$ rpki-client -vvf rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft File: xiZYMphXjR1K9yc-vXkccjCjdEk.mft (raw, json) Hash identifier: luKb4FGze8reSTE8avSLHkj6ES/7YQ5pnTS9hNesdDE= Subject key identifier: 6A:DF:E3:E8:AC:95:7E:D5:58:61:1D:09:49:6C:11:6B:A0:A8:1B:0E Authority key identifier: C6:26:58:32:98:57:8D:1D:4A:F7:27:3E:BD:79:1C:72:30:A3:74:49 Certificate issuer: /CN=A91186C2/serialNumber=C626583298578D1D4AF7273EBD791C7230A37449 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft Manifest number: E2 Signing time: Wed 25 Mar 2026 05:44:04 +0000 Manifest this update: Wed 25 Mar 2026 05:44:03 +0000 Manifest next update: Wed 01 Apr 2026 05:44:03 +0000 Files and hashes: 1: xiZYMphXjR1K9yc-vXkccjCjdEk.crl (hash: aOcQek41fIVT4q9yvuAZ4bkO64dTPVC0rS8nMDXBlFk=) 2: 7DFFCDA4D17F11EF8FAE452BC4F9AE02.roa (hash: 88RG+IBp3+3IKje/6h9nyZS5YfSLYuAiRdPmohXdymE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.crl rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:44:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91186C2, serialNumber=C626583298578D1D4AF7273EBD791C7230A37449 Validity Not Before: Mar 25 05:44:03 2026 GMT Not After : Apr 1 05:44:03 2026 GMT Subject: CN=69c37624-79ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:c7:e2:be:07:59:4d:b7:24:7a:0a:87:d9:47: 55:ab:78:2e:0a:fe:fa:65:bb:7d:56:66:3b:8e:85: a1:28:f1:e8:04:b7:52:42:31:df:cc:fd:2c:22:3b: ff:c2:54:d0:06:a4:4b:1d:ba:11:0e:57:c5:55:4f: f4:11:7c:cc:38:c4:8d:40:12:c7:3d:26:4f:b9:21: f3:c1:82:f0:1d:bd:76:12:6a:54:30:ce:9b:70:b1: 76:43:71:fe:c5:2f:7e:12:a4:8e:5e:c0:d2:72:48: 13:08:a5:48:53:c1:49:57:99:14:63:a1:cb:85:36: 7b:2e:8a:0d:8c:db:85:70:29:1b:f3:01:33:2d:cd: 2b:d2:24:6d:fe:2b:b1:64:8f:2e:37:6a:62:18:75: 6b:60:22:7f:29:4d:b5:d2:04:9a:4e:af:4a:a2:38: ca:4c:55:40:c3:32:aa:71:6f:7b:48:5c:2e:f6:31: 28:d4:8e:92:d4:12:8b:43:57:b5:86:83:43:42:09: 79:73:66:72:48:da:46:f6:9d:57:b9:66:01:de:24: b2:74:7c:b5:7e:a0:f1:49:7e:b9:9c:c7:06:87:9c: 20:cb:a2:52:a6:b8:86:f1:dd:23:1c:fd:cd:04:d6: 54:77:ac:21:7c:13:45:36:5d:10:75:18:58:ad:8e: 2f:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:DF:E3:E8:AC:95:7E:D5:58:61:1D:09:49:6C:11:6B:A0:A8:1B:0E X509v3 Authority Key Identifier: keyid:C6:26:58:32:98:57:8D:1D:4A:F7:27:3E:BD:79:1C:72:30:A3:74:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:c7:0d:7f:ff:8c:5a:8f:74:28:c6:79:3d:f7:b6:7f:f7:55: 59:ed:b8:22:76:f1:46:3a:62:45:cf:da:84:24:75:05:f0:79: 6f:5e:07:ed:0c:25:df:48:43:b6:cd:22:6c:d6:5b:07:c1:50: 18:71:e2:26:93:01:e1:95:08:d4:bd:d6:91:64:ea:3c:ee:bc: b3:68:f5:ec:2f:90:7a:f8:ee:33:00:d4:26:c9:d0:d8:58:9e: fa:5e:93:d3:4f:9f:ba:e0:6e:b4:ad:2b:74:73:1c:ce:b2:e5: 6c:c9:7d:bb:da:ae:19:b5:8c:d5:aa:0f:30:59:d5:a7:2e:33: d8:be:d5:ac:57:ff:4d:13:b9:25:8f:b1:6a:eb:51:d2:33:b1: 03:59:42:f8:5c:78:75:a9:a4:0c:c6:60:8f:34:ec:6e:91:d1: 27:28:89:c5:0c:1f:dd:0b:e3:2b:e7:34:f7:f2:71:e3:2a:c3: ae:80:9f:8e:62:16:f7:f9:93:f5:80:ca:65:3f:08:89:2c:5e: f5:91:11:3b:b0:96:c0:af:50:5a:62:c6:75:c2:14:b9:6e:cc: a6:5d:e4:01:5a:64:d1:0e:fe:29:ca:6f:13:94:0d:ef:d1:0f: d8:f3:b4:5a:ca:8a:a4:b6:22:98:1d:76:32:e3:99:1f:a9:5f: 38:cf:94:fd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2QzIxMTAvBgNVBAUTKEM2MjY1ODMyOTg1NzhEMUQ0QUY3MjczRUJENzkxQzcy MzBBMzc0NDkwHhcNMjYwMzI1MDU0NDAzWhcNMjYwNDAxMDU0NDAzWjAYMRYwFAYD VQQDEw02OWMzNzYyNC03OWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAncfivgdZTbckegqH2UdVq3guCv76Zbt9VmY7joWhKPHoBLdSQjHfzP0sIjv/ wlTQBqRLHboRDlfFVU/0EXzMOMSNQBLHPSZPuSHzwYLwHb12EmpUMM6bcLF2Q3H+ xS9+EqSOXsDSckgTCKVIU8FJV5kUY6HLhTZ7LooNjNuFcCkb8wEzLc0r0iRt/iux ZI8uN2piGHVrYCJ/KU210gSaTq9KojjKTFVAwzKqcW97SFwu9jEo1I6S1BKLQ1e1 hoNDQgl5c2ZySNpG9p1XuWYB3iSydHy1fqDxSX65nMcGh5wgy6JSpriG8d0jHP3N BNZUd6whfBNFNl0QdRhYrY4vbwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGrf4+is lX7VWGEdCUlsEWugqBsOMB8GA1UdIwQYMBaAFMYmWDKYV40dSvcnPr15HHIwo3RJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODZDMi8xRDJGMDcyNEQx N0YxMUVGQjM4NDY5MjhDNEY5QUUwMi94aVpZTXBoWGpSMUs5eWMtdlhrY2NqQ2pk RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hpWllNcGhYalIxSzl5Yy12WGtjY2pDamRFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODZDMi8xRDJGMDcyNEQxN0YxMUVGQjM4NDY5MjhDNEY5QUUwMi94aVpZTXBoWGpS MUs5eWMtdlhrY2NqQ2pkRWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAj8cNf/+MWo90KMZ5Pfe2f/dVWe24InbxRjpiRc/ahCR1BfB5b14H7Qwl30hD ts0ibNZbB8FQGHHiJpMB4ZUI1L3WkWTqPO68s2j17C+QevjuMwDUJsnQ2Fie+l6T 00+fuuButK0rdHMczrLlbMl9u9quGbWM1aoPMFnVpy4z2L7VrFf/TRO5JY+xautR 0jOxA1lC+Fx4damkDMZgjzTsbpHRJyiJxQwf3QvjK+c09/Jx4yrDroCfjmIW9/mT 9YDKZT8IiSxe9ZERO7CWwK9QWmLGdcIUuW7Mpl3kAVpk0Q7+KcpvE5QN79EP2PO0 WsqKpLYimB12MuOZH6lfOM+U/Q== -----END CERTIFICATE-----Generated at Thu Mar 26 11:37:40 2026 by rpki-client