$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft File: xgie68VWt39k5EJJpouV1b2UHkA.mft (raw, json) Hash identifier: iybh6vI9nbrjfB4L7WzNPOBc2nYID3qrPIaEZ5MUx+U= Subject key identifier: D9:39:F9:AC:24:2F:F1:D3:A8:28:95:98:BD:B3:64:E0:40:F6:B9:A2 Authority key identifier: C6:08:9E:EB:C5:56:B7:7F:64:E4:42:49:A6:8B:95:D5:BD:94:1E:40 Certificate issuer: /CN=A91ADFD3/serialNumber=C6089EEBC556B77F64E44249A68B95D5BD941E40 Certificate serial: 23D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft Manifest number: 23A2 Signing time: Tue 24 Mar 2026 15:45:35 +0000 Manifest this update: Tue 24 Mar 2026 15:45:35 +0000 Manifest next update: Tue 31 Mar 2026 15:45:35 +0000 Files and hashes: 1: xgie68VWt39k5EJJpouV1b2UHkA.crl (hash: 7QtgXFR9GHdcJgXb57R/zPX0PDK+vbHdR6Ximpl7IuY=) 2: 678DA8FE59D211EAB77C8C13C4F9AE02.roa (hash: uilr/VzadspQ9DLCCiVVicEIdw3R/zCYDu3WsWsjhCg=) 3: 6880FA2C59D211EAB77C8C13C4F9AE02.roa (hash: hJzT/XLLbMceVkg1RnXkgd5dOl16o+CTb6P8jS+3k+A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.crl rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:45:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9174 (0x23d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADFD3, serialNumber=C6089EEBC556B77F64E44249A68B95D5BD941E40 Validity Not Before: Mar 24 15:45:35 2026 GMT Not After : Mar 31 15:45:35 2026 GMT Subject: CN=69c2b19f-a20e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:fd:5d:3f:9b:aa:f4:52:81:fb:e4:54:90:80: 7d:21:7c:16:8c:5c:52:61:bd:13:3e:bd:08:db:e9: 9c:d7:a3:e7:22:c2:3f:ac:79:2b:a0:d5:a8:fb:c4: 0e:a1:df:33:25:c7:a8:b6:98:fd:9a:60:2d:af:e9: 2e:db:24:d3:f7:79:8f:fc:ef:d2:12:d7:f4:1f:a0: 99:af:7f:a5:e6:25:8b:a6:4e:58:e9:b0:40:1f:83: ac:93:a7:c8:2c:b5:57:32:ae:56:06:53:a0:59:c1: a9:96:36:6c:c4:10:11:ce:17:cb:72:c5:61:1f:85: d7:16:16:2e:ca:3d:5a:b0:77:b0:c4:01:89:d8:15: d7:b4:08:37:26:76:76:a9:f9:60:02:ba:3a:f8:ce: 8f:33:b7:56:57:84:ea:f3:ff:cf:13:f5:2e:b5:c1: ab:69:ba:29:58:20:3b:00:dd:86:a0:9a:24:65:a2: 03:cc:9e:ce:a3:2c:16:f6:4a:e5:32:d6:f3:44:11: d6:03:55:73:9a:d6:d1:62:94:a5:3f:45:d5:38:df: b2:29:87:6a:e3:4e:03:f2:24:a0:b7:02:13:84:cb: 49:ba:52:d2:62:b3:cc:de:64:c2:dd:f9:75:d0:3c: 30:8b:51:2c:4b:59:4d:11:63:87:88:3e:2b:31:c7: 29:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:39:F9:AC:24:2F:F1:D3:A8:28:95:98:BD:B3:64:E0:40:F6:B9:A2 X509v3 Authority Key Identifier: keyid:C6:08:9E:EB:C5:56:B7:7F:64:E4:42:49:A6:8B:95:D5:BD:94:1E:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:8c:e8:86:1d:8b:02:e2:dd:3e:5b:9d:c5:16:a9:89:53:b8: 66:f6:73:9c:6b:f6:c5:82:37:8f:ea:14:c5:d1:c7:c1:cb:b3: a7:12:c1:aa:4c:39:1c:30:ab:52:bd:81:31:37:61:cc:0b:4c: 24:7a:4d:33:f9:de:f9:82:c0:f8:c9:37:24:81:9f:f8:a8:f9: 9e:75:5c:c8:ea:ce:72:7f:35:fa:83:4e:b4:53:66:bb:61:88: 4e:cd:5b:c0:62:d3:aa:bc:04:8c:40:c7:51:b7:9f:4a:92:d5: e1:6f:f5:20:12:77:53:d9:ff:0c:18:cf:1e:63:ba:1c:fd:49: 4d:ff:0c:ff:9b:fc:bb:55:aa:52:73:0d:9a:af:84:e2:b2:9b: d3:3a:37:04:9e:2c:51:c0:89:93:e5:f9:96:8d:99:be:fd:6f: 3f:13:5e:28:99:06:7c:2c:f6:86:6a:06:70:9e:14:c4:68:2c: 0f:42:4a:55:bd:6c:a9:5d:7f:5a:3b:bc:d4:d0:fd:10:dc:7f: d1:18:9e:1a:f0:8a:60:50:26:d0:66:4c:ec:cc:18:91:ab:a0: c4:1a:98:71:ec:41:8a:b9:ae:fb:e1:ea:a0:65:42:ff:07:88: bd:35:e5:ee:28:06:75:cd:b3:3d:3f:5c:72:b3:71:8e:59:d7: bd:55:af:d9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICI9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURGRDMxMTAvBgNVBAUTKEM2MDg5RUVCQzU1NkI3N0Y2NEU0NDI0OUE2OEI5NUQ1 QkQ5NDFFNDAwHhcNMjYwMzI0MTU0NTM1WhcNMjYwMzMxMTU0NTM1WjAYMRYwFAYD VQQDEw02OWMyYjE5Zi1hMjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2v1dP5uq9FKB++RUkIB9IXwWjFxSYb0TPr0I2+mc16PnIsI/rHkroNWo+8QO od8zJceotpj9mmAtr+ku2yTT93mP/O/SEtf0H6CZr3+l5iWLpk5Y6bBAH4Osk6fI LLVXMq5WBlOgWcGpljZsxBARzhfLcsVhH4XXFhYuyj1asHewxAGJ2BXXtAg3JnZ2 qflgAro6+M6PM7dWV4Tq8//PE/UutcGrabopWCA7AN2GoJokZaIDzJ7OoywW9krl MtbzRBHWA1VzmtbRYpSlP0XVON+yKYdq404D8iSgtwIThMtJulLSYrPM3mTC3fl1 0Dwwi1EsS1lNEWOHiD4rMccpcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNk5+awk L/HTqCiVmL2zZOBA9rmiMB8GA1UdIwQYMBaAFMYInuvFVrd/ZORCSaaLldW9lB5A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREZEMy8xRkQxQThCRTk0 ODYxMUU1QUUwQzhCNzJDNEY5QUUwMi94Z2llNjhWV3QzOWs1RUpKcG91VjFiMlVI a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hnaWU2OFZXdDM5azVFSkpwb3VWMWIyVUhrQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB REZEMy8xRkQxQThCRTk0ODYxMUU1QUUwQzhCNzJDNEY5QUUwMi94Z2llNjhWV3Qz OWs1RUpKcG91VjFiMlVIa0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmIzohh2LAuLdPludxRapiVO4ZvZznGv2xYI3j+oUxdHHwcuzpxLBqkw5HDCr Ur2BMTdhzAtMJHpNM/ne+YLA+Mk3JIGf+Kj5nnVcyOrOcn81+oNOtFNmu2GITs1b wGLTqrwEjEDHUbefSpLV4W/1IBJ3U9n/DBjPHmO6HP1JTf8M/5v8u1WqUnMNmq+E 4rKb0zo3BJ4sUcCJk+X5lo2Zvv1vPxNeKJkGfCz2hmoGcJ4UxGgsD0JKVb1sqV1/ Wju81ND9ENx/0RieGvCKYFAm0GZM7MwYkaugxBqYcexBirmu++HqoGVC/weIvTXl 7igGdc2zPT9ccrNxjlnXvVWv2Q== -----END CERTIFICATE-----Generated at Thu Mar 26 06:23:41 2026 by rpki-client