$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft File: xdQJ-106qXOpUMnDHMMBVfNJP2I.mft (raw, json) Hash identifier: WDne4s6rq7koYJ/qoJmJsGkL6Y3k6zcOFh9kc31YsMM= Subject key identifier: CD:B7:08:91:D6:F1:89:CE:4A:B2:8D:FD:B1:19:D5:C2:11:C4:68:90 Authority key identifier: C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 Certificate issuer: /CN=A91D6884/serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft Manifest number: 01CD Signing time: Wed 25 Mar 2026 02:59:41 +0000 Manifest this update: Wed 25 Mar 2026 02:59:41 +0000 Manifest next update: Wed 01 Apr 2026 02:59:41 +0000 Files and hashes: 1: xdQJ-106qXOpUMnDHMMBVfNJP2I.crl (hash: ZKFI03cl62W9EnEcpgFmmLJ5lofIg9+ozsBppazjEB4=) 2: 5CF4C0D4FADD11EE8083D572C4F9AE02.roa (hash: onpoRt8uDQ6NXh7hnF+ey60uQVFmX1U+hH28MDsle/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6884, serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Validity Not Before: Mar 25 02:59:41 2026 GMT Not After : Apr 1 02:59:41 2026 GMT Subject: CN=69c34f9d-7ac2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:45:d1:93:86:0b:64:8a:c7:63:34:e3:7e:e9: 85:eb:bc:b1:e7:08:3a:a5:68:10:05:14:f2:64:b5: 40:f3:a9:09:cf:e2:98:d4:4a:9e:f8:d9:48:f9:85: 4e:e2:57:30:48:1a:35:2b:ce:b6:74:e8:f2:00:ec: 21:0a:32:b8:c8:58:87:bb:a7:12:43:bc:ce:64:83: ac:17:34:e7:f0:77:de:89:f7:f6:a9:c1:33:59:e4: 65:69:3a:be:66:02:f2:db:7e:a9:08:ae:3d:8c:8a: 0a:88:af:b3:54:3c:49:ee:00:44:40:d5:08:3b:1f: 7e:0a:fb:0e:6c:c7:0c:56:07:11:01:2a:f2:57:d3: 61:ef:01:04:bc:18:e5:de:14:6c:a9:bc:b4:52:00: 89:66:43:24:d2:70:43:5e:a7:bd:ff:d4:5d:39:37: ac:c8:21:d1:e4:9a:0e:0c:98:1e:d2:aa:00:9f:a4: df:f5:ba:2a:64:2b:8e:fb:09:98:18:80:c2:49:c7: fd:86:bd:b4:d5:3b:a2:f9:28:f3:aa:4c:56:99:63: 19:26:9a:f8:d0:79:6b:4a:10:d2:e9:b0:b5:cc:05: 0a:7c:aa:90:da:04:f2:76:f2:ae:6c:ca:45:2d:e1: 35:ec:8a:9e:7b:26:9e:33:a9:16:2f:9b:1b:5f:3f: 0a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B7:08:91:D6:F1:89:CE:4A:B2:8D:FD:B1:19:D5:C2:11:C4:68:90 X509v3 Authority Key Identifier: keyid:C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:a0:55:45:c1:81:9f:c8:8a:4e:d2:08:29:8e:c9:f1:3a:1f: b7:d1:fd:65:e5:86:99:76:dc:8f:c3:6b:a6:7e:bf:e3:d7:13: 2f:e4:1c:5e:03:af:3c:e5:b9:4e:ea:8e:99:f8:4f:8e:22:e6: a4:d4:79:3a:0d:bf:be:95:78:8f:d1:21:b6:c6:91:12:3f:2f: ed:21:8d:b2:d0:ab:7f:bc:ce:06:56:78:56:44:bf:8e:ae:3b: 6f:6e:29:58:f2:b1:84:76:1a:25:a9:c3:8d:44:29:b8:42:88: 85:7b:42:3f:2c:54:a5:a6:44:49:db:0a:89:97:83:34:4f:b0: 4d:74:d7:09:cb:a3:1b:d2:ec:35:5c:d8:9c:73:f1:8f:4f:f1: 4a:a6:2c:c9:69:b6:ad:5c:dc:af:fd:47:5a:93:25:dd:c6:e4: 95:76:60:56:b4:b9:50:f0:75:e0:38:0e:0b:aa:ab:9d:ea:35: 9c:a6:7e:94:cb:d0:8b:e6:ba:7d:e7:c9:3d:e9:80:94:c1:0f: 63:8e:6a:de:22:00:a2:07:60:fb:b2:bd:6f:e0:b8:09:3a:bb: 6b:d9:67:ba:75:e3:9a:fb:d1:61:07:dc:5b:a0:c0:66:59:16: b9:74:2f:a7:99:c4:3b:fb:0b:72:14:c5:c4:02:c0:2a:13:8f: 6d:66:77:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY4ODQxMTAvBgNVBAUTKEM1RDQwOUZCNUQzQUE5NzNBOTUwQzlDMzFDQzMwMTU1 RjM0OTNGNjIwHhcNMjYwMzI1MDI1OTQxWhcNMjYwNDAxMDI1OTQxWjAYMRYwFAYD VQQDEw02OWMzNGY5ZC03YWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjkXRk4YLZIrHYzTjfumF67yx5wg6pWgQBRTyZLVA86kJz+KY1Eqe+NlI+YVO 4lcwSBo1K862dOjyAOwhCjK4yFiHu6cSQ7zOZIOsFzTn8Hfeiff2qcEzWeRlaTq+ ZgLy236pCK49jIoKiK+zVDxJ7gBEQNUIOx9+CvsObMcMVgcRASryV9Nh7wEEvBjl 3hRsqby0UgCJZkMk0nBDXqe9/9RdOTesyCHR5JoODJge0qoAn6Tf9boqZCuO+wmY GIDCScf9hr201Tui+SjzqkxWmWMZJpr40HlrShDS6bC1zAUKfKqQ2gTydvKubMpF LeE17IqeeyaeM6kWL5sbXz8KcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM23CJHW 8YnOSrKN/bEZ1cIRxGiQMB8GA1UdIwQYMBaAFMXUCftdOqlzqVDJwxzDAVXzST9i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjg4NC8yQTk1MDI1NjY5 NzUxMUVFQjcwQTU1MEVDNEY5QUUwMi94ZFFKLTEwNnFYT3BVTW5ESE1NQlZmTkpQ MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hkUUotMTA2cVhPcFVNbkRITU1CVmZOSlAySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Njg4NC8yQTk1MDI1NjY5NzUxMUVFQjcwQTU1MEVDNEY5QUUwMi94ZFFKLTEwNnFY T3BVTW5ESE1NQlZmTkpQMkkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYaBVRcGBn8iKTtIIKY7J8Toft9H9ZeWGmXbcj8Nrpn6/49cTL+QcXgOvPOW5 TuqOmfhPjiLmpNR5Og2/vpV4j9EhtsaREj8v7SGNstCrf7zOBlZ4VkS/jq47b24p WPKxhHYaJanDjUQpuEKIhXtCPyxUpaZESdsKiZeDNE+wTXTXCcujG9LsNVzYnHPx j0/xSqYsyWm2rVzcr/1HWpMl3cbklXZgVrS5UPB14DgOC6qrneo1nKZ+lMvQi+a6 fefJPemAlMEPY45q3iIAogdg+7K9b+C4CTq7a9lnunXjmvvRYQfcW6DAZlkWuXQv p5nEO/sLchTFxALAKhOPbWZ3HA== -----END CERTIFICATE-----Generated at Thu Mar 26 14:26:53 2026 by rpki-client