$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft File: 5xqfIU6Aybw7LSOf-LmqtxP27bc.mft (raw, json) Hash identifier: aZJUH1fGivPJVA1YVHklWEAY79NbQYY1mbPs5PZgXSg= Subject key identifier: 92:07:75:1F:70:01:36:3F:31:CF:2F:EB:89:6C:E5:6F:07:A9:90:E5 Authority key identifier: E7:1A:9F:21:4E:80:C9:BC:3B:2D:23:9F:F8:B9:AA:B7:13:F6:ED:B7 Certificate issuer: /CN=A91E8525/serialNumber=E71A9F214E80C9BC3B2D239FF8B9AAB713F6EDB7 Certificate serial: 1A68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xqfIU6Aybw7LSOf-LmqtxP27bc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft Manifest number: 1A52 Signing time: Sun 01 Mar 2026 23:38:54 +0000 Manifest this update: Sun 01 Mar 2026 23:38:52 +0000 Manifest next update: Sun 08 Mar 2026 23:38:52 +0000 Files and hashes: 1: 5xqfIU6Aybw7LSOf-LmqtxP27bc.crl (hash: 1foORdeVqlXuOZiSIczX8hwbqSNenbgAfsEv2u9z64c=) 2: 3A21C144E51211EBB1225278C4F9AE02.roa (hash: 4HTCBd1B951dp8RI98cRe5qVuag3SCN+aI63ZMLFsbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.crl rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xqfIU6Aybw7LSOf-LmqtxP27bc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:38:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6760 (0x1a68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8525, serialNumber=E71A9F214E80C9BC3B2D239FF8B9AAB713F6EDB7 Validity Not Before: Mar 1 23:38:52 2026 GMT Not After : Mar 8 23:38:52 2026 GMT Subject: CN=69a4ce0d-8f91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:95:10:50:a7:4f:e7:93:03:32:ff:ad:bd:ea: b4:6b:00:8c:19:0d:47:91:fb:c4:40:ee:30:af:2a: b4:af:22:6d:1b:92:c6:ba:7e:eb:fb:e5:a3:c9:9c: db:4b:e2:3b:4c:48:9f:9c:3a:fa:e3:4d:7c:4a:81: 80:fc:37:07:1a:d2:27:60:ad:32:80:52:35:5c:46: 60:ff:b0:4f:e9:66:eb:6c:1f:de:98:35:73:df:82: ed:6e:7a:0b:6f:86:4c:0a:1a:83:21:0f:44:1c:4c: e6:06:e0:ca:f7:80:51:de:f0:6c:e9:ab:05:09:3d: c9:35:2e:0d:4b:7a:6b:f7:79:20:1d:12:35:92:c7: c1:78:ac:e2:24:b2:00:e8:bd:dd:20:a2:eb:5b:30: 66:38:d0:ec:86:50:24:be:e0:d7:52:57:7a:4e:27: 81:ea:45:28:9f:bd:b8:89:bb:b8:f7:9f:40:e3:10: dc:5a:3f:ec:28:11:c9:ab:e0:6c:e3:04:95:c0:a2: 8d:89:1a:26:91:d2:21:48:12:67:f2:d3:4a:68:bc: 0d:0f:a8:b1:4a:f1:a9:7f:94:fe:c8:11:83:53:2d: a3:4d:a0:43:57:fb:6a:9d:f0:12:8a:df:40:3a:96: ad:bc:ea:2e:b4:39:20:43:5d:68:6a:46:29:9f:71: c8:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:07:75:1F:70:01:36:3F:31:CF:2F:EB:89:6C:E5:6F:07:A9:90:E5 X509v3 Authority Key Identifier: keyid:E7:1A:9F:21:4E:80:C9:BC:3B:2D:23:9F:F8:B9:AA:B7:13:F6:ED:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xqfIU6Aybw7LSOf-LmqtxP27bc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:c9:ce:5a:b1:ef:1d:fe:83:2d:1a:43:44:a0:32:0f:55:f6: 96:6b:08:61:0f:77:9f:51:2d:d4:08:54:83:6a:df:25:12:5d: bb:58:c0:91:3b:02:02:0a:d8:fc:af:19:f7:c3:54:04:02:2a: e0:a0:86:90:70:49:fb:0a:e4:15:b5:b2:24:aa:b4:d2:03:b2: c8:83:19:38:e1:c2:3f:a0:97:98:a3:af:f7:5d:ff:b1:b6:97: a2:8c:a7:84:6b:98:33:93:99:c9:6f:a1:89:a3:74:d6:33:d3: bc:1d:fe:96:08:66:d5:b7:11:4d:e9:5e:54:4c:c3:a3:d6:61: 18:02:99:dd:62:1d:26:9d:fe:3d:91:58:f8:a6:12:53:f9:39: 3a:f1:79:d0:36:4a:b3:5b:db:bb:25:8f:ee:26:68:83:2b:95: 2b:7b:35:f3:35:f8:c8:24:7e:92:67:00:2a:b5:ce:c4:78:96: b1:fa:7f:bb:c8:9b:4e:20:8f:77:79:e9:91:34:9d:77:a8:7a: 94:2d:76:01:c1:e4:88:37:1f:1d:24:46:a9:f7:5b:b3:dd:fe: 2b:a4:0f:1b:56:2b:ea:c5:21:e3:22:36:11:62:65:9c:a4:a2: 81:d7:36:05:22:25:ed:84:f3:1f:5d:a3:0e:db:cf:3e:71:33: f8:b6:77:c6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg1MjUxMTAvBgNVBAUTKEU3MUE5RjIxNEU4MEM5QkMzQjJEMjM5RkY4QjlBQUI3 MTNGNkVEQjcwHhcNMjYwMzAxMjMzODUyWhcNMjYwMzA4MjMzODUyWjAYMRYwFAYD VQQDEw02OWE0Y2UwZC04ZjkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlpUQUKdP55MDMv+tveq0awCMGQ1HkfvEQO4wryq0ryJtG5LGun7r++WjyZzb S+I7TEifnDr64018SoGA/DcHGtInYK0ygFI1XEZg/7BP6WbrbB/emDVz34LtbnoL b4ZMChqDIQ9EHEzmBuDK94BR3vBs6asFCT3JNS4NS3pr93kgHRI1ksfBeKziJLIA 6L3dIKLrWzBmONDshlAkvuDXUld6TieB6kUon724ibu4959A4xDcWj/sKBHJq+Bs 4wSVwKKNiRomkdIhSBJn8tNKaLwND6ixSvGpf5T+yBGDUy2jTaBDV/tqnfASit9A OpatvOoutDkgQ11oakYpn3HIRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJIHdR9w ATY/Mc8v64ls5W8HqZDlMB8GA1UdIwQYMBaAFOcanyFOgMm8Oy0jn/i5qrcT9u23 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODUyNS81MjIxMjYxMDYx MkYxMUU3QkQyRURBMEJDNEY5QUUwMi81eHFmSVU2QXlidzdMU09mLUxtcXR4UDI3 YmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV4cWZJVTZBeWJ3N0xTT2YtTG1xdHhQMjdiYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODUyNS81MjIxMjYxMDYxMkYxMUU3QkQyRURBMEJDNEY5QUUwMi81eHFmSVU2QXli dzdMU09mLUxtcXR4UDI3YmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAC8nOWrHvHf6DLRpDRKAyD1X2lmsIYQ93n1Et1AhUg2rfJRJdu1jAkTsCAgrY /K8Z98NUBAIq4KCGkHBJ+wrkFbWyJKq00gOyyIMZOOHCP6CXmKOv913/sbaXooyn hGuYM5OZyW+hiaN01jPTvB3+lghm1bcRTeleVEzDo9ZhGAKZ3WIdJp3+PZFY+KYS U/k5OvF50DZKs1vbuyWP7iZogyuVK3s18zX4yCR+kmcAKrXOxHiWsfp/u8ibTiCP d3npkTSdd6h6lC12AcHkiDcfHSRGqfdbs93+K6QPG1Yr6sUh4yI2EWJlnKSigdc2 BSIl7YTzH12jDtvPPnEz+LZ3xg== -----END CERTIFICATE-----Generated at Mon Mar 2 04:36:23 2026 by rpki-client