$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft File: 5HfTiqrEo3zG3xZlvxyICvmbe08.mft (raw, json) Hash identifier: zI3fN3200a1d6hnbN9KB5hpeLmQ3kEj/9322G2B6Xnc= Subject key identifier: AD:21:5E:64:A1:62:69:69:CA:9D:8E:2F:87:7B:C8:A8:5B:1D:5B:8E Authority key identifier: E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F Certificate issuer: /CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Certificate serial: 0492 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft Manifest number: 0448 Signing time: Mon 02 Mar 2026 12:30:26 +0000 Manifest this update: Mon 02 Mar 2026 12:30:26 +0000 Manifest next update: Mon 09 Mar 2026 12:30:26 +0000 Files and hashes: 1: 5HfTiqrEo3zG3xZlvxyICvmbe08.crl (hash: Wt550EKpgkGWwywSzTTBs9/a/Uig7M6yKFUoTRFnWuU=) 2: 06820D08961011ECA540626AC4F9AE02.roa (hash: 3dB0qB5yNmzIvDRiuP2+fGgguKKPz4Cvi65Utf4OECk=) 3: 5F9FA12E0CA411ED96936D79C4F9AE02.roa (hash: PuL+mA1dV7Hh7bENHYnKx3eA2jTd4Smp4c1oR/M4V58=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 12:30:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1170 (0x492) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E, serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Validity Not Before: Mar 2 12:30:26 2026 GMT Not After : Mar 9 12:30:26 2026 GMT Subject: CN=69a582e2-bf7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:70:e5:14:5a:e5:b5:e4:27:19:85:c8:bc:b9: 4d:e8:36:8b:cc:c7:b9:e5:76:f3:00:1f:60:cf:36: e7:ee:63:e9:80:91:8a:b1:22:52:d5:5a:b5:81:ab: e0:02:f7:6e:58:23:56:23:13:fc:12:8a:d1:e1:8c: aa:88:89:1e:7b:60:04:ce:46:89:7f:2b:01:ad:dd: e8:e8:71:7f:ff:29:65:ad:98:ff:53:a4:ca:76:69: 4c:61:bf:36:ba:46:4d:bf:1f:a5:00:51:76:d1:27: d5:28:cd:d4:65:da:81:18:e3:1d:f5:4f:05:9c:c6: 8e:bd:d0:d9:28:b9:11:6b:c2:a9:e9:93:15:cd:1f: 9d:1b:ba:03:cc:81:d5:b2:88:1d:2e:f1:40:ae:5e: bd:07:80:54:18:aa:d7:89:9b:d6:9c:7c:6d:ce:01: a9:15:fc:7a:d9:89:07:46:47:f3:53:44:4a:e6:cb: 4a:a1:a1:4b:63:2c:91:16:00:74:8d:b6:ec:2b:d5: 78:e6:09:1e:94:17:9a:72:9e:d2:ae:a5:08:de:92: d5:e1:61:bf:2c:00:3d:bd:0f:15:a2:fe:e7:06:73: 0b:c1:54:89:d7:bb:eb:93:d6:14:83:3d:f4:48:c7: 43:70:d0:59:8b:d7:24:4e:e5:61:ac:34:af:52:79: d2:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:21:5E:64:A1:62:69:69:CA:9D:8E:2F:87:7B:C8:A8:5B:1D:5B:8E X509v3 Authority Key Identifier: keyid:E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:48:a7:76:13:d6:c6:32:d6:ff:7b:49:2e:2d:78:b6:a2:05: 8f:26:78:e8:16:0e:54:17:36:53:05:49:0c:6a:75:ef:22:ab: a1:65:c4:6e:7a:fc:e7:bc:ad:85:43:f2:a7:58:55:ed:d4:9c: 93:2f:c4:d9:d5:d6:b7:7b:7e:de:6c:47:2b:ca:2a:17:84:c8: 1b:5d:d6:92:87:08:f7:0a:8b:e2:1f:ad:c9:ff:22:36:c3:81: a2:a7:f8:af:6b:d6:b9:40:28:ba:49:a9:6e:63:fc:95:6f:10: db:08:39:da:0a:e2:7b:63:8a:cf:e7:52:ac:09:4f:1e:1d:c9: 42:42:d6:4d:28:44:79:7a:f2:66:ef:dd:ea:36:60:6e:ea:86: 4f:1c:17:5d:2b:a0:01:fd:5b:e9:40:40:49:11:49:6b:3e:52: 94:bc:d1:d6:b9:d3:2b:98:58:31:41:3a:06:bf:22:45:28:c3: 61:41:14:00:38:b6:ea:1d:7d:f9:71:fd:b7:94:05:97:a1:b3: f3:63:04:ae:c6:b2:9e:46:f7:32:7a:8d:9d:99:b5:3b:e9:d8: b1:bb:8e:59:19:19:85:b7:a3:23:cf:c2:82:ec:02:04:9f:a1: 44:3c:37:cf:c7:2d:dc:13:49:24:b9:3a:d0:75:04:8a:3a:34: 98:52:7d:39 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKEU0NzdEMzhBQUFDNEEzN0NDNkRGMTY2NUJGMUM4ODBB Rjk5QjdCNEYwHhcNMjYwMzAyMTIzMDI2WhcNMjYwMzA5MTIzMDI2WjAYMRYwFAYD VQQDEw02OWE1ODJlMi1iZjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9nDlFFrlteQnGYXIvLlN6DaLzMe55XbzAB9gzzbn7mPpgJGKsSJS1Vq1gavg AvduWCNWIxP8EorR4YyqiIkee2AEzkaJfysBrd3o6HF//yllrZj/U6TKdmlMYb82 ukZNvx+lAFF20SfVKM3UZdqBGOMd9U8FnMaOvdDZKLkRa8Kp6ZMVzR+dG7oDzIHV sogdLvFArl69B4BUGKrXiZvWnHxtzgGpFfx62YkHRkfzU0RK5stKoaFLYyyRFgB0 jbbsK9V45gkelBeacp7SrqUI3pLV4WG/LAA9vQ8Vov7nBnMLwVSJ17vrk9YUgz30 SMdDcNBZi9ckTuVhrDSvUnnScQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK0hXmSh Ymlpyp2OL4d7yKhbHVuOMB8GA1UdIwQYMBaAFOR304qqxKN8xt8WZb8ciAr5m3tP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80RTNFMzY3RTk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8zekczeFpsdnh5SUN2bWJl MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVIZlRpcXJFbzN6RzN4Wmx2eHlJQ3ZtYmUwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTA0RS80RTNFMzY3RTk2MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8z ekczeFpsdnh5SUN2bWJlMDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOUindhPWxjLW/3tJLi14tqIFjyZ46BYOVBc2UwVJDGp17yKroWXEbnr857yt hUPyp1hV7dScky/E2dXWt3t+3mxHK8oqF4TIG13WkocI9wqL4h+tyf8iNsOBoqf4 r2vWuUAoukmpbmP8lW8Q2wg52grie2OKz+dSrAlPHh3JQkLWTShEeXryZu/d6jZg buqGTxwXXSugAf1b6UBASRFJaz5SlLzR1rnTK5hYMUE6Br8iRSjDYUEUADi26h19 +XH9t5QFl6Gz82MErsaynkb3MnqNnZm1O+nYsbuOWRkZhbejI8/CguwCBJ+hRDw3 z8ct3BNJJLk60HUEijo0mFJ9OQ== -----END CERTIFICATE-----Generated at Mon Mar 2 20:16:31 2026 by rpki-client