$ rpki-client -vvf rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft File: 5HE8G511dZKVr2TN-6YrcNuaBTc.mft (raw, json) Hash identifier: IBTKYjWkCav8zF7GwGhaT674sdXBrKueeG6GEfgvUII= Subject key identifier: A0:67:09:6D:9E:4F:9C:D6:DF:9B:29:9B:7C:DD:88:E7:49:DE:B6:08 Authority key identifier: E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37 Certificate issuer: /CN=A91561B7/serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537 Certificate serial: 1E51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft Manifest number: 1E36 Signing time: Tue 24 Mar 2026 16:00:23 +0000 Manifest this update: Tue 24 Mar 2026 16:00:22 +0000 Manifest next update: Tue 31 Mar 2026 16:00:22 +0000 Files and hashes: 1: 5HE8G511dZKVr2TN-6YrcNuaBTc.crl (hash: +Nw9yBT/qyDiZD1nbkeBTg5O83ZFVKGqhCooNTD9lO8=) 2: 4865DD00A13B11E687921078C4F9AE02.roa (hash: ct9I/aMYPGYqo53jKTnyxK/j3JeT25nkuXtpX13/eJM=) 3: 1D57FF40A01311E684546521C4F9AE02.roa (hash: lNaIu73lqivuKf4impc1RoL9Iorynr8Oq1i414eOVLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7761 (0x1e51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91561B7, serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537 Validity Not Before: Mar 24 16:00:22 2026 GMT Not After : Mar 31 16:00:22 2026 GMT Subject: CN=69c2b517-4717 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:51:9b:80:cf:11:e7:f6:53:a6:ca:bd:ec:21: bd:f2:1a:1f:79:b8:04:22:af:0c:d3:dd:c0:f5:f4: e4:89:32:6d:f6:79:ed:c8:ae:fa:bb:09:45:0b:a9: 1a:44:fc:af:79:be:75:da:ee:10:a0:0e:74:0c:f6: 4a:a7:b8:b3:3b:b8:5f:57:81:77:03:d1:86:06:6b: 3d:79:28:7b:d7:38:27:d0:65:62:3f:ef:78:a6:34: 4f:ea:15:6f:32:a5:14:a1:98:75:4f:17:4e:ca:6f: e7:6a:eb:21:a8:0b:13:6a:18:fd:33:8a:1a:4d:9f: ed:92:89:e1:b7:5c:8d:22:f8:2c:4f:31:33:01:04: 05:c2:ba:70:5f:f3:01:e7:bc:48:4a:a4:22:75:c7: e3:0e:7c:29:77:9d:e8:d7:fd:aa:42:86:64:01:74: 80:0f:5c:c8:52:3a:8b:b3:5b:c5:78:cc:a0:5e:69: d8:0e:ba:ac:e7:df:c8:47:1b:40:12:b4:da:42:8e: 66:69:bf:ff:d6:95:3d:12:52:28:a5:1b:69:a2:1f: 38:f1:a2:51:4d:6b:a8:7f:64:10:d5:f9:8c:c0:36: fd:6f:eb:c5:61:c0:06:36:40:e4:70:3e:57:8c:bf: e3:70:7a:22:8d:8c:6e:98:e1:3c:02:3d:72:a7:b1: c7:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:67:09:6D:9E:4F:9C:D6:DF:9B:29:9B:7C:DD:88:E7:49:DE:B6:08 X509v3 Authority Key Identifier: keyid:E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:47:22:1d:14:5f:d9:9e:60:28:92:3f:21:30:68:28:01:8f: 3b:b6:9f:cf:dc:86:1a:1a:a8:0e:5f:ce:11:5e:28:ac:bf:7f: b0:c6:72:d5:01:61:13:08:32:a3:79:f4:e2:d2:bc:97:be:2e: 59:62:e6:a3:03:48:99:12:8f:d6:7d:49:fa:d4:76:02:fd:08: 63:2c:37:31:b5:31:43:2a:cf:80:f6:85:05:d9:87:1a:25:a3: 48:28:be:29:2a:c6:06:55:95:66:eb:d6:4c:60:22:63:17:b7: 83:b1:97:5a:ad:9f:e7:48:79:d2:63:aa:40:d9:5b:d7:14:69: 92:09:b0:fd:5b:88:37:94:0e:96:4c:f8:5f:62:d1:92:e0:47: be:cd:f5:5e:17:87:b4:7b:f7:09:44:f2:4f:f0:95:54:d5:35: 1e:2b:07:0b:d5:cf:14:30:1a:3c:ec:94:a0:f3:a3:64:e5:14: d7:71:ea:ea:f8:c6:d5:6e:84:9d:3e:54:96:71:6a:6a:7a:16: 38:a4:4c:bd:3c:92:9b:11:59:df:db:71:00:10:47:c5:7e:3c: 0b:2b:53:8e:cd:df:ae:ce:3b:b9:95:1a:1d:0c:78:a0:cf:e1: e5:f8:26:d8:d7:e4:d6:1c:c6:3a:8e:58:56:2e:96:d3:97:b2: 23:36:ad:a3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYxQjcxMTAvBgNVBAUTKEU0NzEzQzFCOUQ3NTc1OTI5NUFGNjRDREZCQTYyQjcw REI5QTA1MzcwHhcNMjYwMzI0MTYwMDIyWhcNMjYwMzMxMTYwMDIyWjAYMRYwFAYD VQQDEw02OWMyYjUxNy00NzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7FGbgM8R5/ZTpsq97CG98hofebgEIq8M093A9fTkiTJt9nntyK76uwlFC6ka RPyveb512u4QoA50DPZKp7izO7hfV4F3A9GGBms9eSh71zgn0GViP+94pjRP6hVv MqUUoZh1TxdOym/naushqAsTahj9M4oaTZ/tkonht1yNIvgsTzEzAQQFwrpwX/MB 57xISqQidcfjDnwpd53o1/2qQoZkAXSAD1zIUjqLs1vFeMygXmnYDrqs59/IRxtA ErTaQo5mab//1pU9ElIopRtpoh848aJRTWuof2QQ1fmMwDb9b+vFYcAGNkDkcD5X jL/jcHoijYxumOE8Aj1yp7HHwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKBnCW2e T5zW35spm3zdiOdJ3rYIMB8GA1UdIwQYMBaAFORxPBuddXWSla9kzfumK3DbmgU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjFCNy81RkExRUQzMDlF RjAxMUU2ODExMDI3MzNDNEY5QUUwMi81SEU4RzUxMWRaS1ZyMlROLTZZcmNOdWFC VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIRThHNTExZFpLVnIyVE4tNllyY051YUJUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjFCNy81RkExRUQzMDlFRjAxMUU2ODExMDI3MzNDNEY5QUUwMi81SEU4RzUxMWRa S1ZyMlROLTZZcmNOdWFCVGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAm0ciHRRf2Z5gKJI/ITBoKAGPO7afz9yGGhqoDl/OEV4orL9/sMZy1QFhEwgy o3n04tK8l74uWWLmowNImRKP1n1J+tR2Av0IYyw3MbUxQyrPgPaFBdmHGiWjSCi+ KSrGBlWVZuvWTGAiYxe3g7GXWq2f50h50mOqQNlb1xRpkgmw/VuIN5QOlkz4X2LR kuBHvs31XheHtHv3CUTyT/CVVNU1HisHC9XPFDAaPOyUoPOjZOUU13Hq6vjG1W6E nT5UlnFqanoWOKRMvTySmxFZ39txABBHxX48CytTjs3frs47uZUaHQx4oM/h5fgm 2Nfk1hzGOo5YVi6W05eyIzatow== -----END CERTIFICATE-----Generated at Thu Mar 26 02:41:30 2026 by rpki-client