$ rpki-client -vvf rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.mft File: s5MbVo8uudLtLKTWS-vAhvuduJo.mft (raw, json) Hash identifier: YhvL9beA5RUwq/toZcHYHNfSsAgz3FIOQ2sNgW4hk+A= Subject key identifier: 13:EB:1A:15:11:C2:E2:29:07:81:6F:2D:0B:7A:71:DD:51:85:6C:54 Authority key identifier: B3:93:1B:56:8F:2E:B9:D2:ED:2C:A4:D6:4B:EB:C0:86:FB:9D:B8:9A Certificate issuer: /CN=A91867F1/serialNumber=B3931B568F2EB9D2ED2CA4D64BEBC086FB9DB89A Certificate serial: 0B37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5MbVo8uudLtLKTWS-vAhvuduJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.mft Manifest number: 0B2E Signing time: Thu 26 Mar 2026 19:11:18 +0000 Manifest this update: Thu 26 Mar 2026 19:11:18 +0000 Manifest next update: Thu 02 Apr 2026 19:11:18 +0000 Files and hashes: 1: s5MbVo8uudLtLKTWS-vAhvuduJo.crl (hash: 6dtYlRoRq6uEXw1CVWH1twG9Mt8IWEX8Lmt25MdxtkQ=) 2: 6FEF33E05C2B11EAAE63403FC4F9AE02.roa (hash: rQIpFdSuQvKVmm77n17tN2g3ny3cWkP4KzrM1O9JcnI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.crl rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5MbVo8uudLtLKTWS-vAhvuduJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 19:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2871 (0xb37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91867F1, serialNumber=B3931B568F2EB9D2ED2CA4D64BEBC086FB9DB89A Validity Not Before: Mar 26 19:11:18 2026 GMT Not After : Apr 2 19:11:18 2026 GMT Subject: CN=69c584d6-053e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b1:0d:09:3c:27:e1:0a:02:af:81:76:c2:57: c1:4e:18:7b:8e:c5:4e:30:e7:b8:f7:94:52:91:0d: f0:d2:94:43:0b:10:ee:1f:94:1b:74:3b:d3:4c:39: eb:77:6e:22:06:f4:95:12:97:1e:6c:56:4a:69:5f: db:27:d6:f4:4f:2d:72:26:34:ff:89:ac:c4:3c:a6: b8:ee:d6:fb:8e:45:52:30:0f:c6:9a:a9:d5:97:e6: 2f:59:0c:60:b2:9b:ef:8f:4b:e7:af:c6:9e:23:25: c0:ff:29:bf:a1:8e:29:5a:1e:79:87:db:ca:d8:c5: 72:8d:0f:43:c1:ae:4e:62:49:ef:48:eb:f4:b1:c5: a2:a0:e7:a0:4c:bf:a1:de:b8:f9:ef:b0:82:23:59: 9e:0c:46:30:b9:34:87:dd:ef:0a:42:1c:ea:38:36: 62:95:22:8f:51:b3:89:a8:17:e1:33:32:7a:53:ff: 15:0e:c3:a7:28:e9:1b:c6:7d:2d:e6:c0:71:34:cc: ff:6d:7a:94:de:82:7e:06:b5:96:9b:9c:1f:33:37: e0:ed:23:db:57:e5:bd:5d:3b:05:b1:ea:d3:a9:1f: 68:35:fe:9b:a9:39:42:6b:c8:f7:86:05:34:f5:bd: 03:9e:9f:a2:2e:8e:c4:18:2b:bb:73:6a:25:52:06: 15:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:EB:1A:15:11:C2:E2:29:07:81:6F:2D:0B:7A:71:DD:51:85:6C:54 X509v3 Authority Key Identifier: keyid:B3:93:1B:56:8F:2E:B9:D2:ED:2C:A4:D6:4B:EB:C0:86:FB:9D:B8:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5MbVo8uudLtLKTWS-vAhvuduJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:37:34:24:dd:ac:84:dc:00:97:a2:d6:d5:9b:d4:5f:1f:e5: 2e:e3:8c:be:9b:46:c0:e2:04:1c:12:60:ea:71:dc:53:2e:13: 3b:a3:e5:ce:32:fa:73:72:e6:3e:6c:85:f9:53:ac:26:92:a8: 48:ac:fe:78:b2:14:3e:39:19:67:67:19:95:f0:9a:4d:a4:10: 92:e3:43:94:43:e6:9e:53:58:34:09:28:60:d7:c4:8f:6c:6a: f8:01:ed:06:0e:b9:78:f3:79:ab:05:f1:fd:7a:2e:09:97:4f: 22:17:2b:72:63:4d:04:ba:b8:79:53:ec:b2:ec:d3:27:2c:d1: 9c:23:8d:d9:70:ca:68:2f:1b:17:6c:3c:da:b0:bf:da:84:25: 2a:ec:a5:9e:ae:6e:f7:2d:75:5c:1f:b6:c4:ac:e0:b3:3a:23: 9c:38:63:76:d0:5a:52:f0:8b:1d:f6:da:fd:36:73:98:c2:56: 2a:9a:91:a1:db:35:79:64:5a:95:27:5e:1b:0a:9e:74:9c:50: d6:87:e6:70:36:db:f9:c9:fe:93:a7:3f:00:fe:c0:98:ae:ad: c8:34:e4:5c:51:a2:b4:a8:b4:e4:d6:76:30:92:f8:72:7c:0d: 33:e1:e9:23:e5:75:2a:0a:1f:db:b8:b6:5f:1a:3c:a9:eb:2a: c7:f6:3c:17 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3RjExMTAvBgNVBAUTKEIzOTMxQjU2OEYyRUI5RDJFRDJDQTRENjRCRUJDMDg2 RkI5REI4OUEwHhcNMjYwMzI2MTkxMTE4WhcNMjYwNDAyMTkxMTE4WjAYMRYwFAYD VQQDEw02OWM1ODRkNi0wNTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqbENCTwn4QoCr4F2wlfBThh7jsVOMOe495RSkQ3w0pRDCxDuH5QbdDvTTDnr d24iBvSVEpcebFZKaV/bJ9b0Ty1yJjT/iazEPKa47tb7jkVSMA/GmqnVl+YvWQxg spvvj0vnr8aeIyXA/ym/oY4pWh55h9vK2MVyjQ9Dwa5OYknvSOv0scWioOegTL+h 3rj577CCI1meDEYwuTSH3e8KQhzqODZilSKPUbOJqBfhMzJ6U/8VDsOnKOkbxn0t 5sBxNMz/bXqU3oJ+BrWWm5wfMzfg7SPbV+W9XTsFserTqR9oNf6bqTlCa8j3hgU0 9b0Dnp+iLo7EGCu7c2olUgYVZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBPrGhUR wuIpB4FvLQt6cd1RhWxUMB8GA1UdIwQYMBaAFLOTG1aPLrnS7Syk1kvrwIb7nbia MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjdGMS84MDlENzE1QzU5 MUExMUVBOTY5MkFBM0NDNEY5QUUwMi9zNU1iVm84dXVkTHRMS1RXUy12QWh2dWR1 Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1TWJWbzh1dWRMdExLVFdTLXZBaHZ1ZHVKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjdGMS84MDlENzE1QzU5MUExMUVBOTY5MkFBM0NDNEY5QUUwMi9zNU1iVm84dXVk THRMS1RXUy12QWh2dWR1Sm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHDc0JN2shNwAl6LW1ZvUXx/lLuOMvptGwOIEHBJg6nHcUy4TO6PlzjL6c3Lm PmyF+VOsJpKoSKz+eLIUPjkZZ2cZlfCaTaQQkuNDlEPmnlNYNAkoYNfEj2xq+AHt Bg65ePN5qwXx/XouCZdPIhcrcmNNBLq4eVPssuzTJyzRnCON2XDKaC8bF2w82rC/ 2oQlKuylnq5u9y11XB+2xKzgszojnDhjdtBaUvCLHfba/TZzmMJWKpqRods1eWRa lSdeGwqedJxQ1ofmcDbb+cn+k6c/AP7AmK6tyDTkXFGitKi05NZ2MJL4cnwNM+Hp I+V1Kgof27i2Xxo8qesqx/Y8Fw== -----END CERTIFICATE-----Generated at Sat Mar 28 12:19:37 2026 by rpki-client