$ rpki-client -vvf rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft File: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft (raw, json) Hash identifier: paHVpgjL53mK58P5zPiz0MiPeULjsDP/KlXHM7sfY8A= Subject key identifier: CD:B6:A5:A0:9C:94:5A:29:28:06:24:E0:A5:67:E3:0B:E0:C2:9E:B8 Authority key identifier: 5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B Certificate issuer: /CN=A91DD5100000/serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Certificate serial: 354C4145444D330AE4B43959D9DC79FDF3781A2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft Manifest number: 0277 Signing time: Wed 25 Mar 2026 22:22:50 +0000 Manifest this update: Wed 25 Mar 2026 22:17:50 +0000 Manifest next update: Fri 27 Mar 2026 01:59:50 +0000 Files and hashes: 1: 34332e3235322e32302e302f32342d3234203d3e203134363138.roa (hash: POeaLZ7jyGbDhNwka17vD8hm5iiL/jnjTj3d8a5jHPw=) 2: 34332e3235322e32302e302f32342d3234203d3e203136353039.roa (hash: 2pHYFNhpresl2Qe+bmQCdeuqTmZNLu6JpjLmSUgR1DM=) 3: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl (hash: 5M2r5ZPvJCFO8YqOcOVPrUaSItnV/PAReMWBpRKYDtw=) 4: 34332e3235322e32312e302f32342d3234203d3e203530333835.roa (hash: kaULZDC6XCfi7x2p6IJ/ygWV6uSlBhFSJ4hHgh1euqM=) 5: 34332e3235322e32322e302f32342d3234203d3e203438323636.roa (hash: Hgd5eLTx8zPg40IaiGyGenwPBsDa1fy76WiFsfGDsMQ=) 6: 34332e3235322e32332e302f32342d3234203d3e203239383032.roa (hash: 7QCONFpvmyuNf5zvgrCNMc+J3LAExntNG5Qv6K3hEbs=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 01:59:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:4c:41:45:44:4d:33:0a:e4:b4:39:59:d9:dc:79:fd:f3:78:1a:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5100000, serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Validity Not Before: Mar 25 22:17:50 2026 GMT Not After : Mar 27 01:59:50 2026 GMT Subject: CN=CDB6A5A09C945A29280624E0A567E30BE0C29EB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f5:ca:67:85:15:7c:84:02:9c:f5:d3:fa:0d: d9:f6:b5:5f:b5:a3:79:23:59:e0:ed:e9:00:15:9b: ab:a3:ce:b4:eb:58:23:3c:4c:bf:21:be:ea:47:2c: fa:16:7c:d9:82:2a:50:03:d4:16:3c:48:4c:12:f0: 83:0f:d2:32:63:34:88:5e:76:e9:b3:8e:cf:fd:8a: 1b:4b:85:46:fe:5b:5f:eb:f3:9e:c4:e7:e0:6f:1d: e3:94:60:95:aa:7a:ce:30:8b:ad:7f:fa:6e:0b:ab: 9b:de:d7:23:19:eb:a4:f9:57:d5:73:41:0d:a5:c7: b8:1c:96:1e:54:7f:f9:f6:c2:a7:4e:06:ad:7e:42: ce:3f:28:80:64:60:f4:54:c4:17:6d:46:43:f7:30: 41:4e:5c:b0:ad:63:81:0d:86:f0:21:87:26:ac:fc: ec:14:42:ad:ab:9d:a7:a4:e4:3a:40:29:dc:51:7a: 83:9a:a8:cf:e4:29:98:cf:7d:83:8a:0b:81:a5:68: 22:fa:67:75:b9:a1:19:ad:c6:52:c0:66:c9:a5:05: 67:a6:e1:ee:32:2d:40:e8:14:fe:ce:23:42:b0:06: c4:9b:8d:47:fe:55:38:17:ac:f4:10:93:b9:b4:fb: 31:1b:81:0d:61:7f:b2:5b:37:43:0f:a0:93:4f:b4: 01:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B6:A5:A0:9C:94:5A:29:28:06:24:E0:A5:67:E3:0B:E0:C2:9E:B8 X509v3 Authority Key Identifier: keyid:5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:46:94:cc:c3:e0:e9:9f:7c:10:d8:d3:11:3e:cf:1d:3a:8e: 8c:17:74:82:2b:ed:21:76:22:91:bf:19:f0:1c:4f:fa:a7:70: 0c:aa:7d:a9:ad:ec:b7:80:12:b4:be:80:88:2d:e7:4f:89:e2: b7:08:35:7b:8e:9a:b4:f3:04:54:dc:62:31:9e:a5:e5:f0:42: 69:b3:c3:c1:66:b6:96:26:8c:7c:c6:a4:2e:5d:ee:0c:c1:08: 60:9b:cb:f4:af:61:e0:7d:2e:02:30:c3:07:d6:44:16:a6:7a: ba:ff:4b:fe:2c:d2:6b:62:95:e4:27:71:73:33:f9:f0:af:24: b8:29:67:14:00:40:b5:10:66:b6:b4:39:96:b7:8f:dd:05:c3: f2:2f:90:c7:7a:4a:7b:ce:5d:66:be:52:64:5d:6b:6c:b7:c9: 46:b0:a2:00:84:58:0b:a7:f4:90:e6:ad:ba:f7:cc:e2:2d:90: e0:cb:e7:44:86:4f:46:bb:fa:59:5a:61:4d:1e:3a:8f:b0:42: 63:83:98:d9:78:ea:d9:9e:c2:6d:63:ac:03:2b:7f:7b:61:ae: a6:2d:dc:83:44:39:a3:c2:4c:06:34:0a:dd:46:b2:a0:92:7e: f8:7f:83:0a:7b:2f:3a:5d:39:24:be:79:9f:9e:e1:c0:39:dd: 74:98:ae:5c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNUxBRURNMwrktDlZ2dx5/fN4GiwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxREQ1MTAwMDAwMTEwLwYDVQQFEyg1RDcwN0IwRDM1 Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCMB4XDTI2MDMyNTIyMTc1MFoX DTI2MDMyNzAxNTk1MFowMzExMC8GA1UEAxMoQ0RCNkE1QTA5Qzk0NUEyOTI4MDYy NEUwQTU2N0UzMEJFMEMyOUVCODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMX1ymeFFXyEApz10/oN2fa1X7WjeSNZ4O3pABWbq6POtOtYIzxMvyG+6kcs +hZ82YIqUAPUFjxITBLwgw/SMmM0iF526bOOz/2KG0uFRv5bX+vznsTn4G8d45Rg lap6zjCLrX/6bgurm97XIxnrpPlX1XNBDaXHuByWHlR/+fbCp04GrX5Czj8ogGRg 9FTEF21GQ/cwQU5csK1jgQ2G8CGHJqz87BRCraudp6TkOkAp3FF6g5qoz+QpmM99 g4oLgaVoIvpndbmhGa3GUsBmyaUFZ6bh7jItQOgU/s4jQrAGxJuNR/5VOBes9BCT ubT7MRuBDWF/sls3Qw+gk0+0AU0CAwEAAaOCAhswggIXMB0GA1UdDgQWBBTNtqWg nJRaKSgGJOClZ+ML4MKeuDAfBgNVHSMEGDAWgBRdcHsNNWliJDK0vcv9Mg+ai23c ezAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUxMDAwMDAvMC81RDcwN0Iw RDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9YWEI3RFRWcFlp UXl0TDNMX1RJUG1vdHQzSHMuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUx MDAwMDAvMC81RDcwN0IwRDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdC Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAHkaUzMPg6Z98ENjTET7PHTqOjBd0givtIXYikb8Z8BxP+qdw DKp9qa3st4AStL6AiC3nT4nitwg1e46atPMEVNxiMZ6l5fBCabPDwWa2liaMfMak Ll3uDMEIYJvL9K9h4H0uAjDDB9ZEFqZ6uv9L/izSa2KV5CdxczP58K8kuClnFABA tRBmtrQ5lreP3QXD8i+Qx3pKe85dZr5SZF1rbLfJRrCiAIRYC6f0kOatuvfM4i2Q 4MvnRIZPRrv6WVphTR46j7BCY4OY2Xjq2Z7CbWOsAyt/e2Gupi3cg0Q5o8JMBjQK 3UayoJJ++H+DCnsvOl05JL55n57hwDnddJiuXA== -----END CERTIFICATE-----Generated at Thu Mar 26 03:26:34 2026 by rpki-client