$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft File: XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft (raw, json) Hash identifier: 18NP5QNPHgfZJT1P+hf1xst8AhVg8Xq8lE+8yqNwxAE= Subject key identifier: D0:8C:EB:5D:27:24:72:2B:BF:21:2A:B1:A3:CF:57:0A:2A:D3:70:1A Authority key identifier: 5D:4F:41:2A:E4:80:10:FE:54:87:F0:18:F1:71:A9:C6:46:9D:9A:C5 Certificate issuer: /CN=A91BCA5B/serialNumber=5D4F412AE48010FE5487F018F171A9C6469D9AC5 Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft Manifest number: 47 Signing time: Wed 25 Mar 2026 07:31:23 +0000 Manifest this update: Wed 25 Mar 2026 07:31:23 +0000 Manifest next update: Wed 01 Apr 2026 07:31:23 +0000 Files and hashes: 1: XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl (hash: inAYxOGBtWKDTHtpAHRR0C3QZJQ+lLKNADg6gZ3INDg=) 2: AF2E6AE2C03B11F09EE7012FC4F9AE02.roa (hash: X+3wJMfk1XJRp+yqbhiP7HWaocFMU1AXSgdZNrsdlvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCA5B, serialNumber=5D4F412AE48010FE5487F018F171A9C6469D9AC5 Validity Not Before: Mar 25 07:31:23 2026 GMT Not After : Apr 1 07:31:23 2026 GMT Subject: CN=69c38f4b-e41c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:e3:e0:3e:ab:7e:4d:1f:b1:ed:b6:a8:db:c1: 3f:d8:ae:d2:1c:57:4b:3c:65:50:ae:e3:22:fb:b3: 96:27:70:e4:38:2f:0b:34:32:7e:63:b8:5f:a2:0f: b1:ca:7c:02:d0:bc:b5:c6:64:6e:75:41:3d:83:bf: b4:1b:da:c5:92:32:fc:48:3b:3c:31:19:38:40:4c: a6:fc:4b:2c:0c:1c:63:d6:d3:af:4b:55:0e:9e:64: fd:2c:a6:36:71:2d:85:eb:ae:0b:07:8a:7a:66:0c: 92:32:92:6b:ad:37:6c:19:80:fa:74:45:f3:65:c8: 30:30:68:bd:f4:18:8a:94:9e:17:bf:e3:b3:79:0b: 99:98:4a:0f:4f:37:e0:25:b5:40:4e:87:d8:7c:fe: 4d:0a:d7:41:05:90:74:b7:82:14:a8:ae:eb:9b:9b: 87:e7:6e:a3:72:a3:3a:d2:08:da:18:3d:0b:d3:38: 82:63:8c:29:8e:87:ef:f9:3d:3f:e3:5d:bf:8e:3f: 69:42:cb:14:11:92:65:38:e5:3d:85:50:36:78:7e: fe:1e:e7:0d:67:ee:fe:73:bc:15:c5:f3:79:7f:7f: 61:b5:88:72:04:d4:11:af:58:93:9b:49:1f:21:f4: c2:44:e4:06:2a:6a:6c:21:0f:56:c7:ee:83:6b:d4: 71:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:8C:EB:5D:27:24:72:2B:BF:21:2A:B1:A3:CF:57:0A:2A:D3:70:1A X509v3 Authority Key Identifier: keyid:5D:4F:41:2A:E4:80:10:FE:54:87:F0:18:F1:71:A9:C6:46:9D:9A:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:d6:1d:53:4c:0f:0d:a1:c0:97:6e:a0:13:28:c1:2d:40:2e: 99:1c:0c:96:0f:d0:7b:71:d3:df:b5:5a:a0:0d:3a:52:b4:7f: 33:94:5e:d0:7e:f4:8c:e5:f4:ef:ac:26:79:2b:a7:6c:d9:1f: ab:9e:17:38:55:9e:bf:c7:d4:f9:f9:7f:d0:9d:d8:f1:0b:de: 48:0c:57:fd:1c:80:c6:cd:90:62:b1:8b:31:a4:8b:23:36:37: c2:ca:f0:38:7b:12:19:c8:9b:9a:be:1d:6f:05:48:73:86:b2: 21:dd:01:c4:1c:31:02:d4:0c:41:2e:e0:60:cc:77:ff:77:46: fb:7b:d1:87:ad:de:8e:68:c7:aa:ee:24:2f:0d:44:05:0b:0d: 1c:37:ea:53:ca:54:95:c5:ab:48:13:7a:1b:8d:28:38:f0:82: 47:8c:c3:53:93:6c:a8:5d:59:13:d7:46:93:34:ed:0b:47:2d: 86:9b:53:3f:63:9a:0f:6e:77:61:cc:ab:5b:6d:33:ee:a4:7c: e9:a3:7b:bf:d8:c9:b5:1c:02:a9:5e:9b:a6:c5:4e:7f:8c:53: dc:7a:47:87:22:d2:90:a1:98:cf:9e:dd:bc:d1:c5:3a:ea:37: a0:2d:f0:61:09:cc:0d:f5:d4:18:25:90:4b:8c:ce:e1:7b:cd: 8f:ad:a2:fc -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC Q0E1QjExMC8GA1UEBRMoNUQ0RjQxMkFFNDgwMTBGRTU0ODdGMDE4RjE3MUE5QzY0 NjlEOUFDNTAeFw0yNjAzMjUwNzMxMjNaFw0yNjA0MDEwNzMxMjNaMBgxFjAUBgNV BAMTDTY5YzM4ZjRiLWU0MWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDt4+A+q35NH7HttqjbwT/YrtIcV0s8ZVCu4yL7s5YncOQ4Lws0Mn5juF+iD7HK fALQvLXGZG51QT2Dv7Qb2sWSMvxIOzwxGThATKb8SywMHGPW069LVQ6eZP0spjZx LYXrrgsHinpmDJIykmutN2wZgPp0RfNlyDAwaL30GIqUnhe/47N5C5mYSg9PN+Al tUBOh9h8/k0K10EFkHS3ghSoruubm4fnbqNyozrSCNoYPQvTOIJjjCmOh+/5PT/j Xb+OP2lCyxQRkmU45T2FUDZ4fv4e5w1n7v5zvBXF83l/f2G1iHIE1BGvWJObSR8h 9MJE5AYqamwhD1bH7oNr1HF5AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU0IzrXSck ciu/ISqxo89XCirTcBowHwYDVR0jBBgwFoAUXU9BKuSAEP5Uh/AY8XGpxkadmsUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDQTVCL0QyNUQ4NjhFQzAz QTExRjA4OEEzNDYyQ0M0RjlBRTAyL1hVOUJLdVNBRVA1VWhfQVk4WEdweGthZG1z VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWFU5Qkt1U0FFUDVVaF9BWThYR3B4a2FkbXNVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJD QTVCL0QyNUQ4NjhFQzAzQTExRjA4OEEzNDYyQ0M0RjlBRTAyL1hVOUJLdVNBRVA1 VWhfQVk4WEdweGthZG1zVS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCN1h1TTA8NocCXbqATKMEtQC6ZHAyWD9B7cdPftVqgDTpStH8zlF7QfvSM5fTv rCZ5K6ds2R+rnhc4VZ6/x9T5+X/QndjxC95IDFf9HIDGzZBisYsxpIsjNjfCyvA4 exIZyJuavh1vBUhzhrIh3QHEHDEC1AxBLuBgzHf/d0b7e9GHrd6OaMeq7iQvDUQF Cw0cN+pTylSVxatIE3objSg48IJHjMNTk2yoXVkT10aTNO0LRy2Gm1M/Y5oPbndh zKtbbTPupHzpo3u/2Mm1HAKpXpumxU5/jFPcekeHItKQoZjPnt280cU66jegLfBh CcwN9dQYJZBLjM7he82PraL8 -----END CERTIFICATE-----Generated at Thu Mar 26 20:24:02 2026 by rpki-client