$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft File: xHENSLTk8rc1vksbXJDtuI0mmyw.mft (raw, json) Hash identifier: 2WNWGUgayXrFyq/9w0cB5XlgRXnkTok55KkFR4Ov9fU= Subject key identifier: 68:7C:5A:29:8B:5F:44:52:C1:3F:B1:BE:42:29:1F:E1:88:2B:FC:5B Authority key identifier: C4:71:0D:48:B4:E4:F2:B7:35:BE:4B:1B:5C:90:ED:B8:8D:26:9B:2C Certificate issuer: /CN=A91BC2E3/serialNumber=C4710D48B4E4F2B735BE4B1B5C90EDB88D269B2C Certificate serial: 0269 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHENSLTk8rc1vksbXJDtuI0mmyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft Manifest number: 025E Signing time: Wed 25 Mar 2026 01:36:08 +0000 Manifest this update: Wed 25 Mar 2026 01:36:07 +0000 Manifest next update: Wed 01 Apr 2026 01:36:07 +0000 Files and hashes: 1: xHENSLTk8rc1vksbXJDtuI0mmyw.crl (hash: yWsKegVNpefOmDgqpU3w0rCPrRi6x1y/ecaOmyDAkdc=) 2: 0DC2D3EC8D7A11EDBFA7C381C4F9AE02.roa (hash: caBGpQ3sxKtg4mxskMeTrM5eCKMi3Wf+XfGL8QuMB48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.crl rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHENSLTk8rc1vksbXJDtuI0mmyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 617 (0x269) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC2E3, serialNumber=C4710D48B4E4F2B735BE4B1B5C90EDB88D269B2C Validity Not Before: Mar 25 01:36:07 2026 GMT Not After : Apr 1 01:36:07 2026 GMT Subject: CN=69c33c08-733e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b1:c2:92:38:62:19:e4:55:ea:f5:47:f0:7d: 97:34:e4:ca:96:7a:b2:58:38:26:61:73:23:40:50: c3:4c:1e:15:5d:21:e8:6e:8e:2b:1e:1f:87:e8:75: 9a:92:78:00:77:b3:f0:28:c1:da:a8:65:1d:d7:b6: 36:72:6f:72:5d:d8:e3:e2:df:70:0b:fb:7c:95:13: f7:22:2d:7d:ee:32:66:ba:26:6a:35:b5:33:e7:52: 15:f3:6e:ae:3f:1f:dc:1a:59:3d:a7:b7:42:95:75: de:f4:ba:88:76:32:03:8a:d1:d8:28:e6:5f:e9:56: 7d:71:5f:39:f1:2f:80:c1:b5:17:fb:b8:12:73:5a: ae:1f:55:25:e8:c0:68:0f:0d:24:4e:4c:8b:d8:d3: b7:db:6f:e8:8c:96:81:ab:4d:08:b6:17:1c:d4:5a: 72:e3:44:fd:6a:1b:a9:eb:c2:ee:6f:bd:be:b5:f2: f6:26:0a:a5:ef:3c:02:40:51:3c:2a:18:e7:37:5c: 62:00:84:bc:38:ca:4d:2c:79:b2:f7:a0:21:ed:ae: 1d:fd:83:d9:87:9b:f5:fe:d8:4d:78:7e:90:df:d1: ec:77:fd:e6:fa:5c:56:a9:63:07:de:a1:d5:19:55: 32:7e:9c:09:cd:bb:6c:c7:24:db:e0:cf:95:ac:fa: f7:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:7C:5A:29:8B:5F:44:52:C1:3F:B1:BE:42:29:1F:E1:88:2B:FC:5B X509v3 Authority Key Identifier: keyid:C4:71:0D:48:B4:E4:F2:B7:35:BE:4B:1B:5C:90:ED:B8:8D:26:9B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHENSLTk8rc1vksbXJDtuI0mmyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC2E3/9B4A489089A011ED83759346C4F9AE02/xHENSLTk8rc1vksbXJDtuI0mmyw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:2a:dd:dd:d5:b3:28:d3:3e:ef:95:9d:a7:84:4b:fb:09:f1: 39:c8:e9:75:58:58:3d:02:90:ab:ea:9c:65:b8:41:c8:1f:cc: 01:d2:44:4d:b9:8d:4d:79:67:34:ca:25:b3:12:d6:0c:7a:b3: e4:e7:94:5e:c4:37:2b:ad:17:73:d9:fb:a9:cb:5c:7d:af:de: f3:10:85:8b:89:a6:7f:de:47:f4:16:5c:91:10:58:7d:11:5b: 0c:25:5f:17:6e:1b:38:ec:b1:a8:c0:84:1f:27:c0:91:36:01: 9a:21:2f:1b:2b:70:1e:91:56:a1:53:b0:7a:84:f2:c8:48:61: ad:f4:77:11:c3:32:95:2c:e3:e3:f0:df:a0:09:46:4c:89:4b: a0:23:a5:1a:c1:ab:68:ae:b8:c0:b2:c7:4b:c2:64:af:af:b1: 63:af:16:58:40:b9:df:2d:a5:1b:50:06:46:93:27:ec:a2:c8: 53:51:34:65:2e:1d:e4:3c:aa:18:7f:36:be:f4:6c:5c:ab:3a: 5a:7e:26:04:1d:89:89:be:bf:ea:51:0b:56:98:81:9f:e6:bc: df:56:75:52:2e:b4:76:9f:ec:18:0a:08:ea:e1:9d:24:cd:a1: 21:27:30:12:e4:28:c2:f4:c8:b0:13:8d:54:df:4f:dc:46:d9: 03:19:ff:49 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMyRTMxMTAvBgNVBAUTKEM0NzEwRDQ4QjRFNEYyQjczNUJFNEIxQjVDOTBFREI4 OEQyNjlCMkMwHhcNMjYwMzI1MDEzNjA3WhcNMjYwNDAxMDEzNjA3WjAYMRYwFAYD VQQDEw02OWMzM2MwOC03MzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtrHCkjhiGeRV6vVH8H2XNOTKlnqyWDgmYXMjQFDDTB4VXSHobo4rHh+H6HWa kngAd7PwKMHaqGUd17Y2cm9yXdjj4t9wC/t8lRP3Ii197jJmuiZqNbUz51IV826u Px/cGlk9p7dClXXe9LqIdjIDitHYKOZf6VZ9cV858S+AwbUX+7gSc1quH1Ul6MBo Dw0kTkyL2NO322/ojJaBq00Ithcc1Fpy40T9ahup68Lub72+tfL2Jgql7zwCQFE8 KhjnN1xiAIS8OMpNLHmy96Ah7a4d/YPZh5v1/thNeH6Q39Hsd/3m+lxWqWMH3qHV GVUyfpwJzbtsxyTb4M+VrPr37QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGh8WimL X0RSwT+xvkIpH+GIK/xbMB8GA1UdIwQYMBaAFMRxDUi05PK3Nb5LG1yQ7biNJpss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzJFMy85QjRBNDg5MDg5 QTAxMUVEODM3NTkzNDZDNEY5QUUwMi94SEVOU0xUazhyYzF2a3NiWEpEdHVJMG1t eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIRU5TTFRrOHJjMXZrc2JYSkR0dUkwbW15dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzJFMy85QjRBNDg5MDg5QTAxMUVEODM3NTkzNDZDNEY5QUUwMi94SEVOU0xUazhy YzF2a3NiWEpEdHVJMG1teXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaCrd3dWzKNM+75Wdp4RL+wnxOcjpdVhYPQKQq+qcZbhByB/MAdJETbmNTXln NMolsxLWDHqz5OeUXsQ3K60Xc9n7qctcfa/e8xCFi4mmf95H9BZckRBYfRFbDCVf F24bOOyxqMCEHyfAkTYBmiEvGytwHpFWoVOweoTyyEhhrfR3EcMylSzj4/DfoAlG TIlLoCOlGsGraK64wLLHS8Jkr6+xY68WWEC53y2lG1AGRpMn7KLIU1E0ZS4d5Dyq GH82vvRsXKs6Wn4mBB2Jib6/6lELVpiBn+a831Z1Ui60dp/sGAoI6uGdJM2hIScw EuQowvTIsBONVN9P3EbZAxn/SQ== -----END CERTIFICATE-----Generated at Thu Mar 26 00:55:42 2026 by rpki-client