$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft File: 5bRMaejecz32GWYFbn5BXsfHDSo.mft (raw, json) Hash identifier: uSj9DkmwOKwlP8T7Ww4CLPYGvy4uLDxe1fSR5EaIt44= Subject key identifier: 06:81:F1:E3:26:4B:FA:E4:96:05:20:01:1C:3C:BE:B1:29:9C:26:30 Authority key identifier: E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A Certificate issuer: /CN=A91B4873/serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Certificate serial: 014C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft Manifest number: 0146 Signing time: Wed 25 Mar 2026 04:28:45 +0000 Manifest this update: Wed 25 Mar 2026 04:28:45 +0000 Manifest next update: Wed 01 Apr 2026 04:28:45 +0000 Files and hashes: 1: 5bRMaejecz32GWYFbn5BXsfHDSo.crl (hash: Q698uC59bNd1kiiuBzye/ClVy81MaN50VY29EsO9b8s=) 2: F9AAE6F8994011F097180C40C4F9AE02.roa (hash: +BAp+39366AUiOK5SmP/mdRqu6NWeoWLjWnOKT+SW/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:28:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873, serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Validity Not Before: Mar 25 04:28:45 2026 GMT Not After : Apr 1 04:28:45 2026 GMT Subject: CN=69c3647d-37e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d9:ba:99:cc:fe:8a:bd:0f:2d:04:0f:e4:f6: b7:55:3f:03:56:66:93:ea:6b:7d:35:e3:a8:07:83: a9:b8:78:31:60:17:35:ed:cf:a0:c2:3d:85:9d:22: 75:5e:73:23:0e:91:fa:39:c6:00:b6:d9:76:d2:32: 37:7e:8a:d0:19:3d:23:ff:3f:df:b6:27:7b:35:21: a1:ee:c4:56:42:0e:97:64:40:e3:7c:06:3c:d2:ac: fe:5e:5b:1e:5c:99:e7:31:96:e7:ad:33:bf:bf:0c: 51:c5:4f:10:c7:5d:c9:10:c9:29:c3:6c:c0:55:83: 5c:67:52:b6:7f:4d:dc:2c:f4:86:ee:6f:13:6a:1d: da:5f:64:e1:7d:ce:8c:30:3e:78:cb:15:1e:8f:e4: 4b:df:c7:53:a6:86:6b:83:21:c8:ed:c1:19:47:3c: a0:fc:50:e4:63:51:a2:61:65:04:a4:fc:72:42:67: cc:02:ae:00:c1:5a:d7:ae:20:3c:aa:5c:fa:4f:18: 4f:21:ca:f6:c9:29:c7:84:52:ef:b4:7c:08:52:35: ce:b4:41:8f:01:cd:49:03:1c:fa:24:e7:13:28:8f: 7b:13:02:6f:26:f4:3b:ee:3f:1b:5b:d2:31:0a:18: ee:c6:a3:67:d3:4f:55:e3:5a:69:06:7d:b4:4e:c4: d5:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:81:F1:E3:26:4B:FA:E4:96:05:20:01:1C:3C:BE:B1:29:9C:26:30 X509v3 Authority Key Identifier: keyid:E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:4e:27:4e:b0:40:2a:02:b4:aa:76:ad:de:68:ac:3b:da:ec: a1:25:9d:c1:67:ce:5b:82:c8:25:99:5d:38:7a:5d:3b:6d:ef: f0:6d:25:86:3e:d8:99:96:d5:0e:2c:f8:4b:d1:43:0e:46:04: 0c:df:4b:29:cd:5f:4f:dd:6a:20:09:43:dd:5e:71:81:f8:32: ae:2a:bf:2c:ad:9e:df:30:0a:7e:57:f4:ba:c6:1d:92:00:46: 9c:2a:c7:a4:b7:20:6c:89:90:41:ad:7a:ed:36:1c:61:4b:4c: 50:cf:f1:b2:5b:96:b2:59:f5:54:18:2a:79:10:09:89:f7:af: 3b:9c:22:a0:f5:b8:c4:50:ad:4f:7d:de:7e:2b:28:d8:d0:f0: 20:8b:72:b1:d2:8f:4e:db:20:61:e9:01:ac:67:55:54:e7:53: 87:60:02:e2:2f:f2:bd:01:44:f0:ab:26:1c:96:11:bf:41:a5: 49:da:97:2d:29:c8:ad:5d:fb:54:37:59:6d:82:b3:a0:a5:18: 35:b0:9d:f1:be:d0:1b:16:c5:a5:16:77:15:0c:57:bb:26:a5: 05:f7:43:f1:bf:ea:e3:e2:46:0a:6a:19:0b:75:29:84:bd:94: c0:8e:02:6c:6d:ff:e0:5a:6e:39:d9:58:5f:a4:ba:6a:db:be: 3d:02:7d:5d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ4NzMxMTAvBgNVBAUTKEU1QjQ0QzY5RThERTczM0RGNjE5NjYwNTZFN0U0MTVF QzdDNzBEMkEwHhcNMjYwMzI1MDQyODQ1WhcNMjYwNDAxMDQyODQ1WjAYMRYwFAYD VQQDEw02OWMzNjQ3ZC0zN2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2tm6mcz+ir0PLQQP5Pa3VT8DVmaT6mt9NeOoB4OpuHgxYBc17c+gwj2FnSJ1 XnMjDpH6OcYAttl20jI3forQGT0j/z/ftid7NSGh7sRWQg6XZEDjfAY80qz+Xlse XJnnMZbnrTO/vwxRxU8Qx13JEMkpw2zAVYNcZ1K2f03cLPSG7m8Tah3aX2Thfc6M MD54yxUej+RL38dTpoZrgyHI7cEZRzyg/FDkY1GiYWUEpPxyQmfMAq4AwVrXriA8 qlz6TxhPIcr2ySnHhFLvtHwIUjXOtEGPAc1JAxz6JOcTKI97EwJvJvQ77j8bW9Ix ChjuxqNn009V41ppBn20TsTVxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAaB8eMm S/rklgUgARw8vrEpnCYwMB8GA1UdIwQYMBaAFOW0TGno3nM99hlmBW5+QV7Hxw0q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDg3My80RTI1QzhCQzM4 RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6MzJHV1lGYm41QlhzZkhE U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzViUk1hZWplY3ozMkdXWUZibjVCWHNmSERTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDg3My80RTI1QzhCQzM4RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6 MzJHV1lGYm41QlhzZkhEU28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAn04nTrBAKgK0qnat3misO9rsoSWdwWfOW4LIJZldOHpdO23v8G0lhj7YmZbV Diz4S9FDDkYEDN9LKc1fT91qIAlD3V5xgfgyriq/LK2e3zAKflf0usYdkgBGnCrH pLcgbImQQa167TYcYUtMUM/xsluWsln1VBgqeRAJifevO5wioPW4xFCtT33efiso 2NDwIItysdKPTtsgYekBrGdVVOdTh2AC4i/yvQFE8KsmHJYRv0GlSdqXLSnIrV37 VDdZbYKzoKUYNbCd8b7QGxbFpRZ3FQxXuyalBfdD8b/q4+JGCmoZC3UphL2UwI4C bG3/4FpuOdlYX6S6atu+PQJ9XQ== -----END CERTIFICATE-----Generated at Thu Mar 26 14:55:41 2026 by rpki-client