$ rpki-client -vvf rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft File: u5dqWY5eywXjf6wApbeIjlf1HFI.mft (raw, json) Hash identifier: 15AzgN392Dzm74USo/G9+KUlgbwwKb1f6g70Ks1NN28= Subject key identifier: B7:45:7F:EB:B5:6B:2F:D1:CA:AC:5D:FE:F2:26:9C:88:5E:A7:4F:67 Authority key identifier: BB:97:6A:59:8E:5E:CB:05:E3:7F:AC:00:A5:B7:88:8E:57:F5:1C:52 Certificate issuer: /CN=A91590E3/serialNumber=BB976A598E5ECB05E37FAC00A5B7888E57F51C52 Certificate serial: 19A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5dqWY5eywXjf6wApbeIjlf1HFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft Manifest number: 1963 Signing time: Tue 24 Mar 2026 16:21:19 +0000 Manifest this update: Tue 24 Mar 2026 16:21:19 +0000 Manifest next update: Tue 31 Mar 2026 16:21:19 +0000 Files and hashes: 1: u5dqWY5eywXjf6wApbeIjlf1HFI.crl (hash: +GjiBOoxz9x9AMjtgTQxyJPh33vB0UjKlVzNiaQTNtY=) 2: 4D12993446CC11F08EB9471AC4F9AE02.roa (hash: kZ0uphZPyCd+wbYNkHA1SsHf26EQjAMAFcs0tjZEC/Q=) 3: 1295ACC8511811F0BC16C641C4F9AE02.roa (hash: sxrPqnbF6T43GAzl7GDJj3PzJSHlDC7K4T4ROo3CtKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.crl rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5dqWY5eywXjf6wApbeIjlf1HFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:21:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6560 (0x19a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91590E3, serialNumber=BB976A598E5ECB05E37FAC00A5B7888E57F51C52 Validity Not Before: Mar 24 16:21:19 2026 GMT Not After : Mar 31 16:21:19 2026 GMT Subject: CN=69c2b9ff-6b47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:4f:6d:5b:8c:a0:1a:42:4d:ea:33:a1:7b:84: f9:67:a1:0c:7e:16:57:86:23:18:3c:85:92:8f:80: f0:f9:46:69:b2:9f:28:0c:7d:73:f0:89:15:8c:c3: 3e:ba:12:9f:b2:91:49:9b:be:2e:b0:50:35:1e:e9: f0:63:c9:f6:5a:ae:5f:6f:68:30:2b:12:3f:5e:2b: 2c:8f:6f:de:00:ae:0a:b7:fe:43:0b:28:fb:33:51: af:9a:fb:9c:69:8a:8b:04:ae:40:22:a7:4c:8c:a7: 74:06:e4:14:17:5d:fc:ba:5d:c1:14:2d:a8:27:01: 9a:e7:ee:a0:a0:1e:2a:54:74:de:d5:32:e4:38:66: ff:cd:b9:69:71:0e:ed:c7:28:4b:8d:24:e0:29:5d: b4:ea:cf:f0:d4:61:43:8d:e6:0b:8c:0c:c4:d0:62: f8:cf:15:5b:c2:c8:df:5c:79:84:c8:f1:c1:c5:12: e4:fe:b4:b8:58:74:bb:1e:7a:5c:33:78:c6:4d:e3: b1:ea:19:d5:7b:c5:8c:6a:37:71:dc:39:40:03:1d: 85:c7:11:2c:78:20:1a:73:66:65:52:43:ed:33:10: 47:95:f1:26:9d:4a:fb:c3:94:d6:2c:db:f0:9f:94: 32:8b:7d:fc:3c:11:0c:32:25:5b:31:57:3f:cd:f4: 41:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:45:7F:EB:B5:6B:2F:D1:CA:AC:5D:FE:F2:26:9C:88:5E:A7:4F:67 X509v3 Authority Key Identifier: keyid:BB:97:6A:59:8E:5E:CB:05:E3:7F:AC:00:A5:B7:88:8E:57:F5:1C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5dqWY5eywXjf6wApbeIjlf1HFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:0c:e7:ce:0d:e2:c8:89:1e:b5:62:6e:1b:38:cb:a9:eb:3b: 0a:d1:29:09:46:6c:b4:0d:51:dd:06:9f:3e:b6:28:8c:b5:fb: 6e:25:13:1c:b0:30:bc:dd:3b:36:c9:45:f8:e3:6d:f1:96:9b: aa:c8:13:74:28:c2:dc:5a:6e:f9:31:a4:cf:78:fc:e7:89:bd: 56:fd:4d:50:e1:b2:54:a7:cf:a2:2b:e8:66:eb:38:15:d1:3b: 45:94:bf:06:cc:aa:34:ae:93:15:0b:94:5a:84:bc:b6:e3:af: b6:94:11:81:1d:80:e5:3f:a7:32:43:bc:33:7d:f6:6f:77:01: 61:b7:d6:70:62:26:21:b9:33:3f:0d:90:7c:9a:49:0a:37:93: b0:9a:95:14:a2:7a:2a:da:2d:18:d6:b0:70:c6:86:37:3a:22: e7:68:34:db:f3:29:8c:3b:7a:f1:c7:16:1c:1c:7f:a0:44:10: 04:e9:be:52:7d:6f:0a:1c:46:45:f3:2e:8b:60:dd:bc:3c:3e: 75:59:0d:4d:c5:09:43:ca:3d:d2:26:54:11:b1:b7:5d:01:28: c2:a2:96:a5:0d:20:d2:44:f6:9f:2e:5d:a0:e0:8a:d3:39:07: c5:2a:22:6a:23:0c:d9:22:73:57:dc:74:63:cb:e3:01:3c:c1: 78:77:4e:cc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTkwRTMxMTAvBgNVBAUTKEJCOTc2QTU5OEU1RUNCMDVFMzdGQUMwMEE1Qjc4ODhF NTdGNTFDNTIwHhcNMjYwMzI0MTYyMTE5WhcNMjYwMzMxMTYyMTE5WjAYMRYwFAYD VQQDEw02OWMyYjlmZi02YjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyk9tW4ygGkJN6jOhe4T5Z6EMfhZXhiMYPIWSj4Dw+UZpsp8oDH1z8IkVjMM+ uhKfspFJm74usFA1HunwY8n2Wq5fb2gwKxI/Xissj2/eAK4Kt/5DCyj7M1Gvmvuc aYqLBK5AIqdMjKd0BuQUF138ul3BFC2oJwGa5+6goB4qVHTe1TLkOGb/zblpcQ7t xyhLjSTgKV206s/w1GFDjeYLjAzE0GL4zxVbwsjfXHmEyPHBxRLk/rS4WHS7Hnpc M3jGTeOx6hnVe8WMajdx3DlAAx2FxxEseCAac2ZlUkPtMxBHlfEmnUr7w5TWLNvw n5Qyi338PBEMMiVbMVc/zfRBrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLdFf+u1 ay/Ryqxd/vImnIhep09nMB8GA1UdIwQYMBaAFLuXalmOXssF43+sAKW3iI5X9RxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTBFMy9EQTE4QjE4NDlB NDkxMUU3OUE5RjMwMzBDNEY5QUUwMi91NWRxV1k1ZXl3WGpmNndBcGJlSWpsZjFI RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U1ZHFXWTVleXdYamY2d0FwYmVJamxmMUhGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTBFMy9EQTE4QjE4NDlBNDkxMUU3OUE5RjMwMzBDNEY5QUUwMi91NWRxV1k1ZXl3 WGpmNndBcGJlSWpsZjFIRkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACQznzg3iyIketWJuGzjLqes7CtEpCUZstA1R3QafPrYojLX7biUTHLAwvN07 NslF+ONt8ZabqsgTdCjC3Fpu+TGkz3j854m9Vv1NUOGyVKfPoivoZus4FdE7RZS/ BsyqNK6TFQuUWoS8tuOvtpQRgR2A5T+nMkO8M332b3cBYbfWcGImIbkzPw2QfJpJ CjeTsJqVFKJ6KtotGNawcMaGNzoi52g02/MpjDt68ccWHBx/oEQQBOm+Un1vChxG RfMui2DdvDw+dVkNTcUJQ8o90iZUEbG3XQEowqKWpQ0g0kT2ny5doOCK0zkHxSoi aiMM2SJzV9x0Y8vjATzBeHdOzA== -----END CERTIFICATE-----Generated at Thu Mar 26 19:44:18 2026 by rpki-client