$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft File: 5bRMaejecz32GWYFbn5BXsfHDSo.mft (raw, json) Hash identifier: DP2ZS27ikJAcNoQ2XM1J2XS1dIbKfCZjkr6+tXXXYv4= Subject key identifier: B7:D1:AD:6D:3D:17:37:AA:61:BF:55:A7:F0:6B:9F:77:02:B6:C1:60 Authority key identifier: E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A Certificate issuer: /CN=A91B4873/serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Certificate serial: 013B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft Manifest number: 0138 Signing time: Sun 01 Mar 2026 06:25:06 +0000 Manifest this update: Sun 01 Mar 2026 06:25:06 +0000 Manifest next update: Sun 08 Mar 2026 06:25:06 +0000 Files and hashes: 1: 5bRMaejecz32GWYFbn5BXsfHDSo.crl (hash: tfo3aEI4ZY64RMUdmc3idoLJKM37Ch7AbCJKHehQNEo=) 2: F9AAE6F8994011F097180C40C4F9AE02.roa (hash: RU5OhSVcdir8OrT3E9J1urB5y05ack2UMndknf/XUMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:25:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 315 (0x13b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873, serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Validity Not Before: Mar 1 06:25:06 2026 GMT Not After : Mar 8 06:25:06 2026 GMT Subject: CN=69a3dbc2-b71a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:72:b1:ab:3c:65:37:b1:35:9a:b8:39:4f:69: 55:45:48:68:9a:fc:dc:9a:d4:93:87:fd:e7:62:fd: 07:a2:57:cf:e0:dd:09:2b:0f:15:07:37:30:5a:0d: a8:0d:24:97:5d:a4:81:18:b9:0f:53:aa:45:14:58: e0:e5:b5:73:23:80:57:5f:5c:c2:00:1e:ff:a8:16: 8c:95:28:77:89:1c:3a:ac:db:44:48:82:38:ce:5d: 57:e0:51:ff:cf:d0:a7:ba:c3:29:82:0b:f8:06:6f: 57:0d:ac:b2:0e:aa:59:fa:12:c6:d5:ae:b3:e2:f2: b6:1d:9b:5e:aa:97:74:33:1f:9b:69:7a:16:a4:a1: cf:86:61:59:a6:03:b0:b8:1b:85:2c:93:9c:e1:e7: ab:34:e6:5c:32:26:8c:c9:18:b7:09:0a:7e:94:22: 26:9e:df:9b:ad:a6:fa:68:77:c1:d2:63:c7:4e:b5: d9:85:9c:e4:9d:c3:ee:d4:99:39:35:2c:77:82:eb: ca:b2:30:f5:cb:3f:fb:00:2e:fd:2c:88:a5:b1:f0: af:90:14:ce:42:96:da:83:83:6e:64:3d:72:33:54: b1:27:99:f1:41:92:28:c5:7f:80:a7:aa:fc:16:2a: 40:3e:b0:72:67:d0:a7:2c:bb:61:3c:a8:9a:49:07: 86:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:D1:AD:6D:3D:17:37:AA:61:BF:55:A7:F0:6B:9F:77:02:B6:C1:60 X509v3 Authority Key Identifier: keyid:E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:2c:47:a3:7e:da:e0:3a:0c:54:f1:7d:9f:83:8e:4d:23:78: 60:6f:ff:3f:01:d7:82:e2:f8:f4:99:19:43:a2:78:12:0f:b3: 8e:1e:aa:d8:00:a8:c5:b5:e7:d7:ff:0e:70:40:d4:32:13:66: 51:68:cb:42:bd:79:34:a2:ca:b7:66:05:08:dc:cf:26:93:72: c7:0a:a9:3f:94:79:c3:f6:73:4d:d5:28:cb:2a:f1:8e:40:19: ab:3a:0d:ea:70:50:ce:cc:a1:e2:2d:4e:e4:c7:4b:24:68:98: 07:63:6c:c0:34:23:19:8a:c6:23:f5:38:23:00:b8:1f:7e:72: 41:5a:7e:41:a0:70:d0:c9:91:d1:c4:3b:41:ff:15:8c:93:d0: e4:19:18:0e:54:f5:5b:64:a5:94:86:a2:05:29:6e:c1:66:a6: 2e:ba:2b:92:31:93:43:d3:83:e4:41:a8:7d:08:ea:d1:fc:00: 4f:09:95:3b:f1:7d:48:32:64:cc:29:34:0f:75:fe:cc:9e:7a: 9b:a0:20:e1:ae:d0:ba:39:b8:41:a2:2f:86:12:56:95:db:19: 0a:ce:f1:ea:b6:5a:40:12:5e:d6:fd:7e:e8:33:e1:25:fe:57: 50:e6:93:54:cb:90:6a:0a:25:8a:86:46:60:e1:ba:41:7f:7f: e1:7d:4f:57 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ4NzMxMTAvBgNVBAUTKEU1QjQ0QzY5RThERTczM0RGNjE5NjYwNTZFN0U0MTVF QzdDNzBEMkEwHhcNMjYwMzAxMDYyNTA2WhcNMjYwMzA4MDYyNTA2WjAYMRYwFAYD VQQDEw02OWEzZGJjMi1iNzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXKxqzxlN7E1mrg5T2lVRUhomvzcmtSTh/3nYv0HolfP4N0JKw8VBzcwWg2o DSSXXaSBGLkPU6pFFFjg5bVzI4BXX1zCAB7/qBaMlSh3iRw6rNtESII4zl1X4FH/ z9CnusMpggv4Bm9XDayyDqpZ+hLG1a6z4vK2HZteqpd0Mx+baXoWpKHPhmFZpgOw uBuFLJOc4eerNOZcMiaMyRi3CQp+lCImnt+brab6aHfB0mPHTrXZhZzkncPu1Jk5 NSx3guvKsjD1yz/7AC79LIilsfCvkBTOQpbag4NuZD1yM1SxJ5nxQZIoxX+Ap6r8 FipAPrByZ9CnLLthPKiaSQeGXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLfRrW09 FzeqYb9Vp/Brn3cCtsFgMB8GA1UdIwQYMBaAFOW0TGno3nM99hlmBW5+QV7Hxw0q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDg3My80RTI1QzhCQzM4 RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6MzJHV1lGYm41QlhzZkhE U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzViUk1hZWplY3ozMkdXWUZibjVCWHNmSERTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDg3My80RTI1QzhCQzM4RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6 MzJHV1lGYm41QlhzZkhEU28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAyxHo37a4DoMVPF9n4OOTSN4YG//PwHXguL49JkZQ6J4Eg+zjh6q2ACoxbXn 1/8OcEDUMhNmUWjLQr15NKLKt2YFCNzPJpNyxwqpP5R5w/ZzTdUoyyrxjkAZqzoN 6nBQzsyh4i1O5MdLJGiYB2NswDQjGYrGI/U4IwC4H35yQVp+QaBw0MmR0cQ7Qf8V jJPQ5BkYDlT1W2SllIaiBSluwWamLrorkjGTQ9OD5EGofQjq0fwATwmVO/F9SDJk zCk0D3X+zJ56m6Ag4a7Qujm4QaIvhhJWldsZCs7x6rZaQBJe1v1+6DPhJf5XUOaT VMuQagolioZGYOG6QX9/4X1PVw== -----END CERTIFICATE-----Generated at Mon Mar 2 04:15:28 2026 by rpki-client