$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft File: sBO5crQspa2fahYr87XHT5M8HgU.mft (raw, json) Hash identifier: XwB6TP59EN5k65qCPl+3Ykwa5IEWys+vREpyfsKUhYw= Subject key identifier: 39:01:99:F6:8E:4C:54:9D:01:50:DC:B8:38:87:1E:A0:1C:F2:0B:23 Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 061B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft Manifest number: 060F Signing time: Mon 02 Mar 2026 02:53:03 +0000 Manifest this update: Mon 02 Mar 2026 02:53:01 +0000 Manifest next update: Mon 09 Mar 2026 02:53:01 +0000 Files and hashes: 1: sBO5crQspa2fahYr87XHT5M8HgU.crl (hash: NHdYnsFWt4YTKUNI90i6WTl5eTcGjLSltkbzSJAmDI4=) 2: 5334D20CDA5E11EBA323F462C4F9AE02.roa (hash: paFsFa6qVLCDV+k1MXzHkgPkBlhBBEj3AZlBzmVS9gs=) 3: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (hash: KJ2mFEWkTtrCEZw9NVFYAAnTanzrSc/7NwbR3vngF7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:52:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1563 (0x61b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66, serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Validity Not Before: Mar 2 02:53:01 2026 GMT Not After : Mar 9 02:53:01 2026 GMT Subject: CN=69a4fb8e-f369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d8:25:4b:ed:01:96:f5:61:bf:33:1c:6c:d6: 2b:d8:4a:bc:05:d2:dc:d6:8e:4b:d1:23:dc:0e:30: ec:fb:ca:8a:e9:5a:b8:b5:86:84:ce:1c:c7:1c:c6: a3:53:47:07:99:8d:da:0d:c4:96:24:8a:67:58:9e: 8c:8b:33:4d:3a:93:c2:97:cc:dc:f9:0b:a2:db:03: b3:1f:bd:77:9a:1b:7a:10:fe:2e:25:40:5c:36:ac: a2:a1:43:03:38:35:71:e2:11:69:2d:2e:a2:64:21: 17:67:2d:32:ec:e2:44:e3:69:55:c7:8c:8e:f6:f1: 4c:10:d4:49:a5:91:de:8d:38:2b:a3:a4:4a:14:c3: 58:80:f6:f9:8f:6c:8a:5b:0f:74:ba:0c:96:98:12: 83:21:1b:f4:a5:70:2b:05:59:12:17:7f:7a:6c:f4: 88:99:ee:4b:01:38:cd:9d:0a:2e:b9:da:10:2c:1b: 9d:fd:bd:e3:73:54:90:1b:7b:97:1d:4b:50:c8:a9: 19:ff:e4:6c:7d:dd:1c:94:b6:04:e4:33:be:b9:f6: dd:98:91:ba:b7:67:3d:bc:03:f0:cd:5d:f7:4b:64: 64:ef:78:22:cb:7c:aa:68:00:4a:35:cc:a7:17:39: 5b:08:c3:22:e9:94:1c:66:dc:3a:5f:68:7c:3d:ce: 4a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:01:99:F6:8E:4C:54:9D:01:50:DC:B8:38:87:1E:A0:1C:F2:0B:23 X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:2f:d5:5a:ed:ac:a6:b3:18:01:e8:85:27:73:33:08:f2:86: d7:b0:4f:22:35:e6:a0:87:67:dc:22:63:f4:c1:ce:40:5b:04: 89:ac:20:f5:15:75:7e:1c:30:b9:dd:89:c1:51:0a:bb:fc:c6: f9:86:64:ef:ea:3e:9b:93:0b:55:18:19:62:45:29:51:c5:4d: c4:a9:39:06:9e:9b:ec:78:a8:ee:e5:21:81:71:e8:1b:58:81: 49:4a:1f:9e:24:3d:2d:d1:dd:8e:72:48:c5:2a:78:10:fd:50: d8:78:5d:6b:fd:b9:5d:f9:9c:b7:84:e8:5a:f1:6d:03:4b:41: b6:23:fb:e5:e0:68:a4:22:87:63:50:8e:f9:5c:64:b1:b4:72: c0:da:8b:69:67:a9:3e:6b:1f:b5:94:af:eb:d7:b3:2a:58:2f: d9:17:ef:d9:bc:96:d5:cf:7d:36:58:d2:1b:6b:0d:ac:24:29: 4a:0d:4e:ce:02:77:ed:53:8a:72:12:fa:53:f9:77:e8:b3:7d: db:10:5d:13:e6:60:69:d2:b3:35:32:ca:60:63:34:83:35:9b: 84:da:d5:2c:ca:50:6e:99:3d:94:ae:cf:79:06:75:72:1d:ac: b6:25:d1:03:be:0b:b1:8f:38:21:57:66:0e:b0:4c:56:49:98: aa:5d:5b:c9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjYwMzAyMDI1MzAxWhcNMjYwMzA5MDI1MzAxWjAYMRYwFAYD VQQDEw02OWE0ZmI4ZS1mMzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9glS+0BlvVhvzMcbNYr2Eq8BdLc1o5L0SPcDjDs+8qK6Vq4tYaEzhzHHMaj U0cHmY3aDcSWJIpnWJ6MizNNOpPCl8zc+Qui2wOzH713mht6EP4uJUBcNqyioUMD ODVx4hFpLS6iZCEXZy0y7OJE42lVx4yO9vFMENRJpZHejTgro6RKFMNYgPb5j2yK Ww90ugyWmBKDIRv0pXArBVkSF396bPSIme5LATjNnQouudoQLBud/b3jc1SQG3uX HUtQyKkZ/+Rsfd0clLYE5DO+ufbdmJG6t2c9vAPwzV33S2Rk73giy3yqaABKNcyn FzlbCMMi6ZQcZtw6X2h8Pc5KeQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDkBmfaO TFSdAVDcuDiHHqAc8gsjMB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkI2Ni81M0U4RkJFQURBNUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3Bh MmZhaFlyODdYSFQ1TThIZ1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiC/VWu2sprMYAeiFJ3MzCPKG17BPIjXmoIdn3CJj9MHOQFsEiawg9RV1fhww ud2JwVEKu/zG+YZk7+o+m5MLVRgZYkUpUcVNxKk5Bp6b7Hio7uUhgXHoG1iBSUof niQ9LdHdjnJIxSp4EP1Q2Hhda/25Xfmct4ToWvFtA0tBtiP75eBopCKHY1CO+Vxk sbRywNqLaWepPmsftZSv69ezKlgv2Rfv2byW1c99NljSG2sNrCQpSg1OzgJ37VOK chL6U/l36LN92xBdE+ZgadKzNTLKYGM0gzWbhNrVLMpQbpk9lK7PeQZ1ch2stiXR A74LsY84IVdmDrBMVkmYql1byQ== -----END CERTIFICATE-----Generated at Mon Mar 2 09:05:46 2026 by rpki-client