$ rpki-client -vvf rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft File: 5cOmhsg97m0zv-xUHqy0pKCJknk.mft (raw, json) Hash identifier: 4wr5z37j+2QlVurYJLVbgPNOoX26Lw+XH79hrfWFyS0= Subject key identifier: 9B:66:94:6A:5D:7B:6F:8B:E0:16:7C:9B:E5:95:B8:69:F7:87:76:06 Authority key identifier: E5:C3:A6:86:C8:3D:EE:6D:33:BF:EC:54:1E:AC:B4:A4:A0:89:92:79 Certificate issuer: /CN=A9153AA6/serialNumber=E5C3A686C83DEE6D33BFEC541EACB4A4A0899279 Certificate serial: 1761 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft Manifest number: 1755 Signing time: Sun 01 Mar 2026 22:57:25 +0000 Manifest this update: Sun 01 Mar 2026 22:57:25 +0000 Manifest next update: Sun 08 Mar 2026 22:57:25 +0000 Files and hashes: 1: 5cOmhsg97m0zv-xUHqy0pKCJknk.crl (hash: D2viAh3+dRntJ4J5Blb+duHQZe+OnGFgQtY6PEDSCkk=) 2: 99C6F94CF52511E7948D5A0BC4F9AE02.roa (hash: KzN0lf2tMPA9CR+MbmlmHKhd1CioUaWks43azeizhtM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.crl rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:57:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5985 (0x1761) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153AA6, serialNumber=E5C3A686C83DEE6D33BFEC541EACB4A4A0899279 Validity Not Before: Mar 1 22:57:25 2026 GMT Not After : Mar 8 22:57:25 2026 GMT Subject: CN=69a4c455-794b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8a:53:2a:d9:39:86:db:d1:43:1e:8b:3e:50: 86:9c:b2:82:a2:fb:b9:b5:59:97:3f:82:17:35:e5: f6:0b:76:02:26:64:34:6c:ab:51:f1:53:d6:d1:5a: d1:53:fd:af:3b:e7:8a:e3:5d:af:81:88:79:63:22: 4e:71:33:87:52:75:b2:a2:e4:ef:a4:19:b2:38:cc: 92:48:5a:19:85:6d:e3:48:e5:2e:9b:fb:6d:95:44: 5c:b0:6d:a6:18:e6:e9:06:8e:7a:67:66:23:2e:8e: 25:76:33:14:60:a5:9d:e7:d6:26:b6:f9:71:d3:c0: 4f:e2:e2:f8:9b:46:b3:14:a6:71:0c:ef:e5:3b:64: 50:8a:b9:c5:e7:60:29:90:d3:42:a3:fb:21:fb:d9: d7:6f:13:31:e8:40:33:75:b6:e4:f9:40:06:b6:45: 18:1c:da:f3:81:a1:a0:bd:98:a4:87:8c:4e:13:ff: ab:33:94:17:fb:5b:59:eb:ab:4f:fe:70:bb:9b:b2: 56:0a:56:de:e9:ba:55:66:34:e4:6d:48:ce:c1:32: 88:d3:30:27:19:02:a7:1b:06:22:46:d9:fc:64:cf: bf:b0:e4:8b:f6:01:6b:74:85:1b:57:b8:ac:c7:79: 2c:23:68:05:d5:ac:34:13:36:6d:6e:1e:01:be:12: 04:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:66:94:6A:5D:7B:6F:8B:E0:16:7C:9B:E5:95:B8:69:F7:87:76:06 X509v3 Authority Key Identifier: keyid:E5:C3:A6:86:C8:3D:EE:6D:33:BF:EC:54:1E:AC:B4:A4:A0:89:92:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:46:33:61:da:a2:e0:53:11:03:82:5d:30:50:41:e9:41:93: e8:2b:c6:9a:9e:5d:a3:41:83:51:40:18:28:59:e2:48:fc:d4: 82:e1:c8:ed:3d:b2:a0:1f:62:5e:df:dd:50:a2:d2:d0:bc:fb: 20:90:5c:83:bc:99:5f:12:09:f5:ed:6b:44:73:ff:30:d0:56: 23:75:ee:1e:de:b0:bd:b7:bb:9e:92:6d:66:2f:66:3f:e8:9d: e3:a4:8f:c1:22:6e:b9:35:2e:3f:57:8e:f2:05:27:d4:2a:d2: e0:a9:30:4f:24:57:9c:df:d4:85:08:36:6b:07:98:48:e9:a9: 99:dc:31:40:50:66:73:7d:c1:ee:14:e0:22:e9:a8:98:41:9f: 74:8e:18:e4:f3:78:1d:fb:4f:f5:ca:80:b1:2e:38:ef:1b:ef: 88:99:ae:91:be:98:2a:ce:54:12:fd:8f:93:3d:f5:bd:b8:25: ab:c5:a2:e8:22:2d:e9:03:74:21:30:74:59:d9:d3:37:49:79: a7:29:40:8a:da:2f:92:32:5c:e9:df:dc:61:51:92:08:c3:d7: 8c:10:f3:d9:f9:8a:54:51:7b:d8:b8:c5:f1:c8:93:8f:80:b0: 0c:b6:83:c4:31:93:8d:14:02:93:f6:f0:d8:07:39:cb:b5:0c: 15:ea:0c:72 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICF2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNBQTYxMTAvBgNVBAUTKEU1QzNBNjg2QzgzREVFNkQzM0JGRUM1NDFFQUNCNEE0 QTA4OTkyNzkwHhcNMjYwMzAxMjI1NzI1WhcNMjYwMzA4MjI1NzI1WjAYMRYwFAYD VQQDEw02OWE0YzQ1NS03OTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsIpTKtk5htvRQx6LPlCGnLKCovu5tVmXP4IXNeX2C3YCJmQ0bKtR8VPW0VrR U/2vO+eK412vgYh5YyJOcTOHUnWyouTvpBmyOMySSFoZhW3jSOUum/ttlURcsG2m GObpBo56Z2YjLo4ldjMUYKWd59Ymtvlx08BP4uL4m0azFKZxDO/lO2RQirnF52Ap kNNCo/sh+9nXbxMx6EAzdbbk+UAGtkUYHNrzgaGgvZikh4xOE/+rM5QX+1tZ66tP /nC7m7JWClbe6bpVZjTkbUjOwTKI0zAnGQKnGwYiRtn8ZM+/sOSL9gFrdIUbV7is x3ksI2gF1aw0EzZtbh4BvhIE9QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJtmlGpd e2+L4BZ8m+WVuGn3h3YGMB8GA1UdIwQYMBaAFOXDpobIPe5tM7/sVB6stKSgiZJ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0FBNi85QzNEODdFNkY1 MjQxMUU3OTY0NEIwMDlDNEY5QUUwMi81Y09taHNnOTdtMHp2LXhVSHF5MHBLQ0pr bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVjT21oc2c5N20wenYteFVIcXkwcEtDSmtuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0FBNi85QzNEODdFNkY1MjQxMUU3OTY0NEIwMDlDNEY5QUUwMi81Y09taHNnOTdt MHp2LXhVSHF5MHBLQ0prbmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnUYzYdqi4FMRA4JdMFBB6UGT6CvGmp5do0GDUUAYKFniSPzUguHI7T2yoB9i Xt/dUKLS0Lz7IJBcg7yZXxIJ9e1rRHP/MNBWI3XuHt6wvbe7npJtZi9mP+id46SP wSJuuTUuP1eO8gUn1CrS4KkwTyRXnN/UhQg2aweYSOmpmdwxQFBmc33B7hTgIumo mEGfdI4Y5PN4HftP9cqAsS447xvviJmukb6YKs5UEv2Pkz31vbglq8Wi6CIt6QN0 ITB0WdnTN0l5pylAitovkjJc6d/cYVGSCMPXjBDz2fmKVFF72LjF8ciTj4CwDLaD xDGTjRQCk/bw2Ac5y7UMFeoMcg== -----END CERTIFICATE-----Generated at Mon Mar 2 16:44:57 2026 by rpki-client