$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft File: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft (raw, json) Hash identifier: /72uU1XetDr7VMp/e5yUYcuDA2HqAngfKBRqR5QVjSI= Subject key identifier: 48:06:70:2C:E7:D8:60:CE:DB:79:1B:D7:4D:AE:EA:79:02:D1:10:6B Authority key identifier: F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 Certificate issuer: /CN=A91C9484/serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Certificate serial: 355E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft Manifest number: 3543 Signing time: Tue 24 Mar 2026 14:46:32 +0000 Manifest this update: Tue 24 Mar 2026 14:46:31 +0000 Manifest next update: Tue 31 Mar 2026 14:46:31 +0000 Files and hashes: 1: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl (hash: sz67lOWQyWzjesPL2ZE0Xg2XfQJVHbCh6rW391iE514=) 2: FFC89DF8CECD11EEA4AA6D44C4F9AE02.roa (hash: 5vDKPCNaPzEtEVT7LOtWJpYKKhlnZvgcsaGE/gZdgy8=) 3: 49036D2CB0D711E58B185E0FC4F9AE02.roa (hash: xX3Ba5H5Sw2Jw8gIsRp9N0DgboX0HpbidadIyPU/Yzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:46:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13662 (0x355e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9484, serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Validity Not Before: Mar 24 14:46:31 2026 GMT Not After : Mar 31 14:46:31 2026 GMT Subject: CN=69c2a3c8-c907 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:31:c6:72:16:b8:c6:6a:03:7f:b1:57:ab:1a: eb:07:4b:7b:ad:af:39:65:05:90:d9:12:2c:30:c9: 0c:21:37:28:0c:41:cd:04:09:8c:bf:91:24:56:6d: c4:36:0c:92:a1:9a:dd:c3:03:8e:4a:06:2d:ed:1a: 6e:58:de:54:4f:f1:ed:c9:fc:7d:3b:cd:9a:54:b2: fe:10:fc:aa:f1:b8:1f:fe:e0:03:13:77:3a:0e:92: 9c:e8:0e:9e:7b:ca:2b:b7:80:9d:4b:aa:8a:26:7d: 19:76:ed:fb:03:8e:87:e8:8e:ce:d1:84:07:d8:73: eb:6c:7c:15:3d:92:69:a6:ac:3b:c6:3d:21:c0:0a: 47:c4:5f:50:4c:b8:d6:83:f8:e1:7f:29:70:81:74: 2e:9f:bc:97:0a:6d:1a:89:1e:10:e1:c5:11:06:0e: 7c:ec:a8:8b:d2:c3:22:01:ae:fb:24:0a:84:f3:87: 82:e7:30:50:8b:c8:00:11:9a:a3:44:72:e1:9a:66: 69:1a:be:98:e9:a8:bc:cf:e5:6f:8f:1c:f4:53:f4: 83:c2:95:46:8a:5b:e3:85:33:ca:71:c0:72:8c:f6: 90:de:c7:f1:ac:c4:9e:a0:0c:f1:d2:95:5c:4c:b2: 43:2f:7e:65:bd:4c:df:54:87:73:0d:4d:13:3b:73: 96:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:06:70:2C:E7:D8:60:CE:DB:79:1B:D7:4D:AE:EA:79:02:D1:10:6B X509v3 Authority Key Identifier: keyid:F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:bb:eb:c7:59:43:0f:3b:e1:49:d1:49:9d:52:54:3e:e1:a7: fc:f0:04:d2:62:eb:22:a0:f5:c7:52:59:b4:5a:cc:92:ed:a8: 34:e0:50:1e:fb:23:04:d9:7e:a6:c9:0b:07:87:a4:24:16:f0: 76:ed:d8:88:0e:13:da:d6:37:d1:94:cb:a4:73:33:32:fd:2b: 8f:43:95:23:3b:fb:1b:ad:31:17:50:7d:6b:fe:21:f8:77:77: 1b:f3:af:a8:be:e2:01:f5:4f:fc:7a:6a:e2:e8:00:1a:96:bb: e4:79:9e:f2:ba:10:75:ba:b8:7d:28:f3:6a:0b:fd:e0:70:32: 33:a5:bf:ba:c6:14:67:3a:65:e3:a7:a9:86:0a:d3:25:9f:d7: a8:e5:4c:59:6f:9f:ad:51:07:a8:4b:72:00:51:0a:e9:72:6d: 36:37:1e:3c:9e:07:15:3b:5b:53:3e:3e:b7:f1:ab:0d:8a:09: 44:b6:30:45:7c:89:9c:8b:19:8e:63:77:6f:de:71:66:71:93: 59:ea:e4:53:8e:9e:8c:5e:b6:2e:91:a8:bb:dd:ab:7c:a2:be: d9:2f:73:4b:6d:b4:53:19:9a:3d:d9:a0:b4:b0:30:5b:47:72: f8:86:8f:c6:34:1c:3b:6d:56:1d:c6:ef:83:e3:bf:15:3b:ac: 14:55:ae:7a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0ODQxMTAvBgNVBAUTKEY5NzJFNzVFM0QwM0U1Q0UxOTAxOTMwQzQzRDE2REM0 QTg5QzQ3OTIwHhcNMjYwMzI0MTQ0NjMxWhcNMjYwMzMxMTQ0NjMxWjAYMRYwFAYD VQQDEw02OWMyYTNjOC1jOTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2jHGcha4xmoDf7FXqxrrB0t7ra85ZQWQ2RIsMMkMITcoDEHNBAmMv5EkVm3E NgySoZrdwwOOSgYt7RpuWN5UT/Htyfx9O82aVLL+EPyq8bgf/uADE3c6DpKc6A6e e8ort4CdS6qKJn0Zdu37A46H6I7O0YQH2HPrbHwVPZJppqw7xj0hwApHxF9QTLjW g/jhfylwgXQun7yXCm0aiR4Q4cURBg587KiL0sMiAa77JAqE84eC5zBQi8gAEZqj RHLhmmZpGr6Y6ai8z+Vvjxz0U/SDwpVGilvjhTPKccByjPaQ3sfxrMSeoAzx0pVc TLJDL35lvUzfVIdzDU0TO3OW4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEgGcCzn 2GDO23kb102u6nkC0RBrMB8GA1UdIwQYMBaAFPly5149A+XOGQGTDEPRbcSonEeS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQ4NC82RkYwRERFMDFE OTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVjNFpBWk1NUTlGdHhLaWNS NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YTG5YajBENWM0WkFaTU1ROUZ0eEtpY1I1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQ4NC82RkYwRERFMDFEOTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVj NFpBWk1NUTlGdHhLaWNSNUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmrvrx1lDDzvhSdFJnVJUPuGn/PAE0mLrIqD1x1JZtFrMku2oNOBQHvsjBNl+ pskLB4ekJBbwdu3YiA4T2tY30ZTLpHMzMv0rj0OVIzv7G60xF1B9a/4h+Hd3G/Ov qL7iAfVP/Hpq4ugAGpa75Hme8roQdbq4fSjzagv94HAyM6W/usYUZzpl46ephgrT JZ/XqOVMWW+frVEHqEtyAFEK6XJtNjcePJ4HFTtbUz4+t/GrDYoJRLYwRXyJnIsZ jmN3b95xZnGTWerkU46ejF62LpGou92rfKK+2S9zS220UxmaPdmgtLAwW0dy+IaP xjQcO21WHcbvg+O/FTusFFWueg== -----END CERTIFICATE-----Generated at Thu Mar 26 05:58:28 2026 by rpki-client