$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft File: XHIqJhQciPfNQPObN0raf7wfmx8.mft (raw, json) Hash identifier: T0sZzvuVAxvWWoikD7USFRcBMtsRiYwV2FjmLn7AUwA= Subject key identifier: 8E:2C:51:F9:02:2A:20:7A:A7:9F:5E:2E:0D:3B:EC:07:93:85:A8:41 Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: 014D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft Manifest number: 0138 Signing time: Wed 25 Mar 2026 04:44:30 +0000 Manifest this update: Wed 25 Mar 2026 04:44:30 +0000 Manifest next update: Wed 01 Apr 2026 04:44:30 +0000 Files and hashes: 1: XHIqJhQciPfNQPObN0raf7wfmx8.crl (hash: xfbC7tji18zdgDoP4BYHOyViaQJJpq++iRo7hVM/ZwE=) 2: D956F03AAB0211F083CD7E11C4F9AE02.roa (hash: rrKRhHeiohcyIqeCIJv+44R0SbRHPDcNTcaSyqFnNBQ=) 3: F0FCC9ECABF411F0B9E4F837C4F9AE02.roa (hash: yjLxdwzIuckVEpvjPtBFZMr56OhqZEN8C8fQw3Xhxos=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:44:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A, serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: Mar 25 04:44:30 2026 GMT Not After : Apr 1 04:44:30 2026 GMT Subject: CN=69c3682e-7619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9d:2c:d1:d7:a2:7c:58:54:20:08:51:93:2b: e6:ac:23:0b:fb:5d:6d:e5:49:18:12:12:45:95:62: 0f:ee:b1:0f:eb:c3:2d:f2:83:3f:05:90:8a:9a:32: 20:65:84:e9:e4:38:19:f4:dc:3f:29:aa:d7:6c:6f: 8a:d8:34:4d:20:94:bc:55:89:a0:f4:0d:93:1f:43: d1:70:8a:06:dc:24:2d:c4:d4:84:26:16:b2:6b:16: cc:1f:92:9e:4e:6d:cf:0f:4a:5e:94:da:b9:5b:ec: fd:ab:62:a2:ad:b5:b1:56:04:87:29:1c:0b:df:e3: 06:48:bf:68:5d:51:12:6e:41:31:da:99:66:da:98: 94:ed:5b:f3:4c:aa:ea:e1:93:8e:7b:58:49:04:63: 0a:92:54:d0:e8:24:ef:88:48:6f:bd:a1:d4:4e:ca: f5:27:94:b6:1f:2e:19:23:d7:d0:bf:34:7e:ac:f9: 22:c0:7c:83:fa:3e:c6:74:96:02:fc:d1:75:61:3d: 6e:21:7a:0d:96:ee:21:13:09:d4:d6:ab:0b:d3:c2: 45:96:9d:2e:50:60:06:e9:92:85:72:cc:6d:c3:5c: ed:ea:f3:de:e9:e4:c6:f9:01:39:1d:c4:43:0b:48: 6a:17:b4:ff:2b:d7:da:05:25:ab:c4:1c:02:98:07: 5a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:2C:51:F9:02:2A:20:7A:A7:9F:5E:2E:0D:3B:EC:07:93:85:A8:41 X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:02:21:ca:82:c7:93:f2:f8:2c:e5:92:97:ab:17:55:b8:3b: 94:d6:79:b3:cb:6b:a3:2f:9f:0a:90:6e:88:b8:37:d8:15:e9: f9:2e:0f:0c:c5:39:ec:ad:f2:80:e0:f5:44:7d:85:30:ca:ed: c5:bd:04:ac:cd:73:f4:54:47:50:5b:04:21:4e:d6:34:4f:b2: a1:56:87:35:e6:fa:37:7b:31:a8:26:89:12:91:5e:80:1a:d6: f7:03:06:d8:a9:80:f9:5c:9b:91:45:01:94:c7:52:3f:b8:a6: 81:e7:01:7d:9b:fd:b7:9e:a4:48:2c:3a:a0:06:bf:20:8e:c2: d5:cb:0b:6a:b0:f6:66:c8:92:e1:1f:16:db:6f:3e:55:c0:e2: 7e:09:f6:eb:36:04:dd:10:35:8c:31:7c:b8:a5:65:72:3c:14: 91:cb:94:ae:32:7a:f9:37:07:e9:18:5d:f6:96:f5:d3:00:02: dd:27:12:3f:c1:12:29:64:1a:82:2b:fd:a1:ce:cf:c6:ce:07: aa:eb:5b:bf:d0:74:d7:ac:da:3d:20:52:e8:18:47:bc:22:2c: 27:88:32:14:ca:a5:75:2c:35:ef:3a:c8:23:b8:27:0c:a5:71: c8:ce:e0:3d:c0:87:cf:53:40:cb:9a:70:13:88:22:7b:05:46: 5d:01:42:20 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgyNEExMTAvBgNVBAUTKDVDNzIyQTI2MTQxQzg4RjdDRDQwRjM5QjM3NEFEQTdG QkMxRjlCMUYwHhcNMjYwMzI1MDQ0NDMwWhcNMjYwNDAxMDQ0NDMwWjAYMRYwFAYD VQQDEw02OWMzNjgyZS03NjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy50s0deifFhUIAhRkyvmrCML+11t5UkYEhJFlWIP7rEP68Mt8oM/BZCKmjIg ZYTp5DgZ9Nw/KarXbG+K2DRNIJS8VYmg9A2TH0PRcIoG3CQtxNSEJhayaxbMH5Ke Tm3PD0pelNq5W+z9q2KirbWxVgSHKRwL3+MGSL9oXVESbkEx2plm2piU7VvzTKrq 4ZOOe1hJBGMKklTQ6CTviEhvvaHUTsr1J5S2Hy4ZI9fQvzR+rPkiwHyD+j7GdJYC /NF1YT1uIXoNlu4hEwnU1qsL08JFlp0uUGAG6ZKFcsxtw1zt6vPe6eTG+QE5HcRD C0hqF7T/K9faBSWrxBwCmAda8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI4sUfkC KiB6p59eLg077AeThahBMB8GA1UdIwQYMBaAFFxyKiYUHIj3zUDzmzdK2n+8H5sf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODI0QS80QURGMzNGQzVC OUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQZk5RUE9iTjByYWY3d2Zt eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODI0QS80QURGMzNGQzVCOUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQ Zk5RUE9iTjByYWY3d2ZteDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiAIhyoLHk/L4LOWSl6sXVbg7lNZ5s8troy+fCpBuiLg32BXp+S4PDMU57K3y gOD1RH2FMMrtxb0ErM1z9FRHUFsEIU7WNE+yoVaHNeb6N3sxqCaJEpFegBrW9wMG 2KmA+VybkUUBlMdSP7imgecBfZv9t56kSCw6oAa/II7C1csLarD2ZsiS4R8W228+ VcDifgn26zYE3RA1jDF8uKVlcjwUkcuUrjJ6+TcH6Rhd9pb10wAC3ScSP8ESKWQa giv9oc7Pxs4Hqutbv9B016zaPSBS6BhHvCIsJ4gyFMqldSw17zrII7gnDKVxyM7g PcCHz1NAy5pwE4giewVGXQFCIA== -----END CERTIFICATE-----Generated at Thu Mar 26 08:57:14 2026 by rpki-client