$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft File: xhVwDXyIi-a6dQrezZTYhkaC42E.mft (raw, json) Hash identifier: Pc0pbQtpfrIRSCTTuxaERK7vmoGJAIPOFNx2UwYSaTA= Subject key identifier: D9:46:81:66:48:9C:B2:B0:36:87:37:22:56:63:56:32:13:88:2E:55 Authority key identifier: C6:15:70:0D:7C:88:8B:E6:BA:75:0A:DE:CD:94:D8:86:46:82:E3:61 Certificate issuer: /CN=A91D0C14/serialNumber=C615700D7C888BE6BA750ADECD94D8864682E361 Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft Manifest number: 0128 Signing time: Wed 25 Mar 2026 01:14:03 +0000 Manifest this update: Wed 25 Mar 2026 01:14:03 +0000 Manifest next update: Wed 01 Apr 2026 01:14:03 +0000 Files and hashes: 1: xhVwDXyIi-a6dQrezZTYhkaC42E.crl (hash: ZDC8Z2fhS14eMZGHMRAYzXOzQjV2iyBpz/7gCtViSGA=) 2: 6C3911AC316A11F090B23283C4F9AE02.roa (hash: BKkwn8f0sraXs+4i8iF1ns+62U78NeM1dUZaJxumAOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.crl rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:14:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C14, serialNumber=C615700D7C888BE6BA750ADECD94D8864682E361 Validity Not Before: Mar 25 01:14:03 2026 GMT Not After : Apr 1 01:14:03 2026 GMT Subject: CN=69c336db-0f47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:89:52:c8:8a:59:43:e4:be:f8:e9:ff:f3:3f: c8:ac:29:5a:5d:cc:f1:a6:a8:9a:7b:ee:7f:88:35: fd:31:27:9a:cd:18:d9:d4:02:0e:22:c6:2b:c5:cb: 04:18:a1:e1:80:d7:10:ba:ee:89:b4:cd:b3:f6:3c: 34:93:b9:fa:71:17:71:74:2e:aa:fb:0f:cd:34:c1: 91:75:7a:c3:f5:8e:3f:55:c2:1c:55:cd:e7:94:4d: f3:75:4e:a5:86:36:2d:f8:f8:29:12:a9:ec:1f:f2: b8:4f:ae:98:a1:13:08:cb:5b:99:13:41:59:f8:ac: f6:bb:da:8a:6c:30:dd:bb:b5:1f:63:87:31:09:8f: 70:f0:5b:32:02:b7:be:1e:51:16:ef:80:c2:1a:c5: 2e:da:cd:8a:fc:c2:cf:44:b0:7d:d2:b6:86:74:d6: da:31:60:7b:ad:56:19:8b:2a:cb:30:72:cd:9a:ee: 5c:87:5c:da:22:5c:88:15:7f:31:cd:90:42:5f:4d: 9c:a8:c6:a5:76:6b:a2:e1:ba:56:68:93:2a:03:47: 90:f1:70:a0:55:fa:e1:22:09:25:7a:7c:b5:16:4b: 2c:d1:f7:0c:5f:c9:84:d3:ea:3c:3a:ea:82:35:20: 80:0b:1d:3c:86:84:c6:d9:3c:29:1a:11:85:6e:45: a0:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:46:81:66:48:9C:B2:B0:36:87:37:22:56:63:56:32:13:88:2E:55 X509v3 Authority Key Identifier: keyid:C6:15:70:0D:7C:88:8B:E6:BA:75:0A:DE:CD:94:D8:86:46:82:E3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:5c:75:17:25:52:e6:9b:9e:a9:31:3c:08:4c:42:8b:66:3a: b2:34:b7:85:a3:01:f0:29:cd:68:e6:13:a5:27:b2:2e:0c:2a: e3:a0:c8:51:e1:17:71:f2:df:f4:f5:db:8a:3e:1e:44:74:9d: 43:5d:87:61:ef:dc:a6:10:c7:c4:65:8f:cd:9b:60:db:c2:2d: a3:dc:97:37:3a:b1:90:99:4d:6b:8d:62:0f:c4:ab:2f:10:df: 59:67:cf:8b:cb:76:28:e9:71:6d:97:c5:d7:c3:32:03:47:08: e7:ab:70:57:0d:a4:23:02:85:1e:4d:45:81:1e:ec:47:fb:c2: 7e:08:bb:36:09:75:92:ed:02:24:10:59:4c:b1:88:c7:2c:b4: ba:65:12:6c:26:39:d6:f9:be:a4:a2:02:1f:fa:46:69:b8:81: 90:0e:b8:37:4e:ee:13:b7:a7:c8:aa:85:1f:4d:17:97:4f:e3: 39:b6:0b:d9:79:f2:14:ce:81:05:fc:f4:f1:76:d6:5e:39:db: d5:9d:d4:26:e8:fb:e3:89:84:72:6b:fe:93:a9:28:6c:a3:a6: 85:85:9c:c2:f9:13:a9:44:67:72:3d:b1:de:96:5c:47:3c:8e: fe:e6:4a:a8:b9:da:1e:e6:fa:f4:86:c1:e7:4e:1a:b6:09:52: 59:b3:22:a6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDMTQxMTAvBgNVBAUTKEM2MTU3MDBEN0M4ODhCRTZCQTc1MEFERUNEOTREODg2 NDY4MkUzNjEwHhcNMjYwMzI1MDExNDAzWhcNMjYwNDAxMDExNDAzWjAYMRYwFAYD VQQDEw02OWMzMzZkYi0wZjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxIlSyIpZQ+S++On/8z/IrClaXczxpqiae+5/iDX9MSeazRjZ1AIOIsYrxcsE GKHhgNcQuu6JtM2z9jw0k7n6cRdxdC6q+w/NNMGRdXrD9Y4/VcIcVc3nlE3zdU6l hjYt+PgpEqnsH/K4T66YoRMIy1uZE0FZ+Kz2u9qKbDDdu7UfY4cxCY9w8FsyAre+ HlEW74DCGsUu2s2K/MLPRLB90raGdNbaMWB7rVYZiyrLMHLNmu5ch1zaIlyIFX8x zZBCX02cqMaldmui4bpWaJMqA0eQ8XCgVfrhIgkleny1Fkss0fcMX8mE0+o8OuqC NSCACx08hoTG2TwpGhGFbkWgYwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNlGgWZI nLKwNoc3IlZjVjITiC5VMB8GA1UdIwQYMBaAFMYVcA18iIvmunUK3s2U2IZGguNh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEMxNC84RjMzOTk5NjZC RkIxMUVGODQ2MzI2MzVDNEY5QUUwMi94aFZ3RFh5SWktYTZkUXJlelpUWWhrYUM0 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hoVndEWHlJaS1hNmRRcmV6WlRZaGthQzQyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEMxNC84RjMzOTk5NjZCRkIxMUVGODQ2MzI2MzVDNEY5QUUwMi94aFZ3RFh5SWkt YTZkUXJlelpUWWhrYUM0MkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuFx1FyVS5pueqTE8CExCi2Y6sjS3haMB8CnNaOYTpSeyLgwq46DIUeEXcfLf 9PXbij4eRHSdQ12HYe/cphDHxGWPzZtg28Ito9yXNzqxkJlNa41iD8SrLxDfWWfP i8t2KOlxbZfF18MyA0cI56twVw2kIwKFHk1FgR7sR/vCfgi7Ngl1ku0CJBBZTLGI xyy0umUSbCY51vm+pKICH/pGabiBkA64N07uE7enyKqFH00Xl0/jObYL2XnyFM6B Bfz08XbWXjnb1Z3UJuj744mEcmv+k6kobKOmhYWcwvkTqURncj2x3pZcRzyO/uZK qLnaHub69IbB504atglSWbMipg== -----END CERTIFICATE-----Generated at Thu Mar 26 16:27:03 2026 by rpki-client