$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft File: U5TlfShXd_11FCjRXLD7L8WSx6Y.mft (raw, json) Hash identifier: cy1N6VpQBILC3tWrZq9TOyFJCoZ8LUVbFWLYjTbk5N4= Subject key identifier: A9:E8:1C:91:DC:E2:E1:25:2F:B9:3A:D8:27:D0:FF:8F:84:0E:ED:58 Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 05E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft Manifest number: 05CB Signing time: Thu 12 Mar 2026 22:40:06 +0000 Manifest this update: Thu 12 Mar 2026 22:40:06 +0000 Manifest next update: Thu 19 Mar 2026 22:40:06 +0000 Files and hashes: 1: U5TlfShXd_11FCjRXLD7L8WSx6Y.crl (hash: vIjLIv7sM7bzPZjzpAORcb7E1mFHMWswLWostqvLJ98=) 2: C25659465C9D11EC99F7D10BC4F9AE02.roa (hash: NXzX7R7NLEazsVeUoaLWbp54rjvi9QQud2skYKW4OZQ=) 3: E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa (hash: O5HnlLR1hWWyTNRUt4LdbaUFp1yGwksal5ksV0pwNV4=) 4: C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa (hash: +8k4rfDonzqcIXzrPnc9G+NWKEIwjetXPPpI12xDWO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 22:40:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1511 (0x5e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9, serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: Mar 12 22:40:06 2026 GMT Not After : Mar 19 22:40:06 2026 GMT Subject: CN=69b340c6-6b18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:4f:d9:8f:87:93:f8:9b:87:7f:04:08:9a:70: 03:c5:97:8a:b5:0d:a7:03:47:36:df:7e:b7:f8:c5: ec:a9:2e:29:09:41:0f:18:b2:63:83:69:a2:f1:d8: 9e:62:e0:3d:bf:dc:04:30:88:52:9e:a3:cc:4b:1b: 70:78:b6:ff:17:dc:a7:97:0e:eb:39:7f:09:6b:bc: d5:10:1a:bd:15:49:3d:1d:7e:e6:9b:97:13:be:5f: 49:8d:b1:b8:3d:f8:92:f7:6f:d8:c4:8a:8e:de:18: 4b:2f:28:8c:8a:30:16:e8:51:a1:8f:c9:30:b7:9d: ec:e8:4a:35:8c:f6:3e:bf:99:93:11:28:18:12:13: b5:39:64:57:bd:be:4d:4a:70:02:e6:7d:e5:d4:bf: c9:b8:93:63:f0:9f:9d:aa:5b:0c:33:e2:03:81:98: bd:d1:62:40:5d:c9:9c:bb:31:58:fb:a4:59:45:c7: 19:ec:6b:75:81:3c:2f:e3:f7:c5:99:a9:c9:0b:78: b1:e1:d8:c6:71:b4:3d:54:15:67:1d:3a:a7:03:e5: cc:9e:9e:ed:81:5e:a2:56:9f:e9:3d:4e:10:84:a3: 06:0c:05:8b:5d:36:d1:dc:07:86:49:4b:53:26:15: 3b:31:a3:43:aa:12:e5:a4:77:ad:92:11:b7:41:9b: da:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:E8:1C:91:DC:E2:E1:25:2F:B9:3A:D8:27:D0:FF:8F:84:0E:ED:58 X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:f6:1c:fc:12:d4:4d:d3:a2:ad:61:39:a2:43:b4:92:cb:b5: 94:ad:2f:c7:56:a5:81:10:3f:c4:92:94:b4:07:11:52:9c:d8: f2:0d:4c:c1:25:72:02:f2:f9:58:8c:8b:e0:98:a8:da:87:ee: d5:29:48:fb:2a:75:ad:51:14:11:93:7f:79:4a:dc:9d:d1:79: ff:17:85:73:f2:28:22:96:c4:12:4d:e0:36:de:56:11:ab:25: f5:fa:76:08:57:7d:2b:7d:be:6b:df:d3:9f:fc:ae:a7:d2:cd: 15:b4:70:2a:7d:79:69:db:f2:f2:5c:e8:f0:6a:15:a1:5a:82: e3:9e:66:90:3d:98:99:5a:6c:dc:ed:23:ad:e4:f6:75:44:58: 88:bc:ab:c4:e6:48:71:f7:39:6a:c3:10:87:43:e8:6f:f8:f1: d0:dc:69:5f:1a:5a:20:a3:82:ce:11:24:8a:f2:6d:ae:9f:b2: 73:97:e4:f8:b2:3f:40:2d:74:c1:5d:55:d4:2d:96:fa:18:5a: 40:06:54:8d:ba:e8:79:f8:08:a5:21:4f:91:02:55:a8:80:61: 59:85:8a:78:f3:1b:58:7a:6b:e9:14:e6:1e:26:64:3d:f0:5f: d2:ff:02:63:62:aa:9f:f7:47:41:b0:6d:68:52:28:64:fa:cd: c9:7d:9e:2c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjYwMzEyMjI0MDA2WhcNMjYwMzE5MjI0MDA2WjAYMRYwFAYD VQQDEw02OWIzNDBjNi02YjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmk/Zj4eT+JuHfwQImnADxZeKtQ2nA0c23363+MXsqS4pCUEPGLJjg2mi8die YuA9v9wEMIhSnqPMSxtweLb/F9ynlw7rOX8Ja7zVEBq9FUk9HX7mm5cTvl9JjbG4 PfiS92/YxIqO3hhLLyiMijAW6FGhj8kwt53s6Eo1jPY+v5mTESgYEhO1OWRXvb5N SnAC5n3l1L/JuJNj8J+dqlsMM+IDgZi90WJAXcmcuzFY+6RZRccZ7Gt1gTwv4/fF manJC3ix4djGcbQ9VBVnHTqnA+XMnp7tgV6iVp/pPU4QhKMGDAWLXTbR3AeGSUtT JhU7MaNDqhLlpHetkhG3QZvaEQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKnoHJHc 4uElL7k62CfQ/4+EDu1YMB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTdBOS81Rjg5RjZFQ0ZCMzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRf MTFGQ2pSWExEN0w4V1N4NlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAj/Yc/BLUTdOirWE5okO0ksu1lK0vx1algRA/xJKUtAcRUpzY8g1MwSVyAvL5 WIyL4Jio2ofu1SlI+yp1rVEUEZN/eUrcndF5/xeFc/IoIpbEEk3gNt5WEasl9fp2 CFd9K32+a9/Tn/yup9LNFbRwKn15advy8lzo8GoVoVqC455mkD2YmVps3O0jreT2 dURYiLyrxOZIcfc5asMQh0Pob/jx0NxpXxpaIKOCzhEkivJtrp+yc5fk+LI/QC10 wV1V1C2W+hhaQAZUjbroefgIpSFPkQJVqIBhWYWKePMbWHpr6RTmHiZkPfBf0v8C Y2Kqn/dHQbBtaFIoZPrNyX2eLA== -----END CERTIFICATE-----Generated at Sat Mar 14 07:22:36 2026 by rpki-client