$ rpki-client -vvf rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft File: X3A2SNc_YGlFARjbom-WaC1a5so.mft (raw, json) Hash identifier: S8uqeBrheUA0uwgdJnXFBJV5kujXswQz8M13LYd16lI= Subject key identifier: A6:64:5D:EC:E9:38:EF:64:23:87:3E:BC:E5:97:8A:45:45:6A:3D:BD Authority key identifier: 5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA Certificate issuer: /CN=A91508BB/serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Certificate serial: 3521 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft Manifest number: 3521 Signing time: Thu 26 Mar 2026 14:40:11 +0000 Manifest this update: Thu 26 Mar 2026 14:40:10 +0000 Manifest next update: Thu 02 Apr 2026 14:40:10 +0000 Files and hashes: 1: X3A2SNc_YGlFARjbom-WaC1a5so.crl (hash: 6SC+/aZd5wbBwgzFGBWh7ZOevOcvopkfa3+olBEQZ38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:40:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13601 (0x3521) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91508BB, serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Validity Not Before: Mar 26 14:40:10 2026 GMT Not After : Apr 2 14:40:10 2026 GMT Subject: CN=69c5454a-fdc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d1:89:7b:14:45:9e:c0:ca:fb:e9:95:92:e0: 91:73:30:ab:56:0e:50:16:5e:2e:94:f9:0f:69:6d: 8d:2b:04:f0:ae:6a:d7:d1:8a:40:8f:81:61:8c:b3: c3:2d:f4:4a:bf:6e:0d:dd:ee:de:3f:89:63:e4:c9: 3a:a2:83:16:9e:b8:dd:e3:c5:03:88:2b:78:9a:4d: 5b:b3:2e:4e:1c:d1:73:ac:40:26:ca:0a:46:9b:73: b9:5b:56:7c:3e:47:ba:61:83:44:33:f2:b0:08:4a: 55:a5:dc:00:d9:2b:f9:75:1f:e3:6c:e1:87:bb:4b: 54:5e:24:4f:66:35:9e:40:eb:9e:38:a5:13:f7:58: 09:31:40:91:d6:22:a9:f1:18:6a:a0:f2:c7:bb:ba: bc:dd:33:93:97:6f:7a:b3:9f:9d:b2:cd:3d:fa:f0: 0a:90:17:ef:b7:8a:83:fe:6d:c6:01:0e:8a:7b:d5: 98:c0:d5:30:a4:1d:55:09:00:2a:4c:6a:40:0d:28: 73:d8:7d:d1:6b:6a:0e:72:d7:07:a7:31:c3:fe:c1: 2d:92:03:3a:03:85:81:31:31:aa:7a:9d:93:c2:99: c7:07:61:c4:f0:f0:e9:87:23:92:ec:a2:a4:32:55: 1c:6d:44:b8:95:6c:2a:d1:c9:9e:e6:b9:54:e6:ce: 32:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:64:5D:EC:E9:38:EF:64:23:87:3E:BC:E5:97:8A:45:45:6A:3D:BD X509v3 Authority Key Identifier: keyid:5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:a3:52:44:13:00:b2:f2:5e:8c:3e:1c:89:f2:19:d0:b1:06: c5:d7:70:74:16:a9:1d:4c:35:7c:ab:5a:fa:53:7f:0c:0a:b8: 64:c4:5a:13:27:a9:2a:c8:15:f0:0b:f6:4d:19:84:08:25:43: 43:56:73:52:f0:ce:74:78:91:10:5d:8e:a6:e7:c1:6f:b3:6d: 90:8f:e8:b7:e8:aa:1f:e9:75:e4:f4:c7:4f:92:14:17:5e:da: 93:88:b7:00:46:e4:88:21:35:b2:50:e5:03:de:10:53:b2:af: 0b:a8:4c:32:73:29:76:3b:a7:06:f6:eb:b0:41:e2:3c:86:76: 46:2e:b0:bd:4b:3a:60:c2:c5:cb:d1:71:12:67:5e:91:95:7d: d8:3b:9a:0e:13:ab:a0:e0:a3:f6:50:81:fa:64:d0:a1:0f:f8: 75:ed:85:c5:f9:1f:23:2f:da:09:61:fe:cc:82:5e:40:10:be: 70:2a:03:54:57:71:56:70:a7:4a:32:95:87:83:b9:a6:71:78: a7:9a:c9:76:ab:e3:29:88:77:98:14:d2:45:32:a5:68:f0:21: 78:f7:72:a9:91:1f:44:fc:c3:8d:02:75:79:55:c4:d5:23:d5: db:a7:fe:33:70:52:57:a1:30:98:cf:a0:37:34:90:7a:58:1f: 37:4e:61:af -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4QkIxMTAvBgNVBAUTKDVGNzAzNjQ4RDczRjYwNjk0NTAxMThEQkEyNkY5NjY4 MkQ1QUU2Q0EwHhcNMjYwMzI2MTQ0MDEwWhcNMjYwNDAyMTQ0MDEwWjAYMRYwFAYD VQQDEw02OWM1NDU0YS1mZGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdGJexRFnsDK++mVkuCRczCrVg5QFl4ulPkPaW2NKwTwrmrX0YpAj4FhjLPD LfRKv24N3e7eP4lj5Mk6ooMWnrjd48UDiCt4mk1bsy5OHNFzrEAmygpGm3O5W1Z8 Pke6YYNEM/KwCEpVpdwA2Sv5dR/jbOGHu0tUXiRPZjWeQOueOKUT91gJMUCR1iKp 8RhqoPLHu7q83TOTl296s5+dss09+vAKkBfvt4qD/m3GAQ6Ke9WYwNUwpB1VCQAq TGpADShz2H3Ra2oOctcHpzHD/sEtkgM6A4WBMTGqep2TwpnHB2HE8PDphyOS7KKk MlUcbUS4lWwq0cme5rlU5s4yPQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKZkXezp OO9kI4c+vOWXikVFaj29MB8GA1UdIwQYMBaAFF9wNkjXP2BpRQEY26JvlmgtWubK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDhCQi81QTBEOTU4ODFE OEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lHbEZBUmpib20tV2FDMWE1 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gzQTJTTmNfWUdsRkFSamJvbS1XYUMxYTVzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDhCQi81QTBEOTU4ODFEOEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lH bEZBUmpib20tV2FDMWE1c28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKKNSRBMAsvJejD4cifIZ0LEGxddwdBapHUw1fKta+lN/DAq4ZMRaEyepKsgV 8Av2TRmECCVDQ1ZzUvDOdHiREF2OpufBb7NtkI/ot+iqH+l15PTHT5IUF17ak4i3 AEbkiCE1slDlA94QU7KvC6hMMnMpdjunBvbrsEHiPIZ2Ri6wvUs6YMLFy9FxEmde kZV92DuaDhOroOCj9lCB+mTQoQ/4de2FxfkfIy/aCWH+zIJeQBC+cCoDVFdxVnCn SjKVh4O5pnF4p5rJdqvjKYh3mBTSRTKlaPAhePdyqZEfRPzDjQJ1eVXE1SPV26f+ M3BSV6EwmM+gNzSQelgfN05hrw== -----END CERTIFICATE-----Generated at Sat Mar 28 12:04:48 2026 by rpki-client