$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft File: 5bsti54YaXwBWe2BMuXzS4axN7E.mft (raw, json) Hash identifier: lDAaoaMtJZcWXP8Es7TauoafHcaYcAMnmZZfvV0sQTI= Subject key identifier: 8C:0F:14:BA:2F:D7:0D:5B:CF:98:87:46:22:DD:2E:E9:CF:10:EB:8B Authority key identifier: E5:BB:2D:8B:9E:18:69:7C:01:59:ED:81:32:E5:F3:4B:86:B1:37:B1 Certificate issuer: /CN=A91E0C2B/serialNumber=E5BB2D8B9E18697C0159ED8132E5F34B86B137B1 Certificate serial: 0245 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft Manifest number: 023E Signing time: Sun 05 Apr 2026 02:06:35 +0000 Manifest this update: Sun 05 Apr 2026 02:06:35 +0000 Manifest next update: Sun 12 Apr 2026 02:06:35 +0000 Files and hashes: 1: 5bsti54YaXwBWe2BMuXzS4axN7E.crl (hash: JPnaRPr47tV+oe+pHlgEFBLTKj3KgP6OujPLgZZqH2E=) 2: 12B9A5DECBC211EDB6F09516C4F9AE02.roa (hash: r/QdasLc5bg8TvtpOH3qUVDciFGg4kgkaUmfu3ixoOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.crl rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0C2B, serialNumber=E5BB2D8B9E18697C0159ED8132E5F34B86B137B1 Validity Not Before: Apr 5 02:06:35 2026 GMT Not After : Apr 12 02:06:35 2026 GMT Subject: CN=69d1c3ab-e796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:58:79:d3:da:81:58:3f:9d:16:98:e0:ae:ac: d4:46:4f:3c:86:64:f9:b0:0e:1c:ad:8a:15:1b:bc: bb:24:6d:56:b6:e5:3f:f0:c7:69:73:d8:a4:fd:45: d3:59:e8:ac:af:f1:6c:93:5f:a2:ba:b3:f9:bb:36: 5a:cd:fd:b5:93:9b:31:e5:d2:f0:51:c5:31:54:f2: 2f:78:8d:b7:58:68:87:3f:6e:8b:08:2f:7b:ca:c8: 5d:72:86:05:7b:fc:08:b5:42:67:f7:31:5b:3f:dc: 0d:9d:83:88:05:3b:1c:f0:e7:6a:8c:f2:86:e0:47: 96:d8:dc:2b:5d:7e:2c:d6:c2:2f:31:b2:75:85:79: c9:d4:47:63:58:7c:2f:71:c1:5d:bb:06:38:46:4f: 46:24:77:63:eb:69:97:f0:4d:93:a6:63:35:5d:29: 18:b9:11:df:d8:87:e6:51:da:e0:2e:66:69:d0:46: 92:be:ee:3c:17:16:6e:ef:5c:23:fe:1c:a2:5c:cd: 12:93:a2:e6:22:b7:4f:08:bb:bd:7f:0d:ad:03:4a: 9f:b0:d8:e1:07:ea:7d:df:27:db:c7:a8:bd:6b:89: 92:24:66:97:60:de:43:a2:8e:b2:2f:dc:9d:18:49: eb:60:98:44:6f:a2:03:c6:c8:64:61:b5:fc:f6:19: 6a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:0F:14:BA:2F:D7:0D:5B:CF:98:87:46:22:DD:2E:E9:CF:10:EB:8B X509v3 Authority Key Identifier: keyid:E5:BB:2D:8B:9E:18:69:7C:01:59:ED:81:32:E5:F3:4B:86:B1:37:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:ee:a5:47:91:81:de:4a:6a:b9:35:ad:3e:e7:9c:bd:ec:cb: 78:84:e4:09:5c:ca:e7:fd:0c:9e:cc:0d:cd:48:be:63:81:84: 54:39:19:c7:23:43:67:5f:15:ed:91:e6:6f:c5:6d:a3:ef:8c: ff:21:c4:bf:e2:c3:5a:80:f0:38:e6:55:39:f4:5d:d2:ee:ff: 7e:17:47:02:1f:99:70:3a:06:b8:08:e8:ed:45:f4:ea:d0:3a: 99:eb:58:d1:37:a4:78:1b:92:0a:39:ab:f6:b3:98:17:69:cb: 7e:1c:80:21:09:6b:94:b0:d4:72:0a:76:c2:ae:4c:de:e1:0e: b6:ee:f5:79:fb:08:e5:08:a5:02:7e:a4:97:cb:1a:57:94:fd: d9:52:01:11:ed:52:80:9b:97:19:08:7d:21:85:00:ad:95:5e: 16:48:ef:a4:98:b0:b9:09:34:1a:cd:df:70:30:8b:f1:b7:7b: dd:11:b9:9b:35:6b:b0:9f:89:48:51:2e:e7:d1:32:8d:e8:af: ba:c6:0e:5c:ce:10:cf:8f:2c:52:f9:67:d9:99:28:46:49:33: 2f:40:ec:9a:b1:73:b7:44:60:d7:18:8d:f6:af:47:aa:0f:c2: c5:d4:b2:44:f5:eb:ba:05:6a:48:30:aa:6b:bb:ef:90:c9:19: db:58:21:c0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDMkIxMTAvBgNVBAUTKEU1QkIyRDhCOUUxODY5N0MwMTU5RUQ4MTMyRTVGMzRC ODZCMTM3QjEwHhcNMjYwNDA1MDIwNjM1WhcNMjYwNDEyMDIwNjM1WjAYMRYwFAYD VQQDEw02OWQxYzNhYi1lNzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFh509qBWD+dFpjgrqzURk88hmT5sA4crYoVG7y7JG1WtuU/8Mdpc9ik/UXT Weisr/Fsk1+iurP5uzZazf21k5sx5dLwUcUxVPIveI23WGiHP26LCC97yshdcoYF e/wItUJn9zFbP9wNnYOIBTsc8OdqjPKG4EeW2NwrXX4s1sIvMbJ1hXnJ1EdjWHwv ccFduwY4Rk9GJHdj62mX8E2TpmM1XSkYuRHf2IfmUdrgLmZp0EaSvu48FxZu71wj /hyiXM0Sk6LmIrdPCLu9fw2tA0qfsNjhB+p93yfbx6i9a4mSJGaXYN5Doo6yL9yd GEnrYJhEb6IDxshkYbX89hlqUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIwPFLov 1w1bz5iHRiLdLunPEOuLMB8GA1UdIwQYMBaAFOW7LYueGGl8AVntgTLl80uGsTex MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEMyQi9EMjdFNkVEMENC OTYxMUVEQUMzNDlCNzlDNEY5QUUwMi81YnN0aTU0WWFYd0JXZTJCTXVYelM0YXhO N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVic3RpNTRZYVh3QldlMkJNdVh6UzRheE43RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEMyQi9EMjdFNkVEMENCOTYxMUVEQUMzNDlCNzlDNEY5QUUwMi81YnN0aTU0WWFY d0JXZTJCTXVYelM0YXhON0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlO6lR5GB3kpquTWtPuecvezLeITkCVzK5/0MnswNzUi+Y4GEVDkZxyNDZ18V 7ZHmb8Vto++M/yHEv+LDWoDwOOZVOfRd0u7/fhdHAh+ZcDoGuAjo7UX06tA6metY 0TekeBuSCjmr9rOYF2nLfhyAIQlrlLDUcgp2wq5M3uEOtu71efsI5QilAn6kl8sa V5T92VIBEe1SgJuXGQh9IYUArZVeFkjvpJiwuQk0Gs3fcDCL8bd73RG5mzVrsJ+J SFEu59EyjeivusYOXM4Qz48sUvln2ZkoRkkzL0DsmrFzt0Rg1xiN9q9Hqg/CxdSy RPXrugVqSDCqa7vvkMkZ21ghwA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:32:02 2026 by rpki-client