$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.mft File: XTDuvxHkF41iO-G95Nu0y1nMhDc.mft (raw, json) Hash identifier: aTcd5UcMq7mHSH9HSPESlNdutjr22TG2ZxmxEdE1dRw= Subject key identifier: 40:2A:A9:8A:7A:18:51:62:3C:90:13:08:23:BE:2C:58:3A:80:88:F3 Authority key identifier: 5D:30:EE:BF:11:E4:17:8D:62:3B:E1:BD:E4:DB:B4:CB:59:CC:84:37 Certificate issuer: /CN=A91AB1C2/serialNumber=5D30EEBF11E4178D623BE1BDE4DBB4CB59CC8437 Certificate serial: 3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTDuvxHkF41iO-G95Nu0y1nMhDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.mft Manifest number: 39 Signing time: Wed 25 Mar 2026 07:48:53 +0000 Manifest this update: Wed 25 Mar 2026 07:48:52 +0000 Manifest next update: Wed 01 Apr 2026 07:48:52 +0000 Files and hashes: 1: XTDuvxHkF41iO-G95Nu0y1nMhDc.crl (hash: 79/+vUd0HF9tIHrjsRWi1O8jaybXgE8aXZAUgBr3P0I=) 2: 24992E62E0FC11F0B50D6A7D5F6F56BC.roa (hash: eAx7dd7W8IzFugozPftJzHrtY4Ej4f42CnK31HLLaRE=) 3: 253978EAE0FC11F0B50D6A7D5F6F56BC.roa (hash: 6RxldyO2/Y3wToEhzB/mHNRPtNgIGcUmqFl9NgQBrdA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.crl rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTDuvxHkF41iO-G95Nu0y1nMhDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:48:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB1C2, serialNumber=5D30EEBF11E4178D623BE1BDE4DBB4CB59CC8437 Validity Not Before: Mar 25 07:48:52 2026 GMT Not After : Apr 1 07:48:52 2026 GMT Subject: CN=69c39364-8356 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:63:8f:98:34:cd:47:7a:a3:f2:6d:d4:8f:98: eb:28:61:43:b7:69:7a:b9:91:cc:51:53:74:d1:f0: 0a:8c:07:0b:b6:e0:56:ce:79:1d:79:7a:32:ae:33: 3d:fd:d0:88:d8:c9:8d:f7:1b:7f:dc:31:2b:1a:1c: bf:eb:84:d6:49:7e:2b:7a:40:e4:8e:ba:1c:b5:e1: 1e:71:75:03:2e:91:a7:24:6b:4f:d5:23:b4:10:b5: 59:ec:b2:42:fe:11:6f:ac:53:13:a2:b8:db:37:32: ed:7a:ae:c3:83:ca:24:e5:ca:f2:62:69:0a:de:4b: 8d:31:24:59:9b:9b:ab:e5:bc:c2:45:a0:45:cb:d5: d6:8d:e2:d8:0e:e8:05:86:1d:cc:86:e1:44:01:d5: 60:94:3f:c8:2f:fe:e7:88:3d:7e:e8:b4:06:73:13: bb:61:21:41:81:92:0b:c7:e9:20:a1:60:c4:8b:c5: 2b:18:d5:ba:41:15:16:dd:9d:3c:4e:f4:63:00:d9: b7:1f:dc:69:1d:d2:46:bb:c5:9b:59:57:56:9d:6d: 95:b0:02:3e:6d:93:63:28:39:f7:3a:32:7d:2c:d5: a9:81:9c:03:97:c6:82:b3:ab:f3:6e:13:98:e7:cb: 7c:bc:01:6f:4e:85:25:f2:9a:cb:8f:4e:3d:0c:7d: 78:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:2A:A9:8A:7A:18:51:62:3C:90:13:08:23:BE:2C:58:3A:80:88:F3 X509v3 Authority Key Identifier: keyid:5D:30:EE:BF:11:E4:17:8D:62:3B:E1:BD:E4:DB:B4:CB:59:CC:84:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTDuvxHkF41iO-G95Nu0y1nMhDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:71:40:96:01:2c:07:84:61:a1:22:85:81:bb:9a:1e:00:f4: be:5c:b9:78:e1:a3:ef:2a:7f:26:48:79:d7:b6:18:cc:d1:0d: f1:9c:6b:72:eb:cb:0e:ed:62:77:ad:ea:86:c9:33:ae:9b:6d: 57:c0:dc:13:4e:ab:92:f3:e7:3b:03:79:77:f2:fa:27:b8:04: 9f:72:92:d5:0d:c5:7f:6d:f0:3f:a6:41:d7:cd:a5:14:62:51: b7:31:34:3f:fd:bc:8c:9e:6c:18:59:4a:68:da:e3:e4:a3:21: 0c:fd:8a:d4:45:9c:42:e6:32:b7:28:fa:b4:c2:51:f5:ae:19: 0d:49:f5:f0:a1:2d:52:9a:de:b9:ae:0c:cb:1a:c3:4c:ae:84: d1:91:c8:48:b8:00:65:8a:0d:ae:c1:1e:5c:57:6f:d6:0f:08: b8:fb:31:41:d2:51:ac:d2:87:76:80:5e:d2:51:d4:f3:c1:44: 84:a8:8c:4c:05:5d:d6:b5:48:2c:a6:c9:23:b9:04:17:6a:01: 93:32:9f:b8:fb:1e:46:eb:3e:f6:51:47:e6:57:b3:3f:e5:d7: f6:da:bb:d4:de:28:fa:b5:c6:2b:a1:ff:c7:8b:9c:2f:33:16: e0:9d:13:c5:ef:40:bd:5c:9e:7a:42:f3:07:c0:26:c9:5a:5c: dd:f3:8a:97 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QjFDMjExMC8GA1UEBRMoNUQzMEVFQkYxMUU0MTc4RDYyM0JFMUJERTREQkI0Q0I1 OUNDODQzNzAeFw0yNjAzMjUwNzQ4NTJaFw0yNjA0MDEwNzQ4NTJaMBgxFjAUBgNV BAMTDTY5YzM5MzY0LTgzNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZY4+YNM1HeqPybdSPmOsoYUO3aXq5kcxRU3TR8AqMBwu24FbOeR15ejKuMz39 0IjYyY33G3/cMSsaHL/rhNZJfit6QOSOuhy14R5xdQMukacka0/VI7QQtVnsskL+ EW+sUxOiuNs3Mu16rsODyiTlyvJiaQreS40xJFmbm6vlvMJFoEXL1daN4tgO6AWG HcyG4UQB1WCUP8gv/ueIPX7otAZzE7thIUGBkgvH6SChYMSLxSsY1bpBFRbdnTxO 9GMA2bcf3Gkd0ka7xZtZV1adbZWwAj5tk2MoOfc6Mn0s1amBnAOXxoKzq/NuE5jn y3y8AW9OhSXymsuPTj0MfXjdAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUQCqpinoY UWI8kBMII74sWDqAiPMwHwYDVR0jBBgwFoAUXTDuvxHkF41iO+G95Nu0y1nMhDcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFCMUMyLzBGOTEwNzU0RENB MzExRjA4NUQ2RjE1QjQzNkY1NkJDL1hURHV2eEhrRjQxaU8tRzk1TnUweTFuTWhE Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWFREdXZ4SGtGNDFpTy1HOTVOdTB5MW5NaERjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFC MUMyLzBGOTEwNzU0RENBMzExRjA4NUQ2RjE1QjQzNkY1NkJDL1hURHV2eEhrRjQx aU8tRzk1TnUweTFuTWhEYy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBMcUCWASwHhGGhIoWBu5oeAPS+XLl44aPvKn8mSHnXthjM0Q3xnGty68sO7WJ3 reqGyTOum21XwNwTTquS8+c7A3l38vonuASfcpLVDcV/bfA/pkHXzaUUYlG3MTQ/ /byMnmwYWUpo2uPkoyEM/YrURZxC5jK3KPq0wlH1rhkNSfXwoS1Smt65rgzLGsNM roTRkchIuABlig2uwR5cV2/WDwi4+zFB0lGs0od2gF7SUdTzwUSEqIxMBV3WtUgs pskjuQQXagGTMp+4+x5G6z72UUfmV7M/5df22rvU3ij6tcYrof/Hi5wvMxbgnRPF 70C9XJ56QvMHwCbJWlzd84qX -----END CERTIFICATE-----Generated at Thu Mar 26 20:09:47 2026 by rpki-client