$ rpki-client -vvf rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft File: nB5FqAhMMR3VAEShc2BejuPEzJU.mft (raw, json) Hash identifier: ado0hqszHlwxtwRsCPYhFJmF/yNGHGE2ewnbigs7DOU= Subject key identifier: 54:3B:33:F3:5A:46:24:CB:5D:85:3C:4C:78:44:62:F5:2B:42:53:4F Authority key identifier: 9C:1E:45:A8:08:4C:31:1D:D5:00:44:A1:73:60:5E:8E:E3:C4:CC:95 Certificate issuer: /CN=A91491CC/serialNumber=9C1E45A8084C311DD50044A173605E8EE3C4CC95 Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft Manifest number: 5F Signing time: Wed 25 Mar 2026 07:15:26 +0000 Manifest this update: Wed 25 Mar 2026 07:15:25 +0000 Manifest next update: Wed 01 Apr 2026 07:15:25 +0000 Files and hashes: 1: nB5FqAhMMR3VAEShc2BejuPEzJU.crl (hash: 2SYtugT5Jphkh84qXwio47hG0+obkUGLF3Sc3nci0no=) 2: 31E9004E9A0F11F0BC057E7DC4F9AE02.roa (hash: lMXIM574jb3Z0QsqRGCGYyP7C5VSgFPD1a4YIovILSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.crl rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91491CC, serialNumber=9C1E45A8084C311DD50044A173605E8EE3C4CC95 Validity Not Before: Mar 25 07:15:25 2026 GMT Not After : Apr 1 07:15:25 2026 GMT Subject: CN=69c38b8e-9dc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c2:70:3d:b7:dc:24:d8:0b:cb:81:ae:a9:f7: ae:9a:74:22:18:cb:ac:e4:17:49:48:7c:06:8a:b2: 1f:10:cd:dc:0b:01:52:84:ac:1b:e9:48:2f:d4:2c: 78:30:06:8d:9a:1a:34:da:8a:a7:3b:55:12:b8:e0: f9:11:7a:a6:a8:4b:1f:5b:6f:19:95:3b:13:51:a6: 9f:1b:e7:60:8c:d3:6e:34:5d:bf:9c:0d:3a:70:e3: a3:11:fa:7e:bb:2b:48:73:e2:50:d1:74:1d:10:c9: 3d:fb:06:82:a1:53:b3:f0:b3:0b:2f:0a:2e:e7:c2: bf:d5:c1:1e:25:85:8c:e2:8d:5c:f0:48:ac:b2:b2: 9d:3b:f8:76:13:14:ae:83:49:a7:69:a8:39:3d:aa: 93:72:5b:aa:11:65:c7:5a:38:3c:68:b0:e7:d2:14: 1f:4a:38:70:3e:41:33:31:3c:f7:7a:bf:b1:2d:0c: a6:6b:a0:8b:b5:c2:3f:b7:51:2d:ff:02:48:34:37: ea:0a:73:73:bd:21:2e:eb:a0:b8:55:7c:2b:0f:22: dd:90:aa:f6:9a:6e:f8:d5:0c:50:c4:31:33:55:18: f4:63:61:61:f6:c6:4d:37:b8:47:e6:a6:ef:05:88: a3:b8:2f:f9:00:c4:ca:67:46:26:6b:d6:c7:75:50: 80:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:3B:33:F3:5A:46:24:CB:5D:85:3C:4C:78:44:62:F5:2B:42:53:4F X509v3 Authority Key Identifier: keyid:9C:1E:45:A8:08:4C:31:1D:D5:00:44:A1:73:60:5E:8E:E3:C4:CC:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:d7:70:f0:de:da:99:d8:89:42:d2:6d:b5:68:5b:72:d7:44: a8:07:5c:98:40:61:ed:c4:55:16:42:87:c3:fd:d2:69:96:d5: 85:6a:e6:c4:4f:db:75:c8:a7:ee:d2:9f:9a:f4:5e:49:ea:9a: 43:e8:aa:d2:6f:e5:22:8a:28:a5:3f:9b:ab:86:4a:90:ff:82: b6:a4:92:29:46:d2:1f:dc:da:18:e9:7f:36:f3:22:24:2d:3b: 2c:f6:ec:f5:52:40:8c:eb:8d:4e:93:de:e0:3c:25:67:e1:49: ce:9e:ad:64:37:1c:d1:c1:28:a2:45:20:9b:71:ff:c7:41:41: 96:07:12:74:41:7f:74:65:68:ad:ef:15:a8:4b:23:b7:ab:cd: 73:16:46:5c:e3:89:23:0b:bd:d1:45:e9:2a:4c:5c:b6:56:f9: 1b:8b:b3:8d:6f:1a:5b:24:63:74:27:45:96:78:21:39:db:2c: ea:68:0f:e1:cd:1d:a4:b8:db:b3:c8:d7:5d:1a:1a:f0:b0:14: 27:22:45:46:cd:34:ee:f3:f2:e0:83:91:36:f5:8f:0a:bd:f4: a6:3e:ff:f4:a4:fb:43:8d:01:e4:a9:25:15:a7:46:99:32:2c: 21:50:64:b8:06:5f:53:71:92:88:88:2e:a2:35:3b:0b:df:0d: 0c:70:dd:df -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 OTFDQzExMC8GA1UEBRMoOUMxRTQ1QTgwODRDMzExREQ1MDA0NEExNzM2MDVFOEVF M0M0Q0M5NTAeFw0yNjAzMjUwNzE1MjVaFw0yNjA0MDEwNzE1MjVaMBgxFjAUBgNV BAMTDTY5YzM4YjhlLTlkYzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUwnA9t9wk2AvLga6p966adCIYy6zkF0lIfAaKsh8QzdwLAVKErBvpSC/ULHgw Bo2aGjTaiqc7VRK44PkReqaoSx9bbxmVOxNRpp8b52CM0240Xb+cDTpw46MR+n67 K0hz4lDRdB0QyT37BoKhU7PwswsvCi7nwr/VwR4lhYzijVzwSKyysp07+HYTFK6D SadpqDk9qpNyW6oRZcdaODxosOfSFB9KOHA+QTMxPPd6v7EtDKZroIu1wj+3US3/ Akg0N+oKc3O9IS7roLhVfCsPIt2QqvaabvjVDFDEMTNVGPRjYWH2xk03uEfmpu8F iKO4L/kAxMpnRiZr1sd1UICVAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUVDsz81pG JMtdhTxMeERi9StCU08wHwYDVR0jBBgwFoAUnB5FqAhMMR3VAEShc2BejuPEzJUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5MUNDLzlERjA3RTQ0OUEw RTExRjA4OUM4OEI3Q0M0RjlBRTAyL25CNUZxQWhNTVIzVkFFU2hjMkJlanVQRXpK VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbkI1RnFBaE1NUjNWQUVTaGMyQmVqdVBFekpVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5 MUNDLzlERjA3RTQ0OUEwRTExRjA4OUM4OEI3Q0M0RjlBRTAyL25CNUZxQWhNTVIz VkFFU2hjMkJlanVQRXpKVS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCT13Dw3tqZ2IlC0m21aFty10SoB1yYQGHtxFUWQofD/dJpltWFaubET9t1yKfu 0p+a9F5J6ppD6KrSb+UiiiilP5urhkqQ/4K2pJIpRtIf3NoY6X828yIkLTss9uz1 UkCM641Ok97gPCVn4UnOnq1kNxzRwSiiRSCbcf/HQUGWBxJ0QX90ZWit7xWoSyO3 q81zFkZc44kjC73RRekqTFy2Vvkbi7ONbxpbJGN0J0WWeCE52yzqaA/hzR2kuNuz yNddGhrwsBQnIkVGzTTu8/Lgg5E29Y8KvfSmPv/0pPtDjQHkqSUVp0aZMiwhUGS4 Bl9TcZKIiC6iNTsL3w0McN3f -----END CERTIFICATE-----Generated at Thu Mar 26 17:27:28 2026 by rpki-client