$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft File: sBO5crQspa2fahYr87XHT5M8HgU.mft (raw, json) Hash identifier: tMXJKrVjybLRx7OIGBMM0d+xur5qPF38yJS+41f/l1g= Subject key identifier: 69:39:3A:F7:FA:06:50:CA:AB:22:8B:C1:8E:03:42:20:46:A2:EE:84 Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 0627 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft Manifest number: 061B Signing time: Tue 24 Mar 2026 22:32:01 +0000 Manifest this update: Tue 24 Mar 2026 22:32:00 +0000 Manifest next update: Tue 31 Mar 2026 22:32:00 +0000 Files and hashes: 1: sBO5crQspa2fahYr87XHT5M8HgU.crl (hash: Z5OXHM4QTGCbgtcn8ott0Yi60B1+TX8WSvhpuETCaw8=) 2: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (hash: KJ2mFEWkTtrCEZw9NVFYAAnTanzrSc/7NwbR3vngF7g=) 3: 5334D20CDA5E11EBA323F462C4F9AE02.roa (hash: paFsFa6qVLCDV+k1MXzHkgPkBlhBBEj3AZlBzmVS9gs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1575 (0x627) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66, serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Validity Not Before: Mar 24 22:32:00 2026 GMT Not After : Mar 31 22:32:00 2026 GMT Subject: CN=69c310e1-784a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:be:2f:44:23:14:e2:bd:a9:48:67:82:4f:e6: 16:63:63:45:11:20:b3:8e:fa:56:94:ca:ea:a3:e9: d4:4c:ca:7a:b4:53:14:66:1b:1d:11:5a:ad:44:a6: 38:cb:85:44:88:a7:f5:28:38:b3:70:a4:02:93:ae: 07:c4:5f:d5:be:c7:37:f0:f3:71:bd:b3:d5:3b:2c: e4:48:d9:0b:40:a8:d4:83:d4:ea:8b:b4:c8:80:79: 16:d7:6a:4a:1e:77:ec:f9:b0:63:05:de:a4:9c:8c: 7c:06:74:57:c8:53:a9:6b:b4:68:bb:07:ac:6f:84: c8:39:ce:9c:17:67:8e:9b:c8:d0:7d:f7:38:6f:28: 9a:43:d6:b5:e3:4d:0b:c5:7d:b5:aa:12:f8:ce:14: 16:2a:42:d1:3b:61:92:ae:ff:05:01:67:c4:90:40: 92:f9:eb:c5:dd:18:63:b0:b7:69:66:bb:c7:bc:2b: fd:84:c7:ae:f4:43:7c:c4:61:19:1e:09:46:95:fd: d1:d3:2c:39:38:a8:0a:3f:23:da:5a:fb:1c:c9:95: d3:e2:6a:89:a1:10:f7:d3:26:48:5a:81:09:d7:33: 7c:2b:8a:b4:6d:31:c5:8a:b7:a2:c9:40:47:98:f9: 80:dd:72:f3:aa:af:56:69:f2:a6:f3:f2:31:47:ac: be:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:39:3A:F7:FA:06:50:CA:AB:22:8B:C1:8E:03:42:20:46:A2:EE:84 X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:83:e0:a1:2c:86:7f:2a:77:fa:ec:23:9a:f6:54:8e:76:7b: c3:e4:67:0e:b8:bd:b3:42:7a:a5:a2:75:f9:15:1b:e1:69:d1: 52:1f:5a:10:99:05:1f:4b:82:f6:51:e8:89:1b:50:3a:c6:40: ed:2b:ff:c6:61:34:4a:3f:ab:90:a9:53:c2:e2:ad:45:d3:5c: 07:e4:7f:cf:38:cf:3d:75:18:67:40:71:7b:ba:43:45:28:86: 34:80:bd:9a:d0:62:59:b3:ef:8b:60:77:5e:5d:07:1f:d6:72: 55:50:73:8f:97:83:48:33:5f:4a:de:a3:f1:31:4a:df:1e:e7: 58:26:e4:7a:38:b7:a0:4d:84:f0:d8:03:05:17:ba:75:ba:c2: 48:d9:5a:15:35:65:2a:7c:1f:6a:43:44:09:0a:93:af:9e:e7: 6a:ef:d3:70:bb:e9:ec:6c:c3:7f:d8:51:4f:99:9a:1c:00:e0: ce:c3:83:46:4a:55:db:93:ec:6e:b5:c3:06:38:3d:46:9e:b2: 5b:f2:8b:fb:9f:a0:90:40:06:20:da:e1:81:46:d6:76:8f:f4: e7:50:91:b9:f4:91:b0:e5:13:4d:7a:b9:02:7c:c9:b3:bf:2a: fb:97:9c:e7:2b:bf:79:62:55:81:69:18:f7:35:e6:78:39:ba: 66:ed:6c:7c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjYwMzI0MjIzMjAwWhcNMjYwMzMxMjIzMjAwWjAYMRYwFAYD VQQDEw02OWMzMTBlMS03ODRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwb4vRCMU4r2pSGeCT+YWY2NFESCzjvpWlMrqo+nUTMp6tFMUZhsdEVqtRKY4 y4VEiKf1KDizcKQCk64HxF/Vvsc38PNxvbPVOyzkSNkLQKjUg9Tqi7TIgHkW12pK Hnfs+bBjBd6knIx8BnRXyFOpa7Rouwesb4TIOc6cF2eOm8jQffc4byiaQ9a1400L xX21qhL4zhQWKkLRO2GSrv8FAWfEkECS+evF3RhjsLdpZrvHvCv9hMeu9EN8xGEZ HglGlf3R0yw5OKgKPyPaWvscyZXT4mqJoRD30yZIWoEJ1zN8K4q0bTHFireiyUBH mPmA3XLzqq9WafKm8/IxR6y+cQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGk5Ovf6 BlDKqyKLwY4DQiBGou6EMB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkI2Ni81M0U4RkJFQURBNUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3Bh MmZhaFlyODdYSFQ1TThIZ1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHoPgoSyGfyp3+uwjmvZUjnZ7w+RnDri9s0J6paJ1+RUb4WnRUh9aEJkFH0uC 9lHoiRtQOsZA7Sv/xmE0Sj+rkKlTwuKtRdNcB+R/zzjPPXUYZ0Bxe7pDRSiGNIC9 mtBiWbPvi2B3Xl0HH9ZyVVBzj5eDSDNfSt6j8TFK3x7nWCbkeji3oE2E8NgDBRe6 dbrCSNlaFTVlKnwfakNECQqTr57nau/TcLvp7GzDf9hRT5maHADgzsODRkpV25Ps brXDBjg9Rp6yW/KL+5+gkEAGINrhgUbWdo/051CRufSRsOUTTXq5AnzJs78q+5ec 5yu/eWJVgWkY9zXmeDm6Zu1sfA== -----END CERTIFICATE-----Generated at Thu Mar 26 08:48:45 2026 by rpki-client