$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft File: 5D3SMzFr8OKboG0g3sJdtMwRbgg.mft (raw, json) Hash identifier: 7wkzz2dMdivIVM5ekolB85OqQL+UWCsozD+uxAK3BC0= Subject key identifier: D3:0C:AD:39:6C:E9:5F:18:FC:E5:1D:85:A3:D3:B0:B4:27:A7:FB:9A Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 054F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft Manifest number: 0541 Signing time: Sun 01 Mar 2026 00:04:43 +0000 Manifest this update: Sun 01 Mar 2026 00:04:42 +0000 Manifest next update: Sun 08 Mar 2026 00:04:42 +0000 Files and hashes: 1: 5D3SMzFr8OKboG0g3sJdtMwRbgg.crl (hash: zRKrNuqeNqErgubb1A/R6y0DSQd95W3bbOP9rKwTsG0=) 2: 579B33AE886F11F0A02D4009C4F9AE02.roa (hash: i694BiCj0TiGd2lr/zyVLBpjtaksSSaQaDh6dbA9tJI=) 3: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (hash: 5v4v7RaVWpka/RgMNB216nlkDwgHxxiCrRAvcj0M6nU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 00:04:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1359 (0x54f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: Mar 1 00:04:42 2026 GMT Not After : Mar 8 00:04:42 2026 GMT Subject: CN=69a3829a-4555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:26:d6:96:a0:b6:92:8d:28:ef:76:48:26:48: 3a:17:fb:9d:6b:8e:51:fc:81:bf:63:fb:48:10:c0: 79:2b:23:ab:9c:dd:3c:2e:5c:8e:2c:bc:9e:1c:b9: d1:42:f3:6b:c4:03:da:0b:87:eb:e9:05:10:44:34: 25:a6:01:ae:da:a2:f6:a3:66:37:4a:9f:cd:26:fd: 99:77:26:3f:81:b2:0d:70:3b:08:e8:2d:1e:45:68: f0:93:10:ca:29:a0:26:7c:bc:04:3b:5c:66:c6:2a: 2c:cd:64:df:e3:21:ec:79:44:6d:2e:62:6e:92:f9: 9e:a5:27:52:c0:15:f7:2d:7d:a6:12:77:4b:08:cc: 0a:ab:31:14:3d:d6:fb:a9:23:50:73:94:37:9e:9e: 7b:7f:82:c5:be:bc:24:6b:96:c4:4a:d8:8c:78:ba: 6a:f2:23:b9:b6:6b:a0:3c:6e:c8:cf:e7:84:39:cd: b5:13:4a:b2:a8:c2:ab:eb:86:83:0c:c7:30:50:ec: e1:03:0d:c8:64:ac:1d:44:71:63:80:51:e1:aa:f4: 33:6d:4e:7b:fe:66:ba:6e:ae:b7:47:21:25:5f:e9: 83:15:32:33:8e:ca:1d:87:d3:48:94:06:3c:3e:e7: c6:a9:08:3e:7f:d9:ea:8e:69:88:23:af:87:ec:5e: fb:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:0C:AD:39:6C:E9:5F:18:FC:E5:1D:85:A3:D3:B0:B4:27:A7:FB:9A X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:ab:04:49:51:92:5c:ea:a0:1a:52:11:4d:50:0d:cc:27:db: dd:27:24:86:8b:d4:59:48:25:fe:e7:cc:7b:88:bf:6b:0e:d3: dd:b8:98:8a:72:26:34:60:3a:ab:21:ae:2c:5c:54:e8:96:5d: 85:e1:e2:04:49:9d:59:da:cd:ee:32:31:05:2f:95:9c:42:0e: 78:e2:11:e7:f3:04:0d:e9:f2:26:9e:2b:90:4f:50:78:f3:70: 20:01:15:c8:44:b8:d7:ce:d6:10:99:86:06:0d:3a:1a:68:c7: bd:f9:4d:73:5b:72:57:b7:f6:90:24:d3:32:e7:83:00:7f:de: 39:9a:fa:f9:b2:c3:d7:64:c4:4d:a2:0a:22:64:1c:a3:e8:83: 13:8e:d3:2c:0a:c0:ed:2b:77:ef:c4:8d:26:aa:7e:96:50:3a: 7c:e5:93:75:eb:d4:60:36:ce:a5:96:a0:c6:03:0b:44:e6:8b: 78:e0:4d:8b:5d:f7:2a:e9:7a:c2:89:86:62:35:75:19:ae:85: 87:0c:35:8e:8b:77:4f:3e:fd:8f:da:03:c7:b6:88:d4:00:61: 29:be:1b:7a:88:a6:2b:99:bc:91:0f:27:5d:9c:b3:6d:39:bd: 56:9a:7e:a8:b8:66:b3:6c:42:93:f3:c8:7b:4f:64:47:02:87: 80:9a:38:4d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjYwMzAxMDAwNDQyWhcNMjYwMzA4MDAwNDQyWjAYMRYwFAYD VQQDDA02OWEzODI5YS00NTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsibWlqC2ko0o73ZIJkg6F/uda45R/IG/Y/tIEMB5KyOrnN08LlyOLLyeHLnR QvNrxAPaC4fr6QUQRDQlpgGu2qL2o2Y3Sp/NJv2ZdyY/gbINcDsI6C0eRWjwkxDK KaAmfLwEO1xmxioszWTf4yHseURtLmJukvmepSdSwBX3LX2mEndLCMwKqzEUPdb7 qSNQc5Q3np57f4LFvrwka5bEStiMeLpq8iO5tmugPG7Iz+eEOc21E0qyqMKr64aD DMcwUOzhAw3IZKwdRHFjgFHhqvQzbU57/ma6bq63RyElX+mDFTIzjsodh9NIlAY8 PufGqQg+f9nqjmmII6+H7F77hQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNMMrTls 6V8Y/OUdhaPTsLQnp/uaMB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zRTlBNEFFMDMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhP S2JvRzBnM3NKZHRNd1JiZ2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABKsESVGSXOqgGlIRTVANzCfb3SckhovUWUgl/ufMe4i/aw7T3biYinImNGA6 qyGuLFxU6JZdheHiBEmdWdrN7jIxBS+VnEIOeOIR5/MEDenyJp4rkE9QePNwIAEV yES4187WEJmGBg06GmjHvflNc1tyV7f2kCTTMueDAH/eOZr6+bLD12TETaIKImQc o+iDE47TLArA7St378SNJqp+llA6fOWTdevUYDbOpZagxgMLROaLeOBNi133Kul6 womGYjV1Ga6Fhww1jot3Tz79j9oDx7aI1ABhKb4beoimK5m8kQ8nXZyzbTm9Vpp+ qLhms2xCk/PIe09kRwKHgJo4TQ== -----END CERTIFICATE-----Generated at Sun Mar 1 23:55:31 2026 by rpki-client