$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft File: h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft (raw, json) Hash identifier: 02CK3rGdopEW17UVqNpvt8cY9GotoUFG55tTmn0o7KU= Subject key identifier: D9:40:8D:8D:8C:D3:6E:EE:0F:46:E2:30:FB:53:A4:4D:10:27:58:FE Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 15B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft Manifest number: 15A0 Signing time: Tue 24 Mar 2026 16:39:46 +0000 Manifest this update: Tue 24 Mar 2026 16:39:46 +0000 Manifest next update: Tue 31 Mar 2026 16:39:46 +0000 Files and hashes: 1: h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl (hash: /qR5co1aqsVK8arKn4/4hgIYPQcu+0HdXluk/1xEAVo=) 2: 4A7E3036340811ED9D3D7620C4F9AE02.roa (hash: szL4BZSbgcQY4LfE/szjKTFQSSHTkoZGzk2quRmWzfY=) 3: F0326FAE4D0011E8A24EE324C4F9AE02.roa (hash: mjER69CRCpsMBjGIx0Q4yyRPRuK30idnlQajAiMsy6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:39:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5555 (0x15b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4, serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: Mar 24 16:39:46 2026 GMT Not After : Mar 31 16:39:46 2026 GMT Subject: CN=69c2be52-9cfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c3:35:a2:f1:d6:f1:4e:b4:87:5e:9c:0f:d3: 11:20:b2:9c:59:4f:51:1b:51:04:a1:13:ac:44:29: f5:0e:2a:17:24:f1:1e:ab:c3:02:ca:c5:8e:c9:d6: b0:1a:0e:82:d8:75:61:bc:5a:fa:f4:f5:4b:a0:e5: 97:b1:fb:31:b4:1b:4d:e4:55:73:58:0b:50:9a:8f: 68:be:2a:6e:b4:4e:58:02:71:20:f9:e8:5d:55:df: a9:96:e6:22:39:0b:69:db:d7:5c:e9:b9:4c:84:ba: 02:bc:25:36:20:ee:51:32:61:b2:b7:67:81:aa:e2: 09:d1:65:5a:01:15:fd:e1:65:b6:56:65:5f:1b:16: 32:76:37:47:c5:a2:dc:39:5e:45:08:79:be:ed:7d: 49:a6:31:6e:01:d6:1a:35:4d:ea:4b:43:d7:13:dc: 21:b7:96:fe:bb:23:51:0b:07:75:90:88:2c:78:5e: 33:af:f9:87:9a:d5:a2:26:8f:d8:d1:ed:ac:f2:05: e2:c8:12:c6:1f:5c:28:40:c3:59:5a:a4:19:3e:22: 44:48:5f:6b:eb:d5:b7:2a:5e:f1:01:36:2d:c7:31: de:12:a0:8e:3b:d1:a4:3d:98:29:8a:41:1c:e8:3a: f3:6a:b9:96:81:96:a6:30:3a:9d:0f:12:fb:48:61: 3b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:40:8D:8D:8C:D3:6E:EE:0F:46:E2:30:FB:53:A4:4D:10:27:58:FE X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:ad:53:70:3d:cc:22:80:e3:db:4b:12:d7:8e:8b:90:8b:a7: 4e:7d:63:8a:db:50:9c:63:d2:f9:3b:84:6d:12:2d:8c:e4:d3: 87:aa:60:da:4e:4f:db:67:73:38:a3:ea:68:2d:18:c6:ce:35: 7f:9e:49:10:f8:0e:9c:8e:40:09:35:0c:a1:a8:75:2d:a7:82: 11:27:ed:24:35:dd:91:f4:38:27:45:22:c2:1a:73:a8:5a:21: c2:a2:fa:f4:b4:70:b0:d5:87:f7:87:88:ce:5f:50:ce:83:dc: 82:30:1a:49:61:88:32:45:71:31:d9:8e:1a:f8:b8:88:86:c7: 59:c1:30:63:f0:86:dc:e2:9e:07:87:53:d6:82:be:c6:8c:97: 07:61:34:15:be:3b:7a:72:fe:24:8c:f5:23:9e:08:c9:ec:a9: 42:fb:c3:8f:86:e3:09:c4:39:96:cf:60:8b:88:06:45:3d:17: 69:9e:d9:90:9a:fc:a7:0f:3b:e9:c2:50:17:a8:4c:c5:07:e6: 89:03:76:6f:2e:d5:a2:dd:cf:2e:fd:26:95:59:6c:c4:7d:35: cf:70:e8:ad:cb:76:4b:93:c4:0e:96:7a:cf:4e:1d:a9:1d:df: 47:bb:01:19:cf:26:3b:16:8f:cb:9f:a2:9d:89:19:46:ca:f5: ec:de:d3:bc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjYwMzI0MTYzOTQ2WhcNMjYwMzMxMTYzOTQ2WjAYMRYwFAYD VQQDEw02OWMyYmU1Mi05Y2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtcM1ovHW8U60h16cD9MRILKcWU9RG1EEoROsRCn1DioXJPEeq8MCysWOydaw Gg6C2HVhvFr69PVLoOWXsfsxtBtN5FVzWAtQmo9oviputE5YAnEg+ehdVd+pluYi OQtp29dc6blMhLoCvCU2IO5RMmGyt2eBquIJ0WVaARX94WW2VmVfGxYydjdHxaLc OV5FCHm+7X1JpjFuAdYaNU3qS0PXE9wht5b+uyNRCwd1kIgseF4zr/mHmtWiJo/Y 0e2s8gXiyBLGH1woQMNZWqQZPiJESF9r69W3Kl7xATYtxzHeEqCOO9GkPZgpikEc 6DrzarmWgZamMDqdDxL7SGE7PwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNlAjY2M 027uD0biMPtTpE0QJ1j+MB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVFNC83OTM5NzMyMDREMDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3kt R2lCTVg0RGJRd1FRbW9NWHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAzK1TcD3MIoDj20sS146LkIunTn1jittQnGPS+TuEbRItjOTTh6pg2k5P22dz OKPqaC0Yxs41f55JEPgOnI5ACTUMoah1LaeCESftJDXdkfQ4J0UiwhpzqFohwqL6 9LRwsNWH94eIzl9QzoPcgjAaSWGIMkVxMdmOGvi4iIbHWcEwY/CG3OKeB4dT1oK+ xoyXB2E0Fb47enL+JIz1I54IyeypQvvDj4bjCcQ5ls9gi4gGRT0XaZ7ZkJr8pw87 6cJQF6hMxQfmiQN2by7Vot3PLv0mlVlsxH01z3Dorct2S5PEDpZ6z04dqR3fR7sB Gc8mOxaPy5+inYkZRsr17N7TvA== -----END CERTIFICATE-----Generated at Thu Mar 26 12:27:06 2026 by rpki-client