$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft File: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft (raw, json) Hash identifier: eZxywO+mIfeNowX5rZzk/pk7wERV9X8fOu6iBO2Ov0Q= Subject key identifier: BD:22:91:E1:9D:CA:67:4C:A3:06:C6:5F:B7:A5:3B:AD:79:4A:A3:69 Authority key identifier: C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 Certificate issuer: /CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft Manifest number: 01D2 Signing time: Wed 25 Mar 2026 02:55:16 +0000 Manifest this update: Wed 25 Mar 2026 02:55:15 +0000 Manifest next update: Wed 01 Apr 2026 02:55:15 +0000 Files and hashes: 1: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl (hash: r+jaifz5UEMbhuMHm0ixV01CClK7PE9Rce78Sqt6zao=) 2: 4B2F1F725E7811EE9307D234C4F9AE02.roa (hash: EcFjmxSDjXYlszuf2oD+q8KIZL69XyX6Am534xbF5Os=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:55:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF73, serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Validity Not Before: Mar 25 02:55:15 2026 GMT Not After : Apr 1 02:55:15 2026 GMT Subject: CN=69c34e93-217d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ca:f8:67:f0:63:5a:56:c9:ec:99:86:6e:13: d6:b5:f2:c8:7e:04:77:67:97:f7:a4:62:2b:e2:5a: 0f:e5:90:14:48:d4:58:7c:7e:a6:29:c3:24:b8:9a: ba:13:22:80:ca:55:10:dc:ee:92:aa:49:56:6f:39: 8c:13:f6:f9:bb:d2:ea:a5:85:35:41:2d:7c:ea:7e: f9:68:0d:9d:ac:79:00:44:57:af:99:8d:88:8e:a3: 74:2b:f1:a1:bd:8b:0d:aa:0d:cc:a8:f4:a7:63:23: c9:06:81:c2:8d:75:0a:d6:2f:66:b3:c1:1b:89:71: cc:a0:e1:0c:0e:6b:dd:d8:ca:c0:96:8d:d7:8a:71: 69:cc:2e:f8:21:b4:b0:93:8c:09:cd:dd:a0:88:53: 7c:0c:0a:53:0b:a8:ea:b5:a0:d2:7b:c4:0c:4e:4c: f1:79:4f:45:cd:19:c4:b2:04:36:81:de:f3:46:1d: 47:1e:a1:60:f9:ce:65:0c:cd:3c:60:8c:6c:a0:88: 0d:5a:8c:fb:15:3f:5d:03:e5:a6:cf:3c:46:b1:fc: 4c:cc:b1:5c:ad:a0:59:7e:19:61:d8:4a:b0:8e:0f: b8:35:ea:f4:bb:50:cc:6b:ef:60:a3:42:39:0c:bf: 18:0f:f1:2b:5d:de:e5:1b:03:43:3a:3b:98:7d:34: eb:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:22:91:E1:9D:CA:67:4C:A3:06:C6:5F:B7:A5:3B:AD:79:4A:A3:69 X509v3 Authority Key Identifier: keyid:C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:cc:cd:e6:b3:2b:fc:3f:0a:e5:11:14:3f:42:e2:c1:cd:92: d2:4d:b4:a8:7f:26:c6:e8:b1:51:02:0a:4d:e7:24:82:de:d1: 7e:14:28:7c:fb:d3:3a:cc:ee:f4:1d:56:e4:f2:93:01:d6:88: f8:e2:0e:15:8d:ae:b6:4b:9d:06:8b:8b:df:7b:b1:c9:85:63: d4:44:22:ae:0b:c3:1a:c5:68:d3:b4:77:d5:81:d6:84:f5:51: ed:57:17:bc:a9:03:5a:e5:51:37:53:74:64:08:1f:7a:41:06: 71:8a:df:92:5b:58:0c:b3:94:43:b8:cd:71:47:4c:5e:42:69: a4:e4:0e:83:d7:41:bf:e8:de:c4:e7:c7:ad:ab:a1:a6:f9:05: 3d:01:18:3a:45:75:38:64:d8:7d:b6:2a:21:f0:07:ff:07:b0: 51:8a:33:53:ac:f2:ed:14:44:03:50:b2:1d:67:59:e3:c6:72: 33:36:55:8d:3d:70:1d:02:ef:08:e2:87:dc:5c:55:e2:5e:4f: 5b:46:2b:21:e1:b9:47:6e:8b:ad:ff:f0:a9:06:7a:b5:0c:63: 76:1f:d1:68:ae:83:ad:91:01:6d:71:1e:21:34:67:a7:c3:38: 7c:d7:9c:7f:a5:4b:a3:cf:fd:e3:1e:b1:57:04:6f:69:09:12: 9e:89:23:19 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGNzMxMTAvBgNVBAUTKEM0MDVGMDYxRTMzQjA3MTdDOTA0RkMxREYzRTc5QkNE Nzk1MjBGQTYwHhcNMjYwMzI1MDI1NTE1WhcNMjYwNDAxMDI1NTE1WjAYMRYwFAYD VQQDEw02OWMzNGU5My0yMTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApsr4Z/BjWlbJ7JmGbhPWtfLIfgR3Z5f3pGIr4loP5ZAUSNRYfH6mKcMkuJq6 EyKAylUQ3O6SqklWbzmME/b5u9LqpYU1QS186n75aA2drHkARFevmY2IjqN0K/Gh vYsNqg3MqPSnYyPJBoHCjXUK1i9ms8EbiXHMoOEMDmvd2MrAlo3XinFpzC74IbSw k4wJzd2giFN8DApTC6jqtaDSe8QMTkzxeU9FzRnEsgQ2gd7zRh1HHqFg+c5lDM08 YIxsoIgNWoz7FT9dA+WmzzxGsfxMzLFcraBZfhlh2Eqwjg+4Ner0u1DMa+9go0I5 DL8YD/ErXd7lGwNDOjuYfTTrxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL0ikeGd ymdMowbGX7elO615SqNpMB8GA1UdIwQYMBaAFMQF8GHjOwcXyQT8HfPnm815Ug+m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUY3My9ENUZGMUY0MDVF NzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4ZkpCUHdkOC1lYnpYbFNE NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBWHdZZU03QnhmSkJQd2Q4LWVielhsU0Q2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUY3My9ENUZGMUY0MDVFNzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4 ZkpCUHdkOC1lYnpYbFNENlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAd8zN5rMr/D8K5REUP0Liwc2S0k20qH8mxuixUQIKTeckgt7RfhQofPvTOszu 9B1W5PKTAdaI+OIOFY2utkudBouL33uxyYVj1EQirgvDGsVo07R31YHWhPVR7VcX vKkDWuVRN1N0ZAgfekEGcYrfkltYDLOUQ7jNcUdMXkJppOQOg9dBv+jexOfHrauh pvkFPQEYOkV1OGTYfbYqIfAH/wewUYozU6zy7RREA1CyHWdZ48ZyMzZVjT1wHQLv COKH3FxV4l5PW0YrIeG5R26Lrf/wqQZ6tQxjdh/RaK6DrZEBbXEeITRnp8M4fNec f6VLo8/94x6xVwRvaQkSnokjGQ== -----END CERTIFICATE-----Generated at Thu Mar 26 02:37:23 2026 by rpki-client