$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft File: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft (raw, json) Hash identifier: hZU52SMZyA2xbQqBpHWp+OCvjIX5PW20D6razQik3a4= Subject key identifier: 09:BB:4D:01:B7:2D:3F:1A:28:A2:31:9D:86:11:C6:11:AF:CB:06:CC Authority key identifier: E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 Certificate issuer: /CN=A91DE5E8/serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Certificate serial: 0267 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft Manifest number: 025B Signing time: Fri 17 Apr 2026 01:59:45 +0000 Manifest this update: Fri 17 Apr 2026 01:59:44 +0000 Manifest next update: Fri 24 Apr 2026 01:59:44 +0000 Files and hashes: 1: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl (hash: pr484+MqOroFrlHdE9iljxpQfLHOdHgRVQJXV1KnFR0=) 2: B264EB66A30911ED99A82087C4F9AE02.roa (hash: Qsg2AMGaV0HzjGdO1Hutn0CHA9Q/KYFBqKZc552p7Mk=) 3: 785B44D6F2AF11EF97443030C4F9AE02.roa (hash: yzmWg50nzv8Dnad8AXsujO//BFKjYq1nis/lix16bcM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:59:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 615 (0x267) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE5E8, serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Validity Not Before: Apr 17 01:59:44 2026 GMT Not After : Apr 24 01:59:44 2026 GMT Subject: CN=69e19410-ddf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:d1:27:43:4a:69:e4:63:f4:f9:85:cf:88:78: 79:0c:a7:5a:77:4f:73:57:ec:8d:6f:d8:a6:aa:12: b0:cb:b4:ba:b0:a0:9c:3b:3b:e5:7e:31:92:2b:54: c2:04:0a:43:24:78:1e:03:76:10:f6:09:3c:bf:9b: da:6d:16:c1:1e:ec:ec:19:2f:cf:a1:17:89:63:04: 02:30:2e:ba:db:71:5b:ca:4b:1f:8d:91:74:73:64: f6:8e:bb:00:89:5f:26:48:16:5c:7b:ba:26:ce:29: c4:3a:e4:58:82:20:05:ff:7f:5b:0e:6b:7e:c6:f5: e7:c5:b5:2c:bd:ea:b9:08:b2:9f:b0:0e:55:ed:ee: b7:5b:22:47:6c:25:74:0a:39:6d:e3:ff:08:81:69: f8:d1:a2:a9:a8:89:e5:ed:2b:1e:cf:11:46:0e:84: 7f:c0:79:03:80:a4:1e:2a:7e:dc:8d:5c:4f:5a:1d: c9:fb:5b:f7:23:94:24:30:15:0e:51:7f:55:54:23: 44:74:48:33:e2:c7:ed:8a:3b:a4:4c:ce:6b:e4:48: bb:18:ad:aa:d4:fd:93:d2:2d:e6:90:12:5b:ba:19: 49:eb:d5:f9:b4:c2:55:f6:85:99:b6:94:1f:4d:47: 39:93:69:89:cf:3a:55:08:c9:e0:21:de:ff:4f:07: 66:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:BB:4D:01:B7:2D:3F:1A:28:A2:31:9D:86:11:C6:11:AF:CB:06:CC X509v3 Authority Key Identifier: keyid:E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:e5:1a:5d:b4:4b:a5:a4:aa:aa:93:07:bd:bc:72:a4:61:72: 38:be:92:07:6d:88:c1:31:3f:69:87:60:0a:8b:9c:fd:cc:2f: 4b:1c:43:ad:86:62:29:fb:bd:6c:33:9b:d1:a6:4a:a0:78:36: 76:e4:44:fe:ed:31:bd:6c:a5:c4:80:d0:7c:ea:b9:73:1d:3d: 90:76:ed:cd:ed:6e:cd:d4:15:3c:63:63:35:0c:d6:22:58:da: 00:59:00:e0:3c:bc:d7:1a:8f:42:f6:6e:e6:fe:20:4c:89:9e: 50:cb:b9:da:4a:c4:38:a1:f1:2f:d2:c5:6f:8f:a3:38:5a:5e: 1b:fa:46:70:0c:8a:58:55:90:a0:2d:e0:54:7b:73:20:c1:15: df:61:61:31:4b:0f:92:47:6a:e8:c2:87:18:ab:11:d7:28:a9: 71:32:5a:dc:a4:a7:db:69:33:65:21:4f:f0:1b:b6:14:47:be: b2:b7:dd:93:0a:e2:06:2d:df:14:b2:a7:58:c9:b3:53:2e:4d: 8f:89:b9:e6:80:53:25:8b:bc:be:9c:03:a6:39:0b:0c:6d:da: 0e:12:dc:ee:4f:86:be:d7:13:6b:2f:4f:cf:b9:0c:51:cf:01: c9:a0:6f:6c:56:b1:8b:dc:41:14:f3:c6:29:f0:6b:b2:47:6c: 47:be:16:5d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1RTgxMTAvBgNVBAUTKEU1QjFDRTFENDUzOTE4MTk1QkVCNUNEOTBGNkQ4NzlF RkU5OTEwQTIwHhcNMjYwNDE3MDE1OTQ0WhcNMjYwNDI0MDE1OTQ0WjAYMRYwFAYD VQQDEw02OWUxOTQxMC1kZGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAldEnQ0pp5GP0+YXPiHh5DKdad09zV+yNb9imqhKwy7S6sKCcOzvlfjGSK1TC BApDJHgeA3YQ9gk8v5vabRbBHuzsGS/PoReJYwQCMC6623FbyksfjZF0c2T2jrsA iV8mSBZce7omzinEOuRYgiAF/39bDmt+xvXnxbUsveq5CLKfsA5V7e63WyJHbCV0 Cjlt4/8IgWn40aKpqInl7SsezxFGDoR/wHkDgKQeKn7cjVxPWh3J+1v3I5QkMBUO UX9VVCNEdEgz4sftijukTM5r5Ei7GK2q1P2T0i3mkBJbuhlJ69X5tMJV9oWZtpQf TUc5k2mJzzpVCMngId7/TwdmvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAm7TQG3 LT8aKKIxnYYRxhGvywbMMB8GA1UdIwQYMBaAFOWxzh1FORgZW+tc2Q9th57+mRCi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTVFOC9FOUUxQkYyOEEz MDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdCbGI2MXpaRDIySG52NlpF S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzViSE9IVVU1R0JsYjYxelpEMjJIbnY2WkVLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTVFOC9FOUUxQkYyOEEzMDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdC bGI2MXpaRDIySG52NlpFS0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsOUaXbRLpaSqqpMHvbxypGFyOL6SB22IwTE/aYdgCouc/cwvSxxDrYZiKfu9 bDOb0aZKoHg2duRE/u0xvWylxIDQfOq5cx09kHbtze1uzdQVPGNjNQzWIljaAFkA 4Dy81xqPQvZu5v4gTImeUMu52krEOKHxL9LFb4+jOFpeG/pGcAyKWFWQoC3gVHtz IMEV32FhMUsPkkdq6MKHGKsR1yipcTJa3KSn22kzZSFP8Bu2FEe+srfdkwriBi3f FLKnWMmzUy5Nj4m55oBTJYu8vpwDpjkLDG3aDhLc7k+GvtcTay9Pz7kMUc8ByaBv bFaxi9xBFPPGKfBrskdsR74WXQ== -----END CERTIFICATE-----Generated at Fri Apr 17 16:52:43 2026 by rpki-client