$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft File: U5TlfShXd_11FCjRXLD7L8WSx6Y.mft (raw, json) Hash identifier: wgtRWAUb6nj+QVRzumAQTq4FHUOSScCHS9qLMN6m1jk= Subject key identifier: ED:A8:5F:29:4F:59:2A:15:B7:25:69:DA:8D:7B:03:7A:EB:FC:DA:D8 Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 05D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft Manifest number: 05C3 Signing time: Sat 28 Feb 2026 23:39:09 +0000 Manifest this update: Sat 28 Feb 2026 23:39:09 +0000 Manifest next update: Sat 07 Mar 2026 23:39:09 +0000 Files and hashes: 1: U5TlfShXd_11FCjRXLD7L8WSx6Y.crl (hash: b5kPJooKjiN9DvqfR3QBZTmeDtukMlboyukJRTRCS+8=) 2: C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa (hash: 0dj9Leao2hIOrNuzQzhTyOKvRe7wijLNctX+F2sNN6Y=) 3: C25659465C9D11EC99F7D10BC4F9AE02.roa (hash: gBnTTYjyqczZgDb3uD73c44S0Waa5svUhRxTsEIxWDk=) 4: E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa (hash: k5X4by3Br8W/PYfkmb4iRMPeho37AmOnY5X1wBHf0bs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 23:39:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1497 (0x5d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9, serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: Feb 28 23:39:09 2026 GMT Not After : Mar 7 23:39:09 2026 GMT Subject: CN=69a37c9d-9c8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:f6:29:4b:52:de:eb:10:f1:9b:75:fe:64:f9: eb:4c:66:c4:3f:f3:85:f1:87:7a:ea:37:1e:c2:78: c5:d8:3a:0e:1f:9c:ff:5c:fa:ac:bc:b0:ad:68:61: ca:eb:a6:73:81:09:71:73:81:2a:41:38:de:a6:ad: 16:3c:bc:01:51:93:29:ff:33:16:fa:e8:12:fe:ea: b9:37:34:1b:f4:7d:66:4b:35:4b:a0:29:f9:47:fa: d8:9a:f9:b2:c8:93:49:15:d8:ff:6d:a4:df:05:cb: 1a:2c:3b:e5:72:e4:59:42:80:93:a8:ad:ab:be:2b: 98:79:f9:63:10:cc:d1:89:47:ca:31:21:1d:be:6a: d4:48:1b:87:02:17:18:65:3e:c2:b1:9a:48:2a:5b: 2e:f4:da:4f:69:8f:cc:7e:7c:e3:a7:be:f0:7f:ec: 5f:1f:18:d2:77:10:6a:c9:0e:96:4d:b3:9c:8e:e1: 71:08:47:25:e1:06:e1:9c:ac:0a:06:3e:43:3c:ef: 13:aa:69:b4:34:52:32:36:9c:68:63:b1:92:47:d1: 91:f0:06:f8:99:97:f1:1f:86:1d:95:66:ff:8a:94: 1e:8e:ee:61:15:8f:34:16:51:21:c4:40:a1:83:e6: db:a5:f7:0b:16:c9:b3:8f:c4:1a:43:5d:31:7c:c8: 1b:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:A8:5F:29:4F:59:2A:15:B7:25:69:DA:8D:7B:03:7A:EB:FC:DA:D8 X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:3a:1b:44:ef:e3:ff:60:de:7d:67:1a:f4:14:4c:ab:05:b3: 38:4f:71:dc:69:1b:a7:20:25:7d:1a:98:77:0c:43:de:33:2e: f6:fc:b4:a6:d7:b6:6a:4a:db:07:00:e3:73:72:51:97:d5:0a: 89:a8:c3:c7:e7:3c:e7:0a:f6:2e:5a:41:36:aa:19:d6:10:79: ef:40:9d:8a:98:cb:ac:9b:86:ad:ae:d2:7b:0a:67:7d:0f:e3: 2a:54:72:b1:da:ab:14:4f:f6:32:7e:0d:68:4d:a1:cc:1e:f0: 9c:bc:d8:f8:b9:94:5f:4a:b1:96:5c:2d:a1:08:e7:9d:32:21: 69:3c:84:4d:85:b0:20:94:d7:3a:06:13:ff:38:50:40:c6:12: 63:22:f6:0b:c6:fc:f3:e6:5d:8f:11:87:c3:6d:e5:7b:a6:b0: cc:28:58:a5:56:0b:4c:67:cc:62:53:f5:cc:13:38:51:30:ca: fe:fa:97:40:0e:97:34:ca:18:53:85:83:aa:cf:ff:92:f4:1b: fb:fd:b3:df:27:ec:de:d6:80:8a:9b:10:47:d8:be:8d:15:63: b3:96:8d:51:a1:ef:92:73:5d:91:55:de:28:52:88:31:d4:f8: 0e:28:4b:6f:66:ca:4c:b8:9d:cd:f9:29:29:18:45:f1:bb:86: c2:0c:63:ac -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjYwMjI4MjMzOTA5WhcNMjYwMzA3MjMzOTA5WjAYMRYwFAYD VQQDDA02OWEzN2M5ZC05YzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlvYpS1Le6xDxm3X+ZPnrTGbEP/OF8Yd66jcewnjF2DoOH5z/XPqsvLCtaGHK 66ZzgQlxc4EqQTjepq0WPLwBUZMp/zMW+ugS/uq5NzQb9H1mSzVLoCn5R/rYmvmy yJNJFdj/baTfBcsaLDvlcuRZQoCTqK2rviuYefljEMzRiUfKMSEdvmrUSBuHAhcY ZT7CsZpIKlsu9NpPaY/Mfnzjp77wf+xfHxjSdxBqyQ6WTbOcjuFxCEcl4QbhnKwK Bj5DPO8Tqmm0NFIyNpxoY7GSR9GR8Ab4mZfxH4YdlWb/ipQeju5hFY80FlEhxECh g+bbpfcLFsmzj8QaQ10xfMgbxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO2oXylP WSoVtyVp2o17A3rr/NrYMB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTdBOS81Rjg5RjZFQ0ZCMzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRf MTFGQ2pSWExEN0w4V1N4NlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwDobRO/j/2DefWca9BRMqwWzOE9x3GkbpyAlfRqYdwxD3jMu9vy0pte2akrb BwDjc3JRl9UKiajDx+c85wr2LlpBNqoZ1hB570CdipjLrJuGra7SewpnfQ/jKlRy sdqrFE/2Mn4NaE2hzB7wnLzY+LmUX0qxllwtoQjnnTIhaTyETYWwIJTXOgYT/zhQ QMYSYyL2C8b88+ZdjxGHw23le6awzChYpVYLTGfMYlP1zBM4UTDK/vqXQA6XNMoY U4WDqs//kvQb+/2z3yfs3taAipsQR9i+jRVjs5aNUaHvknNdkVXeKFKIMdT4DihL b2bKTLidzfkpKRhF8buGwgxjrA== -----END CERTIFICATE-----Generated at Sun Mar 1 20:21:37 2026 by rpki-client