$ rpki-client -vvf rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft File: b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft (raw, json) Hash identifier: dqt3H3Xz93EDw8eip3iJNuLqHsJ+2PWabOAsKE0gZQ0= Subject key identifier: 70:F1:BD:4D:58:56:08:DD:42:63:53:10:AB:00:C0:C8:A9:18:B6:29 Authority key identifier: 6F:91:C7:6A:4F:74:66:41:00:DD:8D:EB:D1:78:51:42:E1:37:80:2D Certificate issuer: /CN=A918D2CA/serialNumber=6F91C76A4F74664100DD8DEBD1785142E137802D Certificate serial: B1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft Manifest number: AC Signing time: Sun 05 Apr 2026 06:37:25 +0000 Manifest this update: Sun 05 Apr 2026 06:37:24 +0000 Manifest next update: Sun 12 Apr 2026 06:37:24 +0000 Files and hashes: 1: b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl (hash: J7wssj2KLMvi+NTRGMmpw3RW9tpxtE7+SnGYtY4Cwsw=) 2: 8C9E2B18354711F09FCEEE25C4F9AE02.roa (hash: vLHp4ObDO1IK1mUqYi6ciOieF4o9Rbhwa3XZX1qH6lI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:37:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D2CA, serialNumber=6F91C76A4F74664100DD8DEBD1785142E137802D Validity Not Before: Apr 5 06:37:24 2026 GMT Not After : Apr 12 06:37:24 2026 GMT Subject: CN=69d20325-1b46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:35:ae:2c:40:51:f7:42:2e:52:00:0e:3b:c5: 7e:54:f1:8a:cc:70:9f:4f:a7:19:0b:c0:e0:ef:74: 25:c6:6c:75:19:eb:79:da:6b:42:53:7e:bc:75:ab: 56:9e:95:5f:ae:2b:fd:51:90:e6:b0:7c:89:81:1d: 92:26:44:14:a8:34:5a:8a:70:df:71:04:72:cd:c8: 00:22:ea:d2:4a:1a:44:c0:83:b4:c8:87:54:32:4f: b3:8e:2d:0e:85:79:08:ce:0a:f0:78:1d:bf:53:16: d1:65:34:4d:88:ff:1c:79:08:36:59:eb:da:77:e8: 69:67:aa:19:0a:5e:48:6b:ab:cc:42:d2:48:df:7e: f6:bd:e5:53:66:45:20:35:82:21:39:31:af:27:65: 9b:97:f7:b1:d6:4c:32:34:ab:22:53:27:2e:1d:aa: d7:a9:1d:29:7b:27:49:bf:81:ed:ca:a2:a5:3e:6a: cc:32:19:9c:c6:48:50:45:10:2a:e9:dc:55:d8:12: 06:e7:5e:aa:0d:a4:77:4b:d8:d4:07:d3:c7:6f:f7: 35:10:0b:8f:59:4c:fd:b0:b3:9e:f4:ba:e9:1d:c0: 8c:2c:49:de:62:ed:2d:59:52:2e:c2:60:d2:5c:38: a9:45:13:31:41:91:7e:a5:63:28:49:0c:b2:24:74: 66:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:F1:BD:4D:58:56:08:DD:42:63:53:10:AB:00:C0:C8:A9:18:B6:29 X509v3 Authority Key Identifier: keyid:6F:91:C7:6A:4F:74:66:41:00:DD:8D:EB:D1:78:51:42:E1:37:80:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:ae:48:47:62:89:43:4e:9d:4c:04:8b:6e:18:de:22:9a:81: b4:29:71:e5:06:d2:73:44:d4:e8:a5:cb:04:77:2b:08:a6:44: 37:79:45:7f:5f:ce:0c:d5:f7:4f:ef:34:c4:ab:24:99:4d:03: a5:3c:7b:32:af:e1:21:4b:16:ca:6b:4f:a5:70:9f:f1:62:a5: 36:66:a2:75:2a:e4:c9:2a:04:c4:b2:a7:d9:05:da:88:8c:19: 69:4c:54:a6:6e:a2:2d:a3:af:cf:77:b7:79:12:69:fd:ca:55: 47:c6:7a:f6:87:a0:fb:e0:29:3e:4e:ea:3a:6f:dc:bb:54:18: ca:78:cd:dc:df:a5:57:d9:e8:01:dc:c8:19:43:57:19:11:6e: da:52:3d:a2:ef:78:89:92:16:f9:a1:b5:00:78:3a:aa:9b:03: 4b:90:cc:f0:9c:38:d5:d1:9d:7a:a0:d3:ee:a2:72:3e:31:4a: 09:eb:a8:ac:47:a7:56:21:bc:81:28:c6:87:5d:c4:a1:89:c6: 5d:1a:9d:3f:65:e2:e5:98:b8:72:04:a8:90:2c:27:58:96:c0: 83:9d:60:7c:26:c1:28:08:84:2a:b1:5d:2c:8d:d7:10:25:2b: 0e:10:0b:11:03:1d:40:73:05:e2:f9:65:ea:1d:26:2a:7e:49: 9c:b8:89:51 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQyQ0ExMTAvBgNVBAUTKDZGOTFDNzZBNEY3NDY2NDEwMEREOERFQkQxNzg1MTQy RTEzNzgwMkQwHhcNMjYwNDA1MDYzNzI0WhcNMjYwNDEyMDYzNzI0WjAYMRYwFAYD VQQDEw02OWQyMDMyNS0xYjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoTWuLEBR90IuUgAOO8V+VPGKzHCfT6cZC8Dg73Qlxmx1Get52mtCU368datW npVfriv9UZDmsHyJgR2SJkQUqDRainDfcQRyzcgAIurSShpEwIO0yIdUMk+zji0O hXkIzgrweB2/UxbRZTRNiP8ceQg2Wevad+hpZ6oZCl5Ia6vMQtJI3372veVTZkUg NYIhOTGvJ2Wbl/ex1kwyNKsiUycuHarXqR0peydJv4HtyqKlPmrMMhmcxkhQRRAq 6dxV2BIG516qDaR3S9jUB9PHb/c1EAuPWUz9sLOe9LrpHcCMLEneYu0tWVIuwmDS XDipRRMxQZF+pWMoSQyyJHRmFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHDxvU1Y VgjdQmNTEKsAwMipGLYpMB8GA1UdIwQYMBaAFG+Rx2pPdGZBAN2N69F4UULhN4At MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDJDQS8wOUY3NEVGNjM1 NDcxMUYwODEwM0JFMjRDNEY5QUUwMi9iNUhIYWs5MFprRUEzWTNyMFhoUlF1RTNn QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2I1SEhhazkwWmtFQTNZM3IwWGhSUXVFM2dDMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDJDQS8wOUY3NEVGNjM1NDcxMUYwODEwM0JFMjRDNEY5QUUwMi9iNUhIYWs5MFpr RUEzWTNyMFhoUlF1RTNnQzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxa5IR2KJQ06dTASLbhjeIpqBtClx5QbSc0TU6KXLBHcrCKZEN3lFf1/ODNX3 T+80xKskmU0DpTx7Mq/hIUsWymtPpXCf8WKlNmaidSrkySoExLKn2QXaiIwZaUxU pm6iLaOvz3e3eRJp/cpVR8Z69oeg++ApPk7qOm/cu1QYynjN3N+lV9noAdzIGUNX GRFu2lI9ou94iZIW+aG1AHg6qpsDS5DM8Jw41dGdeqDT7qJyPjFKCeuorEenViG8 gSjGh13EoYnGXRqdP2Xi5Zi4cgSokCwnWJbAg51gfCbBKAiEKrFdLI3XECUrDhAL EQMdQHMF4vll6h0mKn5JnLiJUQ== -----END CERTIFICATE-----Generated at Mon Apr 6 13:36:47 2026 by rpki-client