$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft File: 5CK_AmFA0gPv1r_eruJoqosEZtU.mft (raw, json) Hash identifier: ijSSpKghAO/WGyIBf5s3qh5/PXOqPpeoG3Yi8ZJQPqI= Subject key identifier: 89:45:6A:B4:3E:18:2D:D5:EB:6B:C0:C7:0E:CA:28:9A:A7:E8:C5:E7 Authority key identifier: E4:22:BF:02:61:40:D2:03:EF:D6:BF:DE:AE:E2:68:AA:8B:04:66:D5 Certificate issuer: /CN=A91C3174/serialNumber=E422BF026140D203EFD6BFDEAEE268AA8B0466D5 Certificate serial: 0369 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft Manifest number: 0362 Signing time: Wed 25 Mar 2026 00:33:30 +0000 Manifest this update: Wed 25 Mar 2026 00:33:29 +0000 Manifest next update: Wed 01 Apr 2026 00:33:29 +0000 Files and hashes: 1: 5CK_AmFA0gPv1r_eruJoqosEZtU.crl (hash: 4YEVx74CocfsaMJQIp7rj56nPoH9wNCORX8wVBJdF+U=) 2: 9A4B6146EED111EC9BDD4C49C4F9AE02.roa (hash: f5h2sD9kDZrihuG/xzAAfLrQX5aqTNr2XYWOpp8neZc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.crl rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:33:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 873 (0x369) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3174, serialNumber=E422BF026140D203EFD6BFDEAEE268AA8B0466D5 Validity Not Before: Mar 25 00:33:29 2026 GMT Not After : Apr 1 00:33:29 2026 GMT Subject: CN=69c32d5a-b0d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:38:9e:ec:08:86:15:20:64:97:d1:12:34:79: e1:98:dd:c0:14:bd:d3:93:61:c4:1c:b0:04:13:8d: a2:97:89:29:84:cb:6d:95:1b:1a:89:99:81:7e:79: f0:4c:f8:6c:26:b7:08:22:86:41:24:66:c0:50:7e: 58:40:34:09:3d:83:10:8b:79:8e:73:09:54:9e:9e: f8:b2:e9:06:79:39:e7:4f:b1:19:33:ae:59:b4:4a: b3:df:e8:6d:57:10:fb:64:1d:4e:96:68:9f:4c:87: ba:86:56:b5:0e:16:e3:91:15:5f:6e:da:ce:b7:71: 45:fd:53:72:ef:94:3c:a6:52:a8:e6:f0:c5:f2:83: d7:70:24:24:40:f7:8d:1b:be:4a:cd:bf:06:74:82: a7:79:4c:b4:0d:24:0f:81:05:f1:95:62:72:e7:fa: d4:7f:c4:f0:37:f7:27:d5:ed:75:6c:34:08:49:6f: fa:5e:3d:b7:06:28:4a:c1:ec:ce:3c:a3:6f:3a:6c: 6b:a0:72:4e:41:35:73:d9:a3:25:7a:89:d6:0c:a5: 3a:4f:76:48:de:0a:86:e7:5f:5c:b2:cd:61:47:e1: 56:99:d2:e3:15:64:1b:f8:4f:fe:17:16:91:39:5b: 7d:5f:11:34:bd:4e:3c:73:80:cf:99:50:96:fb:c7: 23:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:45:6A:B4:3E:18:2D:D5:EB:6B:C0:C7:0E:CA:28:9A:A7:E8:C5:E7 X509v3 Authority Key Identifier: keyid:E4:22:BF:02:61:40:D2:03:EF:D6:BF:DE:AE:E2:68:AA:8B:04:66:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:dc:d0:71:55:de:20:ba:71:9a:80:d4:54:05:dd:d8:14:0d: cf:d4:ca:86:60:b8:a9:e0:ab:18:3c:d7:23:af:e8:b9:35:75: f9:89:37:55:65:ae:0d:50:7a:32:a4:66:8d:49:65:b1:cc:91: 45:5d:57:c2:ec:01:f4:dc:fd:ca:9c:b4:fc:d1:79:cc:93:0f: 16:60:10:2e:97:55:ce:ec:af:05:dc:9e:17:b0:84:8e:e8:51: 80:e5:c5:95:23:7e:3f:79:a5:96:e9:65:64:43:2c:db:c3:02: ac:20:c7:e2:01:60:3e:65:a3:4e:5d:f2:fc:5a:a3:f6:34:be: 06:dc:e6:c3:c3:47:6e:c9:d3:0f:08:24:c1:dd:9c:fd:3e:dc: f3:f5:9f:b6:c2:2e:7d:73:f4:70:10:4c:16:15:c2:90:26:d2: c5:11:d1:bd:60:46:63:b9:67:3b:0f:54:71:91:d8:da:a1:89: 7c:1f:1e:25:21:8b:3e:ce:40:cf:a1:2e:39:17:5c:ec:cb:b4: de:eb:99:0c:5c:46:a3:2b:da:dd:99:16:21:3f:9e:1c:bb:23: 5d:32:c5:a9:7a:84:b5:ff:1d:2c:06:e1:0b:cc:71:8c:51:78: 47:d8:0e:06:11:07:d7:eb:b8:08:41:c8:06:80:67:ad:46:54: 76:e0:10:67 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxNzQxMTAvBgNVBAUTKEU0MjJCRjAyNjE0MEQyMDNFRkQ2QkZERUFFRTI2OEFB OEIwNDY2RDUwHhcNMjYwMzI1MDAzMzI5WhcNMjYwNDAxMDAzMzI5WjAYMRYwFAYD VQQDEw02OWMzMmQ1YS1iMGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDie7AiGFSBkl9ESNHnhmN3AFL3Tk2HEHLAEE42il4kphMttlRsaiZmBfnnw TPhsJrcIIoZBJGbAUH5YQDQJPYMQi3mOcwlUnp74sukGeTnnT7EZM65ZtEqz3+ht VxD7ZB1OlmifTIe6hla1DhbjkRVfbtrOt3FF/VNy75Q8plKo5vDF8oPXcCQkQPeN G75Kzb8GdIKneUy0DSQPgQXxlWJy5/rUf8TwN/cn1e11bDQISW/6Xj23BihKwezO PKNvOmxroHJOQTVz2aMleonWDKU6T3ZI3gqG519css1hR+FWmdLjFWQb+E/+FxaR OVt9XxE0vU48c4DPmVCW+8cjRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIlFarQ+ GC3V62vAxw7KKJqn6MXnMB8GA1UdIwQYMBaAFOQivwJhQNID79a/3q7iaKqLBGbV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzE3NC9CMTMxRjg5Q0VF Q0QxMUVDOENGNDQ3MUVDNEY5QUUwMi81Q0tfQW1GQTBnUHYxcl9lcnVKb3Fvc0Va dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVDS19BbUZBMGdQdjFyX2VydUpvcW9zRVp0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzE3NC9CMTMxRjg5Q0VFQ0QxMUVDOENGNDQ3MUVDNEY5QUUwMi81Q0tfQW1GQTBn UHYxcl9lcnVKb3Fvc0VadFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAk9zQcVXeILpxmoDUVAXd2BQNz9TKhmC4qeCrGDzXI6/ouTV1+Yk3VWWuDVB6 MqRmjUllscyRRV1XwuwB9Nz9ypy0/NF5zJMPFmAQLpdVzuyvBdyeF7CEjuhRgOXF lSN+P3mllullZEMs28MCrCDH4gFgPmWjTl3y/Fqj9jS+Btzmw8NHbsnTDwgkwd2c /T7c8/WftsIufXP0cBBMFhXCkCbSxRHRvWBGY7lnOw9UcZHY2qGJfB8eJSGLPs5A z6EuORdc7Mu03uuZDFxGoyva3ZkWIT+eHLsjXTLFqXqEtf8dLAbhC8xxjFF4R9gO BhEH1+u4CEHIBoBnrUZUduAQZw== -----END CERTIFICATE-----Generated at Thu Mar 26 09:21:46 2026 by rpki-client