$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft File: sBO5crQspa2fahYr87XHT5M8HgU.mft (raw, json) Hash identifier: u6+tZGcvJdYK/La3OM394NEKazyPgK0Hhbodj4JTjxQ= Subject key identifier: 55:A3:22:B8:CD:B6:94:5F:EA:1D:70:36:8A:66:C7:C8:BE:E3:C9:AE Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 062B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft Manifest number: 061F Signing time: Tue 31 Mar 2026 22:58:13 +0000 Manifest this update: Tue 31 Mar 2026 22:58:12 +0000 Manifest next update: Tue 07 Apr 2026 22:58:12 +0000 Files and hashes: 1: sBO5crQspa2fahYr87XHT5M8HgU.crl (hash: db1fkNihCkYh0bPx/bG+v8vC90nmYipSFcmVciew8oM=) 2: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (hash: KJ2mFEWkTtrCEZw9NVFYAAnTanzrSc/7NwbR3vngF7g=) 3: 5334D20CDA5E11EBA323F462C4F9AE02.roa (hash: paFsFa6qVLCDV+k1MXzHkgPkBlhBBEj3AZlBzmVS9gs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1579 (0x62b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66, serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Validity Not Before: Mar 31 22:58:12 2026 GMT Not After : Apr 7 22:58:12 2026 GMT Subject: CN=69cc5185-c544 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b9:ae:8a:cd:0c:e7:29:d4:39:ef:f7:3f:79: 3b:a2:68:02:4a:bf:66:6e:ca:5e:3d:23:8f:f5:d1: 09:a3:ff:24:ba:0e:e9:b3:e9:eb:39:3b:2c:be:78: 5a:92:e4:79:d1:f4:62:d6:56:cb:2d:e5:b0:16:4d: 1a:ca:da:fa:f5:63:9d:d6:19:e8:ef:ea:4c:d6:7d: a9:9e:3a:80:ed:c5:ac:2b:f4:ab:ef:6e:79:5f:dc: 8b:cf:f7:87:f8:34:72:bc:ad:06:74:17:28:c2:37: 38:76:29:29:1a:8b:1b:d2:b3:ad:cc:d2:c3:80:a6: ec:b9:42:47:22:29:c2:1f:a2:7e:e5:18:1a:ba:21: 69:38:e8:de:e7:83:9a:3f:90:c9:c4:09:22:f1:11: ad:e8:8a:1f:68:24:39:05:00:46:93:11:94:15:f5: 3c:bf:cb:3d:be:a0:c6:3b:a4:84:89:b6:be:fd:e8: 3a:2a:ef:4a:b5:4f:ca:73:b4:36:88:37:16:a2:03: 8f:a6:93:90:78:4d:cc:0e:c9:b3:20:62:f8:01:95: 1a:e4:0e:4c:b5:b4:93:0a:6a:13:83:28:d8:94:5c: b4:5d:be:9e:03:16:67:c0:37:75:3c:c2:bb:ea:bb: ab:87:98:38:56:69:28:dc:c9:b0:ef:62:62:cd:8a: f2:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:A3:22:B8:CD:B6:94:5F:EA:1D:70:36:8A:66:C7:C8:BE:E3:C9:AE X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:80:08:ec:fe:f7:ce:b1:85:28:60:56:91:e6:da:2b:d6:23: 35:d3:b1:e1:74:7f:e7:53:40:ff:1b:a0:4f:91:e3:b2:43:1b: 54:4d:6f:cc:c2:f1:fa:96:80:78:3c:97:18:4c:8b:77:0a:4e: 05:64:2f:bd:e6:d8:b8:d9:0d:19:f9:c3:2e:b1:9d:c1:6b:ca: 87:1e:b8:0f:87:bc:a9:6e:70:2c:d2:b5:91:01:5a:27:17:8c: 3c:1f:0a:41:a6:eb:0b:31:43:ca:f6:2a:e0:c5:c9:39:02:e5: 59:45:db:90:7a:ae:29:fb:da:73:36:7a:c9:ee:95:c6:13:f0: 0d:ee:24:e7:4d:c6:60:f4:e7:7e:b7:09:64:32:13:ba:7b:6a: 6b:33:1a:a5:de:6b:14:74:d1:41:02:d9:af:be:53:91:e7:8e: 86:d7:7e:2f:6e:ed:2e:40:39:b2:28:e2:04:3a:5f:80:8d:4b: 35:87:c4:42:e8:32:47:6b:ad:0b:a0:b7:6d:f0:d2:3a:52:01: 1a:19:26:d2:c7:9b:97:0d:3f:28:8a:24:7b:ec:e7:5e:fc:65: 5c:d4:2e:7c:a9:99:ae:79:03:0f:79:60:6f:81:f5:a3:75:b4: 6b:dd:f0:b2:f6:5e:49:cd:54:8c:e6:4e:4a:f7:ac:63:ac:da: 28:a5:fc:20 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjYwMzMxMjI1ODEyWhcNMjYwNDA3MjI1ODEyWjAYMRYwFAYD VQQDEw02OWNjNTE4NS1jNTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrmuis0M5ynUOe/3P3k7omgCSr9mbspePSOP9dEJo/8kug7ps+nrOTssvnha kuR50fRi1lbLLeWwFk0aytr69WOd1hno7+pM1n2pnjqA7cWsK/Sr7255X9yLz/eH +DRyvK0GdBcowjc4dikpGosb0rOtzNLDgKbsuUJHIinCH6J+5RgauiFpOOje54Oa P5DJxAki8RGt6IofaCQ5BQBGkxGUFfU8v8s9vqDGO6SEiba+/eg6Ku9KtU/Kc7Q2 iDcWogOPppOQeE3MDsmzIGL4AZUa5A5MtbSTCmoTgyjYlFy0Xb6eAxZnwDd1PMK7 6rurh5g4Vmko3Mmw72JizYryhwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFWjIrjN tpRf6h1wNopmx8i+48muMB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkI2Ni81M0U4RkJFQURBNUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3Bh MmZhaFlyODdYSFQ1TThIZ1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnYAI7P73zrGFKGBWkebaK9YjNdOx4XR/51NA/xugT5HjskMbVE1vzMLx+paA eDyXGEyLdwpOBWQvvebYuNkNGfnDLrGdwWvKhx64D4e8qW5wLNK1kQFaJxeMPB8K QabrCzFDyvYq4MXJOQLlWUXbkHquKfvaczZ6ye6VxhPwDe4k503GYPTnfrcJZDIT untqazMapd5rFHTRQQLZr75TkeeOhtd+L27tLkA5sijiBDpfgI1LNYfEQugyR2ut C6C3bfDSOlIBGhkm0seblw0/KIoke+znXvxlXNQufKmZrnkDD3lgb4H1o3W0a93w svZeSc1UjOZOSvesY6zaKKX8IA== -----END CERTIFICATE-----Generated at Wed Apr 1 12:52:38 2026 by rpki-client