$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft File: 5HfTiqrEo3zG3xZlvxyICvmbe08.mft (raw, json) Hash identifier: CVwP3KSL8nOI5UR4rrXAl8/AcYTs1kuXannZvNQyr04= Subject key identifier: 06:A5:A6:37:0B:45:8D:38:D0:2E:ED:93:DB:0B:0C:7F:0C:4D:42:B0 Authority key identifier: E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F Certificate issuer: /CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Certificate serial: 049D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft Manifest number: 0453 Signing time: Sun 22 Mar 2026 23:47:37 +0000 Manifest this update: Sun 22 Mar 2026 23:47:36 +0000 Manifest next update: Sun 29 Mar 2026 23:47:36 +0000 Files and hashes: 1: 5HfTiqrEo3zG3xZlvxyICvmbe08.crl (hash: teUIEU6g33RBckeY9ukxy+XPY5TmAHxdUbGQcTTfUqg=) 2: 06820D08961011ECA540626AC4F9AE02.roa (hash: 3dB0qB5yNmzIvDRiuP2+fGgguKKPz4Cvi65Utf4OECk=) 3: 5F9FA12E0CA411ED96936D79C4F9AE02.roa (hash: PuL+mA1dV7Hh7bENHYnKx3eA2jTd4Smp4c1oR/M4V58=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 23:47:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1181 (0x49d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E, serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Validity Not Before: Mar 22 23:47:36 2026 GMT Not After : Mar 29 23:47:36 2026 GMT Subject: CN=69c07f99-1d8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:8a:a2:9f:83:2e:22:93:6a:f4:c5:88:eb:a8: be:7c:95:82:6f:ef:2f:40:f5:b9:26:23:ec:de:b6: c0:cb:2d:b9:8f:51:ed:e6:e3:93:a3:d9:46:b7:46: 40:a8:20:af:e3:8a:3d:90:e5:91:e1:dd:5f:84:b4: 69:9a:20:53:b0:bc:9b:b2:8c:44:c5:27:44:71:9d: 23:1f:84:17:2b:61:d0:19:40:05:33:e8:69:fd:3d: 31:59:b8:1b:ac:f8:80:46:45:97:08:ab:00:9a:84: a0:e6:18:59:66:7c:90:ad:da:23:84:e7:e3:82:ca: 90:54:7a:27:f8:ef:9d:9c:65:38:48:e5:e6:6b:8b: b9:7f:19:0a:9a:99:3d:0d:ad:37:28:3d:f7:0e:12: 54:6d:dc:1c:2e:d2:8f:bd:e3:bc:eb:54:79:df:3a: 07:92:5f:b6:cc:91:e8:0e:74:47:48:63:74:af:98: 9d:73:c0:e3:51:6d:7d:7c:a2:0c:bb:af:a9:90:6e: 6a:2a:60:24:d5:c8:f3:59:8b:2c:90:34:44:9b:a2: 44:4f:96:e0:7c:6b:bd:29:74:80:97:a9:f1:3a:b7: 1b:ff:09:45:52:61:d0:9a:f4:44:1f:75:33:1a:d6: e2:44:3c:84:a6:e8:1e:b5:62:7b:5f:fb:fe:a1:27: b5:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A5:A6:37:0B:45:8D:38:D0:2E:ED:93:DB:0B:0C:7F:0C:4D:42:B0 X509v3 Authority Key Identifier: keyid:E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:ff:7b:07:19:d7:60:b1:3f:f1:d0:23:15:ad:9c:be:5a:64: db:96:9d:ad:46:fd:a1:f7:a0:0c:26:87:15:bb:ba:e4:a3:fe: cb:82:86:00:aa:e3:5d:fc:02:b1:e4:26:00:07:f4:19:c3:1f: 02:2f:55:20:f8:b2:98:b3:5a:b1:1b:30:d4:61:8b:c2:f4:7f: ff:7f:71:c1:37:09:db:ed:c6:6f:34:59:5f:dc:73:0d:d8:53: 7d:e3:ab:1e:77:a7:bd:20:db:d8:e1:e4:4a:e3:ed:3a:ae:01: a3:ec:4f:65:b3:7e:95:39:b6:57:ca:5c:05:18:8b:b5:d6:ad: a0:94:45:43:e7:af:97:74:f0:5f:96:cf:f2:dc:c1:6d:09:50: 8d:8c:78:bb:d6:5e:04:70:a3:25:b4:0d:bf:b1:5a:bc:d2:56: c4:c8:a2:49:15:3e:73:e2:a6:fd:8d:12:d0:0f:8f:40:62:2e: 44:e7:12:ac:57:f0:b6:f9:7a:99:6f:df:77:18:fe:b4:da:10: 54:39:f5:58:76:80:29:00:4e:78:41:3c:67:9e:09:ce:83:15: 9d:cf:19:36:de:2a:ad:c1:7f:6d:97:2b:17:25:95:23:3b:c6: e2:6a:1a:5a:92:3e:d9:57:bc:51:d7:47:9c:db:b7:e8:1a:75: e2:07:d8:ac -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKEU0NzdEMzhBQUFDNEEzN0NDNkRGMTY2NUJGMUM4ODBB Rjk5QjdCNEYwHhcNMjYwMzIyMjM0NzM2WhcNMjYwMzI5MjM0NzM2WjAYMRYwFAYD VQQDEw02OWMwN2Y5OS0xZDhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkoqin4MuIpNq9MWI66i+fJWCb+8vQPW5JiPs3rbAyy25j1Ht5uOTo9lGt0ZA qCCv44o9kOWR4d1fhLRpmiBTsLybsoxExSdEcZ0jH4QXK2HQGUAFM+hp/T0xWbgb rPiARkWXCKsAmoSg5hhZZnyQrdojhOfjgsqQVHon+O+dnGU4SOXma4u5fxkKmpk9 Da03KD33DhJUbdwcLtKPveO861R53zoHkl+2zJHoDnRHSGN0r5idc8DjUW19fKIM u6+pkG5qKmAk1cjzWYsskDREm6JET5bgfGu9KXSAl6nxOrcb/wlFUmHQmvREH3Uz GtbiRDyEpugetWJ7X/v+oSe1yQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAalpjcL RY040C7tk9sLDH8MTUKwMB8GA1UdIwQYMBaAFOR304qqxKN8xt8WZb8ciAr5m3tP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80RTNFMzY3RTk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8zekczeFpsdnh5SUN2bWJl MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVIZlRpcXJFbzN6RzN4Wmx2eHlJQ3ZtYmUwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTA0RS80RTNFMzY3RTk2MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8z ekczeFpsdnh5SUN2bWJlMDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfP97BxnXYLE/8dAjFa2cvlpk25adrUb9ofegDCaHFbu65KP+y4KGAKrjXfwC seQmAAf0GcMfAi9VIPiymLNasRsw1GGLwvR//39xwTcJ2+3GbzRZX9xzDdhTfeOr HnenvSDb2OHkSuPtOq4Bo+xPZbN+lTm2V8pcBRiLtdatoJRFQ+evl3TwX5bP8tzB bQlQjYx4u9ZeBHCjJbQNv7FavNJWxMiiSRU+c+Km/Y0S0A+PQGIuROcSrFfwtvl6 mW/fdxj+tNoQVDn1WHaAKQBOeEE8Z54JzoMVnc8ZNt4qrcF/bZcrFyWVIzvG4moa WpI+2Ve8UddHnNu36Bp14gfYrA== -----END CERTIFICATE-----Generated at Tue Mar 24 09:21:39 2026 by rpki-client