$ rpki-client -vvf rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft File: XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft (raw, json) Hash identifier: bEpbAh6YRn5Tgb9UAACAYkmEyxWECIYjcKQt6rcxm4c= Subject key identifier: E5:3E:1B:76:E1:F1:5D:5C:96:07:DF:38:A0:51:E9:90:2E:DE:99:90 Authority key identifier: 5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A Certificate issuer: /CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Certificate serial: 0568 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft Manifest number: 0513 Signing time: Thu 26 Mar 2026 23:29:43 +0000 Manifest this update: Thu 26 Mar 2026 23:29:43 +0000 Manifest next update: Thu 02 Apr 2026 23:29:43 +0000 Files and hashes: 1: XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl (hash: l9cVYvZLkLm73luILSa3Osp9mo43Co5WgQucCIpUYkc=) 2: 87840F3AFBD111EFB4804F27C4F9AE02.roa (hash: vIEtRSxvBa0Xc/IiKtnrGRDGvVh6iD/nJgJJDv2I0S0=) 3: BEB34436FE3211EFAA1D9A4EC4F9AE02.roa (hash: rcOga+YGZldqreiF0WCdj8lf5Z59J1hOmyY6+goJTWY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 23:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1384 (0x568) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91524AF, serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Validity Not Before: Mar 26 23:29:43 2026 GMT Not After : Apr 2 23:29:43 2026 GMT Subject: CN=69c5c167-b740 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1e:db:df:22:87:97:43:1a:74:22:72:57:a3: 23:84:0c:d7:4f:d9:33:68:36:22:88:d9:5e:c9:91: 7c:2d:c2:54:4a:e4:69:a2:ba:11:a1:ef:87:4a:87: 85:d6:0c:aa:28:cc:3a:e4:10:21:b0:04:1f:81:86: e8:3f:e2:c7:04:75:a8:d5:3d:9c:40:2b:ea:84:20: ad:50:e6:64:a1:92:e3:b0:a1:61:7d:28:7e:52:81: d9:01:cd:c4:8c:12:23:c6:90:ff:8a:f6:33:dd:b3: f7:25:8a:a3:64:d1:68:5d:91:48:40:8c:68:f0:d1: 3f:03:57:67:36:dd:8d:cc:ee:8c:e7:51:ff:79:55: 64:1c:3b:4b:f4:8f:f4:02:56:eb:4d:95:fd:16:40: 9e:f5:75:8a:bc:7d:a2:bc:63:c5:f9:c7:de:71:63: bb:c1:1c:49:15:49:67:0f:4a:aa:4e:61:54:00:49: 6f:e6:00:3e:89:33:9a:75:4c:40:6d:81:87:eb:16: bc:5d:5e:28:a4:31:0b:2f:7f:19:03:98:9f:ea:20: 78:94:c4:4f:96:7a:99:61:49:5a:76:af:a5:b2:94: 38:05:12:be:4d:ab:65:d8:ea:85:7c:ff:27:58:95: 3f:4d:6c:05:0c:55:e0:e8:92:a9:04:67:84:be:bb: 9a:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:3E:1B:76:E1:F1:5D:5C:96:07:DF:38:A0:51:E9:90:2E:DE:99:90 X509v3 Authority Key Identifier: keyid:5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:1b:a4:b9:ae:8e:92:8e:c3:f0:e9:a2:e7:39:ca:9b:4e:3a: b9:1f:9d:5d:f4:57:59:c7:85:9d:a5:be:60:d1:98:72:4d:e2: 3a:58:e9:a2:79:4c:6d:96:40:d0:f8:6e:b4:35:56:ee:68:74: 28:68:2b:fa:d1:0c:16:a3:dd:66:ed:01:4e:fe:89:00:28:c8: c3:d9:09:34:fc:ab:e5:06:23:44:c5:9e:be:cf:bd:80:e1:3b: 9b:57:48:55:9d:c8:6a:fa:93:da:bf:18:67:34:03:05:5d:5d: 63:82:ec:4e:0e:6b:62:94:eb:4b:5a:d3:52:80:3e:aa:17:0e: 14:de:e5:b6:61:41:f0:c1:0c:15:d2:ac:ba:de:e8:ee:e5:96: 78:85:30:52:95:5a:b6:b2:57:6e:60:00:70:ca:43:d6:dc:44: 0c:d2:5b:a1:0e:ad:4a:56:b0:dc:6d:8b:28:96:8b:51:1b:da: be:5c:2b:d6:e4:2a:1e:7a:df:df:e9:5f:8b:f4:37:e3:9c:1b: d8:2a:12:7e:bd:98:4b:cf:87:ae:28:0b:5a:e6:26:69:f9:0b: 7f:44:d7:3d:81:a8:0c:e7:ea:c9:d1:54:e4:be:24:6c:7b:0e: 72:a0:bc:90:d8:66:19:05:f8:2c:54:ac:79:0c:04:33:54:41: ea:94:c6:20 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0QUYxMTAvBgNVBAUTKDVDMzE1REFGQzUzQTgyRkRENjJDNzIwMDVDNzY0NDMz M0JDMDI5N0EwHhcNMjYwMzI2MjMyOTQzWhcNMjYwNDAyMjMyOTQzWjAYMRYwFAYD VQQDEw02OWM1YzE2Ny1iNzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvB7b3yKHl0MadCJyV6MjhAzXT9kzaDYiiNleyZF8LcJUSuRporoRoe+HSoeF 1gyqKMw65BAhsAQfgYboP+LHBHWo1T2cQCvqhCCtUOZkoZLjsKFhfSh+UoHZAc3E jBIjxpD/ivYz3bP3JYqjZNFoXZFIQIxo8NE/A1dnNt2NzO6M51H/eVVkHDtL9I/0 AlbrTZX9FkCe9XWKvH2ivGPF+cfecWO7wRxJFUlnD0qqTmFUAElv5gA+iTOadUxA bYGH6xa8XV4opDELL38ZA5if6iB4lMRPlnqZYUladq+lspQ4BRK+Tatl2OqFfP8n WJU/TWwFDFXg6JKpBGeEvrua4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOU+G3bh 8V1clgffOKBR6ZAu3pmQMB8GA1UdIwQYMBaAFFwxXa/FOoL91ixyAFx2RDM7wCl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjRBRi83NkM3RjBGNDUx RjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2M1dMSElBWEhaRU16dkFL WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hERmRyOFU2Z3YzV0xISUFYSFpFTXp2QUtYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjRBRi83NkM3RjBGNDUxRjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2 M1dMSElBWEhaRU16dkFLWG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbhukua6Oko7D8Omi5znKm046uR+dXfRXWceFnaW+YNGYck3iOljponlMbZZA 0PhutDVW7mh0KGgr+tEMFqPdZu0BTv6JACjIw9kJNPyr5QYjRMWevs+9gOE7m1dI VZ3IavqT2r8YZzQDBV1dY4LsTg5rYpTrS1rTUoA+qhcOFN7ltmFB8MEMFdKsut7o 7uWWeIUwUpVatrJXbmAAcMpD1txEDNJboQ6tSlaw3G2LKJaLURvavlwr1uQqHnrf 3+lfi/Q345wb2CoSfr2YS8+HrigLWuYmafkLf0TXPYGoDOfqydFU5L4kbHsOcqC8 kNhmGQX4LFSseQwEM1RB6pTGIA== -----END CERTIFICATE-----Generated at Sat Mar 28 10:35:19 2026 by rpki-client