d7:ec: cc:a1:af:79:43:00:f4:a5:25:e2:d9:7e:1e:b0:f1:a1:78:a6: 25:d2:d6:84:5c:c1:55:70:a9:34:d2:45:20:21:21:76:20:91: b3:1d:49:97:9c:21:16:43:de:7e:f9:c3:24:df:c8:2b:a1:62: f7:fd:5f:89:7e:8d:18:f2:8b:9c:6c:06:ed:7a:99:bf:79:d0: d1:06:de:ce:fe:03:66:ed:d8:39:73:30:06:29:f7:02:76:5d: 15:f4:31:03 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FCRkUxMTAvBgNVBAUTKEU1ODhDNzNFNkNCNEZEQjM4Qjg0RUU0MEY4RjlCNjRD NTBCRTRCNzMwHhcNMjYwMzI3MDIzOTQ3WhcNMjYwNDAzMDIzOTQ3WjAYMRYwFAYD VQQDEw02OWM1ZWRmMy1iYWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+SOlOxL91mVm88s/0DHGLnYLE169wZcp7qTXm5bnzu8ilik4MQ+snZQfuOFb laALH/3Ebg1F4ukRpWJChjhArQIUZqA0dAtNvrCGv9TjLvGl1GDEqvFTJRv2U69z kC0UF6F6lHLap6o9dI0M+qVq6/Sy1/A13RQ+vJXNRTXfeAJrdtYuy/pWWEkDQAfP 6sMEtyILYjlNKT5hxLD7TsSxCP4X0RuCFKkNrsQ+7zFu2tD1XtoDSHtCJadZDLIf tRwsdV8TtsXYgxnGqykfz3bpHsQWN8ZetqfKM0cZTmgDuOJjoZatkzJn4vmqAc6d MLNnLHe5FBAP65IfquBEqJLmbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJFO2NhQ fD6lFDR721i782+bpAGZMB8GA1UdIwQYMBaAFOWIxz5stP2zi4TuQPj5tkxQvktz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUJGRS9GMUQ1NTg3RTI1 RjExMUVFQjdCNDgwNThDNEY5QUUwMi81WWpIUG15MF9iT0xoTzVBLVBtMlRGQy1T M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVZakhQbXkwX2JPTGhPNUEtUG0yVEZDLVMzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUJGRS9GMUQ1NTg3RTI1RjExMUVFQjdCNDgwNThDNEY5QUUwMi81WWpIUG15MF9i T0xoTzVBLVBtMlRGQy1TM00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKlV/E+jUDEI+RF2FESaB9HeK37XcCmcVE8tt9jWCo2NNyixZZ4pgs6UCCM9l jEoB9v2t4PsP2BL8YGWDoYaNkdARhsPqeigW4H2KT+ezxMEK8ZJf2nOY6UAe3b2o t4SVXyDEc3glBzXDGWkAyvwNYS7GAirn72E/v66HZYfS0nlZLGZ2QxYVOj2dbkIT whYsiiirbkXwByDhe9cLcsKnhdfszKGveUMA9KUl4tl+HrDxoXimJdLWhFzBVXCp NNJFICEhdiCRsx1Jl5whFkPefvnDJN/IK6Fi9/1fiX6NGPKLnGwG7XqZv3nQ0Qbe zv4DZu3YOXMwBin3AnZdFfQxAw== -----END CERTIFICATE-----Generated at Sat Mar 28 12:00:24 2026 by rpki-client