$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft File: XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft (raw, json) Hash identifier: O61j75ueklyU2VjufvOAUev7GSP56c15gQF/FewLhQw= Subject key identifier: D4:E2:15:99:C1:67:33:FA:C7:85:86:59:E4:15:7E:97:0B:D4:A9:6C Authority key identifier: 5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 Certificate issuer: /CN=A91C9561/serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Certificate serial: 0390 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft Manifest number: 038F Signing time: Wed 25 Mar 2026 00:25:13 +0000 Manifest this update: Wed 25 Mar 2026 00:25:13 +0000 Manifest next update: Wed 01 Apr 2026 00:25:13 +0000 Files and hashes: 1: XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl (hash: rgOjwc8xLH2eIUFUsRr6WZIzCukEdLu7AWGeC7kOB4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 912 (0x390) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9561, serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Validity Not Before: Mar 25 00:25:13 2026 GMT Not After : Apr 1 00:25:13 2026 GMT Subject: CN=69c32b69-63d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:28:73:76:28:7a:f3:dc:70:84:fd:14:8a:52: 7d:2e:f9:bc:32:46:23:7e:6d:12:1f:09:97:c6:cc: a1:4c:da:a3:37:33:81:41:09:b6:e4:23:7b:c2:7c: ab:2f:4b:92:36:65:9d:4e:06:c3:6d:14:f9:fe:80: 95:8b:93:1f:3a:0e:3d:51:46:ff:72:02:d8:24:e6: b1:ed:1c:a1:d1:f5:e5:b0:1b:f7:39:fb:3a:bf:79: a1:40:65:ca:99:b1:ca:b1:2f:9f:23:2a:5e:30:f3: 26:7f:29:34:97:e7:84:f5:4e:75:d5:37:50:6e:24: 4a:d2:e6:79:51:d6:74:90:9c:3e:02:91:f7:2c:de: a6:aa:c9:cf:55:66:8a:3e:1f:73:dc:c0:3a:24:c7: 9e:5d:42:7d:ec:d1:bb:3a:1a:d7:6a:04:9b:b9:3f: f7:89:b2:fd:21:7e:36:af:d0:97:f3:fe:36:58:cd: 86:ff:5e:8f:96:68:9f:88:f9:10:7a:57:0f:4c:2a: 11:6f:c2:59:a2:7f:1f:a7:2a:be:d0:c5:40:23:cb: 83:c9:a3:4d:bc:69:9e:b6:2b:fe:8f:c2:ee:73:78: fd:00:d6:9a:6e:ca:87:32:de:9a:68:54:d6:27:04: fd:43:b5:18:53:bd:b8:f3:1e:86:6e:78:44:1a:39: 1a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:E2:15:99:C1:67:33:FA:C7:85:86:59:E4:15:7E:97:0B:D4:A9:6C X509v3 Authority Key Identifier: keyid:5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:c5:68:f3:52:7f:03:26:1b:a5:9e:2f:78:2d:f3:a2:75:fe: 59:3a:76:65:db:81:d1:70:4b:a5:96:f5:77:cd:29:97:fa:86: 84:76:80:5c:ea:6d:1d:a7:90:77:a7:be:b3:46:06:03:c4:dc: d1:b9:76:28:e3:af:bb:0b:bd:00:5b:c5:72:53:2b:45:a4:6a: f3:3b:43:72:99:7a:22:64:56:38:82:79:1f:a1:b4:91:73:31: 08:cb:a2:6b:36:f7:0b:84:4b:72:03:83:17:87:5b:f2:98:f5: da:1d:7a:5b:7e:0b:ea:33:fe:b3:8b:95:89:6e:d1:b0:c2:68: f2:f4:54:ba:42:d8:23:1c:76:8d:b8:37:09:33:fb:88:7c:b3: 94:f8:d2:ec:04:ad:fd:4d:50:92:b1:df:3f:d0:a7:65:24:b1: 44:38:a9:32:33:b5:98:d0:32:8c:1a:ad:69:97:b4:8d:aa:dc: 3e:c3:9a:e2:c3:0d:ac:b7:01:87:ea:f8:2a:00:74:fb:aa:b9: 59:46:71:5a:90:14:02:f6:43:de:b6:6c:1f:61:1a:03:eb:e7: 11:55:59:83:d7:c4:20:38:e1:59:16:24:e7:38:f3:56:4e:8d: 95:a3:8d:ac:9e:32:d0:d4:bb:31:36:86:35:a3:5f:d3:aa:8b: 55:13:32:2e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NjExMTAvBgNVBAUTKDVFM0NGMDI1MUQ4QTYwMDZCODI4NUJEMDk0OUZDRDlC QTNGOUVCQjgwHhcNMjYwMzI1MDAyNTEzWhcNMjYwNDAxMDAyNTEzWjAYMRYwFAYD VQQDEw02OWMzMmI2OS02M2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxyhzdih689xwhP0UilJ9Lvm8MkYjfm0SHwmXxsyhTNqjNzOBQQm25CN7wnyr L0uSNmWdTgbDbRT5/oCVi5MfOg49UUb/cgLYJOax7Ryh0fXlsBv3Ofs6v3mhQGXK mbHKsS+fIypeMPMmfyk0l+eE9U511TdQbiRK0uZ5UdZ0kJw+ApH3LN6mqsnPVWaK Ph9z3MA6JMeeXUJ97NG7OhrXagSbuT/3ibL9IX42r9CX8/42WM2G/16PlmifiPkQ elcPTCoRb8JZon8fpyq+0MVAI8uDyaNNvGmetiv+j8Luc3j9ANaabsqHMt6aaFTW JwT9Q7UYU7248x6GbnhEGjkaqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNTiFZnB ZzP6x4WGWeQVfpcL1KlsMB8GA1UdIwQYMBaAFF488CUdimAGuChb0JSfzZuj+eu4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2MS9DOUE4REZEQURB NjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lBYTRLRnZRbEpfTm02UDU2 N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hqendKUjJLWUFhNEtGdlFsSl9ObTZQNTY3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2MS9DOUE4REZEQURBNjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lB YTRLRnZRbEpfTm02UDU2N2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXMVo81J/AyYbpZ4veC3zonX+WTp2ZduB0XBLpZb1d80pl/qGhHaAXOptHaeQ d6e+s0YGA8Tc0bl2KOOvuwu9AFvFclMrRaRq8ztDcpl6ImRWOIJ5H6G0kXMxCMui azb3C4RLcgODF4db8pj12h16W34L6jP+s4uViW7RsMJo8vRUukLYIxx2jbg3CTP7 iHyzlPjS7ASt/U1QkrHfP9CnZSSxRDipMjO1mNAyjBqtaZe0jarcPsOa4sMNrLcB h+r4KgB0+6q5WUZxWpAUAvZD3rZsH2EaA+vnEVVZg9fEIDjhWRYk5zjzVk6NlaON rJ4y0NS7MTaGNaNf06qLVRMyLg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:37:36 2026 by rpki-client