$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft File: sBO5crQspa2fahYr87XHT5M8HgU.mft (raw, json) Hash identifier: 2kuh25k4dZcM6WHCAUXVoclCKuJTaTD17aP06oOAwHk= Subject key identifier: AB:89:0A:98:CB:56:7E:C0:27:14:33:36:AA:40:91:2B:9A:B1:2A:B7 Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 0617 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft Manifest number: 060D Signing time: Sat 28 Feb 2026 23:25:07 +0000 Manifest this update: Sat 28 Feb 2026 23:25:07 +0000 Manifest next update: Sat 07 Mar 2026 23:25:07 +0000 Files and hashes: 1: sBO5crQspa2fahYr87XHT5M8HgU.crl (hash: QMEU9szC9XyR0B8pfKHPlFfXQ4np40g9M04mKUF3m8U=) 2: 5334D20CDA5E11EBA323F462C4F9AE02.roa (hash: grIWyyq0MDFCb7a6KfrpTu3LAH64VdoYs4KvoLwKfQg=) 3: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (hash: /1rRME/YWECCYt6toeN715tq9fDj34iC1+mJGA+LM6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 23:25:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1559 (0x617) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66, serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Validity Not Before: Feb 28 23:25:07 2026 GMT Not After : Mar 7 23:25:07 2026 GMT Subject: CN=69a37953-bdd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:28:5f:31:a1:ee:1e:50:25:83:b9:83:be:b0: 39:a1:1f:cc:b2:75:e2:6b:b9:df:7a:ab:54:cc:0f: 73:2a:b3:db:f9:10:a7:df:73:01:dc:21:9c:17:6d: 6c:bc:a9:45:23:17:6c:e8:bb:31:8d:e1:0a:bb:86: 8f:da:fd:ca:52:46:7e:05:52:71:90:73:84:34:fc: 27:d3:00:0a:2b:1a:09:1d:12:3f:af:68:4f:c6:1e: 9d:14:b5:4b:c5:39:1c:a8:c5:6d:95:b6:3d:44:02: a4:5d:2a:5b:dd:f8:b6:7b:44:e3:4e:1a:51:1a:78: f7:d6:7c:e8:ee:84:e9:7b:6c:7c:f3:a7:2c:bd:64: 0e:2a:1d:96:bc:51:9f:41:28:bc:6a:20:15:fd:ab: d7:f1:fa:c2:80:fc:16:72:5d:54:e9:80:e3:9a:9c: 18:a8:b8:0e:98:ca:4a:8b:ea:0e:6a:d4:5f:6c:30: 7e:83:56:c4:26:ba:75:3c:d7:ca:9a:27:d4:9b:d9: 38:b9:7c:3d:4a:b0:09:91:82:b7:39:65:a2:af:a7: 14:88:42:37:5a:4b:75:88:2c:1c:ae:69:5b:e2:46: 5c:44:b3:a0:87:80:c3:ba:ea:92:6e:a7:25:60:21: 79:a6:05:ed:dd:d5:7b:1d:50:0a:34:00:53:40:58: 9c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:89:0A:98:CB:56:7E:C0:27:14:33:36:AA:40:91:2B:9A:B1:2A:B7 X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:27:c9:e4:49:fa:79:d2:47:6d:b8:39:07:ff:46:5b:41:10: 34:bb:09:59:b0:6e:52:88:2a:10:e6:a3:c6:6e:da:ca:08:71: 8d:6d:8b:bb:99:1c:41:7d:19:6b:be:84:70:65:5a:65:b5:02: 6d:3c:62:53:0a:f8:be:23:a4:30:0b:af:8b:89:c1:cc:b8:d2: 7d:93:72:35:2e:1e:1f:f3:90:d0:b1:83:2a:8a:81:52:f9:16: 77:d2:26:d3:30:5d:cd:d3:f7:96:51:7c:71:31:81:8f:ee:41: 26:08:ea:b6:36:75:91:e1:f3:0d:97:c9:90:fd:78:87:8c:be: 31:97:58:c6:f1:c6:d6:51:c2:11:71:de:8c:51:1e:44:d2:b0: 72:89:2e:6a:0e:4e:65:ba:11:53:62:c0:9a:44:e9:4c:61:af: 38:08:56:18:f1:0e:9d:b5:57:8c:52:13:7b:2a:28:91:96:db: 93:d0:00:93:3a:08:f0:6b:b9:3e:43:35:08:ad:08:38:6c:9e: ac:b0:36:7e:03:49:6d:31:d9:9a:b3:cf:20:01:aa:8f:04:97: af:eb:fb:6c:bf:94:f6:d5:ec:e4:a8:dd:e5:5c:5d:2b:e4:59: 3a:97:a9:de:98:1b:eb:0d:3f:1a:36:02:7a:bc:86:c9:b3:46: 5e:58:21:f2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjYwMjI4MjMyNTA3WhcNMjYwMzA3MjMyNTA3WjAYMRYwFAYD VQQDDA02OWEzNzk1My1iZGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyhfMaHuHlAlg7mDvrA5oR/MsnXia7nfeqtUzA9zKrPb+RCn33MB3CGcF21s vKlFIxds6LsxjeEKu4aP2v3KUkZ+BVJxkHOENPwn0wAKKxoJHRI/r2hPxh6dFLVL xTkcqMVtlbY9RAKkXSpb3fi2e0TjThpRGnj31nzo7oTpe2x886csvWQOKh2WvFGf QSi8aiAV/avX8frCgPwWcl1U6YDjmpwYqLgOmMpKi+oOatRfbDB+g1bEJrp1PNfK mifUm9k4uXw9SrAJkYK3OWWir6cUiEI3Wkt1iCwcrmlb4kZcRLOgh4DDuuqSbqcl YCF5pgXt3dV7HVAKNABTQFicmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKuJCpjL Vn7AJxQzNqpAkSuasSq3MB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkI2Ni81M0U4RkJFQURBNUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3Bh MmZhaFlyODdYSFQ1TThIZ1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGyfJ5En6edJHbbg5B/9GW0EQNLsJWbBuUogqEOajxm7ayghxjW2Lu5kcQX0Z a76EcGVaZbUCbTxiUwr4viOkMAuvi4nBzLjSfZNyNS4eH/OQ0LGDKoqBUvkWd9Im 0zBdzdP3llF8cTGBj+5BJgjqtjZ1keHzDZfJkP14h4y+MZdYxvHG1lHCEXHejFEe RNKwcokuag5OZboRU2LAmkTpTGGvOAhWGPEOnbVXjFITeyookZbbk9AAkzoI8Gu5 PkM1CK0IOGyerLA2fgNJbTHZmrPPIAGqjwSXr+v7bL+U9tXs5Kjd5VxdK+RZOpep 3pgb6w0/GjYCeryGybNGXlgh8g== -----END CERTIFICATE-----Generated at Mon Mar 2 02:06:15 2026 by rpki-client