$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft File: 5JdLhBatO5ndEfOwQFbwx5m3ocs.mft (raw, json) Hash identifier: 1jBKAp57KLoBJ4NWzkgIS0/575ZVDTnx8KT44PIsTv4= Subject key identifier: 3B:F8:EC:92:47:4B:CB:79:A0:83:E2:78:68:24:82:47:E0:F7:D9:85 Authority key identifier: E4:97:4B:84:16:AD:3B:99:DD:11:F3:B0:40:56:F0:C7:99:B7:A1:CB Certificate issuer: /CN=A91D9CA8/serialNumber=E4974B8416AD3B99DD11F3B04056F0C799B7A1CB Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5JdLhBatO5ndEfOwQFbwx5m3ocs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft Manifest number: D6 Signing time: Fri 27 Mar 2026 06:12:34 +0000 Manifest this update: Fri 27 Mar 2026 06:12:34 +0000 Manifest next update: Fri 03 Apr 2026 06:12:34 +0000 Files and hashes: 1: 5JdLhBatO5ndEfOwQFbwx5m3ocs.crl (hash: SOCvhr4F7co0Gm3IG0ydpdDA4gTyfth09AuxM3NYxso=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5JdLhBatO5ndEfOwQFbwx5m3ocs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 06:12:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=E4974B8416AD3B99DD11F3B04056F0C799B7A1CB Validity Not Before: Mar 27 06:12:34 2026 GMT Not After : Apr 3 06:12:34 2026 GMT Subject: CN=69c61fd2-809b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:27:5c:16:95:c8:43:d9:1f:99:3c:75:64:a7: db:37:37:6e:77:6d:2b:c1:b4:83:71:19:0c:08:a3: 99:b8:c5:08:f2:f6:35:61:97:42:39:aa:c3:ef:14: ed:92:80:e8:b7:b9:73:4b:7c:6e:bb:b9:7c:d8:d3: e6:c6:2c:9f:0e:f7:d2:7e:fa:f7:85:39:4e:1f:c4: dd:e8:65:bc:4e:f1:d3:5d:eb:25:69:35:34:49:27: fa:36:9b:80:98:56:01:75:de:32:12:08:ae:3e:34: 58:ee:6e:f9:3b:21:05:76:62:e5:a9:ca:cc:4e:04: 83:37:c0:3b:04:ce:f3:c8:68:59:7d:ce:fa:85:17: 2e:5c:e8:ec:2a:f0:ab:32:2c:b6:40:75:4c:2f:92: 85:a9:97:35:a6:0f:6d:3a:51:ec:ca:c4:83:7f:f1: c3:54:d2:a3:6c:d5:53:3a:23:0a:07:fd:44:a6:be: 58:48:da:b1:ac:b0:65:13:64:bd:e8:b0:6f:f5:3d: 8a:11:f5:83:a6:19:1a:cc:84:33:7a:24:f4:85:d6: 39:f2:dc:38:55:fd:e4:b5:82:b5:49:0f:ba:bc:90: ac:57:06:78:2a:db:80:c4:7e:b4:b6:15:59:ee:fe: 43:98:0e:ad:9c:98:55:b8:53:45:3a:d9:cf:e1:c7: 41:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:F8:EC:92:47:4B:CB:79:A0:83:E2:78:68:24:82:47:E0:F7:D9:85 X509v3 Authority Key Identifier: keyid:E4:97:4B:84:16:AD:3B:99:DD:11:F3:B0:40:56:F0:C7:99:B7:A1:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5JdLhBatO5ndEfOwQFbwx5m3ocs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:3a:80:d8:ab:93:f9:19:cd:bc:77:4d:5b:d6:79:57:95:ea: a1:c1:78:2b:08:db:09:dc:b3:37:35:db:18:af:51:39:10:60: 91:63:53:46:dc:54:06:dc:a0:f4:41:99:19:8f:f8:bd:a6:cf: da:3e:cf:ca:c8:7c:09:dd:70:7f:dc:dd:d9:02:f8:bd:46:0a: c6:c9:90:44:18:a8:77:5a:0a:50:96:2e:c0:51:cf:d3:5f:64: 4b:d8:d2:4f:d9:7c:62:ab:27:04:d1:47:77:3e:e7:11:91:d7: 3e:e5:b3:52:96:d8:99:7c:6d:7b:d4:fe:ff:1a:2e:48:f3:63: 80:96:15:0d:c1:fd:66:30:c5:68:36:14:bd:e0:e7:3a:f4:cc: 64:10:85:79:09:22:da:aa:99:98:15:77:ac:b7:06:4e:95:83: d7:28:e2:a3:ef:43:ef:22:d3:9b:95:35:c0:ad:78:37:5d:a0: b1:4f:e4:50:25:05:5a:01:08:9b:08:4c:6a:09:06:f7:5d:a8: 98:9f:e8:0f:e5:37:c5:4d:dd:b1:c5:7a:62:5e:2c:1d:83:ba: 80:7f:7f:0d:7a:a3:65:c6:b6:35:f1:ad:d2:50:1c:8c:05:39: bb:76:33:38:b1:47:6c:f9:fb:d4:85:25:c2:74:c7:01:78:18: 47:ce:0d:fe -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQTgxMTAvBgNVBAUTKEU0OTc0Qjg0MTZBRDNCOTlERDExRjNCMDQwNTZGMEM3 OTlCN0ExQ0IwHhcNMjYwMzI3MDYxMjM0WhcNMjYwNDAzMDYxMjM0WjAYMRYwFAYD VQQDEw02OWM2MWZkMi04MDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoidcFpXIQ9kfmTx1ZKfbNzdud20rwbSDcRkMCKOZuMUI8vY1YZdCOarD7xTt koDot7lzS3xuu7l82NPmxiyfDvfSfvr3hTlOH8Td6GW8TvHTXeslaTU0SSf6NpuA mFYBdd4yEgiuPjRY7m75OyEFdmLlqcrMTgSDN8A7BM7zyGhZfc76hRcuXOjsKvCr Miy2QHVML5KFqZc1pg9tOlHsysSDf/HDVNKjbNVTOiMKB/1Epr5YSNqxrLBlE2S9 6LBv9T2KEfWDphkazIQzeiT0hdY58tw4Vf3ktYK1SQ+6vJCsVwZ4KtuAxH60thVZ 7v5DmA6tnJhVuFNFOtnP4cdB/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDv47JJH S8t5oIPieGgkgkfg99mFMB8GA1UdIwQYMBaAFOSXS4QWrTuZ3RHzsEBW8MeZt6HL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBOC8yOTMyQzU4OEU0 RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi81SmRMaEJhdE81bmRFZk93UUZid3g1bTNv Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVKZExoQmF0TzVuZEVmT3dRRmJ3eDVtM29jcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBOC8yOTMyQzU4OEU0RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi81SmRMaEJhdE81 bmRFZk93UUZid3g1bTNvY3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFjqA2KuT+RnNvHdNW9Z5V5XqocF4KwjbCdyzNzXbGK9RORBgkWNTRtxUBtyg 9EGZGY/4vabP2j7Pysh8Cd1wf9zd2QL4vUYKxsmQRBiod1oKUJYuwFHP019kS9jS T9l8YqsnBNFHdz7nEZHXPuWzUpbYmXxte9T+/xouSPNjgJYVDcH9ZjDFaDYUveDn OvTMZBCFeQki2qqZmBV3rLcGTpWD1yjio+9D7yLTm5U1wK14N12gsU/kUCUFWgEI mwhMagkG912omJ/oD+U3xU3dscV6Yl4sHYO6gH9/DXqjZca2NfGt0lAcjAU5u3Yz OLFHbPn71IUlwnTHAXgYR84N/g== -----END CERTIFICATE-----Generated at Sat Mar 28 10:35:06 2026 by rpki-client