$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft File: XAo1I_02RadjWvJRmtzQAuEy-84.mft (raw, json) Hash identifier: 3bxEsE9l5V0cEXwF3vjTBj6TOOKUHJIreJhdjiiuuOQ= Subject key identifier: A5:5F:90:7B:7F:40:99:DB:13:EA:7F:68:B3:11:0E:5F:82:DA:1F:5D Authority key identifier: 5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE Certificate issuer: /CN=A91B0F90/serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft Manifest number: DA Signing time: Wed 25 Mar 2026 05:58:42 +0000 Manifest this update: Wed 25 Mar 2026 05:58:42 +0000 Manifest next update: Wed 01 Apr 2026 05:58:42 +0000 Files and hashes: 1: XAo1I_02RadjWvJRmtzQAuEy-84.crl (hash: v0ovxh2aCOpczJEr3Mz7XL36J7A2EmSUadTEmDmdCa4=) 2: 304DD002EFAB11EF97C9610FC4F9AE02.roa (hash: t1JjvZDB24X6k3Mu8SErmmJoER7kOsUM0Jx228MJLJ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:58:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0F90, serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Validity Not Before: Mar 25 05:58:42 2026 GMT Not After : Apr 1 05:58:42 2026 GMT Subject: CN=69c37992-a35e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:50:9a:d9:1d:ba:68:f2:b6:ff:9b:f3:fa:aa: 84:2f:1e:89:3f:01:13:b1:f8:3d:87:44:c5:df:23: cc:60:19:d8:65:54:07:80:1b:2b:cc:ca:e8:ef:fc: 34:03:f4:d9:05:91:c7:7f:51:67:5f:a1:65:26:91: 2f:3d:5c:4c:ca:13:03:65:55:b1:9c:fc:ec:e1:7f: 8e:c5:64:6c:eb:1c:27:f6:57:aa:89:04:6c:5d:72: 71:56:56:75:c1:da:3a:09:23:f9:88:b3:a9:5b:08: 5e:99:c3:72:33:ae:30:f2:01:0f:e1:52:ad:fc:1a: f6:f5:22:8c:3d:07:84:46:dc:61:dd:94:12:23:d8: bd:ce:54:26:48:d6:b6:90:07:0e:04:77:11:bb:e2: bc:14:61:02:a8:84:43:18:f8:32:53:12:d5:05:ba: 33:29:05:f4:67:1c:c9:ac:cb:27:d1:fb:0d:93:35: 76:f9:4f:f4:9a:12:a2:e9:41:d8:bb:34:f1:8e:5a: b4:a5:04:ab:16:ac:ba:b2:14:61:ef:59:6f:57:ff: 8d:93:b0:5d:c2:67:e4:b2:f8:3f:e7:31:d5:bd:0e: 9e:9b:6b:ca:22:4d:1c:ea:28:79:ea:2e:a6:3b:9b: d4:18:e6:2f:08:57:7a:ad:bf:ae:4f:9b:88:54:c4: a1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:5F:90:7B:7F:40:99:DB:13:EA:7F:68:B3:11:0E:5F:82:DA:1F:5D X509v3 Authority Key Identifier: keyid:5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:c3:ae:2c:ed:eb:b9:59:3f:ea:a1:3e:6e:aa:ea:0d:4f:bc: 1d:99:9f:a4:44:6d:82:98:a0:3d:dd:4f:1c:44:7d:58:67:67: 5d:2e:ae:cf:f4:59:c7:00:ba:9f:86:ac:6d:65:e9:e9:f5:06: a1:36:f4:82:ad:61:f0:0d:d5:8a:71:e8:14:4b:fc:97:1b:3b: 27:7f:ff:bb:5d:25:f3:6b:b3:92:c1:c5:99:ad:ff:f2:61:d2: 63:15:87:e5:27:b9:fe:ea:51:27:fc:91:5f:8c:0b:92:91:e7: b7:43:2c:8c:ca:60:03:1d:cf:28:3b:95:9e:b8:b1:37:1f:64: d8:9c:55:df:cf:91:b4:d3:25:59:a5:2d:fe:61:4a:2c:05:6c: a3:17:eb:0b:be:b0:60:04:6c:db:d2:0c:a1:c2:43:40:23:be: 83:db:1b:37:5f:b3:a2:60:78:65:05:39:33:30:d7:5f:93:cc: b6:88:0b:d8:5e:46:37:b1:c6:15:fd:04:11:67:ca:5a:ec:df: 8c:91:fe:2f:44:0f:64:21:77:54:bc:60:f7:9d:84:df:50:3d: c3:b7:53:84:91:49:1c:d1:40:67:b1:1e:cd:fa:8d:92:57:a8: b2:d1:7c:02:c1:44:b0:60:66:76:02:2c:3c:d4:8a:50:6d:64: 79:f7:43:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBGOTAxMTAvBgNVBAUTKDVDMEEzNTIzRkQzNjQ1QTc2MzVBRjI1MTlBRENEMDAy RTEzMkZCQ0UwHhcNMjYwMzI1MDU1ODQyWhcNMjYwNDAxMDU1ODQyWjAYMRYwFAYD VQQDEw02OWMzNzk5Mi1hMzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFCa2R26aPK2/5vz+qqELx6JPwETsfg9h0TF3yPMYBnYZVQHgBsrzMro7/w0 A/TZBZHHf1FnX6FlJpEvPVxMyhMDZVWxnPzs4X+OxWRs6xwn9leqiQRsXXJxVlZ1 wdo6CSP5iLOpWwhemcNyM64w8gEP4VKt/Br29SKMPQeERtxh3ZQSI9i9zlQmSNa2 kAcOBHcRu+K8FGECqIRDGPgyUxLVBbozKQX0ZxzJrMsn0fsNkzV2+U/0mhKi6UHY uzTxjlq0pQSrFqy6shRh71lvV/+Nk7Bdwmfksvg/5zHVvQ6em2vKIk0c6ih56i6m O5vUGOYvCFd6rb+uT5uIVMShSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKVfkHt/ QJnbE+p/aLMRDl+C2h9dMB8GA1UdIwQYMBaAFFwKNSP9NkWnY1ryUZrc0ALhMvvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEY5MC8wNDc3OUI5Q0VE ODExMUVGQTAwMzY2MTZDNEY5QUUwMi9YQW8xSV8wMlJhZGpXdkpSbXR6UUF1RXkt ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBbzFJXzAyUmFkald2SlJtdHpRQXVFeS04NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MEY5MC8wNDc3OUI5Q0VEODExMUVGQTAwMzY2MTZDNEY5QUUwMi9YQW8xSV8wMlJh ZGpXdkpSbXR6UUF1RXktODQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAosOuLO3ruVk/6qE+bqrqDU+8HZmfpERtgpigPd1PHER9WGdnXS6uz/RZxwC6 n4asbWXp6fUGoTb0gq1h8A3VinHoFEv8lxs7J3//u10l82uzksHFma3/8mHSYxWH 5Se5/upRJ/yRX4wLkpHnt0MsjMpgAx3PKDuVnrixNx9k2JxV38+RtNMlWaUt/mFK LAVsoxfrC76wYARs29IMocJDQCO+g9sbN1+zomB4ZQU5MzDXX5PMtogL2F5GN7HG Ff0EEWfKWuzfjJH+L0QPZCF3VLxg952E31A9w7dThJFJHNFAZ7EezfqNkleostF8 AsFEsGBmdgIsPNSKUG1kefdDyw== -----END CERTIFICATE-----Generated at Thu Mar 26 17:50:51 2026 by rpki-client