$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft File: 5bRMaejecz32GWYFbn5BXsfHDSo.mft (raw, json) Hash identifier: n4zOrI4s7CtGBZQD0yjyMebTMAMosv3oc6UvAoCXxuk= Subject key identifier: 01:2C:21:4E:83:4C:DB:44:D1:12:3C:26:5A:94:B0:20:4A:0D:44:C9 Authority key identifier: E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A Certificate issuer: /CN=A91B4873/serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Certificate serial: 0158 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft Manifest number: 0152 Signing time: Fri 17 Apr 2026 04:47:52 +0000 Manifest this update: Fri 17 Apr 2026 04:47:52 +0000 Manifest next update: Fri 24 Apr 2026 04:47:52 +0000 Files and hashes: 1: 5bRMaejecz32GWYFbn5BXsfHDSo.crl (hash: JtSj9dyn/FTtS54QfP+qNaXmlPx0kmUlvmZlPbQc9Fs=) 2: F9AAE6F8994011F097180C40C4F9AE02.roa (hash: +BAp+39366AUiOK5SmP/mdRqu6NWeoWLjWnOKT+SW/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873, serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Validity Not Before: Apr 17 04:47:52 2026 GMT Not After : Apr 24 04:47:52 2026 GMT Subject: CN=69e1bb78-3151 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:51:74:a0:e5:d2:82:54:c7:a3:cc:ad:b4:ff: de:0f:e5:16:3a:37:02:ee:46:73:93:a1:f7:1d:f6: 97:86:74:9e:37:e8:1e:36:e0:fc:8d:52:2a:d6:ec: 3e:a2:b1:15:2d:fa:4a:64:70:60:9b:95:fb:e5:f8: a7:f7:a1:28:c9:e5:f5:21:d6:b5:2c:bb:b2:3b:a0: c0:84:74:9b:9c:61:5e:c1:a6:18:d8:77:32:92:87: 1f:39:75:5a:bf:4e:b7:ed:0a:6b:a2:88:35:ee:04: bd:4b:16:44:b8:40:1c:89:1d:40:c5:53:f6:ed:b2: 52:63:43:e8:da:e5:e3:18:45:6e:ff:57:31:5e:76: 05:19:8e:47:69:1d:5a:a9:d8:7c:0e:04:cc:2d:08: a4:bc:55:08:c3:35:4c:39:46:50:a9:20:94:f5:2d: f5:90:ea:3b:07:95:51:65:c1:5e:8e:86:7c:f9:4f: 25:f6:f6:3b:ea:bb:d6:ff:f4:ba:52:5a:e5:d4:0a: 27:be:5b:e4:e2:58:7e:42:71:1a:1b:6c:20:ca:f4: ca:4d:8b:82:48:e5:d6:69:e1:0a:53:2b:76:53:83: 7b:be:72:74:01:90:a4:59:3d:88:76:d9:56:49:81: e9:1a:16:3e:60:35:68:ae:e9:ab:0f:34:f3:16:d3: 1f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:2C:21:4E:83:4C:DB:44:D1:12:3C:26:5A:94:B0:20:4A:0D:44:C9 X509v3 Authority Key Identifier: keyid:E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:79:1f:ff:aa:3d:f7:91:37:4a:d2:b9:ba:e0:8f:d4:e5:a7: 96:c3:66:a4:f3:db:26:f2:ac:7c:e8:37:53:d6:f8:b8:d9:ef: a1:50:1f:fa:88:c4:ee:4f:80:18:01:bf:a1:98:7e:26:03:06: 8b:c2:b4:ef:2e:0d:1d:80:70:9c:cf:e8:44:1e:bc:b6:7e:49: b1:ba:b5:37:f8:cb:1a:47:c4:b7:b7:4d:2b:4f:38:31:7b:da: 89:3b:21:34:42:6f:45:dd:9d:39:55:96:d6:c1:12:d9:2d:ac: 19:e2:3c:a2:80:19:c5:c2:bc:0c:b3:de:96:58:27:59:c5:5f: 33:e8:8a:cf:14:ff:e8:83:30:92:94:c2:b9:e7:15:17:78:cb: 8b:b6:0a:9d:cd:a2:0a:63:2f:43:f1:84:9b:3e:9e:e5:b2:5b: 8f:01:f0:cd:60:59:d6:e2:bc:83:b9:21:bd:c3:83:a2:33:60: e7:29:7e:e7:b9:ab:f6:4a:e1:8d:bd:82:64:e2:5c:13:0d:de: fa:f9:5b:c2:fc:75:81:84:f2:41:58:04:ab:f6:84:81:a9:23: f2:2a:34:b0:67:60:65:81:53:cc:13:50:6f:d2:84:11:79:63: 5d:d5:c3:67:2f:94:53:27:e8:70:00:8f:e9:ee:e0:42:7c:cf: 16:24:7d:fd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ4NzMxMTAvBgNVBAUTKEU1QjQ0QzY5RThERTczM0RGNjE5NjYwNTZFN0U0MTVF QzdDNzBEMkEwHhcNMjYwNDE3MDQ0NzUyWhcNMjYwNDI0MDQ0NzUyWjAYMRYwFAYD VQQDEw02OWUxYmI3OC0zMTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj1F0oOXSglTHo8yttP/eD+UWOjcC7kZzk6H3HfaXhnSeN+geNuD8jVIq1uw+ orEVLfpKZHBgm5X75fin96EoyeX1Ida1LLuyO6DAhHSbnGFewaYY2HcykocfOXVa v0637Qproog17gS9SxZEuEAciR1AxVP27bJSY0Po2uXjGEVu/1cxXnYFGY5HaR1a qdh8DgTMLQikvFUIwzVMOUZQqSCU9S31kOo7B5VRZcFejoZ8+U8l9vY76rvW//S6 Ulrl1Aonvlvk4lh+QnEaG2wgyvTKTYuCSOXWaeEKUyt2U4N7vnJ0AZCkWT2IdtlW SYHpGhY+YDVorumrDzTzFtMf8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAEsIU6D TNtE0RI8JlqUsCBKDUTJMB8GA1UdIwQYMBaAFOW0TGno3nM99hlmBW5+QV7Hxw0q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDg3My80RTI1QzhCQzM4 RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6MzJHV1lGYm41QlhzZkhE U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzViUk1hZWplY3ozMkdXWUZibjVCWHNmSERTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDg3My80RTI1QzhCQzM4RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6 MzJHV1lGYm41QlhzZkhEU28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvXkf/6o995E3StK5uuCP1OWnlsNmpPPbJvKsfOg3U9b4uNnvoVAf+ojE7k+A GAG/oZh+JgMGi8K07y4NHYBwnM/oRB68tn5Jsbq1N/jLGkfEt7dNK084MXvaiTsh NEJvRd2dOVWW1sES2S2sGeI8ooAZxcK8DLPellgnWcVfM+iKzxT/6IMwkpTCuecV F3jLi7YKnc2iCmMvQ/GEmz6e5bJbjwHwzWBZ1uK8g7khvcODojNg5yl+57mr9krh jb2CZOJcEw3e+vlbwvx1gYTyQVgEq/aEgakj8io0sGdgZYFTzBNQb9KEEXljXdXD Zy+UUyfocACP6e7gQnzPFiR9/Q== -----END CERTIFICATE-----Generated at Fri Apr 17 07:35:35 2026 by rpki-client