$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft File: s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft (raw, json) Hash identifier: 7S1sKJyz5YxVvbq4rbNBKENF98rT30XX94hQvs9tJl8= Subject key identifier: 07:01:1D:1D:59:8B:1B:4B:82:51:9F:85:94:D3:FA:43:62:11:E6:33 Authority key identifier: B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 Certificate issuer: /CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Certificate serial: 3806 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft Manifest number: 36A5 Signing time: Tue 24 Mar 2026 14:24:50 +0000 Manifest this update: Tue 24 Mar 2026 14:24:50 +0000 Manifest next update: Tue 31 Mar 2026 14:24:50 +0000 Files and hashes: 1: s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl (hash: 3VbRSZvqhE4LTt8HVBWHqLF8Gn1qkNrWUVEv5d11co4=) 2: B6704306C9F111F08975B813C4F9AE02.roa (hash: QnDSYmh9AS+vc7/gM3qgxQlZaNKWdqAp8+Ehbtb0lnc=) 3: 160B219870BA11E99E0F6D2DC4F9AE02.roa (hash: 6MJI5nd76wUg6mIJiXKwgcaYmVbyO2X4VHI5tQqt2gM=) 4: 9AF37E96D71B11EA9532F30CC4F9AE02.roa (hash: 548W6O4jy2t4m978fP7/vkFNV7StaszXL5cUkqOrlsQ=) 5: B0EB27B470B811E9B32F6726C4F9AE02.roa (hash: z4MfCyr+jDttoP5VW5Vb0l643tPHIibVvGJ7ZyGfs8M=) 6: 71D60BC2F6BA11EB865C4246C4F9AE02.roa (hash: KFI2tWHfw3kppvCKmuDyoJI/TXZwNEgYE/dBKADg924=) 7: 26A143C291EB11EF8A024083C4F9AE02.roa (hash: qOuOZrrZglkih59X/Pjz7efqStftFhfdFn50wlzJXt4=) 8: 305A13D6C9F211F0ABA27932C4F9AE02.roa (hash: unDI0B1NCV784w9ICa83KEyghQPDfgmMYasL1CwiBos=) 9: 18F4FD76918111EC93DCA42AC4F9AE02.roa (hash: aZB+rnqYjRl4Uc+17dt2ByemLhQ+5bYKCdCl9y70GQM=) 10: B36EA83C70B111E98CFFF710C4F9AE02.roa (hash: 2nquH/Th3aV+FpaTguBv+jy8p2aXbOfhDSjXTwmNigg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14342 (0x3806) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Validity Not Before: Mar 24 14:24:50 2026 GMT Not After : Mar 31 14:24:50 2026 GMT Subject: CN=69c29eb2-03fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:aa:80:67:09:20:3f:24:28:64:33:84:11:13: 08:e7:23:c5:b4:d4:f4:65:69:57:25:b7:69:c0:7b: 8f:32:5f:c6:e8:22:8b:3a:4a:24:0c:8b:38:a7:77: db:ae:5d:b7:c4:b0:e5:20:38:98:9d:65:4d:2f:d9: 24:f6:4c:38:40:d4:98:1b:68:4a:a8:8f:10:cc:bd: 50:a5:92:2d:d8:a3:fe:ae:a5:0c:2f:45:2c:8b:16: c7:65:4e:e4:eb:dc:b9:fa:98:9a:c2:26:a6:bb:8b: 04:3d:84:de:9e:0c:b0:17:da:3e:7d:c1:d5:4c:4e: 3e:bb:56:c8:6b:48:10:37:05:d4:d1:0c:47:44:15: 08:15:35:e3:3b:28:3e:e5:b6:90:d7:35:08:fc:fe: 2c:0e:c6:71:d8:2f:56:f6:ca:66:3f:4f:66:c0:79: 4d:34:72:93:a0:a0:ee:b4:81:df:d3:4c:c5:65:d9: 21:ec:dd:53:12:4e:07:24:94:db:c8:67:9e:1b:0c: 21:1a:ac:58:4a:ec:e5:6f:1b:58:76:14:4f:5d:61: 4c:69:22:c0:68:9c:10:be:fa:24:87:32:2d:be:a0: 23:14:f7:bf:06:9c:4d:c2:a0:64:85:11:36:49:ef: 5b:70:31:7e:99:89:83:85:f2:bf:31:0e:83:f6:12: 85:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:01:1D:1D:59:8B:1B:4B:82:51:9F:85:94:D3:FA:43:62:11:E6:33 X509v3 Authority Key Identifier: keyid:B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:22:f6:21:0e:cd:3b:d5:72:e6:f8:da:dc:69:e4:fa:1d:88: dc:c4:a2:8e:35:aa:01:f5:72:e0:a4:ea:9a:3e:7b:f5:fd:14: bf:d4:1a:8e:6b:2f:95:41:1e:39:91:e7:d7:64:9d:51:fe:35: 99:a3:20:e1:f2:38:84:67:0d:ab:fb:e6:59:2e:21:ac:11:3f: 04:32:bf:13:cb:36:8d:27:19:a0:07:72:3f:85:58:28:ce:46: 6a:2c:b2:f5:b7:c5:2a:c9:f4:04:d9:0c:8e:96:aa:32:7c:26: f3:d3:49:74:25:a8:f3:0c:01:0b:4d:e7:87:fc:0c:90:5a:17: 2c:ef:68:84:45:e4:cd:9d:c7:83:28:56:c3:a2:e5:90:44:ec: 99:23:3c:a1:2f:60:60:28:12:52:49:a9:4d:96:8a:da:f1:1e: 49:38:03:23:38:bc:6a:f7:71:15:0a:e2:3a:87:5d:9b:1d:15: 0d:26:06:a5:ed:8d:b6:34:26:ba:11:a5:11:6d:15:32:07:9c: b2:79:f0:86:17:25:fa:16:16:0c:68:30:56:26:f2:98:c6:7a: ec:f7:f2:bc:b0:ba:53:de:86:7b:24:aa:14:c8:0a:30:a7:65: 62:c7:df:a6:40:bb:7a:7e:e8:45:fe:0d:01:87:fa:ac:c6:71: ca:a5:11:57 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICOAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKEIzOTg2NkE5OUQxQ0Q5RjRFN0U4RjUzQzg4QUQxNERB ODlBMTg2MjUwHhcNMjYwMzI0MTQyNDUwWhcNMjYwMzMxMTQyNDUwWjAYMRYwFAYD VQQDEw02OWMyOWViMi0wM2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6qAZwkgPyQoZDOEERMI5yPFtNT0ZWlXJbdpwHuPMl/G6CKLOkokDIs4p3fb rl23xLDlIDiYnWVNL9kk9kw4QNSYG2hKqI8QzL1QpZIt2KP+rqUML0UsixbHZU7k 69y5+piawiamu4sEPYTengywF9o+fcHVTE4+u1bIa0gQNwXU0QxHRBUIFTXjOyg+ 5baQ1zUI/P4sDsZx2C9W9spmP09mwHlNNHKToKDutIHf00zFZdkh7N1TEk4HJJTb yGeeGwwhGqxYSuzlbxtYdhRPXWFMaSLAaJwQvvokhzItvqAjFPe/BpxNwqBkhRE2 Se9bcDF+mYmDhfK/MQ6D9hKFowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAcBHR1Z ixtLglGfhZTT+kNiEeYzMB8GA1UdIwQYMBaAFLOYZqmdHNn05+j1PIitFNqJoYYl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy9FNjU4NTExMjFE ODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJmVG42UFU4aUswVTJvbWho aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1aG1xWjBjMmZUbjZQVThpSzBVMm9taGhpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy9FNjU4NTExMjFEODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJm VG42UFU4aUswVTJvbWhoaVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUSL2IQ7NO9Vy5vja3Gnk+h2I3MSijjWqAfVy4KTqmj579f0Uv9QajmsvlUEe OZHn12SdUf41maMg4fI4hGcNq/vmWS4hrBE/BDK/E8s2jScZoAdyP4VYKM5Gaiyy 9bfFKsn0BNkMjpaqMnwm89NJdCWo8wwBC03nh/wMkFoXLO9ohEXkzZ3HgyhWw6Ll kETsmSM8oS9gYCgSUkmpTZaK2vEeSTgDIzi8avdxFQriOoddmx0VDSYGpe2NtjQm uhGlEW0VMgecsnnwhhcl+hYWDGgwVibymMZ67PfyvLC6U96GeySqFMgKMKdlYsff pkC7en7oRf4NAYf6rMZxyqURVw== -----END CERTIFICATE-----Generated at Thu Mar 26 07:39:24 2026 by rpki-client