$ rpki-client -vvf rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft File: -tm5N3fQzrort6a3jVB_d5CSHAY.mft (raw, json) Hash identifier: Xgty4zxMrPMcyZgNBsJipI7FEvSYr4YMsF++2ELYEX8= Subject key identifier: 1C:4F:02:43:6E:D3:CF:EC:43:C7:5C:42:AD:FD:93:0B:2B:E8:24:63 Authority key identifier: FA:D9:B9:37:77:D0:CE:BA:2B:B7:A6:B7:8D:50:7F:77:90:92:1C:06 Certificate issuer: /CN=A91557F2/serialNumber=FAD9B93777D0CEBA2BB7A6B78D507F7790921C06 Certificate serial: 0780 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tm5N3fQzrort6a3jVB_d5CSHAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft Manifest number: 0965 Signing time: Tue 24 Mar 2026 21:17:40 +0000 Manifest this update: Tue 24 Mar 2026 21:17:40 +0000 Manifest next update: Tue 31 Mar 2026 21:17:40 +0000 Files and hashes: 1: -tm5N3fQzrort6a3jVB_d5CSHAY.crl (hash: Y07+N1kEFd1zoDCVEU6I7S3E8UlCxvoSgH+MgHQ3Kz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.crl rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tm5N3fQzrort6a3jVB_d5CSHAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:17:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1920 (0x780) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557F2, serialNumber=FAD9B93777D0CEBA2BB7A6B78D507F7790921C06 Validity Not Before: Mar 24 21:17:40 2026 GMT Not After : Mar 31 21:17:40 2026 GMT Subject: CN=69c2ff74-5592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:f5:f5:de:ac:1e:57:95:2a:db:7e:a6:72:b4: f4:9d:2e:26:8a:33:6f:b2:87:0d:d8:82:ce:12:83: c1:b7:37:df:39:6a:e6:3f:c9:00:df:83:14:60:25: 99:63:8c:75:ad:5c:b2:16:f2:38:04:7c:45:33:13: 04:5a:34:e4:5c:fc:ab:39:02:2a:af:fc:99:61:eb: b0:b3:84:8d:cd:e1:cd:97:a1:b0:b9:05:cb:f6:5d: 45:6d:69:51:4d:c8:57:ca:62:ee:c7:1e:d0:67:74: b5:f7:d5:2c:f1:26:fb:65:98:68:6a:e1:fd:27:0b: d8:86:68:90:78:04:38:fd:48:29:68:d3:27:7b:91: 38:53:32:76:38:4a:74:22:1a:c5:e0:89:9f:27:a9: d8:b9:0d:2b:35:a3:b3:b0:7c:23:b6:77:c9:2b:83: 42:57:b8:76:d2:e7:18:ce:c3:b6:1b:78:7e:57:0e: 92:5f:f5:b2:ff:bb:b7:64:a0:bf:7f:4e:83:ad:00: 19:6c:10:e2:f4:8e:02:67:c6:53:6e:1b:db:4b:84: 23:0e:dd:1c:d2:64:68:13:5c:bb:3c:87:4d:c3:e2: cd:6f:97:b2:f3:49:cc:6f:2e:43:44:5c:51:ea:60: 36:37:a1:f9:98:ea:ca:b7:dd:a8:4d:9c:89:5f:4b: dd:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:4F:02:43:6E:D3:CF:EC:43:C7:5C:42:AD:FD:93:0B:2B:E8:24:63 X509v3 Authority Key Identifier: keyid:FA:D9:B9:37:77:D0:CE:BA:2B:B7:A6:B7:8D:50:7F:77:90:92:1C:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tm5N3fQzrort6a3jVB_d5CSHAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:cc:a8:aa:07:0a:07:ca:df:67:8c:4a:a1:23:eb:37:65:23: 7d:8b:5d:25:49:d6:d9:2d:bd:2a:86:0d:13:43:e1:08:64:00: ab:91:83:86:00:2a:14:e9:45:ca:d6:dd:c0:7d:9f:97:f4:be: d4:43:b8:c3:db:22:96:9a:f4:b2:fa:14:0d:60:09:26:69:31: cb:1e:d9:d8:bd:2f:05:74:f4:d7:5f:a7:ec:52:84:47:0a:7a: 3e:27:30:a7:25:1c:47:08:c2:44:97:8e:73:58:a7:f5:7b:2e: 6f:63:cd:13:a3:04:53:44:03:26:2b:0a:0e:85:89:24:5b:4e: 76:79:a6:5d:58:76:18:80:ae:cb:a2:ac:6f:7f:e3:08:f7:84: bb:06:7a:f2:3f:15:8a:29:ec:6d:f7:34:1b:60:23:aa:11:69: e2:ce:54:77:a9:d6:26:4e:c9:4b:03:40:b9:4c:15:88:68:6a: 0e:5f:7f:84:73:eb:4b:b5:aa:2e:cf:80:97:48:23:d4:f3:e5: 5b:4e:12:9a:1e:f4:34:db:5d:c8:33:bc:c3:4c:49:77:ad:68: 93:34:9e:49:55:f4:e7:11:ec:1a:d1:ca:2e:8f:3b:89:96:d0: bf:d0:31:2a:d9:6b:c7:e6:35:88:73:17:09:a5:33:c6:89:ac: 26:17:e2:d6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3RjIxMTAvBgNVBAUTKEZBRDlCOTM3NzdEMENFQkEyQkI3QTZCNzhENTA3Rjc3 OTA5MjFDMDYwHhcNMjYwMzI0MjExNzQwWhcNMjYwMzMxMjExNzQwWjAYMRYwFAYD VQQDEw02OWMyZmY3NC01NTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiPX13qweV5Uq236mcrT0nS4mijNvsocN2ILOEoPBtzffOWrmP8kA34MUYCWZ Y4x1rVyyFvI4BHxFMxMEWjTkXPyrOQIqr/yZYeuws4SNzeHNl6GwuQXL9l1FbWlR TchXymLuxx7QZ3S199Us8Sb7ZZhoauH9JwvYhmiQeAQ4/UgpaNMne5E4UzJ2OEp0 IhrF4ImfJ6nYuQ0rNaOzsHwjtnfJK4NCV7h20ucYzsO2G3h+Vw6SX/Wy/7u3ZKC/ f06DrQAZbBDi9I4CZ8ZTbhvbS4QjDt0c0mRoE1y7PIdNw+LNb5ey80nMby5DRFxR 6mA2N6H5mOrKt92oTZyJX0vduQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBxPAkNu 08/sQ8dcQq39kwsr6CRjMB8GA1UdIwQYMBaAFPrZuTd30M66K7emt41Qf3eQkhwG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdGMi8yMzM1MDRBNDRG Q0MxMUVCOURCRTdGNURDNEY5QUUwMi8tdG01TjNmUXpyb3J0NmEzalZCX2Q1Q1NI QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy10bTVOM2ZRenJvcnQ2YTNqVkJfZDVDU0hBWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdGMi8yMzM1MDRBNDRGQ0MxMUVCOURCRTdGNURDNEY5QUUwMi8tdG01TjNmUXpy b3J0NmEzalZCX2Q1Q1NIQVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdsyoqgcKB8rfZ4xKoSPrN2UjfYtdJUnW2S29KoYNE0PhCGQAq5GDhgAqFOlF ytbdwH2fl/S+1EO4w9silpr0svoUDWAJJmkxyx7Z2L0vBXT011+n7FKERwp6Picw pyUcRwjCRJeOc1in9Xsub2PNE6MEU0QDJisKDoWJJFtOdnmmXVh2GICuy6Ksb3/j CPeEuwZ68j8Viinsbfc0G2AjqhFp4s5Ud6nWJk7JSwNAuUwViGhqDl9/hHPrS7Wq Ls+Al0gj1PPlW04Smh70NNtdyDO8w0xJd61okzSeSVX05xHsGtHKLo87iZbQv9Ax Ktlrx+Y1iHMXCaUzxomsJhfi1g== -----END CERTIFICATE-----Generated at Thu Mar 26 07:11:23 2026 by rpki-client