$ rpki-client -vvf rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft File: D5BpKh7v5_ChrGi14awJ9wJpccw.mft (raw, json) Hash identifier: blrfz4f/RNurXq63+tiqBWLVZeE64wgO1SFqbpZgErM= Subject key identifier: A2:54:6F:38:73:A5:BE:B1:01:B0:8C:6B:BE:BA:3F:3C:17:04:FB:02 Authority key identifier: 0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC Certificate issuer: /CN=A91185B8/serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Certificate serial: 0231 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft Manifest number: 0231 Signing time: Mon 02 Mar 2026 02:25:28 +0000 Manifest this update: Mon 02 Mar 2026 02:25:27 +0000 Manifest next update: Mon 09 Mar 2026 02:25:27 +0000 Files and hashes: 1: D5BpKh7v5_ChrGi14awJ9wJpccw.crl (hash: n18FVhzPMlHcdPNbAd51//bSPKHmF02vv3VFffIkmkc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:25:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 561 (0x231) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91185B8, serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Validity Not Before: Mar 2 02:25:27 2026 GMT Not After : Mar 9 02:25:27 2026 GMT Subject: CN=69a4f518-dd54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:49:d2:82:38:31:6e:8a:40:6e:dc:f9:ad:41: 0d:55:77:75:1d:d0:53:40:a8:36:ff:9e:4d:bf:c1: be:98:b8:c5:3d:67:21:1f:ac:80:be:f6:c8:08:ec: e8:90:20:96:a4:bc:18:5e:8a:12:55:ce:17:1e:4b: 8a:51:ec:6e:d6:38:0e:62:47:f5:49:f6:f2:2c:79: ed:69:a5:e4:d7:5f:3b:b4:71:df:59:dd:16:18:0a: 7c:d3:c6:04:22:54:06:2f:24:37:e4:7c:67:aa:de: b8:a1:e7:11:9e:9e:f5:1c:db:af:ea:09:ac:c6:79: df:f9:82:9b:f8:a6:c3:35:43:6d:c5:35:5f:28:4e: 97:eb:27:f2:48:ff:05:8d:4b:88:86:1c:d2:62:44: 99:8f:59:c2:d7:df:79:48:65:43:c0:ff:52:62:36: f3:67:c7:63:fa:24:fa:0f:76:a9:4c:b0:da:cb:15: ce:56:34:71:39:f8:6d:54:f2:62:26:87:97:50:d0: 97:af:ca:09:c7:02:af:8a:9c:41:c2:2c:65:9b:7c: 6e:bf:57:89:04:32:86:d4:08:c2:f4:13:d1:c8:94: df:d9:4d:c1:3a:32:cb:a1:3e:3b:5c:da:67:b7:7b: 18:34:1f:2a:80:69:10:b2:27:c5:1a:e2:51:73:5f: 14:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:54:6F:38:73:A5:BE:B1:01:B0:8C:6B:BE:BA:3F:3C:17:04:FB:02 X509v3 Authority Key Identifier: keyid:0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:86:5b:d7:f0:a6:3a:6d:81:7c:36:82:64:56:09:fa:d0:19: 9a:61:0c:ab:79:96:1e:af:f9:6a:fc:5b:e0:e8:5c:bd:0a:24: f1:1a:8d:d8:3f:ec:0b:4b:9f:36:5a:fe:7a:38:3e:d1:ba:a6: 11:d6:66:b9:bb:ce:4f:31:75:8f:61:85:ad:25:90:53:7a:95: 2f:38:19:e2:da:f2:3e:1b:5d:b5:d1:e2:55:32:19:68:38:61: 8b:4c:c5:14:7e:c1:66:a9:c0:56:85:11:9b:df:53:1a:c4:13: 2d:52:9c:da:41:71:28:b6:e4:20:76:aa:e5:39:b5:c1:8c:d4: 20:5a:7d:47:7d:63:5a:ca:03:6b:d7:45:55:20:4b:56:41:84: dc:83:20:1c:d8:3f:66:70:33:9e:ab:ef:75:ce:18:04:4a:6b: f9:1a:f1:c7:54:26:aa:e1:a7:d6:c7:fe:43:3b:cb:56:a1:e7: 08:a9:61:65:00:11:7d:33:7e:b9:91:5a:fe:8b:df:99:fc:5d: ec:48:68:16:2c:d5:2c:36:6f:30:58:ce:0d:43:1e:5e:25:d2: 7b:ee:39:70:1d:ea:12:19:dd:57:31:ad:85:5a:79:52:ff:fc: 7a:b3:d1:05:46:50:83:be:32:f2:8d:3f:21:50:1b:b9:5b:99: c0:11:cc:19 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg1QjgxMTAvBgNVBAUTKDBGOTA2OTJBMUVFRkU3RjBBMUFDNjhCNUUxQUMwOUY3 MDI2OTcxQ0MwHhcNMjYwMzAyMDIyNTI3WhcNMjYwMzA5MDIyNTI3WjAYMRYwFAYD VQQDEw02OWE0ZjUxOC1kZDU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEnSgjgxbopAbtz5rUENVXd1HdBTQKg2/55Nv8G+mLjFPWchH6yAvvbICOzo kCCWpLwYXooSVc4XHkuKUexu1jgOYkf1SfbyLHntaaXk1187tHHfWd0WGAp808YE IlQGLyQ35Hxnqt64oecRnp71HNuv6gmsxnnf+YKb+KbDNUNtxTVfKE6X6yfySP8F jUuIhhzSYkSZj1nC1995SGVDwP9SYjbzZ8dj+iT6D3apTLDayxXOVjRxOfhtVPJi JoeXUNCXr8oJxwKvipxBwixlm3xuv1eJBDKG1AjC9BPRyJTf2U3BOjLLoT47XNpn t3sYNB8qgGkQsifFGuJRc18UkQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKJUbzhz pb6xAbCMa766PzwXBPsCMB8GA1UdIwQYMBaAFA+QaSoe7+fwoaxoteGsCfcCaXHM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODVCOC9DRkEzNDA5QUJF MzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVfQ2hyR2kxNGF3Sjl3SnBj Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q1QnBLaDd2NV9DaHJHaTE0YXdKOXdKcGNjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODVCOC9DRkEzNDA5QUJFMzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVf Q2hyR2kxNGF3Sjl3SnBjY3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEIZb1/CmOm2BfDaCZFYJ+tAZmmEMq3mWHq/5avxb4OhcvQok8RqN2D/sC0uf Nlr+ejg+0bqmEdZmubvOTzF1j2GFrSWQU3qVLzgZ4tryPhtdtdHiVTIZaDhhi0zF FH7BZqnAVoURm99TGsQTLVKc2kFxKLbkIHaq5Tm1wYzUIFp9R31jWsoDa9dFVSBL VkGE3IMgHNg/ZnAznqvvdc4YBEpr+Rrxx1QmquGn1sf+QzvLVqHnCKlhZQARfTN+ uZFa/ovfmfxd7EhoFizVLDZvMFjODUMeXiXSe+45cB3qEhndVzGthVp5Uv/8erPR BUZQg74y8o0/IVAbuVuZwBHMGQ== -----END CERTIFICATE-----Generated at Mon Mar 2 07:24:44 2026 by rpki-client