$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft File: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft (raw, json) Hash identifier: j1B66upkUqwBFEFwUb7e61+GC9HLnVLS80rl6TIKdf0= Subject key identifier: 5E:B9:DA:FE:39:80:80:2E:A2:FC:5E:19:8D:FF:4D:D3:B5:A8:2E:88 Authority key identifier: 76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D Certificate issuer: /CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Certificate serial: 050E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft Manifest number: 04E8 Signing time: Thu 12 Mar 2026 16:53:57 +0000 Manifest this update: Thu 12 Mar 2026 16:53:57 +0000 Manifest next update: Thu 19 Mar 2026 16:53:57 +0000 Files and hashes: 1: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl (hash: +8wDOP9yjgX4KULplh2yeAEN/QDJgm/PCK7fwaenOBE=) 2: D36F0B6ECF4411ECB6B61825C4F9AE02.roa (hash: Ylv7wHI65XMnQYhoDyQSygUwHrURYMjzNieL/UaPiGU=) 3: 9CD16392309711F09EFD0C4CC4F9AE02.roa (hash: 76p1LWBSiAURuIgRIP/lu1qZCJd79sZFpOsF7Mk4V7g=) 4: F91F0C028A2E11EC98A2702CC4F9AE02.roa (hash: bjkkedoEzbUfC4GQvKwdaQZgxgq0YTl5qOigfpRvGaU=) 5: 1479C514596A11ECB1394271C4F9AE02.roa (hash: wpAJJYnFAicDNwa71hcmrPmPcdiAdvkl0r/mHo7+0do=) 6: F5A921B85BE911EF8624AA20C4F9AE02.roa (hash: HtAUxiV2GGFLsnw5Ftue8AlO9jul/mJwmhYMXTb/CeY=) 7: 13EE3260596A11ECB1394271C4F9AE02.roa (hash: 5Z7fKb2b95O7xf2REenK7dbH8KrSrAmTwTpVkXBeeOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 16:53:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1294 (0x50e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Validity Not Before: Mar 12 16:53:57 2026 GMT Not After : Mar 19 16:53:57 2026 GMT Subject: CN=69b2efa5-b76d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:01:58:6c:00:c1:47:18:b6:b0:51:b4:be:fb: 90:d3:d8:de:f1:74:7e:f8:9c:e1:2e:93:5c:cf:85: 1d:6a:95:07:9c:6d:76:d5:04:2b:5a:e6:3d:4c:71: 2b:22:fe:20:4c:2d:78:d0:fe:bb:56:b7:52:a6:5d: 9f:ff:59:b8:2d:88:6c:29:ee:bc:6f:e5:d1:54:6a: 9a:8a:f7:05:7e:c7:d3:c8:78:e4:a4:92:65:5f:7f: e7:b1:a5:4c:b7:62:94:55:79:93:b9:ff:ad:4a:90: 5a:fb:e3:34:83:3b:41:68:da:5f:c3:b2:03:59:12: 05:ae:24:fe:b5:bf:4b:38:3c:35:9a:33:b9:a6:20: f3:27:56:70:ca:e4:a7:ef:76:86:e0:b2:48:fe:93: 2d:00:84:f2:30:f4:19:e6:11:51:76:0c:37:6d:b9: 41:f9:47:1a:b9:62:9b:f8:47:3d:9d:76:04:03:26: fc:16:48:c5:92:2f:36:48:45:79:63:7a:22:f3:d6: eb:ed:63:c5:d9:cb:81:e2:3e:c8:7d:2d:64:52:15: 3f:3a:da:d9:d3:80:82:68:ef:88:ca:9d:03:e5:b2: 87:ff:5f:ea:b3:9f:00:65:66:ff:ef:7f:4c:85:db: 7b:2f:81:e8:e5:47:c7:bf:03:ac:7f:e6:21:ea:97: 21:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:B9:DA:FE:39:80:80:2E:A2:FC:5E:19:8D:FF:4D:D3:B5:A8:2E:88 X509v3 Authority Key Identifier: keyid:76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:42:fe:77:43:c5:e2:3d:0d:b1:42:5c:45:c9:8a:e2:4c:df: 54:34:9f:a5:0b:bd:a2:38:ac:79:86:3a:2d:70:aa:03:41:b9: e6:9c:37:1f:8e:9e:6f:28:6b:67:f9:b1:8d:7d:6e:85:a4:95: 0f:d2:66:f7:7e:2e:ca:9d:9c:a9:2b:b3:88:69:af:ed:d3:d5: 66:b7:08:9b:05:5c:ba:50:84:0f:c6:37:b2:6d:c4:80:a1:30: ea:dd:fe:19:53:b6:d0:9b:29:1f:f2:bb:7d:81:f8:0b:9f:64: 5e:90:d6:b7:9d:44:43:39:23:8d:d1:01:57:1c:4d:1b:4a:a1: e2:b2:b4:10:9a:9f:0d:d7:fe:10:61:03:63:e9:17:e1:46:df: 23:9f:06:45:c6:e4:e8:17:f4:bb:c0:5d:96:a7:d6:f0:b5:68: c9:6e:e7:c7:5d:70:4f:2d:2b:ff:9a:5e:75:09:2f:69:78:2c: f0:60:c9:d2:24:f8:7c:3a:29:24:be:2e:b7:e0:01:fd:f5:b6: 11:f5:6c:0b:ee:cd:8a:fb:3f:41:50:cf:87:de:1c:bd:8b:21: 3d:18:46:1b:9f:8d:ec:16:69:87:e9:f9:8e:e2:c4:66:8c:0b: c3:52:47:c4:8e:32:e4:dc:95:69:8c:84:d6:20:77:37:78:70: 35:32:2d:09 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDc2MEU2QTdGMDhCNzJGRjgwRUI1NkY2NzUwMzIzQjE2 NEE3MERBMUQwHhcNMjYwMzEyMTY1MzU3WhcNMjYwMzE5MTY1MzU3WjAYMRYwFAYD VQQDEw02OWIyZWZhNS1iNzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3wFYbADBRxi2sFG0vvuQ09je8XR++JzhLpNcz4UdapUHnG121QQrWuY9THEr Iv4gTC140P67VrdSpl2f/1m4LYhsKe68b+XRVGqaivcFfsfTyHjkpJJlX3/nsaVM t2KUVXmTuf+tSpBa++M0gztBaNpfw7IDWRIFriT+tb9LODw1mjO5piDzJ1ZwyuSn 73aG4LJI/pMtAITyMPQZ5hFRdgw3bblB+UcauWKb+Ec9nXYEAyb8FkjFki82SEV5 Y3oi89br7WPF2cuB4j7IfS1kUhU/OtrZ04CCaO+Iyp0D5bKH/1/qs58AZWb/739M hdt7L4Ho5UfHvwOsf+Yh6pchpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF652v45 gIAuovxeGY3/TdO1qC6IMB8GA1UdIwQYMBaAFHYOan8Ity/4DrVvZ1AyOxZKcNod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS81QjRDNEUzNjU5 NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xfZ090VzluVURJN0ZrcHcy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RnNXFmd2kzTF9nT3RXOW5VREk3RmtwdzJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS81QjRDNEUzNjU5NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xf Z090VzluVURJN0ZrcHcyaDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdkL+d0PF4j0NsUJcRcmK4kzfVDSfpQu9ojiseYY6LXCqA0G55pw3H46ebyhr Z/mxjX1uhaSVD9Jm934uyp2cqSuziGmv7dPVZrcImwVculCED8Y3sm3EgKEw6t3+ GVO20JspH/K7fYH4C59kXpDWt51EQzkjjdEBVxxNG0qh4rK0EJqfDdf+EGEDY+kX 4UbfI58GRcbk6Bf0u8BdlqfW8LVoyW7nx11wTy0r/5pedQkvaXgs8GDJ0iT4fDop JL4ut+AB/fW2EfVsC+7Nivs/QVDPh94cvYshPRhGG5+N7BZph+n5juLEZowLw1JH xI4y5NyVaYyE1iB3N3hwNTItCQ== -----END CERTIFICATE-----Generated at Fri Mar 13 14:30:27 2026 by rpki-client