$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft File: 5HfTiqrEo3zG3xZlvxyICvmbe08.mft (raw, json) Hash identifier: PlFQotl3DxKF2WPiabyoqnjIZ8S9erFidNgDuXrSlws= Subject key identifier: 55:C6:13:ED:FC:AA:83:BC:A8:2B:D6:40:8C:31:74:33:C5:B6:43:53 Authority key identifier: E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F Certificate issuer: /CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Certificate serial: 0456 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft Manifest number: 0444 Signing time: Sun 01 Mar 2026 22:54:33 +0000 Manifest this update: Sun 01 Mar 2026 22:54:33 +0000 Manifest next update: Sun 08 Mar 2026 22:54:33 +0000 Files and hashes: 1: 5HfTiqrEo3zG3xZlvxyICvmbe08.crl (hash: qeM6OK7FxehymkmU0DIRZQ8cf0Lnx+yhzBYk8SGenaE=) 2: 5F9FA12E0CA411ED96936D79C4F9AE02.roa (hash: 4kQpOwfQ9Vfzhi0bWN2KXN1yIQQ1TFWjddHQXPI30gs=) 3: 06820D08961011ECA540626AC4F9AE02.roa (hash: JttqNUSOZ4VTILVnozfavVqTn7ao047pI1i5lFQ0MJU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1110 (0x456) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E, serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Validity Not Before: Mar 1 22:54:33 2026 GMT Not After : Mar 8 22:54:33 2026 GMT Subject: CN=69a4c3a9-811b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0a:ec:2b:29:1e:90:6d:a4:ec:fc:45:89:4f: 4f:f6:14:33:93:d5:58:8b:b6:c0:18:3d:8d:29:ce: 44:10:a3:41:b0:59:b8:21:72:f0:e4:5b:a6:32:0c: 7a:4a:7b:e7:c1:4f:ac:aa:34:6b:a5:0c:57:0b:fa: 06:ef:eb:e9:94:0a:cd:a1:d8:74:61:cb:a0:27:ae: f2:e0:8a:4f:26:62:fd:dc:dc:74:ed:24:f7:18:13: e8:83:52:f9:5b:59:72:f5:9e:60:27:fa:f4:f4:84: c5:98:98:bc:7a:98:15:78:ff:42:da:bb:73:61:86: 40:51:f1:63:30:07:de:63:b2:3c:55:ea:04:47:cd: 2d:f4:39:be:a4:8c:0c:74:02:2b:50:75:c5:35:4d: 78:c8:db:86:89:d6:d2:23:e3:03:d3:80:dd:1c:7d: cf:7b:67:f5:fa:1a:4a:22:fa:a4:e0:85:ef:33:d3: 50:0e:08:2d:91:6f:aa:e3:84:7a:38:0f:51:46:d5: 07:ed:1f:ca:f5:1a:9a:e2:bd:0b:44:62:77:26:59: b3:73:ce:57:3c:34:ed:72:f3:b4:5f:22:b8:3d:b2: 0f:aa:3c:be:19:f6:2a:ac:b5:45:44:25:34:21:a6: 87:9a:4b:b2:1f:2c:04:a7:33:a8:a1:0e:ed:27:d3: d2:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:C6:13:ED:FC:AA:83:BC:A8:2B:D6:40:8C:31:74:33:C5:B6:43:53 X509v3 Authority Key Identifier: keyid:E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:6d:c1:6f:1d:72:67:e6:89:8b:8a:18:51:1c:4a:c8:87:7a: 6a:b5:f2:c3:8f:45:33:ba:eb:09:ef:ea:17:d1:22:86:a4:66: 6e:87:07:34:1f:67:e0:91:c2:4d:41:a9:07:67:67:dc:04:7c: 4a:a3:83:3b:3c:f7:49:1e:61:17:29:7f:8e:d5:16:d6:99:2c: 7c:3e:49:87:b1:4d:2b:90:18:f9:e0:07:b7:e1:da:bc:98:4b: 02:44:e8:9c:b0:77:29:6a:2d:83:74:74:36:e1:d9:05:37:f6: f4:ae:b5:27:08:07:d5:89:59:cd:03:7d:fb:41:34:1b:80:a5: 63:af:10:65:e1:ed:c5:1c:1a:46:b7:e3:69:f2:a2:8a:ca:58: 3a:29:26:3a:06:17:ae:46:ad:4b:79:79:1b:11:e4:e5:7b:fe: 6a:26:34:96:f6:4d:7c:b0:a2:0a:0c:9e:ae:2c:fe:51:9c:49: 1b:73:b9:81:fd:9a:86:0a:1f:cd:2e:f1:33:c4:17:6f:00:09: d4:02:ee:16:ba:f0:4c:85:7e:04:3a:9b:5f:74:a2:6c:95:19: 13:fb:35:ee:24:d2:10:27:b5:fe:e0:42:f8:de:5a:e7:c3:9f: 64:b5:f0:21:1a:e7:f1:8d:ea:bb:29:a4:64:ec:c6:fe:a1:23: 9f:49:11:93 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKEU0NzdEMzhBQUFDNEEzN0NDNkRGMTY2NUJGMUM4ODBB Rjk5QjdCNEYwHhcNMjYwMzAxMjI1NDMzWhcNMjYwMzA4MjI1NDMzWjAYMRYwFAYD VQQDEw02OWE0YzNhOS04MTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQrsKykekG2k7PxFiU9P9hQzk9VYi7bAGD2NKc5EEKNBsFm4IXLw5FumMgx6 SnvnwU+sqjRrpQxXC/oG7+vplArNodh0YcugJ67y4IpPJmL93Nx07ST3GBPog1L5 W1ly9Z5gJ/r09ITFmJi8epgVeP9C2rtzYYZAUfFjMAfeY7I8VeoER80t9Dm+pIwM dAIrUHXFNU14yNuGidbSI+MD04DdHH3Pe2f1+hpKIvqk4IXvM9NQDggtkW+q44R6 OA9RRtUH7R/K9Rqa4r0LRGJ3Jlmzc85XPDTtcvO0XyK4PbIPqjy+GfYqrLVFRCU0 IaaHmkuyHywEpzOooQ7tJ9PSGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFXGE+38 qoO8qCvWQIwxdDPFtkNTMB8GA1UdIwQYMBaAFOR304qqxKN8xt8WZb8ciAr5m3tP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80RTNFMzY3RTk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8zekczeFpsdnh5SUN2bWJl MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVIZlRpcXJFbzN6RzN4Wmx2eHlJQ3ZtYmUwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTA0RS80RTNFMzY3RTk2MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8z ekczeFpsdnh5SUN2bWJlMDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxG3Bbx1yZ+aJi4oYURxKyId6arXyw49FM7rrCe/qF9EihqRmbocHNB9n4JHC TUGpB2dn3AR8SqODOzz3SR5hFyl/jtUW1pksfD5Jh7FNK5AY+eAHt+HavJhLAkTo nLB3KWotg3R0NuHZBTf29K61JwgH1YlZzQN9+0E0G4ClY68QZeHtxRwaRrfjafKi ispYOikmOgYXrkatS3l5GxHk5Xv+aiY0lvZNfLCiCgyeriz+UZxJG3O5gf2ahgof zS7xM8QXbwAJ1ALuFrrwTIV+BDqbX3SibJUZE/s17iTSECe1/uBC+N5a58OfZLXw IRrn8Y3quymkZOzG/qEjn0kRkw== -----END CERTIFICATE-----Generated at Mon Mar 2 13:36:04 2026 by rpki-client