$ rpki-client -vvf rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.mft File: V5NDbSKpagYTaFEgO7clmE1wsBc.mft (raw, json) Hash identifier: GU/acxfMkyP4ESQRe7QjcwoixUqLJJht+eyeQZrfcZc= Subject key identifier: 8E:1E:60:47:85:C7:96:D4:10:27:4B:A1:C0:82:1B:BA:25:FF:AF:59 Authority key identifier: 57:93:43:6D:22:A9:6A:06:13:68:51:20:3B:B7:25:98:4D:70:B0:17 Certificate issuer: /CN=A9159DCD/serialNumber=5793436D22A96A06136851203BB725984D70B017 Certificate serial: 01EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V5NDbSKpagYTaFEgO7clmE1wsBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.mft Manifest number: 01E7 Signing time: Sun 01 Mar 2026 04:06:57 +0000 Manifest this update: Sun 01 Mar 2026 04:06:56 +0000 Manifest next update: Sun 08 Mar 2026 04:06:56 +0000 Files and hashes: 1: V5NDbSKpagYTaFEgO7clmE1wsBc.crl (hash: N59n8GZ/IISKwYdsZBvuoKuJm35XDgAkEm1rD8cknBg=) 2: 29D600062C3311EEBFF69B6CC4F9AE02.roa (hash: hskv6e7Ag+5HAqH/N4O5ItTvOGPOLGR+/yJDzJO0d+k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.crl rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V5NDbSKpagYTaFEgO7clmE1wsBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:06:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 491 (0x1eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159DCD, serialNumber=5793436D22A96A06136851203BB725984D70B017 Validity Not Before: Mar 1 04:06:56 2026 GMT Not After : Mar 8 04:06:56 2026 GMT Subject: CN=69a3bb60-ad17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2d:68:f1:9c:cf:b1:23:87:5b:fa:9a:84:11: ff:c7:2a:67:f7:94:4d:86:0d:84:91:24:29:3d:ed: 49:75:65:81:7c:4f:4f:d7:95:95:aa:ce:34:2e:50: c4:c2:24:ec:9f:ca:98:d2:d4:7a:74:24:cf:7e:e1: 2b:58:2a:c7:bb:7f:07:27:45:04:26:e6:c9:2f:66: 38:25:17:03:30:12:4d:cf:ba:69:93:f5:59:88:32: be:d6:b2:fa:e4:a2:40:a2:69:8b:2e:f6:3c:f4:34: 0f:68:bd:4f:6c:25:25:b5:b2:4d:95:4b:b1:1d:d2: cc:07:29:36:7d:60:2f:df:8c:c3:68:4b:b9:01:76: 7b:3a:c4:c0:fe:cf:4f:e2:37:08:8f:14:b3:6d:99: 1e:e9:02:ba:4c:c8:fb:23:5f:7f:86:ac:ec:b0:49: 6d:a0:73:e5:26:d1:d4:4b:39:2f:47:62:d8:14:32: 18:c6:24:bf:8a:ac:49:49:28:e0:80:08:59:7f:73: 8d:6e:22:9a:7f:be:7d:3e:3a:a1:44:b2:4d:0a:bb: 36:3e:18:7d:16:3b:79:84:07:58:4a:93:6a:87:27: 2f:ff:4c:33:f8:f6:b6:8d:ae:8e:b3:27:85:a2:82: cc:b6:e1:d8:4f:b3:19:e3:d6:d7:1b:68:72:e5:f4: 0c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:1E:60:47:85:C7:96:D4:10:27:4B:A1:C0:82:1B:BA:25:FF:AF:59 X509v3 Authority Key Identifier: keyid:57:93:43:6D:22:A9:6A:06:13:68:51:20:3B:B7:25:98:4D:70:B0:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V5NDbSKpagYTaFEgO7clmE1wsBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:b5:6a:52:0b:81:84:70:c4:7e:c5:c2:0c:f0:3f:52:2c:2e: 68:89:a6:1a:e0:6d:61:62:a5:5c:be:fa:43:eb:46:09:79:60: c2:a6:b5:e3:71:31:ae:3c:4c:f4:c1:5a:57:23:21:7a:4c:83: 8d:99:a1:e5:55:77:1b:e7:48:ca:7e:82:26:fd:c2:11:7d:1f: 33:9e:e1:92:2d:07:ad:c6:17:b7:57:fd:1c:3f:fb:fb:ab:15: b7:e8:2d:7e:29:44:f9:5e:fd:76:7e:b5:df:be:f4:66:be:44: 49:27:23:46:27:e9:b3:6a:2e:dd:20:ba:ee:ea:da:ec:d8:79: b7:9e:1f:2a:35:a8:4e:5b:9e:d1:31:41:17:52:59:bf:cb:7b: 9b:70:fa:ae:f6:77:66:96:ff:3f:76:83:8e:22:62:90:31:31: a4:dc:1a:01:45:93:96:b1:85:69:80:a1:f9:2e:da:49:ed:7f: f6:cf:52:e5:f2:96:75:cf:a5:8b:f4:2a:ae:30:83:80:1c:23: 8a:30:de:c9:29:c9:5c:8c:81:46:5d:47:74:82:9e:e2:cc:69: 35:80:ea:cc:a5:ce:6d:73:d7:c0:08:19:d6:98:90:71:b8:af: a7:d4:d2:71:3f:59:7d:8f:09:ce:c0:75:fa:0b:74:12:55:b9: 01:3e:73:d4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlEQ0QxMTAvBgNVBAUTKDU3OTM0MzZEMjJBOTZBMDYxMzY4NTEyMDNCQjcyNTk4 NEQ3MEIwMTcwHhcNMjYwMzAxMDQwNjU2WhcNMjYwMzA4MDQwNjU2WjAYMRYwFAYD VQQDDA02OWEzYmI2MC1hZDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqS1o8ZzPsSOHW/qahBH/xypn95RNhg2EkSQpPe1JdWWBfE9P15WVqs40LlDE wiTsn8qY0tR6dCTPfuErWCrHu38HJ0UEJubJL2Y4JRcDMBJNz7ppk/VZiDK+1rL6 5KJAommLLvY89DQPaL1PbCUltbJNlUuxHdLMByk2fWAv34zDaEu5AXZ7OsTA/s9P 4jcIjxSzbZke6QK6TMj7I19/hqzssEltoHPlJtHUSzkvR2LYFDIYxiS/iqxJSSjg gAhZf3ONbiKaf759PjqhRLJNCrs2Phh9Fjt5hAdYSpNqhycv/0wz+Pa2ja6OsyeF ooLMtuHYT7MZ49bXG2hy5fQMiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI4eYEeF x5bUECdLocCCG7ol/69ZMB8GA1UdIwQYMBaAFFeTQ20iqWoGE2hRIDu3JZhNcLAX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OURDRC9BMDBENzAwNjJD MjQxMUVFQUI5NzhGMEZDNEY5QUUwMi9WNU5EYlNLcGFnWVRhRkVnTzdjbG1FMXdz QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y1TkRiU0twYWdZVGFGRWdPN2NsbUUxd3NCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OURDRC9BMDBENzAwNjJDMjQxMUVFQUI5NzhGMEZDNEY5QUUwMi9WNU5EYlNLcGFn WVRhRkVnTzdjbG1FMXdzQmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHrVqUguBhHDEfsXCDPA/UiwuaImmGuBtYWKlXL76Q+tGCXlgwqa143ExrjxM 9MFaVyMhekyDjZmh5VV3G+dIyn6CJv3CEX0fM57hki0HrcYXt1f9HD/7+6sVt+gt filE+V79dn613770Zr5ESScjRifps2ou3SC67ura7Nh5t54fKjWoTlue0TFBF1JZ v8t7m3D6rvZ3Zpb/P3aDjiJikDExpNwaAUWTlrGFaYCh+S7aSe1/9s9S5fKWdc+l i/QqrjCDgBwjijDeySnJXIyBRl1HdIKe4sxpNYDqzKXObXPXwAgZ1piQcbivp9TS cT9ZfY8JzsB1+gt0ElW5AT5z1A== -----END CERTIFICATE-----Generated at Sun Mar 1 20:22:14 2026 by rpki-client