$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft File: XDZbFzHKfOfbgd1XEwvU1kMBm14.mft (raw, json) Hash identifier: 2yKVwcU+XbeTEgubDinKnhqRPhDL73RwVBqNUaFMztk= Subject key identifier: A8:3D:BC:BA:3A:A1:62:D8:72:45:D3:36:66:75:AA:9A:28:85:8F:FF Authority key identifier: 5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E Certificate issuer: /CN=A91D28EB/serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Certificate serial: 0600 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft Manifest number: 05F6 Signing time: Tue 24 Mar 2026 22:37:50 +0000 Manifest this update: Tue 24 Mar 2026 22:37:49 +0000 Manifest next update: Tue 31 Mar 2026 22:37:49 +0000 Files and hashes: 1: XDZbFzHKfOfbgd1XEwvU1kMBm14.crl (hash: DJlATWcRUwnKMUc/XfvCxBa6V5QInbZy7EV4rFF6dXc=) 2: 8E90AA02EB0B11EBA0B6DD84C4F9AE02.roa (hash: 3VA1KwUIIhxyT4ghxT229oTXXd7seGOOX/95PCsXUZM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1536 (0x600) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28EB, serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Validity Not Before: Mar 24 22:37:49 2026 GMT Not After : Mar 31 22:37:49 2026 GMT Subject: CN=69c3123e-be84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b9:b6:8e:9c:08:a2:7a:f3:22:8c:94:75:88: 88:71:d9:a0:92:8e:76:11:f6:7a:83:a1:08:8a:60: ea:99:98:b2:90:92:54:66:be:04:5b:d9:d7:e5:7a: 96:40:cc:e4:cc:54:08:b0:81:48:5a:2d:66:63:7a: 0e:f4:22:c3:8b:30:1a:bc:09:d6:80:67:2c:97:3b: c2:bd:32:fa:5a:87:16:76:f5:ec:59:f4:13:77:6b: 83:cc:1a:93:d6:f1:3f:bc:3e:5b:8f:0f:2c:6f:d4: 93:5c:eb:2b:1e:78:1e:22:62:50:18:b9:96:a4:87: 0e:54:b6:a8:13:33:26:4f:0e:03:1b:1e:e4:a1:22: b4:a3:2a:6f:5f:e6:f6:25:58:05:48:60:c1:e7:4b: f1:b2:6e:33:8a:fa:5d:b1:be:52:69:6f:44:8f:4b: be:e8:18:af:ba:4d:a9:d6:1b:c7:f3:1e:ec:ae:5f: f4:fc:e2:32:e5:28:32:16:6d:82:6f:ea:86:ed:2d: 6e:41:17:46:ed:d4:35:63:fc:80:c1:0f:fc:85:ad: 49:b9:a1:e2:46:38:08:66:70:b0:56:9d:ca:6c:e2: 80:b8:f9:a1:ff:5e:ab:d9:67:6b:80:72:d1:07:7d: f4:d5:ca:2d:9e:e0:c8:79:56:7a:e2:c4:87:87:b0: db:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:3D:BC:BA:3A:A1:62:D8:72:45:D3:36:66:75:AA:9A:28:85:8F:FF X509v3 Authority Key Identifier: keyid:5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:9c:99:d5:0d:69:88:7e:91:cf:02:45:5b:9c:b8:be:48:8d: 33:83:40:df:91:23:da:5c:a7:ed:47:87:34:af:30:23:ad:00: ce:05:30:a7:a7:e3:21:d8:74:e1:82:48:3b:31:fa:a2:6e:f5: 2f:f2:20:77:e8:70:cb:40:cf:0e:a7:67:f2:2e:65:27:92:47: 70:49:6f:f6:80:6f:c9:10:04:4d:b9:91:65:cb:75:61:48:b7: 9d:3d:1a:95:80:42:3a:99:c6:2c:c8:76:29:98:15:1a:30:e0: 14:30:9b:18:53:9d:e8:02:a9:ad:8a:d6:eb:d3:81:d2:ea:e5: 5a:48:70:78:39:e2:83:a7:39:2b:e0:4f:0d:81:7d:a9:d5:2d: b7:a7:c7:3a:20:8a:f1:c7:d4:fd:77:99:6f:48:76:ce:4a:cc: 3a:0e:98:26:69:fd:a5:61:0b:11:25:ca:11:86:93:cd:db:d7: ff:97:0a:0c:aa:3a:ce:92:24:fd:5c:65:e9:9e:78:0b:c1:d6: a4:5f:59:1b:53:d4:8f:b9:32:41:80:87:3a:fb:63:a9:5b:2d: bd:97:38:94:d2:07:da:b0:bb:88:e4:11:8e:8e:7a:1c:45:9e: b6:5d:79:b4:f2:9b:72:c4:27:f3:bb:1c:6f:93:f5:c4:88:f3: 12:0f:83:64 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4RUIxMTAvBgNVBAUTKDVDMzY1QjE3MzFDQTdDRTdEQjgxREQ1NzEzMEJENEQ2 NDMwMTlCNUUwHhcNMjYwMzI0MjIzNzQ5WhcNMjYwMzMxMjIzNzQ5WjAYMRYwFAYD VQQDEw02OWMzMTIzZS1iZTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoLm2jpwIonrzIoyUdYiIcdmgko52EfZ6g6EIimDqmZiykJJUZr4EW9nX5XqW QMzkzFQIsIFIWi1mY3oO9CLDizAavAnWgGcslzvCvTL6WocWdvXsWfQTd2uDzBqT 1vE/vD5bjw8sb9STXOsrHngeImJQGLmWpIcOVLaoEzMmTw4DGx7koSK0oypvX+b2 JVgFSGDB50vxsm4zivpdsb5SaW9Ej0u+6Bivuk2p1hvH8x7srl/0/OIy5SgyFm2C b+qG7S1uQRdG7dQ1Y/yAwQ/8ha1JuaHiRjgIZnCwVp3KbOKAuPmh/16r2WdrgHLR B3301cotnuDIeVZ64sSHh7Db0QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKg9vLo6 oWLYckXTNmZ1qpoohY//MB8GA1UdIwQYMBaAFFw2Wxcxynzn24HdVxML1NZDAZte MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhFQi83NzE0OEFDNkVC MDkxMUVCOUM3NTkxODBDNEY5QUUwMi9YRFpiRnpIS2ZPZmJnZDFYRXd2VTFrTUJt MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEWmJGekhLZk9mYmdkMVhFd3ZVMWtNQm0xNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhFQi83NzE0OEFDNkVCMDkxMUVCOUM3NTkxODBDNEY5QUUwMi9YRFpiRnpIS2ZP ZmJnZDFYRXd2VTFrTUJtMTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAo5yZ1Q1piH6RzwJFW5y4vkiNM4NA35Ej2lyn7UeHNK8wI60AzgUwp6fjIdh0 4YJIOzH6om71L/Igd+hwy0DPDqdn8i5lJ5JHcElv9oBvyRAETbmRZct1YUi3nT0a lYBCOpnGLMh2KZgVGjDgFDCbGFOd6AKprYrW69OB0urlWkhweDnig6c5K+BPDYF9 qdUtt6fHOiCK8cfU/XeZb0h2zkrMOg6YJmn9pWELESXKEYaTzdvX/5cKDKo6zpIk /Vxl6Z54C8HWpF9ZG1PUj7kyQYCHOvtjqVstvZc4lNIH2rC7iOQRjo56HEWetl15 tPKbcsQn87scb5P1xIjzEg+DZA== -----END CERTIFICATE-----Generated at Thu Mar 26 08:53:46 2026 by rpki-client