$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft File: s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft (raw, json) Hash identifier: k3zunASP252zcRh3K+zWZrSVPnJgIWSqDswDXSWGt10= Subject key identifier: 3A:63:E8:43:B6:84:5C:C5:A4:71:83:94:14:A4:04:81:5D:EF:A4:F9 Authority key identifier: B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 Certificate issuer: /CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Certificate serial: 3838 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft Manifest number: 36BE Signing time: Thu 26 Mar 2026 10:10:47 +0000 Manifest this update: Thu 26 Mar 2026 10:10:46 +0000 Manifest next update: Thu 02 Apr 2026 10:10:46 +0000 Files and hashes: 1: s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl (hash: Ock+hiMh6Ze547h838oiiH5KgeOO3C4cdleBh3nME0U=) 2: B0EB27B470B811E9B32F6726C4F9AE02.roa (hash: z4MfCyr+jDttoP5VW5Vb0l643tPHIibVvGJ7ZyGfs8M=) 3: 305A13D6C9F211F0ABA27932C4F9AE02.roa (hash: NrPp83eADET8bdfQFh9hNsWD9EoYo/UsIxIfM+Xp3F8=) 4: B36EA83C70B111E98CFFF710C4F9AE02.roa (hash: 2nquH/Th3aV+FpaTguBv+jy8p2aXbOfhDSjXTwmNigg=) 5: 9AF37E96D71B11EA9532F30CC4F9AE02.roa (hash: 548W6O4jy2t4m978fP7/vkFNV7StaszXL5cUkqOrlsQ=) 6: 160B219870BA11E99E0F6D2DC4F9AE02.roa (hash: 6MJI5nd76wUg6mIJiXKwgcaYmVbyO2X4VHI5tQqt2gM=) 7: B6704306C9F111F08975B813C4F9AE02.roa (hash: QnDSYmh9AS+vc7/gM3qgxQlZaNKWdqAp8+Ehbtb0lnc=) 8: 18F4FD76918111EC93DCA42AC4F9AE02.roa (hash: aZB+rnqYjRl4Uc+17dt2ByemLhQ+5bYKCdCl9y70GQM=) 9: 26A143C291EB11EF8A024083C4F9AE02.roa (hash: qOuOZrrZglkih59X/Pjz7efqStftFhfdFn50wlzJXt4=) 10: 71D60BC2F6BA11EB865C4246C4F9AE02.roa (hash: KFI2tWHfw3kppvCKmuDyoJI/TXZwNEgYE/dBKADg924=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 05:36:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14392 (0x3838) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Validity Not Before: Mar 26 10:10:46 2026 GMT Not After : Apr 2 10:10:46 2026 GMT Subject: CN=69c50627-d3da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ad:13:93:d0:82:21:37:cc:09:e2:9f:c9:97: 54:6e:16:5e:e6:b9:de:a2:0a:e6:b2:08:8a:fc:af: 70:47:2f:c0:fb:f9:ce:0f:74:5e:f6:3d:70:b3:e1: 55:e7:b2:5c:e7:8b:49:33:ae:77:4a:e7:2d:a8:6e: 2c:ce:b0:d4:32:86:8c:a5:30:26:23:f8:fe:55:13: 4b:d2:74:c8:11:76:f7:7f:86:6c:0b:ed:9b:49:70: a9:f3:4a:a3:93:41:b0:f1:c6:d8:ae:55:77:6b:46: 73:8d:d2:ef:32:cb:b1:4d:ec:4b:2e:67:18:02:fe: 81:e1:c9:1e:49:43:ea:05:98:cc:68:26:72:1d:5e: c3:a1:e6:d8:9a:65:8d:d4:e5:e5:43:32:bc:d4:15: ea:46:22:aa:52:67:fe:f3:af:c7:c7:ee:d0:f7:56: 64:a6:64:5f:89:67:34:55:94:36:60:47:76:4b:5c: 4f:64:21:76:cb:02:ad:5e:fe:4f:06:04:70:57:f3: 88:98:6e:94:0c:c7:58:ec:a0:6d:7b:fe:6f:a6:17: 01:e4:50:e2:fb:0f:7d:26:ea:7d:9e:8c:d7:25:c4: 8e:4d:c3:21:fc:fb:47:db:ff:1a:7a:5e:c5:f7:da: f3:2f:d2:70:c9:1b:5e:e8:7f:04:47:a0:08:4b:8e: 1d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:63:E8:43:B6:84:5C:C5:A4:71:83:94:14:A4:04:81:5D:EF:A4:F9 X509v3 Authority Key Identifier: keyid:B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:d5:e0:dc:fc:af:ce:c7:0f:ec:49:ea:78:bb:da:4b:0c:25: ac:9d:ed:91:fb:60:63:2d:f1:ee:74:4c:1d:47:e8:10:84:d6: 36:ee:36:ed:d2:32:5e:9f:e3:43:0e:80:5a:4c:98:fc:19:52: 0f:52:e8:f1:87:38:d5:2d:88:f9:a2:90:ff:d4:40:27:ae:d7: e0:29:03:e0:1a:1f:d3:18:69:0d:29:d2:ba:c6:ee:0d:eb:e0: b3:f0:15:c7:26:67:83:24:18:73:ae:be:32:01:b3:2c:0a:ee: 9f:74:cd:80:8a:62:d9:5d:9a:ae:b9:43:10:f2:d5:73:ce:54: 08:08:81:9a:d1:73:57:6e:47:d0:d4:c6:0f:b9:28:56:a2:61: 37:95:d2:15:dd:a8:f1:84:c4:e1:69:ea:0e:ff:42:bb:d0:4e: 96:7e:c1:58:dd:d0:ba:80:c0:0b:ce:cb:28:b7:82:4a:ee:51: c8:d9:2b:21:d9:fd:d8:d1:68:87:c0:30:9b:4b:f6:81:51:5d: 94:d2:77:1a:0e:73:c4:52:5a:70:cf:a2:18:8d:e5:60:31:8b: d2:de:3d:ba:12:5d:2f:da:a5:01:68:91:b9:08:d1:18:3c:a4: 2f:96:01:02:c7:65:64:10:4a:31:92:b9:84:b9:ed:97:f2:18: 27:ca:62:2a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICODgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKEIzOTg2NkE5OUQxQ0Q5RjRFN0U4RjUzQzg4QUQxNERB ODlBMTg2MjUwHhcNMjYwMzI2MTAxMDQ2WhcNMjYwNDAyMTAxMDQ2WjAYMRYwFAYD VQQDEw02OWM1MDYyNy1kM2RhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqa0Tk9CCITfMCeKfyZdUbhZe5rneogrmsgiK/K9wRy/A+/nOD3Re9j1ws+FV 57Jc54tJM653SuctqG4szrDUMoaMpTAmI/j+VRNL0nTIEXb3f4ZsC+2bSXCp80qj k0Gw8cbYrlV3a0ZzjdLvMsuxTexLLmcYAv6B4ckeSUPqBZjMaCZyHV7DoebYmmWN 1OXlQzK81BXqRiKqUmf+86/Hx+7Q91ZkpmRfiWc0VZQ2YEd2S1xPZCF2ywKtXv5P BgRwV/OImG6UDMdY7KBte/5vphcB5FDi+w99Jup9nozXJcSOTcMh/PtH2/8ael7F 99rzL9JwyRte6H8ER6AIS44dSwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDpj6EO2 hFzFpHGDlBSkBIFd76T5MB8GA1UdIwQYMBaAFLOYZqmdHNn05+j1PIitFNqJoYYl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy9FNjU4NTExMjFE ODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJmVG42UFU4aUswVTJvbWho aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1aG1xWjBjMmZUbjZQVThpSzBVMm9taGhpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy9FNjU4NTExMjFEODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJm VG42UFU4aUswVTJvbWhoaVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkNXg3PyvzscP7EnqeLvaSwwlrJ3tkftgYy3x7nRMHUfoEITWNu427dIyXp/j Qw6AWkyY/BlSD1Lo8Yc41S2I+aKQ/9RAJ67X4CkD4Bof0xhpDSnSusbuDevgs/AV xyZngyQYc66+MgGzLArun3TNgIpi2V2arrlDEPLVc85UCAiBmtFzV25H0NTGD7ko VqJhN5XSFd2o8YTE4WnqDv9Cu9BOln7BWN3QuoDAC87LKLeCSu5RyNkrIdn92NFo h8Awm0v2gVFdlNJ3Gg5zxFJacM+iGI3lYDGL0t49uhJdL9qlAWiRuQjRGDykL5YB AsdlZBBKMZK5hLntl/IYJ8piKg== -----END CERTIFICATE-----Generated at Thu Mar 26 13:36:13 2026 by rpki-client