$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft File: 5bRMaejecz32GWYFbn5BXsfHDSo.mft (raw, json) Hash identifier: BtGGZJKeqmGUrKWO1Y18U5zMKPXfpX0zdgoDone9GRs= Subject key identifier: DB:70:0A:5B:3A:24:47:D6:3C:43:E7:F3:F2:4E:22:0C:69:3D:34:96 Authority key identifier: E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A Certificate issuer: /CN=A91B4873/serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Certificate serial: 0152 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft Manifest number: 014C Signing time: Sun 05 Apr 2026 04:35:57 +0000 Manifest this update: Sun 05 Apr 2026 04:35:56 +0000 Manifest next update: Sun 12 Apr 2026 04:35:56 +0000 Files and hashes: 1: 5bRMaejecz32GWYFbn5BXsfHDSo.crl (hash: 3MgpZqvg7bt7AkIHKqeZyt3c9vx9WU4c6iEbhyXkOxM=) 2: F9AAE6F8994011F097180C40C4F9AE02.roa (hash: +BAp+39366AUiOK5SmP/mdRqu6NWeoWLjWnOKT+SW/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:35:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873, serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Validity Not Before: Apr 5 04:35:56 2026 GMT Not After : Apr 12 04:35:56 2026 GMT Subject: CN=69d1e6ac-c9a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:94:68:76:73:fb:38:43:bb:46:fc:54:9a:c7: 0f:63:fc:68:4d:ca:e4:f3:57:39:33:bb:a9:0d:86: 1e:b5:02:25:c7:eb:a8:c0:5c:3e:05:b5:79:7a:cf: db:32:54:62:d2:63:f5:89:cf:0f:26:39:29:df:1d: 5c:63:6d:a3:15:c2:5e:2c:56:48:2d:61:7c:6d:88: 7d:27:b4:b5:6d:3d:4e:45:6e:72:73:02:a8:ae:38: 98:7b:25:f7:19:8e:d3:8c:a1:3d:29:6e:07:ad:62: 70:ca:6f:85:02:9a:8a:f7:75:15:55:a3:fa:7c:58: 6b:75:b6:4a:8b:ae:df:66:fe:d5:a8:99:a4:b6:af: 19:7b:b0:1c:12:cb:05:cd:c3:32:d0:8a:d9:32:85: cf:12:36:db:86:7b:31:dd:84:02:f1:91:ce:36:70: 11:8e:b2:0f:a8:0f:4d:8f:cb:93:94:3d:73:d5:c6: 1d:79:e4:73:4b:83:62:51:3c:3e:72:8b:52:fe:53: d9:86:6b:7e:97:ba:80:b2:65:e4:2b:94:10:a0:90: 28:b0:b0:66:d0:c1:a3:f3:89:ab:eb:a3:02:e6:02: 32:03:63:f8:85:9d:88:7e:cb:63:cb:cd:32:7e:b9: 52:05:97:de:33:ba:1f:2b:fa:7e:91:44:a3:14:be: 9d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:70:0A:5B:3A:24:47:D6:3C:43:E7:F3:F2:4E:22:0C:69:3D:34:96 X509v3 Authority Key Identifier: keyid:E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:fa:dd:de:d7:5a:a5:d3:98:ae:c5:c0:f8:77:76:6a:60:1b: ec:71:2a:be:b1:92:eb:93:48:ed:8b:3d:e1:e2:de:a2:4e:4a: 13:87:88:f4:35:3e:38:f1:d4:6f:34:96:6d:40:10:58:d2:2f: 23:c9:80:77:88:54:07:cf:ad:0a:b8:b4:ee:c1:36:7f:b0:82: e1:ff:05:36:5b:0a:45:75:42:5e:2b:19:b1:c9:92:97:0e:ec: 46:47:c9:e1:9e:7c:5c:6d:61:80:fc:23:c8:ef:2f:a6:b4:67: c6:ed:07:cc:20:9e:6c:63:93:f7:86:31:a6:58:8b:57:40:f2: 5f:c9:e5:8c:6c:69:13:4f:3e:8f:86:75:99:33:08:db:fd:64: 20:26:6d:16:74:25:d2:c9:02:7a:81:ca:7f:03:65:f6:c8:cd: b9:15:ee:7b:83:30:2d:04:2d:2a:c0:44:60:d1:99:e2:fa:93: d8:08:4a:6d:15:13:85:04:20:d6:f4:1c:ed:3c:49:64:c7:45: f4:3c:0f:d6:e3:ba:f2:14:a3:7e:53:03:89:4f:41:a0:28:73: d4:0a:d7:97:46:4f:4a:87:55:cb:6f:4b:cb:c8:fb:ec:93:61: be:68:64:35:4d:76:a3:01:ca:5f:e0:95:1c:75:30:72:a3:3a: b7:0c:00:68 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ4NzMxMTAvBgNVBAUTKEU1QjQ0QzY5RThERTczM0RGNjE5NjYwNTZFN0U0MTVF QzdDNzBEMkEwHhcNMjYwNDA1MDQzNTU2WhcNMjYwNDEyMDQzNTU2WjAYMRYwFAYD VQQDEw02OWQxZTZhYy1jOWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA25RodnP7OEO7RvxUmscPY/xoTcrk81c5M7upDYYetQIlx+uowFw+BbV5es/b MlRi0mP1ic8PJjkp3x1cY22jFcJeLFZILWF8bYh9J7S1bT1ORW5ycwKorjiYeyX3 GY7TjKE9KW4HrWJwym+FApqK93UVVaP6fFhrdbZKi67fZv7VqJmktq8Ze7AcEssF zcMy0IrZMoXPEjbbhnsx3YQC8ZHONnARjrIPqA9Nj8uTlD1z1cYdeeRzS4NiUTw+ cotS/lPZhmt+l7qAsmXkK5QQoJAosLBm0MGj84mr66MC5gIyA2P4hZ2Ifstjy80y frlSBZfeM7ofK/p+kUSjFL6drQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNtwCls6 JEfWPEPn8/JOIgxpPTSWMB8GA1UdIwQYMBaAFOW0TGno3nM99hlmBW5+QV7Hxw0q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDg3My80RTI1QzhCQzM4 RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6MzJHV1lGYm41QlhzZkhE U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzViUk1hZWplY3ozMkdXWUZibjVCWHNmSERTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDg3My80RTI1QzhCQzM4RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6 MzJHV1lGYm41QlhzZkhEU28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJvrd3tdapdOYrsXA+Hd2amAb7HEqvrGS65NI7Ys94eLeok5KE4eI9DU+OPHU bzSWbUAQWNIvI8mAd4hUB8+tCri07sE2f7CC4f8FNlsKRXVCXisZscmSlw7sRkfJ 4Z58XG1hgPwjyO8vprRnxu0HzCCebGOT94YxpliLV0DyX8nljGxpE08+j4Z1mTMI 2/1kICZtFnQl0skCeoHKfwNl9sjNuRXue4MwLQQtKsBEYNGZ4vqT2AhKbRUThQQg 1vQc7TxJZMdF9DwP1uO68hSjflMDiU9BoChz1ArXl0ZPSodVy29Ly8j77JNhvmhk NU12owHKX+CVHHUwcqM6twwAaA== -----END CERTIFICATE-----Generated at Mon Apr 6 13:57:19 2026 by rpki-client