$ rpki-client -vvf rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.mft File: xl_8-yz82bzWja6waX0xbPNbI_A.mft (raw, json) Hash identifier: dnqAAvIj06ZA9+8jYHOSpzmoSPriAbMX4e4rRQGzK4Y= Subject key identifier: 2A:E2:24:5C:82:36:D3:D8:47:E7:78:AA:BE:C2:A2:D9:7A:14:C8:24 Authority key identifier: C6:5F:FC:FB:2C:FC:D9:BC:D6:8D:AE:B0:69:7D:31:6C:F3:5B:23:F0 Certificate issuer: /CN=A91472E2/serialNumber=C65FFCFB2CFCD9BCD68DAEB0697D316CF35B23F0 Certificate serial: 032E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xl_8-yz82bzWja6waX0xbPNbI_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.mft Manifest number: 0320 Signing time: Wed 25 Mar 2026 00:48:27 +0000 Manifest this update: Wed 25 Mar 2026 00:48:27 +0000 Manifest next update: Wed 01 Apr 2026 00:48:27 +0000 Files and hashes: 1: xl_8-yz82bzWja6waX0xbPNbI_A.crl (hash: DVGSQMyupMF15eZCjYPjXfdgswcBlkaTzU2pzDJavME=) 2: 216EE802F87A11EDAAE56C0DC4F9AE02.roa (hash: yNX1Hr9oIcR58b1nEt7c5c8aU3fBu8ibYkFmNG/a1UM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.crl rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xl_8-yz82bzWja6waX0xbPNbI_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:48:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 814 (0x32e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91472E2, serialNumber=C65FFCFB2CFCD9BCD68DAEB0697D316CF35B23F0 Validity Not Before: Mar 25 00:48:27 2026 GMT Not After : Apr 1 00:48:27 2026 GMT Subject: CN=69c330db-30c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ce:51:44:4e:ef:76:92:15:68:e9:30:c7:52: 3a:66:c8:ff:e5:5b:f4:4a:17:19:ca:70:fd:21:d9: 24:da:ab:b4:40:1b:eb:78:ce:dd:af:b9:fa:fc:bb: 60:c0:b2:ea:ee:3a:c9:a4:e2:78:78:7d:e1:09:89: 5f:3d:62:73:ae:a6:ff:68:7e:6c:97:03:b1:4e:e9: 95:b2:11:0b:17:c5:28:36:3b:e9:51:68:49:2a:bf: 82:cc:4f:67:68:a4:42:48:75:82:28:d6:62:bb:a4: 1e:b3:f0:5c:36:d2:34:eb:75:da:1e:85:ac:dd:cf: 38:73:d8:ef:44:65:f2:24:f3:e1:0a:8d:86:8e:42: a6:10:0f:fc:60:4d:8a:fb:0c:1f:98:e6:8f:dc:10: 88:b9:21:3e:c4:d0:dd:07:10:35:2d:47:31:ad:04: b9:4f:3a:23:7d:f1:1e:61:59:84:10:a9:40:b9:20: a5:ca:3b:48:9f:55:e6:cb:fd:e0:7e:ac:cc:4c:5e: b5:a7:f5:42:a8:a0:26:67:86:93:36:21:67:47:e7: aa:6a:31:52:96:4a:1f:f6:69:fc:fa:e6:4c:15:b0: 04:5f:07:30:cb:57:9c:85:d7:33:78:e8:ba:42:2f: 37:a0:01:98:ec:1e:b3:b6:f3:b7:ed:cf:3c:09:2b: 80:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:E2:24:5C:82:36:D3:D8:47:E7:78:AA:BE:C2:A2:D9:7A:14:C8:24 X509v3 Authority Key Identifier: keyid:C6:5F:FC:FB:2C:FC:D9:BC:D6:8D:AE:B0:69:7D:31:6C:F3:5B:23:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xl_8-yz82bzWja6waX0xbPNbI_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:0b:4a:62:67:15:e9:ed:bf:c4:12:63:5c:1b:e1:71:80:76: 9c:93:18:e7:ab:ae:72:34:f0:fc:8e:17:56:a7:71:5d:94:69: a1:a2:d0:20:56:32:1f:b1:d4:fd:55:b4:0c:e0:83:b9:8a:6f: 84:e8:30:f0:d9:2e:a6:67:39:69:e6:2c:1c:8c:1d:63:90:66: 5e:6e:94:11:84:7b:9b:f0:5c:32:93:f8:ea:85:81:43:60:f3: 4a:bb:51:74:04:a5:59:e3:10:2c:f9:cf:95:dc:1e:36:e7:eb: 6f:d3:f6:c2:84:88:a4:13:bf:ac:8f:54:5a:a6:c1:2d:db:04: 3b:eb:80:9b:8b:19:d4:f3:08:29:71:4b:56:c4:ad:26:ad:95: 51:3a:2b:a0:12:04:94:66:20:6c:17:b6:5a:6e:3e:33:3f:86: 58:a7:b9:ea:6c:9d:c7:34:ba:90:78:8d:56:69:3f:c7:ae:77: 27:be:f3:bb:35:9d:d7:82:e4:48:da:99:5b:1a:7e:12:c8:06: 1d:a4:0a:90:84:37:d2:73:d3:53:0b:fd:51:49:c3:d4:83:b0: d9:17:0e:80:16:8e:f6:29:76:d6:4c:9d:51:d4:b2:0f:65:8d: 3c:63:bb:83:e1:45:81:3c:1b:92:e9:83:9c:19:9e:99:6f:e3: 4e:b4:e5:f2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAy4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcyRTIxMTAvBgNVBAUTKEM2NUZGQ0ZCMkNGQ0Q5QkNENjhEQUVCMDY5N0QzMTZD RjM1QjIzRjAwHhcNMjYwMzI1MDA0ODI3WhcNMjYwNDAxMDA0ODI3WjAYMRYwFAYD VQQDEw02OWMzMzBkYi0zMGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuc5RRE7vdpIVaOkwx1I6Zsj/5Vv0ShcZynD9Idkk2qu0QBvreM7dr7n6/Ltg wLLq7jrJpOJ4eH3hCYlfPWJzrqb/aH5slwOxTumVshELF8UoNjvpUWhJKr+CzE9n aKRCSHWCKNZiu6Qes/BcNtI063XaHoWs3c84c9jvRGXyJPPhCo2GjkKmEA/8YE2K +wwfmOaP3BCIuSE+xNDdBxA1LUcxrQS5TzojffEeYVmEEKlAuSClyjtIn1Xmy/3g fqzMTF61p/VCqKAmZ4aTNiFnR+eqajFSlkof9mn8+uZMFbAEXwcwy1echdczeOi6 Qi83oAGY7B6ztvO37c88CSuAFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCriJFyC NtPYR+d4qr7Cotl6FMgkMB8GA1UdIwQYMBaAFMZf/Pss/Nm81o2usGl9MWzzWyPw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzJFMi8yRjE5NTM1QzBD QjIxMUVEOTVDRUM5NUNDNEY5QUUwMi94bF84LXl6ODJieldqYTZ3YVgweGJQTmJJ X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hsXzgteXo4MmJ6V2phNndhWDB4YlBOYklfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzJFMi8yRjE5NTM1QzBDQjIxMUVEOTVDRUM5NUNDNEY5QUUwMi94bF84LXl6ODJi eldqYTZ3YVgweGJQTmJJX0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABwtKYmcV6e2/xBJjXBvhcYB2nJMY56uucjTw/I4XVqdxXZRpoaLQIFYyH7HU /VW0DOCDuYpvhOgw8Nkupmc5aeYsHIwdY5BmXm6UEYR7m/BcMpP46oWBQ2DzSrtR dASlWeMQLPnPldweNufrb9P2woSIpBO/rI9UWqbBLdsEO+uAm4sZ1PMIKXFLVsSt Jq2VUToroBIElGYgbBe2Wm4+Mz+GWKe56mydxzS6kHiNVmk/x653J77zuzWd14Lk SNqZWxp+EsgGHaQKkIQ30nPTUwv9UUnD1IOw2RcOgBaO9il21kydUdSyD2WNPGO7 g+FFgTwbkumDnBmemW/jTrTl8g== -----END CERTIFICATE-----Generated at Thu Mar 26 18:02:56 2026 by rpki-client