$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft File: XdRoWi6WsUFvfNM1zetK0YIvfes.mft (raw, json) Hash identifier: RnNSk0FTyWEDfI3k8kLVCZeqaWhuvk9zBVZ8bPDh10Y= Subject key identifier: C1:5A:A8:5B:AE:4F:3E:E7:53:7A:7E:2A:F5:60:AE:01:C6:B1:6A:1C Authority key identifier: 5D:D4:68:5A:2E:96:B1:41:6F:7C:D3:35:CD:EB:4A:D1:82:2F:7D:EB Certificate issuer: /CN=A91AF01C/serialNumber=5DD4685A2E96B1416F7CD335CDEB4AD1822F7DEB Certificate serial: 0225 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft Manifest number: 021C Signing time: Wed 25 Mar 2026 02:15:36 +0000 Manifest this update: Wed 25 Mar 2026 02:15:35 +0000 Manifest next update: Wed 01 Apr 2026 02:15:35 +0000 Files and hashes: 1: XdRoWi6WsUFvfNM1zetK0YIvfes.crl (hash: twHkvVwhs1P2xMiccEiQ5G7Ep1Ne5k/SUbtxH825JAU=) 2: 3474AD64FAD311ED9CEE0E29C4F9AE02.roa (hash: FBiK3jMFORAxcsSdpQP7q8Wx8eDul+Eyz34pvhVQP2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.crl rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:15:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 549 (0x225) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF01C, serialNumber=5DD4685A2E96B1416F7CD335CDEB4AD1822F7DEB Validity Not Before: Mar 25 02:15:35 2026 GMT Not After : Apr 1 02:15:35 2026 GMT Subject: CN=69c34547-bdee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:42:50:dd:71:b5:0c:b0:eb:42:02:a9:a6:6d: e3:65:2c:19:a3:56:e4:48:7a:9b:6d:ef:8e:5e:6c: 34:5f:64:dd:97:39:e6:0b:f7:48:c0:97:b3:22:34: 94:af:7d:5f:75:7f:dc:a4:c1:c6:1c:a8:ab:6c:70: a9:62:27:c6:03:a2:8e:0d:36:c0:2d:ee:09:00:38: fb:a8:83:55:4f:92:20:7a:4f:ea:85:6d:7a:6f:f9: 2c:ab:f5:a1:39:f4:ee:89:97:9f:c2:5b:d9:13:c5: c9:a4:e6:89:1f:24:6e:49:0c:ec:f8:35:fd:39:1d: 58:c3:38:69:a1:2b:50:4d:96:1c:ca:55:a3:1f:f7: 98:ad:cd:69:f6:9c:7b:cd:da:6a:7f:e1:8e:5f:5c: ca:1b:63:7f:31:af:5d:28:06:69:32:ab:de:be:84: cc:2e:44:37:b7:74:74:80:dd:29:59:b0:d0:de:c6: 7f:be:3b:6c:09:fa:8b:83:37:d0:0b:a6:f8:ff:4a: 28:6d:90:ac:83:ff:b2:6a:0f:27:a9:0a:df:9c:6a: 1d:83:58:ec:c1:06:13:ec:cb:b0:52:8b:d9:1c:cd: 67:32:a8:bd:db:f6:24:3f:fb:a3:56:bc:aa:80:dd: 07:58:eb:99:4f:fb:fe:7b:3c:20:91:be:f0:b9:f1: 98:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:5A:A8:5B:AE:4F:3E:E7:53:7A:7E:2A:F5:60:AE:01:C6:B1:6A:1C X509v3 Authority Key Identifier: keyid:5D:D4:68:5A:2E:96:B1:41:6F:7C:D3:35:CD:EB:4A:D1:82:2F:7D:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:73:ce:88:a3:0a:53:75:68:0c:93:0e:49:d4:e9:e2:d4:52: 99:49:09:ca:b0:0c:3a:c1:e5:4e:95:03:3f:26:a4:6d:70:4c: 52:39:45:e0:f3:6e:8b:c6:ec:c5:e2:74:5b:33:71:41:07:32: a0:d4:26:59:f2:83:07:73:e6:ea:e0:9b:81:75:73:e3:f9:cf: 07:66:0e:71:8a:fb:3f:d9:2c:8d:96:54:7e:5b:be:c6:e0:04: b8:95:36:94:10:58:bd:fe:51:73:7b:13:98:0e:42:08:ac:db: 97:26:fa:a8:4e:ab:e7:d3:79:91:eb:f4:15:00:b6:c7:9f:e7: c7:63:83:4f:88:51:91:6a:3e:9f:97:23:83:12:08:65:0a:3d: 2b:58:31:6e:cf:bf:55:c2:3f:ae:7c:f6:ba:d3:7d:a1:ae:01: 04:a5:a8:55:ab:8d:1b:14:fa:56:a1:c9:c5:97:b5:cf:ca:a9: f9:18:81:f9:21:98:a1:0f:bb:a8:af:17:31:05:af:91:7e:70: 55:60:36:4e:fb:b0:df:fd:82:c5:da:f2:1f:c5:6f:9a:7a:dd: f6:de:35:41:a5:3a:7e:1a:84:b6:a5:94:ed:c6:f2:85:95:6c: 5b:d4:22:81:12:80:88:25:8c:e2:23:f8:57:88:57:2a:19:f2: f1:80:d2:6f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwMUMxMTAvBgNVBAUTKDVERDQ2ODVBMkU5NkIxNDE2RjdDRDMzNUNERUI0QUQx ODIyRjdERUIwHhcNMjYwMzI1MDIxNTM1WhcNMjYwNDAxMDIxNTM1WjAYMRYwFAYD VQQDEw02OWMzNDU0Ny1iZGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEJQ3XG1DLDrQgKppm3jZSwZo1bkSHqbbe+OXmw0X2TdlznmC/dIwJezIjSU r31fdX/cpMHGHKirbHCpYifGA6KODTbALe4JADj7qINVT5Igek/qhW16b/ksq/Wh OfTuiZefwlvZE8XJpOaJHyRuSQzs+DX9OR1YwzhpoStQTZYcylWjH/eYrc1p9px7 zdpqf+GOX1zKG2N/Ma9dKAZpMqvevoTMLkQ3t3R0gN0pWbDQ3sZ/vjtsCfqLgzfQ C6b4/0oobZCsg/+yag8nqQrfnGodg1jswQYT7MuwUovZHM1nMqi92/YkP/ujVryq gN0HWOuZT/v+ezwgkb7wufGYEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMFaqFuu Tz7nU3p+KvVgrgHGsWocMB8GA1UdIwQYMBaAFF3UaFoulrFBb3zTNc3rStGCL33r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjAxQy9FNUQ5RTczNEZB Q0IxMUVEQjhGOTdEODVDNEY5QUUwMi9YZFJvV2k2V3NVRnZmTk0xemV0SzBZSXZm ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hkUm9XaTZXc1VGdmZOTTF6ZXRLMFlJdmZlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjAxQy9FNUQ5RTczNEZBQ0IxMUVEQjhGOTdEODVDNEY5QUUwMi9YZFJvV2k2V3NV RnZmTk0xemV0SzBZSXZmZXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnXPOiKMKU3VoDJMOSdTp4tRSmUkJyrAMOsHlTpUDPyakbXBMUjlF4PNui8bs xeJ0WzNxQQcyoNQmWfKDB3Pm6uCbgXVz4/nPB2YOcYr7P9ksjZZUflu+xuAEuJU2 lBBYvf5Rc3sTmA5CCKzblyb6qE6r59N5kev0FQC2x5/nx2ODT4hRkWo+n5cjgxII ZQo9K1gxbs+/VcI/rnz2utN9oa4BBKWoVauNGxT6VqHJxZe1z8qp+RiB+SGYoQ+7 qK8XMQWvkX5wVWA2Tvuw3/2CxdryH8Vvmnrd9t41QaU6fhqEtqWU7cbyhZVsW9Qi gRKAiCWM4iP4V4hXKhny8YDSbw== -----END CERTIFICATE-----Generated at Thu Mar 26 04:12:07 2026 by rpki-client