$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft File: X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft (raw, json) Hash identifier: msolPZiDNPOeBCPYZqDDSZqBiPKrcym3mwwxoamyPFo= Subject key identifier: 8E:71:0D:0F:52:CF:C2:48:2D:46:FE:7A:88:89:F9:49:48:36:B8:0B Authority key identifier: 5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 Certificate issuer: /CN=A91CE285/serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Certificate serial: 0A57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft Manifest number: 0A4F Signing time: Tue 24 Mar 2026 19:28:36 +0000 Manifest this update: Tue 24 Mar 2026 19:28:36 +0000 Manifest next update: Tue 31 Mar 2026 19:28:36 +0000 Files and hashes: 1: X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl (hash: VDqGkrT9hfADz/NfNu2qwOvaEePozM7lFeK6/JHyI0Q=) 2: E5C4974689CF11EAA39AF441C4F9AE02.roa (hash: 7EwTneGwYj2Gzr31UcIH+4FO/7qpJOQTGhK83Hx75Bo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:28:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2647 (0xa57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE285, serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Validity Not Before: Mar 24 19:28:36 2026 GMT Not After : Mar 31 19:28:36 2026 GMT Subject: CN=69c2e5e4-a69c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ba:ac:26:db:6e:26:d5:04:e5:d9:1e:93:82: 28:c4:e2:10:fc:e5:04:bf:10:5d:4f:3a:4d:8f:9e: 65:d3:f8:1e:16:a3:4a:1c:19:0c:35:60:0e:43:f6: 17:4c:1b:cc:1e:02:f3:9d:b8:49:43:67:ff:47:24: 0d:e4:14:04:c2:fe:5c:9f:22:3b:71:7c:95:03:9e: 14:32:8f:bd:41:d0:fa:d4:31:44:25:7e:75:2c:79: b9:02:1a:64:97:ee:ab:14:a5:86:e7:53:ef:23:94: 2c:40:5d:01:20:19:50:82:87:80:81:82:01:a1:ea: 8d:44:d9:d2:fc:d7:d0:c7:7e:69:2e:30:32:36:54: 6a:27:9c:2f:3c:af:8b:3f:cc:35:6d:6d:76:43:34: 3f:66:b4:b4:58:1c:3d:50:98:21:96:a5:9a:61:be: 74:ce:07:9f:cf:98:9b:52:f1:99:e9:31:c5:40:1d: 0c:04:17:f4:5b:96:0e:ba:06:05:70:a7:d3:47:c8: 2d:ab:5b:cd:6b:13:61:04:3c:29:db:44:06:d0:2b: cc:21:ff:af:e4:a6:1a:71:af:2d:09:e8:d1:e5:c4: 19:f8:a3:0c:f5:4f:e0:32:03:e9:e0:81:4d:19:fe: d7:4e:ae:1d:e4:0d:a5:8e:3f:56:da:48:2f:c7:dd: c3:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:71:0D:0F:52:CF:C2:48:2D:46:FE:7A:88:89:F9:49:48:36:B8:0B X509v3 Authority Key Identifier: keyid:5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:49:f9:16:cd:5e:7e:b4:37:c3:15:57:ed:b8:79:6c:ec:cc: 70:1b:34:4b:eb:b3:f8:04:38:db:a2:e7:73:67:c9:d1:d9:7c: 3e:aa:3e:31:c1:47:de:55:35:94:a0:dc:15:d2:84:b3:29:72: 55:86:0a:37:44:21:9d:18:db:46:a1:bf:5d:c6:8b:64:98:69: 0f:db:a9:59:4d:a6:84:8c:be:d0:73:15:1d:67:31:e3:67:37: 0f:77:ce:b8:22:c8:79:59:9a:77:21:68:6c:4e:07:95:55:ce: 86:b8:bb:3f:e7:e9:87:d2:38:91:f5:56:9d:5a:1e:0f:db:7c: 70:53:8c:a2:8e:e6:89:3d:20:30:24:98:a7:10:f4:ee:ff:fb: e2:f0:e5:53:02:c4:99:70:ce:f2:ba:fc:43:33:05:72:39:44: cd:a1:52:e0:45:40:78:41:8e:42:e0:75:8a:ad:97:45:4a:10: 01:9b:bc:ca:79:6b:b7:91:1f:7f:2a:1f:11:41:05:a6:50:6c: 37:e2:1d:0a:72:e5:25:45:95:a2:0a:7d:93:12:fd:c9:6b:cf: d2:44:15:7a:6d:f6:59:c8:51:2f:03:87:91:12:0d:f9:66:32: 9e:ac:45:8a:3b:ac:2f:08:3b:26:02:ac:ff:b9:5e:f8:94:a8: 67:4e:f8:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICClcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyODUxMTAvBgNVBAUTKDVGOEFGMzU5NzNGRDRGQTU2M0YzM0I3Mzc2NTM0Njgy MTA3QkM4RjkwHhcNMjYwMzI0MTkyODM2WhcNMjYwMzMxMTkyODM2WjAYMRYwFAYD VQQDEw02OWMyZTVlNC1hNjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7qsJttuJtUE5dkek4IoxOIQ/OUEvxBdTzpNj55l0/geFqNKHBkMNWAOQ/YX TBvMHgLznbhJQ2f/RyQN5BQEwv5cnyI7cXyVA54UMo+9QdD61DFEJX51LHm5Ahpk l+6rFKWG51PvI5QsQF0BIBlQgoeAgYIBoeqNRNnS/NfQx35pLjAyNlRqJ5wvPK+L P8w1bW12QzQ/ZrS0WBw9UJghlqWaYb50zgefz5ibUvGZ6THFQB0MBBf0W5YOugYF cKfTR8gtq1vNaxNhBDwp20QG0CvMIf+v5KYaca8tCejR5cQZ+KMM9U/gMgPp4IFN Gf7XTq4d5A2ljj9W2kgvx93D2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI5xDQ9S z8JILUb+eoiJ+UlINrgLMB8GA1UdIwQYMBaAFF+K81lz/U+lY/M7c3ZTRoIQe8j5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTI4NS81RTE2NDhCNjg0 QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2Vmo4enR6ZGxOR2doQjd5 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0cnpXWFA5VDZWajh6dHpkbE5HZ2hCN3lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTI4NS81RTE2NDhCNjg0QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2 Vmo4enR6ZGxOR2doQjd5UGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMEn5Fs1efrQ3wxVX7bh5bOzMcBs0S+uz+AQ426Lnc2fJ0dl8Pqo+McFH3lU1 lKDcFdKEsylyVYYKN0QhnRjbRqG/XcaLZJhpD9upWU2mhIy+0HMVHWcx42c3D3fO uCLIeVmadyFobE4HlVXOhri7P+fph9I4kfVWnVoeD9t8cFOMoo7miT0gMCSYpxD0 7v/74vDlUwLEmXDO8rr8QzMFcjlEzaFS4EVAeEGOQuB1iq2XRUoQAZu8ynlrt5Ef fyofEUEFplBsN+IdCnLlJUWVogp9kxL9yWvP0kQVem32WchRLwOHkRIN+WYynqxF ijusLwg7JgKs/7le+JSoZ0740Q== -----END CERTIFICATE-----Generated at Thu Mar 26 18:25:37 2026 by rpki-client