$ rpki-client -vvf rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft File: 0Q5D4Fk97x241_RMbxzRPnPC8jA.mft (raw, json) Hash identifier: YK4bclfXe0rAzTuV9ivB5c4cSKFLmt178UESYAAES28= Subject key identifier: A3:DA:08:8A:F3:DA:40:F4:7E:2C:F8:D9:4F:60:FF:70:F5:FA:15:7B Authority key identifier: D1:0E:43:E0:59:3D:EF:1D:B8:D7:F4:4C:6F:1C:D1:3E:73:C2:F2:30 Certificate issuer: /CN=A91325DC/serialNumber=D10E43E0593DEF1DB8D7F44C6F1CD13E73C2F230 Certificate serial: 0BC7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft Manifest number: 0BB0 Signing time: Sat 28 Mar 2026 18:58:26 +0000 Manifest this update: Sat 28 Mar 2026 18:58:25 +0000 Manifest next update: Sat 04 Apr 2026 18:58:25 +0000 Files and hashes: 1: 0Q5D4Fk97x241_RMbxzRPnPC8jA.crl (hash: vJDqwYvD3+ENGOzWUIRYs8jBomGyoStgOEOCAgMCBj0=) 2: 5F47B232DF0711F0899AA5EF5C6F56BC.roa (hash: RljGAjjwZ/pe6/m6sE6jioJluQgFaLFt64ScvocrVSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.crl rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 18:58:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3015 (0xbc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91325DC, serialNumber=D10E43E0593DEF1DB8D7F44C6F1CD13E73C2F230 Validity Not Before: Mar 28 18:58:25 2026 GMT Not After : Apr 4 18:58:25 2026 GMT Subject: CN=69c824d1-6ad7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7b:60:2a:1a:a0:80:20:57:38:0e:26:a3:30: 66:a3:17:84:78:7c:e7:10:b8:6a:9f:48:8e:27:66: aa:39:0f:4e:03:81:8a:6c:78:b6:75:8b:0d:12:2b: ea:6a:21:d6:e7:a6:06:f9:58:60:6d:ce:c0:42:c1: 0f:67:36:1a:e2:a2:88:0c:70:88:4a:ea:75:1b:91: ef:52:3d:5f:c5:b4:31:61:66:d0:03:85:c3:b8:03: e1:11:25:2e:82:c1:39:4b:74:39:f3:05:98:4c:9b: 5e:b0:41:a8:49:fb:bf:a3:81:f7:48:5d:09:04:cb: 12:3f:cc:cd:f5:b6:f0:fd:05:9c:9f:78:3a:10:6f: 8d:92:d5:a7:c0:c0:6f:4f:c4:f3:50:08:68:35:84: 00:ed:04:22:79:4f:fb:c7:8e:a2:8d:86:7d:20:ce: fc:67:84:28:7f:e3:2e:92:9c:68:1e:c8:1d:71:59: a3:e1:90:9d:e4:a2:1c:62:a3:76:17:be:a5:69:ea: dc:65:94:5d:fc:21:53:9f:52:bc:ce:d3:29:91:e7: 75:e9:96:c3:8d:c7:3f:40:6f:9b:70:6e:4e:6f:e3: c5:ad:b9:b2:af:01:79:e6:9e:2b:e6:9a:76:b7:0d: 52:c0:b4:81:a0:96:03:e1:b9:29:e2:4d:6b:a7:16: 22:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:DA:08:8A:F3:DA:40:F4:7E:2C:F8:D9:4F:60:FF:70:F5:FA:15:7B X509v3 Authority Key Identifier: keyid:D1:0E:43:E0:59:3D:EF:1D:B8:D7:F4:4C:6F:1C:D1:3E:73:C2:F2:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:2b:8d:8e:f0:5b:1f:9e:01:57:63:60:c6:0f:74:e5:bc:f0: b4:79:52:55:22:dd:e5:06:15:a6:91:7b:af:37:07:78:29:d9: 95:5b:f0:46:ee:ef:34:66:20:4c:be:ce:fb:66:e2:13:a9:17: 8a:8f:b6:fe:bd:24:86:8f:42:ba:82:32:4d:32:e5:56:be:d4: 00:ed:25:79:77:77:2b:cf:a4:a6:dd:26:bc:24:b5:4a:9a:c9: d7:6c:80:7f:f5:f8:e9:73:4e:6f:0f:07:ab:c8:49:74:b4:7c: 38:c4:93:14:1f:a2:10:dc:50:94:2a:c8:37:7c:b0:cc:d2:be: 37:7c:71:b9:2d:6c:d2:2b:ea:eb:00:a3:71:d0:f5:1e:00:2d: 23:dd:f7:60:d4:e9:b3:77:8e:71:8a:54:26:12:c0:87:4d:26: 71:cb:2d:21:dc:d2:8d:e1:54:cb:25:53:76:ab:20:e3:35:db: db:c0:dd:ed:75:8a:a8:f3:0c:81:fb:fb:d3:63:19:4f:6b:53: 30:38:c8:3c:80:bb:52:81:9b:87:f2:ad:75:2e:52:bd:0e:08: ae:dd:56:22:c5:79:4b:17:6d:a5:88:8f:c7:e2:34:20:f8:fe: 70:1d:d5:15:19:f5:fa:d2:8b:3f:4f:d2:c6:2a:46:ec:c0:b8: 52:2f:b4:4f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI1REMxMTAvBgNVBAUTKEQxMEU0M0UwNTkzREVGMURCOEQ3RjQ0QzZGMUNEMTNF NzNDMkYyMzAwHhcNMjYwMzI4MTg1ODI1WhcNMjYwNDA0MTg1ODI1WjAYMRYwFAYD VQQDEw02OWM4MjRkMS02YWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtntgKhqggCBXOA4mozBmoxeEeHznELhqn0iOJ2aqOQ9OA4GKbHi2dYsNEivq aiHW56YG+Vhgbc7AQsEPZzYa4qKIDHCISup1G5HvUj1fxbQxYWbQA4XDuAPhESUu gsE5S3Q58wWYTJtesEGoSfu/o4H3SF0JBMsSP8zN9bbw/QWcn3g6EG+NktWnwMBv T8TzUAhoNYQA7QQieU/7x46ijYZ9IM78Z4Qof+MukpxoHsgdcVmj4ZCd5KIcYqN2 F76laercZZRd/CFTn1K8ztMpked16ZbDjcc/QG+bcG5Ob+PFrbmyrwF55p4r5pp2 tw1SwLSBoJYD4bkp4k1rpxYiZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKPaCIrz 2kD0fiz42U9g/3D1+hV7MB8GA1UdIwQYMBaAFNEOQ+BZPe8duNf0TG8c0T5zwvIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjVEQy80NjEyRDUxRTQz MTYxMUVBQjI2Mjc4MURDNEY5QUUwMi8wUTVENEZrOTd4MjQxX1JNYnh6UlBuUEM4 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBRNUQ0Rms5N3gyNDFfUk1ieHpSUG5QQzhqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjVEQy80NjEyRDUxRTQzMTYxMUVBQjI2Mjc4MURDNEY5QUUwMi8wUTVENEZrOTd4 MjQxX1JNYnh6UlBuUEM4akEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfCuNjvBbH54BV2Ngxg905bzwtHlSVSLd5QYVppF7rzcHeCnZlVvwRu7vNGYg TL7O+2biE6kXio+2/r0kho9CuoIyTTLlVr7UAO0leXd3K8+kpt0mvCS1SprJ12yA f/X46XNObw8Hq8hJdLR8OMSTFB+iENxQlCrIN3ywzNK+N3xxuS1s0ivq6wCjcdD1 HgAtI933YNTps3eOcYpUJhLAh00mccstIdzSjeFUyyVTdqsg4zXb28Dd7XWKqPMM gfv702MZT2tTMDjIPIC7UoGbh/KtdS5SvQ4Irt1WIsV5SxdtpYiPx+I0IPj+cB3V FRn1+tKLP0/SxipG7MC4Ui+0Tw== -----END CERTIFICATE-----Generated at Mon Mar 30 12:59:14 2026 by rpki-client