$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft File: U5TlfShXd_11FCjRXLD7L8WSx6Y.mft (raw, json) Hash identifier: K66a6esLhDyDrniAjWayWQIkMr7DFdvlCjDMqiywozU= Subject key identifier: 4A:6A:69:04:35:3C:E0:08:9E:D7:F8:3C:7E:81:1B:BE:DC:3E:E4:B6 Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 05EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft Manifest number: 05D2 Signing time: Thu 26 Mar 2026 22:51:45 +0000 Manifest this update: Thu 26 Mar 2026 22:51:45 +0000 Manifest next update: Thu 02 Apr 2026 22:51:45 +0000 Files and hashes: 1: U5TlfShXd_11FCjRXLD7L8WSx6Y.crl (hash: u6c7foQA1qrEI9EfI0FlFstnWgyiXYAFp0vtN4tCIf4=) 2: C25659465C9D11EC99F7D10BC4F9AE02.roa (hash: NXzX7R7NLEazsVeUoaLWbp54rjvi9QQud2skYKW4OZQ=) 3: C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa (hash: +8k4rfDonzqcIXzrPnc9G+NWKEIwjetXPPpI12xDWO0=) 4: E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa (hash: O5HnlLR1hWWyTNRUt4LdbaUFp1yGwksal5ksV0pwNV4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 22:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1518 (0x5ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9, serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: Mar 26 22:51:45 2026 GMT Not After : Apr 2 22:51:45 2026 GMT Subject: CN=69c5b881-09eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:89:b6:ef:b3:96:bf:d3:ac:19:08:67:61:63: 1c:d8:2a:df:f2:3a:7c:da:a3:42:b5:6d:84:0f:25: 0e:c3:24:10:02:cd:0f:f5:e7:a7:14:0b:1f:16:9c: 7c:5d:7e:77:06:ec:cb:84:6c:00:b4:ce:c3:b2:57: bb:e7:dd:ba:19:b0:df:00:b3:37:10:32:8e:0e:d0: 26:69:28:2e:88:6a:ad:e5:f4:ee:37:47:38:b5:50: e7:29:78:76:37:fb:f2:98:fe:49:9a:bc:e7:8a:e6: 88:cd:96:3d:42:58:03:4e:02:9c:ff:db:16:85:4e: 7f:69:f2:f8:5d:e2:66:8f:61:fc:16:4a:76:b3:2f: 18:63:92:1b:1d:69:25:fa:f1:be:1d:d6:65:46:fd: b8:04:a7:fb:b7:fc:66:00:94:62:96:a4:0f:38:80: 9d:2a:92:94:81:40:4e:f4:aa:94:81:ed:ca:6b:e5: 53:6b:21:dd:38:ac:4d:35:a2:dc:20:c6:a1:37:36: f2:c3:4a:cf:29:fe:16:d9:19:8f:fb:87:bc:11:9a: 72:1b:d4:61:01:aa:d7:e0:f6:03:e3:85:13:bc:fe: 59:f8:bf:76:f1:bb:22:aa:53:25:46:11:11:32:7e: a5:df:6b:a4:56:cf:d5:a4:af:36:3a:ca:78:11:65: 9e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:6A:69:04:35:3C:E0:08:9E:D7:F8:3C:7E:81:1B:BE:DC:3E:E4:B6 X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:85:02:6f:39:60:47:5b:e9:c1:f9:0a:d9:c7:5f:7b:7d:dd: db:4e:75:77:bf:2d:4c:1d:72:5d:cb:36:ec:6f:8a:80:ff:f2: 85:be:e1:4b:b8:99:81:cf:2b:9a:a7:27:5e:2b:8f:f3:ac:19: 99:62:d4:a4:98:d6:d1:01:dc:dc:70:26:13:b5:4d:c1:4b:64: 2f:ab:09:d2:fd:b3:19:21:88:75:d7:91:58:f9:13:71:a2:94: 2c:21:e0:2a:07:c6:f8:cb:c9:6e:e3:87:b1:10:1e:4b:69:56: e9:a2:2c:75:2a:44:c4:14:d4:8d:59:a3:fe:86:87:ae:7e:9c: c2:5c:65:28:87:34:d5:64:42:78:a3:d5:67:00:f8:14:ce:d3: a6:a6:fc:ba:ef:a5:88:25:64:b7:ea:4d:de:c6:ae:fa:d0:31: 3f:93:1f:a7:ff:2e:7c:75:7e:b6:26:b1:dc:44:53:01:84:23: 0f:1e:75:cf:fd:ba:2e:9c:e1:59:17:1d:50:e9:d6:52:35:f2: 29:f7:90:97:c8:c3:20:f6:a6:3d:69:4c:3c:09:99:05:75:8c: 0f:16:33:c4:cf:5c:78:80:1a:03:5c:6e:50:16:59:4e:35:1d: 4a:a3:45:f2:d9:c7:75:44:07:8f:d5:49:fe:29:a4:d2:7d:c3: 99:64:ac:11 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjYwMzI2MjI1MTQ1WhcNMjYwNDAyMjI1MTQ1WjAYMRYwFAYD VQQDEw02OWM1Yjg4MS0wOWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYm277OWv9OsGQhnYWMc2Crf8jp82qNCtW2EDyUOwyQQAs0P9eenFAsfFpx8 XX53BuzLhGwAtM7Dsle75926GbDfALM3EDKODtAmaSguiGqt5fTuN0c4tVDnKXh2 N/vymP5JmrzniuaIzZY9QlgDTgKc/9sWhU5/afL4XeJmj2H8Fkp2sy8YY5IbHWkl +vG+HdZlRv24BKf7t/xmAJRilqQPOICdKpKUgUBO9KqUge3Ka+VTayHdOKxNNaLc IMahNzbyw0rPKf4W2RmP+4e8EZpyG9RhAarX4PYD44UTvP5Z+L928bsiqlMlRhER Mn6l32ukVs/VpK82Osp4EWWeNQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEpqaQQ1 POAIntf4PH6BG77cPuS2MB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTdBOS81Rjg5RjZFQ0ZCMzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRf MTFGQ2pSWExEN0w4V1N4NlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALoUCbzlgR1vpwfkK2cdfe33d2051d78tTB1yXcs27G+KgP/yhb7hS7iZgc8r mqcnXiuP86wZmWLUpJjW0QHc3HAmE7VNwUtkL6sJ0v2zGSGIddeRWPkTcaKULCHg KgfG+MvJbuOHsRAeS2lW6aIsdSpExBTUjVmj/oaHrn6cwlxlKIc01WRCeKPVZwD4 FM7Tpqb8uu+liCVkt+pN3sau+tAxP5Mfp/8ufHV+tiax3ERTAYQjDx51z/26Lpzh WRcdUOnWUjXyKfeQl8jDIPamPWlMPAmZBXWMDxYzxM9ceIAaA1xuUBZZTjUdSqNF 8tnHdUQHj9VJ/imk0n3DmWSsEQ== -----END CERTIFICATE-----Generated at Sat Mar 28 10:27:56 2026 by rpki-client