$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft File: Xs7vXyjy82UFPfuM780W4cPehK4.mft (raw, json) Hash identifier: IwGqWu0q/OhToN/8jSiHKqCRbQGyLzZMnoyGPynHh+0= Subject key identifier: F1:01:83:70:57:A0:79:BC:4B:CA:3B:1F:A1:B7:AC:E1:33:E9:93:97 Authority key identifier: 5E:CE:EF:5F:28:F2:F3:65:05:3D:FB:8C:EF:CD:16:E1:C3:DE:84:AE Certificate issuer: /CN=A91DB8D9/serialNumber=5ECEEF5F28F2F365053DFB8CEFCD16E1C3DE84AE Certificate serial: 044F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft Manifest number: 0440 Signing time: Tue 24 Mar 2026 23:56:20 +0000 Manifest this update: Tue 24 Mar 2026 23:56:20 +0000 Manifest next update: Tue 31 Mar 2026 23:56:20 +0000 Files and hashes: 1: Xs7vXyjy82UFPfuM780W4cPehK4.crl (hash: 7FRPC6yem6aSeYdO+Q5kDKcipoKmJ/yoDdXpSnWGHls=) 2: 7E044E58A06B11ECBF29B644C4F9AE02.roa (hash: JHvS1f6jdKLwIeNTGazWPjS7qbi1eE+mp2wF3npKP1k=) 3: F31E86967B2311EF93801A72C4F9AE02.roa (hash: D6LiWMFH6d2ytAEKNZQXXNvSijIWaNdo5eD9rEi5mZA=) 4: 728139D62FA311F0A9129814C4F9AE02.roa (hash: eWlYnOj+XzRjYM0rC0+ZAzd4ERRZ2swjPOnqLD6EJ/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.crl rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:56:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1103 (0x44f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB8D9, serialNumber=5ECEEF5F28F2F365053DFB8CEFCD16E1C3DE84AE Validity Not Before: Mar 24 23:56:20 2026 GMT Not After : Mar 31 23:56:20 2026 GMT Subject: CN=69c324a4-0d1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9b:90:42:1a:4e:0d:99:2c:26:03:fb:66:6a: a7:47:b9:39:bc:1c:f8:3d:fd:9e:e0:4b:c5:1f:ae: b1:69:53:89:32:7f:62:c9:64:7d:f8:fb:f1:8a:bd: 89:59:b2:a8:6c:a3:49:12:52:40:d8:27:ab:c6:09: 45:62:cf:16:12:74:47:3f:0c:c2:bf:69:ca:fe:cf: 03:f5:e0:f5:1e:2e:fe:4c:27:f7:f8:7b:7a:a3:f3: 32:4f:b7:97:5d:c1:25:f3:91:be:e1:fb:84:88:97: 62:2c:65:64:a4:5e:f3:c3:f8:e7:49:38:65:10:7a: ee:3a:f8:e3:19:da:fa:ab:50:3a:3b:bd:75:a0:b0: a8:da:82:b8:bf:c2:0e:c3:6c:74:d2:61:ca:7c:7f: 18:92:91:71:14:b8:d8:d9:2c:9f:24:77:37:8c:d5: bf:a4:9e:82:92:1a:ad:fc:47:af:b4:cc:5d:33:73: 34:be:27:e2:a2:4d:0b:8a:4b:b3:30:14:db:83:e7: 35:d5:19:90:f4:9f:8e:af:e0:ae:ca:e5:01:bc:ec: 2d:2c:f4:2c:98:50:3a:5f:46:84:36:1a:2a:1e:e2: 59:1e:88:3f:48:3f:fe:03:69:c6:a5:29:eb:7c:4b: 10:0f:d1:d6:3e:9b:56:d3:cf:da:58:37:c0:ba:95: a0:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:01:83:70:57:A0:79:BC:4B:CA:3B:1F:A1:B7:AC:E1:33:E9:93:97 X509v3 Authority Key Identifier: keyid:5E:CE:EF:5F:28:F2:F3:65:05:3D:FB:8C:EF:CD:16:E1:C3:DE:84:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:c9:2c:d4:81:3b:db:8a:ec:81:06:54:89:4f:05:ae:4d:fd: 94:26:69:9a:5e:8c:e1:9d:97:e1:e9:f4:a6:a5:e3:2d:f9:e6: 16:a8:09:dc:8d:21:22:17:a1:a8:50:0d:21:33:77:4e:f4:ab: a5:b3:c2:c1:23:95:0e:6a:71:96:4d:a4:70:87:8d:d3:0e:a5: d6:a2:73:cb:c3:ae:6c:7c:be:0b:56:f1:92:9c:66:10:10:de: 60:4e:a2:4a:96:92:3e:4b:1d:76:81:a1:06:f6:06:3d:19:e3: ea:be:3b:f0:a6:29:78:bb:8e:1f:50:06:d5:72:e3:33:76:9e: 52:26:a7:e2:55:02:f6:68:f5:c6:4b:e1:6e:24:2b:21:16:4e: fb:90:0c:1e:c1:4c:3f:19:bf:c6:11:03:68:90:74:73:b7:65: b1:f3:61:3d:0a:4b:21:2d:c4:7a:1a:5b:48:0c:c2:97:65:c1: 80:f4:c0:aa:69:fa:6a:22:e0:fd:a6:f3:b2:49:ad:79:38:5c: 74:60:e8:fd:1a:46:ff:32:68:b2:19:35:e4:03:e6:67:27:4e: 65:d9:78:b0:97:d0:3a:87:65:4f:a3:04:3d:21:c7:e6:4a:00: 0c:49:3d:fa:89:58:7b:18:41:d3:e1:b9:09:fb:30:fe:e0:f9: 00:cf:b0:62 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBE8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI4RDkxMTAvBgNVBAUTKDVFQ0VFRjVGMjhGMkYzNjUwNTNERkI4Q0VGQ0QxNkUx QzNERTg0QUUwHhcNMjYwMzI0MjM1NjIwWhcNMjYwMzMxMjM1NjIwWjAYMRYwFAYD VQQDEw02OWMzMjRhNC0wZDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZuQQhpODZksJgP7ZmqnR7k5vBz4Pf2e4EvFH66xaVOJMn9iyWR9+Pvxir2J WbKobKNJElJA2CerxglFYs8WEnRHPwzCv2nK/s8D9eD1Hi7+TCf3+Ht6o/MyT7eX XcEl85G+4fuEiJdiLGVkpF7zw/jnSThlEHruOvjjGdr6q1A6O711oLCo2oK4v8IO w2x00mHKfH8YkpFxFLjY2SyfJHc3jNW/pJ6Ckhqt/EevtMxdM3M0vifiok0Likuz MBTbg+c11RmQ9J+Or+CuyuUBvOwtLPQsmFA6X0aENhoqHuJZHog/SD/+A2nGpSnr fEsQD9HWPptW08/aWDfAupWgiwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPEBg3BX oHm8S8o7H6G3rOEz6ZOXMB8GA1UdIwQYMBaAFF7O718o8vNlBT37jO/NFuHD3oSu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjhEOS84QjAwMjM3NjlB MDIxMUVDOEI4MTc3ODVDNEY5QUUwMi9Yczd2WHlqeTgyVUZQZnVNNzgwVzRjUGVo SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzN3ZYeWp5ODJVRlBmdU03ODBXNGNQZWhLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjhEOS84QjAwMjM3NjlBMDIxMUVDOEI4MTc3ODVDNEY5QUUwMi9Yczd2WHlqeTgy VUZQZnVNNzgwVzRjUGVoSzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVsks1IE724rsgQZUiU8Frk39lCZpml6M4Z2X4en0pqXjLfnmFqgJ3I0hIheh qFANITN3TvSrpbPCwSOVDmpxlk2kcIeN0w6l1qJzy8OubHy+C1bxkpxmEBDeYE6i SpaSPksddoGhBvYGPRnj6r478KYpeLuOH1AG1XLjM3aeUian4lUC9mj1xkvhbiQr IRZO+5AMHsFMPxm/xhEDaJB0c7dlsfNhPQpLIS3EehpbSAzCl2XBgPTAqmn6aiLg /abzskmteThcdGDo/RpG/zJoshk15APmZydOZdl4sJfQOodlT6MEPSHH5koADEk9 +olYexhB0+G5Cfsw/uD5AM+wYg== -----END CERTIFICATE-----Generated at Thu Mar 26 16:43:36 2026 by rpki-client