$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft File: 5bsti54YaXwBWe2BMuXzS4axN7E.mft (raw, json) Hash identifier: LjxN0nD1cl+6vSt+XMOrRog+MJNn81Hapkuia87iO2w= Subject key identifier: C4:CA:08:3F:5D:51:0D:A7:38:BE:34:19:8B:08:F6:83:39:39:03:BA Authority key identifier: E5:BB:2D:8B:9E:18:69:7C:01:59:ED:81:32:E5:F3:4B:86:B1:37:B1 Certificate issuer: /CN=A91E0C2B/serialNumber=E5BB2D8B9E18697C0159ED8132E5F34B86B137B1 Certificate serial: 022E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft Manifest number: 0229 Signing time: Sun 01 Mar 2026 03:29:42 +0000 Manifest this update: Sun 01 Mar 2026 03:29:42 +0000 Manifest next update: Sun 08 Mar 2026 03:29:42 +0000 Files and hashes: 1: 5bsti54YaXwBWe2BMuXzS4axN7E.crl (hash: MZ6T8ubWikCAJOOlBzvxnZhJt4IHviXP6qT+fxPLS5A=) 2: 12B9A5DECBC211EDB6F09516C4F9AE02.roa (hash: q2X86VHJqC8YK/yrmo7V1F0aH3xF1U+PZ+Ybsd1czh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.crl rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 03:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 558 (0x22e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0C2B, serialNumber=E5BB2D8B9E18697C0159ED8132E5F34B86B137B1 Validity Not Before: Mar 1 03:29:42 2026 GMT Not After : Mar 8 03:29:42 2026 GMT Subject: CN=69a3b2a6-71b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ac:70:72:d5:f4:6c:0b:1e:f5:ac:14:fe:e7: c9:1f:78:4f:46:32:c4:13:86:f3:ab:ee:a7:d5:81: 26:ca:28:f2:f2:5b:39:52:a0:5f:49:0f:53:cb:78: 40:98:c6:20:49:31:46:ee:d3:84:3b:66:2c:39:49: 54:7a:74:f5:0b:db:17:6f:e5:53:1b:b2:db:82:6e: 23:97:d3:9f:01:60:8e:48:e6:a8:ff:ee:02:d3:24: 9c:0e:b1:18:a4:e7:70:5f:3a:eb:68:98:6f:ee:14: 3c:7b:34:02:fa:bf:2a:09:2a:d0:e3:67:fd:63:cb: 53:68:6b:de:18:f5:3f:64:91:6c:7b:98:39:04:fe: ba:43:3b:89:a2:e1:15:f4:f9:40:53:78:41:2f:72: 45:bb:2c:89:cf:5f:a8:2a:06:b6:7f:8e:5b:fc:80: a5:29:a6:38:c8:08:53:ca:ed:07:1e:c3:e3:8b:71: 5e:7d:04:20:75:cf:04:5b:a2:05:a3:32:9f:1b:b6: 36:07:3c:30:ed:31:24:ee:85:33:8c:b7:eb:5d:73: e0:22:77:0b:98:7e:b8:bc:d9:62:bf:41:00:9c:fa: eb:ca:12:21:3b:33:5c:20:57:ed:c4:89:0b:2e:99: 99:b7:1e:47:1c:ec:6f:d2:95:9c:be:5e:94:7b:ba: 74:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:CA:08:3F:5D:51:0D:A7:38:BE:34:19:8B:08:F6:83:39:39:03:BA X509v3 Authority Key Identifier: keyid:E5:BB:2D:8B:9E:18:69:7C:01:59:ED:81:32:E5:F3:4B:86:B1:37:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:42:4f:c3:ac:d8:91:22:50:fa:6a:05:ef:cc:ed:21:c7:54: c4:9e:55:78:6c:53:35:d2:76:81:a8:50:bf:58:74:f7:dd:45: d1:07:51:b4:5d:7f:99:3e:a2:b2:2e:4e:01:66:16:64:35:c9: 6a:26:b3:ee:35:4a:d3:7c:95:a7:05:cf:eb:e5:07:31:d3:ed: fe:07:01:68:8c:62:2c:b3:03:70:1f:fc:14:21:38:ce:00:43: 2f:03:b5:75:59:8f:5c:67:61:12:4e:33:ce:6b:0a:9a:2a:0c: aa:df:42:55:38:92:60:e5:ed:2e:51:17:6f:2e:d9:96:b5:8f: 3a:2a:25:a1:55:54:d2:01:32:45:bb:36:6f:36:fa:96:51:81: 7f:ac:79:36:ee:db:6d:49:eb:fe:50:b4:3f:86:39:68:8c:f9: 26:03:af:8c:62:59:88:b2:af:aa:0d:81:7b:d8:bf:fa:39:6a: 17:d3:4f:8f:b7:4c:ec:be:b6:cf:4c:c1:93:ed:60:11:de:7a: 83:e8:5f:a4:23:6d:70:f3:d8:03:64:59:f5:72:65:18:0b:16: 2f:f7:7a:43:b4:1d:c1:7b:0b:b1:f8:cc:c2:14:64:6c:18:96: 07:e1:27:b4:c0:7e:66:ba:40:f5:22:e1:5c:2a:a5:07:5e:d1: 05:38:2f:f1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDMkIxMTAvBgNVBAUTKEU1QkIyRDhCOUUxODY5N0MwMTU5RUQ4MTMyRTVGMzRC ODZCMTM3QjEwHhcNMjYwMzAxMDMyOTQyWhcNMjYwMzA4MDMyOTQyWjAYMRYwFAYD VQQDDA02OWEzYjJhNi03MWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKxwctX0bAse9awU/ufJH3hPRjLEE4bzq+6n1YEmyijy8ls5UqBfSQ9Ty3hA mMYgSTFG7tOEO2YsOUlUenT1C9sXb+VTG7Lbgm4jl9OfAWCOSOao/+4C0yScDrEY pOdwXzrraJhv7hQ8ezQC+r8qCSrQ42f9Y8tTaGveGPU/ZJFse5g5BP66QzuJouEV 9PlAU3hBL3JFuyyJz1+oKga2f45b/IClKaY4yAhTyu0HHsPji3FefQQgdc8EW6IF ozKfG7Y2Bzww7TEk7oUzjLfrXXPgIncLmH64vNliv0EAnPrryhIhOzNcIFftxIkL LpmZtx5HHOxv0pWcvl6Ue7p00QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMTKCD9d UQ2nOL40GYsI9oM5OQO6MB8GA1UdIwQYMBaAFOW7LYueGGl8AVntgTLl80uGsTex MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEMyQi9EMjdFNkVEMENC OTYxMUVEQUMzNDlCNzlDNEY5QUUwMi81YnN0aTU0WWFYd0JXZTJCTXVYelM0YXhO N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVic3RpNTRZYVh3QldlMkJNdVh6UzRheE43RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEMyQi9EMjdFNkVEMENCOTYxMUVEQUMzNDlCNzlDNEY5QUUwMi81YnN0aTU0WWFY d0JXZTJCTXVYelM0YXhON0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuUJPw6zYkSJQ+moF78ztIcdUxJ5VeGxTNdJ2gahQv1h0991F0QdRtF1/mT6i si5OAWYWZDXJaiaz7jVK03yVpwXP6+UHMdPt/gcBaIxiLLMDcB/8FCE4zgBDLwO1 dVmPXGdhEk4zzmsKmioMqt9CVTiSYOXtLlEXby7ZlrWPOioloVVU0gEyRbs2bzb6 llGBf6x5Nu7bbUnr/lC0P4Y5aIz5JgOvjGJZiLKvqg2Be9i/+jlqF9NPj7dM7L62 z0zBk+1gEd56g+hfpCNtcPPYA2RZ9XJlGAsWL/d6Q7QdwXsLsfjMwhRkbBiWB+En tMB+ZrpA9SLhXCqlB17RBTgv8Q== -----END CERTIFICATE-----Generated at Sun Mar 1 20:49:14 2026 by rpki-client