$ rpki-client -vvf rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft File: nB5FqAhMMR3VAEShc2BejuPEzJU.mft (raw, json) Hash identifier: +1A/F3ChOKl1gzkKa5iPPMsJT4aQ0ATOB9J0k+AHTYo= Subject key identifier: 41:D9:59:AA:5A:5C:43:8E:FD:C5:2E:D3:10:48:97:28:E6:79:59:F9 Authority key identifier: 9C:1E:45:A8:08:4C:31:1D:D5:00:44:A1:73:60:5E:8E:E3:C4:CC:95 Certificate issuer: /CN=A91491CC/serialNumber=9C1E45A8084C311DD50044A173605E8EE3C4CC95 Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft Manifest number: 54 Signing time: Tue 03 Mar 2026 07:50:37 +0000 Manifest this update: Tue 03 Mar 2026 07:50:36 +0000 Manifest next update: Tue 10 Mar 2026 07:50:36 +0000 Files and hashes: 1: nB5FqAhMMR3VAEShc2BejuPEzJU.crl (hash: Wqf4zcEgWAv+3Jk0OXoc+WnSW53giYBmpnd26BFXBcg=) 2: 31E9004E9A0F11F0BC057E7DC4F9AE02.roa (hash: lMXIM574jb3Z0QsqRGCGYyP7C5VSgFPD1a4YIovILSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.crl rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 07:50:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91491CC, serialNumber=9C1E45A8084C311DD50044A173605E8EE3C4CC95 Validity Not Before: Mar 3 07:50:36 2026 GMT Not After : Mar 10 07:50:36 2026 GMT Subject: CN=69a692cd-42d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:5f:c3:9b:a5:2d:46:1c:b5:0c:a4:5c:32:87: a3:ea:e1:d0:79:ab:28:99:fc:c9:1d:19:cf:8c:5c: ce:45:15:fc:d9:ed:d2:7e:5e:d0:20:e7:11:bc:5d: 94:15:67:da:c8:75:12:af:f0:5b:c0:d3:49:c2:5a: 49:24:50:ef:2f:07:14:67:eb:57:5a:39:8b:76:a8: dd:9c:03:43:30:49:71:1d:53:31:76:39:28:46:3d: 98:5a:7b:cc:d3:6b:49:8d:67:82:24:94:2e:3a:a7: 78:cd:0d:e5:e6:eb:38:64:b0:2a:09:10:1b:d0:b4: 70:89:99:25:5b:fd:5f:2a:bd:38:36:a8:41:eb:96: 8b:81:45:47:4e:e0:55:dc:f2:44:b9:fd:aa:29:44: c8:26:6e:ff:45:1f:7c:24:40:ee:e4:7c:9a:33:ce: d5:73:e8:df:d4:e2:3b:3d:fb:88:ad:26:54:d9:61: 1c:3f:5a:6d:d8:c9:76:f7:cc:c3:47:d7:98:74:67: 58:81:55:52:e8:11:f6:d7:51:17:22:0d:50:58:8a: 6a:5f:bb:67:c3:89:10:09:28:94:9d:88:42:9a:29: a1:a4:0e:f2:92:f3:ca:47:eb:51:65:c9:1a:fe:1c: 52:8e:2f:ad:47:bf:56:46:e1:e5:d6:4e:af:14:60: 68:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:D9:59:AA:5A:5C:43:8E:FD:C5:2E:D3:10:48:97:28:E6:79:59:F9 X509v3 Authority Key Identifier: keyid:9C:1E:45:A8:08:4C:31:1D:D5:00:44:A1:73:60:5E:8E:E3:C4:CC:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nB5FqAhMMR3VAEShc2BejuPEzJU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91491CC/9DF07E449A0E11F089C88B7CC4F9AE02/nB5FqAhMMR3VAEShc2BejuPEzJU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:42:45:30:6f:a8:fc:fc:fd:1e:eb:70:d0:a0:dd:5f:a5:fb: a4:f2:ff:7f:5a:25:9d:0a:37:f3:a7:b9:09:e2:17:be:5f:45: 92:98:aa:59:62:1e:a6:0f:a0:85:d7:c4:49:1c:a1:6a:d5:9f: a5:56:fc:b2:53:ff:fe:c5:9e:ab:c1:32:2c:ac:9f:a0:26:8b: 48:0f:55:2a:b3:85:9f:57:ae:81:20:17:da:b8:f2:71:bc:98: 2c:f7:42:a5:ce:0a:d2:ba:cb:7e:e2:e6:c2:63:33:01:69:d9: 00:17:a5:39:f3:fe:29:fc:91:97:50:38:36:d3:53:e7:c0:ed: 10:ab:0f:b5:4a:10:76:83:9f:b4:0d:e0:cb:e6:94:d3:6e:e9: 49:41:9f:00:61:59:f8:7a:48:4d:86:e7:50:ec:59:ae:35:7b: 02:b8:5c:d8:0d:35:f3:71:d2:37:b1:17:bf:68:a7:9d:25:7b: aa:e0:71:08:85:db:4a:25:de:f4:2c:a8:6b:fa:0b:6b:cc:61: 53:3a:eb:76:5d:0e:e9:1e:8f:6e:d1:cd:17:97:77:c8:69:84: f1:2f:72:49:9b:86:20:ea:d1:d7:f3:10:e0:9d:89:79:42:46: a3:ec:ef:17:ce:1c:06:f8:ac:f9:1e:00:67:4a:68:70:c0:7d: 29:fe:f0:fc -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 OTFDQzExMC8GA1UEBRMoOUMxRTQ1QTgwODRDMzExREQ1MDA0NEExNzM2MDVFOEVF M0M0Q0M5NTAeFw0yNjAzMDMwNzUwMzZaFw0yNjAzMTAwNzUwMzZaMBgxFjAUBgNV BAMTDTY5YTY5MmNkLTQyZDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvX8ObpS1GHLUMpFwyh6Pq4dB5qyiZ/MkdGc+MXM5FFfzZ7dJ+XtAg5xG8XZQV Z9rIdRKv8FvA00nCWkkkUO8vBxRn61daOYt2qN2cA0MwSXEdUzF2OShGPZhae8zT a0mNZ4IklC46p3jNDeXm6zhksCoJEBvQtHCJmSVb/V8qvTg2qEHrlouBRUdO4FXc 8kS5/aopRMgmbv9FH3wkQO7kfJozztVz6N/U4js9+4itJlTZYRw/Wm3YyXb3zMNH 15h0Z1iBVVLoEfbXURciDVBYimpfu2fDiRAJKJSdiEKaKaGkDvKS88pH61FlyRr+ HFKOL61Hv1ZG4eXWTq8UYGhzAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUQdlZqlpc Q479xS7TEEiXKOZ5WfkwHwYDVR0jBBgwFoAUnB5FqAhMMR3VAEShc2BejuPEzJUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5MUNDLzlERjA3RTQ0OUEw RTExRjA4OUM4OEI3Q0M0RjlBRTAyL25CNUZxQWhNTVIzVkFFU2hjMkJlanVQRXpK VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbkI1RnFBaE1NUjNWQUVTaGMyQmVqdVBFekpVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5 MUNDLzlERjA3RTQ0OUEwRTExRjA4OUM4OEI3Q0M0RjlBRTAyL25CNUZxQWhNTVIz VkFFU2hjMkJlanVQRXpKVS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBoQkUwb6j8/P0e63DQoN1fpfuk8v9/WiWdCjfzp7kJ4he+X0WSmKpZYh6mD6CF 18RJHKFq1Z+lVvyyU//+xZ6rwTIsrJ+gJotID1Uqs4WfV66BIBfauPJxvJgs90Kl zgrSust+4ubCYzMBadkAF6U58/4p/JGXUDg201PnwO0Qqw+1ShB2g5+0DeDL5pTT bulJQZ8AYVn4ekhNhudQ7FmuNXsCuFzYDTXzcdI3sRe/aKedJXuq4HEIhdtKJd70 LKhr+gtrzGFTOut2XQ7pHo9u0c0Xl3fIaYTxL3JJm4Yg6tHX8xDgnYl5Qkaj7O8X zhwG+Kz5HgBnSmhwwH0p/vD8 -----END CERTIFICATE-----Generated at Wed Mar 4 08:20:30 2026 by rpki-client