$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft File: XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft (raw, json) Hash identifier: HYAg0guizjSOJMc0D5KRhSUhkIqN2mTPt7VC4ERQF78= Subject key identifier: 4B:B9:E6:15:FD:E0:40:56:F6:61:40:65:4B:D2:FA:A0:4F:B7:58:FD Authority key identifier: 5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 Certificate issuer: /CN=A91B23B3/serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Certificate serial: 0A58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft Manifest number: 0A2F Signing time: Tue 24 Mar 2026 19:33:59 +0000 Manifest this update: Tue 24 Mar 2026 19:33:59 +0000 Manifest next update: Tue 31 Mar 2026 19:33:59 +0000 Files and hashes: 1: XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl (hash: 8s/KrVqImtrMh3WTM7eDiOE9KajvdrGGe5E22OoZDqE=) 2: 2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa (hash: 72DcOTbzZF7+TCywcpXepZonikbAwf9INnwgkXqBzAU=) 3: 3818D9A09A9011EFB14F1729C4F9AE02.roa (hash: WPLajparplJU8xXoLqj3sJQqQv2qTK7SmIP3Bri0gcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:33:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2648 (0xa58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23B3, serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Validity Not Before: Mar 24 19:33:59 2026 GMT Not After : Mar 31 19:33:59 2026 GMT Subject: CN=69c2e727-a528 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f4:40:fa:a5:49:ed:e3:e9:f5:1b:cd:89:28: 59:34:a6:33:1b:c1:fc:fe:3d:6e:16:31:25:4f:d2: 95:b1:22:35:28:dc:61:b6:e2:71:2a:b7:85:a7:fc: e9:15:c3:48:76:c5:68:f0:7f:a2:dc:a6:6d:94:b1: 45:eb:d9:61:a1:77:95:4b:1a:b9:65:a7:0e:41:3d: ee:0b:b9:ab:f6:98:ca:c1:d7:56:4d:7e:70:0e:82: 49:0f:9e:f0:39:46:d6:97:c4:62:ce:30:aa:0c:d8: f9:81:70:6c:8c:f6:46:a6:f5:28:c4:5c:56:b4:46: 4f:19:dd:e7:7f:d3:1f:b1:4f:b3:b4:9d:70:17:72: f7:25:23:ee:18:14:85:af:5b:8d:3a:c5:8a:9c:3f: e4:a8:64:2c:92:db:7c:9e:58:9c:d5:b9:20:93:f4: 37:9d:e2:11:08:3c:90:48:82:95:72:9d:02:6d:d8: 30:9b:77:66:9c:1d:1f:e9:eb:68:27:1b:94:30:49: a7:74:a6:0b:78:fb:cc:33:11:71:85:00:cb:97:7d: 84:f9:08:49:39:33:91:be:5b:cd:d8:2f:f2:0d:30: 69:0c:43:36:c5:88:64:fc:73:5d:57:e7:69:05:42: 17:b6:4f:5f:81:d8:d0:74:ba:f1:1c:21:43:93:0f: 44:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:B9:E6:15:FD:E0:40:56:F6:61:40:65:4B:D2:FA:A0:4F:B7:58:FD X509v3 Authority Key Identifier: keyid:5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:fa:da:60:ba:bc:5b:fa:03:e3:42:c6:cb:c2:76:ed:4d:1e: 1f:c5:86:95:d3:6d:31:f8:14:45:4d:6a:ca:e3:41:d6:aa:ce: 15:f6:1b:b1:a0:72:5c:45:81:4f:70:f3:18:a0:fa:a1:b8:60: 6a:a4:02:17:96:d8:9e:54:7f:5e:40:23:a2:15:d8:f3:d2:0f: a8:82:6e:33:17:88:81:da:34:b7:7b:b5:f2:7f:3a:03:23:d7: 52:22:6d:06:78:57:16:13:6a:b7:63:cc:f8:83:12:3c:56:64: f8:36:59:3b:a9:5d:de:e0:62:70:3a:e8:f2:41:4a:79:ec:bb: ce:0d:4a:bf:14:ca:19:65:0f:c3:c2:56:e2:64:7b:f7:b2:8e: b9:c8:71:65:30:52:63:ed:ec:39:4e:24:81:a8:96:8e:47:8a: ec:32:65:af:20:44:65:09:a5:a6:05:a7:e2:39:2c:95:99:8a: 23:4a:90:33:68:a8:64:59:d5:5b:8c:53:b3:bf:6e:89:08:9f: fd:e7:d6:01:f9:3b:ed:df:f4:70:f7:5b:70:bf:46:9d:ab:e3: a9:9a:b9:09:37:d5:60:76:d1:f5:9e:fb:db:7c:8c:7b:49:7e: f8:09:e6:0f:77:df:b6:f5:68:23:82:51:8f:89:24:02:50:e0: 5e:ba:ab:dd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICClgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIzQjMxMTAvBgNVBAUTKDVDMzY4NDM5Q0JDNUY1QTQ1NzE1RDY0NzZCRUFBNjY4 NkQwOTUxQjEwHhcNMjYwMzI0MTkzMzU5WhcNMjYwMzMxMTkzMzU5WjAYMRYwFAYD VQQDEw02OWMyZTcyNy1hNTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfRA+qVJ7ePp9RvNiShZNKYzG8H8/j1uFjElT9KVsSI1KNxhtuJxKreFp/zp FcNIdsVo8H+i3KZtlLFF69lhoXeVSxq5ZacOQT3uC7mr9pjKwddWTX5wDoJJD57w OUbWl8RizjCqDNj5gXBsjPZGpvUoxFxWtEZPGd3nf9MfsU+ztJ1wF3L3JSPuGBSF r1uNOsWKnD/kqGQsktt8nlic1bkgk/Q3neIRCDyQSIKVcp0Cbdgwm3dmnB0f6eto JxuUMEmndKYLePvMMxFxhQDLl32E+QhJOTORvlvN2C/yDTBpDEM2xYhk/HNdV+dp BUIXtk9fgdjQdLrxHCFDkw9EVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEu55hX9 4EBW9mFAZUvS+qBPt1j9MB8GA1UdIwQYMBaAFFw2hDnLxfWkVxXWR2vqpmhtCVGx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjNCMy9FNjQ2NUExMDhF OTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2RjlhUlhGZFpIYS1xbWFHMEpV YkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEYUVPY3ZGOWFSWEZkWkhhLXFtYUcwSlViRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjNCMy9FNjQ2NUExMDhFOTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2Rjlh UlhGZFpIYS1xbWFHMEpVYkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmfraYLq8W/oD40LGy8J27U0eH8WGldNtMfgURU1qyuNB1qrOFfYbsaByXEWB T3DzGKD6obhgaqQCF5bYnlR/XkAjohXY89IPqIJuMxeIgdo0t3u18n86AyPXUiJt BnhXFhNqt2PM+IMSPFZk+DZZO6ld3uBicDro8kFKeey7zg1KvxTKGWUPw8JW4mR7 97KOuchxZTBSY+3sOU4kgaiWjkeK7DJlryBEZQmlpgWn4jkslZmKI0qQM2ioZFnV W4xTs79uiQif/efWAfk77d/0cPdbcL9GnavjqZq5CTfVYHbR9Z7723yMe0l++Anm D3fftvVoI4JRj4kkAlDgXrqr3Q== -----END CERTIFICATE-----Generated at Thu Mar 26 02:17:37 2026 by rpki-client