$ rpki-client -vvf rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft File: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft (raw, json) Hash identifier: V7tEPzgV+z5MqVWupCah5i43lcoQkaKKxTLOV7FbsTw= Subject key identifier: 5A:4F:FE:ED:71:FB:7C:19:E4:2F:F0:A4:44:58:B7:B7:CF:C7:61:7F Authority key identifier: 5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B Certificate issuer: /CN=A91DD5100000/serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Certificate serial: 115B56B345288456D4D8AD58DB4F3761D2B159ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft Manifest number: 0255 Signing time: Sun 01 Mar 2026 11:02:42 +0000 Manifest this update: Sun 01 Mar 2026 10:57:42 +0000 Manifest next update: Mon 02 Mar 2026 11:54:42 +0000 Files and hashes: 1: 34332e3235322e32302e302f32342d3234203d3e203134363138.roa (hash: POeaLZ7jyGbDhNwka17vD8hm5iiL/jnjTj3d8a5jHPw=) 2: 34332e3235322e32302e302f32342d3234203d3e203136353039.roa (hash: 2pHYFNhpresl2Qe+bmQCdeuqTmZNLu6JpjLmSUgR1DM=) 3: 34332e3235322e32322e302f32342d3234203d3e203438323636.roa (hash: ookmbsWFbg+9xHZ1MlZYR8C8SeTg9Fi1QoqMLsxk6Xs=) 4: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl (hash: JGjZJRsHtyLDJk91an99tg5kex9zlQYAwwWIyF+grhQ=) 5: 34332e3235322e32312e302f32342d3234203d3e203530333835.roa (hash: kaULZDC6XCfi7x2p6IJ/ygWV6uSlBhFSJ4hHgh1euqM=) 6: 34332e3235322e32332e302f32342d3234203d3e203239383032.roa (hash: LfF8fU+QkX6d5K08nkQmulF4/9qGZmobs40531E0EuE=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 11:54:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:5b:56:b3:45:28:84:56:d4:d8:ad:58:db:4f:37:61:d2:b1:59:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5100000, serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Validity Not Before: Mar 1 10:57:42 2026 GMT Not After : Mar 2 11:54:42 2026 GMT Subject: CN=5A4FFEED71FB7C19E42FF0A44458B7B7CFC7617F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f6:0f:c4:48:1e:25:7c:78:82:f1:40:a2:14: 71:28:3f:57:c4:e9:c2:74:e4:f5:1b:1e:42:ed:96: 50:cf:ac:49:f7:75:06:a9:fc:dc:4e:3a:61:10:99: f4:ed:5f:4c:45:a6:51:e3:03:22:5a:4c:68:d2:ab: c0:38:44:c4:89:84:4b:05:37:ed:68:5f:91:4d:2a: a0:65:d2:47:7f:cf:96:9f:a1:e0:83:42:f5:71:25: 9b:e2:0a:76:e4:39:c7:10:77:8f:83:a2:f6:6a:66: 3c:82:a4:4e:29:ce:95:23:76:1d:9a:05:aa:10:9a: e1:b9:03:89:d7:4f:e7:eb:b4:12:40:2b:56:c6:48: 04:eb:db:f2:ed:53:90:76:7c:31:a6:0f:ea:1b:85: c3:02:8d:35:c0:d0:cd:e2:4f:9b:62:d7:37:4d:79: c3:34:32:25:2d:43:f8:a9:a6:d9:37:55:fd:c8:69: 8c:93:70:38:a4:f7:6d:c0:27:e7:a2:cb:8e:59:31: 5d:37:8f:2f:f5:a4:0a:27:d3:e7:e8:d0:7a:a0:d4: 8b:ac:44:d5:fc:20:3f:53:e8:15:5b:23:7e:67:23: 2c:03:d2:9b:78:02:67:61:c6:e2:b8:87:03:88:71: 5c:14:18:56:b1:3d:67:2a:64:c7:fc:44:61:47:b0: 39:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:4F:FE:ED:71:FB:7C:19:E4:2F:F0:A4:44:58:B7:B7:CF:C7:61:7F X509v3 Authority Key Identifier: keyid:5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:9e:25:29:73:44:79:74:c6:31:73:67:8c:76:43:15:ef:34: 81:17:cf:cd:83:85:b3:9e:32:2d:00:ba:23:1f:f9:35:5f:0f: 74:c8:2f:95:0a:a2:18:99:a0:7d:38:37:59:57:f8:a1:2d:cc: 57:7a:b6:21:c3:6c:62:ee:74:23:d6:0f:cc:db:6c:a1:c2:6e: 9f:56:77:ac:a4:02:ee:e2:a2:3a:f8:bd:cb:b1:cc:f3:d8:fc: 4d:59:a2:e6:58:63:6d:94:6a:d1:1e:fb:4e:d9:12:85:ed:03: ac:24:71:6b:ef:d2:59:11:77:d8:74:ad:76:54:87:1a:0a:94: a8:30:21:fb:f4:e6:b1:63:ac:44:da:db:f2:32:5c:d3:c7:b0: dd:ff:90:04:b6:f2:16:85:88:8a:c5:ed:37:cc:ec:8e:7c:c5: 45:a2:66:40:08:bc:da:3f:a1:13:0a:15:6f:39:8f:e3:84:e2: b4:f3:1b:6d:12:3d:7b:5b:5b:e3:fb:50:0c:18:38:c8:4d:31: 77:06:38:77:98:f4:b6:bb:e8:a4:cc:8f:48:b3:d0:49:06:58: 46:ee:d9:4b:bf:24:3b:6d:47:26:dd:8c:97:0b:13:c4:c4:fd: ae:c8:86:ef:28:16:83:f4:f5:8e:c3:2d:2b:e5:20:26:6d:1c: a6:30:c3:75 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEVtWs0UohFbU2K1Y2083YdKxWe0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxREQ1MTAwMDAwMTEwLwYDVQQFEyg1RDcwN0IwRDM1 Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCMB4XDTI2MDMwMTEwNTc0MloX DTI2MDMwMjExNTQ0MlowMzExMC8GA1UEAxMoNUE0RkZFRUQ3MUZCN0MxOUU0MkZG MEE0NDQ1OEI3QjdDRkM3NjE3RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM32D8RIHiV8eILxQKIUcSg/V8TpwnTk9RseQu2WUM+sSfd1Bqn83E46YRCZ 9O1fTEWmUeMDIlpMaNKrwDhExImESwU37WhfkU0qoGXSR3/Plp+h4INC9XElm+IK duQ5xxB3j4Oi9mpmPIKkTinOlSN2HZoFqhCa4bkDiddP5+u0EkArVsZIBOvb8u1T kHZ8MaYP6huFwwKNNcDQzeJPm2LXN015wzQyJS1D+Kmm2TdV/chpjJNwOKT3bcAn 56LLjlkxXTePL/WkCifT5+jQeqDUi6xE1fwgP1PoFVsjfmcjLAPSm3gCZ2HG4riH A4hxXBQYVrE9Zypkx/xEYUewOecCAwEAAaOCAhswggIXMB0GA1UdDgQWBBRaT/7t cft8GeQv8KREWLe3z8dhfzAfBgNVHSMEGDAWgBRdcHsNNWliJDK0vcv9Mg+ai23c ezAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUxMDAwMDAvMC81RDcwN0Iw RDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9YWEI3RFRWcFlp UXl0TDNMX1RJUG1vdHQzSHMuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUx MDAwMDAvMC81RDcwN0IwRDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdC Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEArp4lKXNEeXTGMXNnjHZDFe80gRfPzYOFs54yLQC6Ix/5NV8P dMgvlQqiGJmgfTg3WVf4oS3MV3q2IcNsYu50I9YPzNtsocJun1Z3rKQC7uKiOvi9 y7HM89j8TVmi5lhjbZRq0R77TtkShe0DrCRxa+/SWRF32HStdlSHGgqUqDAh+/Tm sWOsRNrb8jJc08ew3f+QBLbyFoWIisXtN8zsjnzFRaJmQAi82j+hEwoVbzmP44Ti tPMbbRI9e1tb4/tQDBg4yE0xdwY4d5j0trvopMyPSLPQSQZYRu7ZS78kO21HJt2M lwsTxMT9rsiG7ygWg/T1jsMtK+UgJm0cpjDDdQ== -----END CERTIFICATE-----Generated at Mon Mar 2 00:22:38 2026 by rpki-client