$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft File: X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft (raw, json) Hash identifier: AP8tUwfuwayxFwgWgBJb/SalE6guieUAcgA6yglnOP4= Subject key identifier: FE:E5:E4:71:DC:31:23:37:AD:ED:59:51:31:B8:46:D1:BD:3F:9D:E8 Authority key identifier: 5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D Certificate issuer: /CN=A91DF856/serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft Manifest number: B5 Signing time: Wed 25 Mar 2026 06:21:14 +0000 Manifest this update: Wed 25 Mar 2026 06:21:13 +0000 Manifest next update: Wed 01 Apr 2026 06:21:13 +0000 Files and hashes: 1: X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl (hash: bgJnZ72CN/a7D874kHIuuNh3FCqERPLZDpvxEDUSphg=) 2: D522C16CBAEB11F09547BA51C4F9AE02.roa (hash: RnihpSJKxhqk9WNkps/6xGJCCbveQoqTufTmq79Au24=) 3: B245BA601C4311F08254DE40C4F9AE02.roa (hash: lKCCxnQLqgGAAxb0II04awvwUyFApZ9TGbpShXSvZgw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF856, serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Validity Not Before: Mar 25 06:21:13 2026 GMT Not After : Apr 1 06:21:13 2026 GMT Subject: CN=69c37eda-48c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7d:15:13:1f:89:bf:ab:da:1f:03:7c:37:b4: c5:4c:b9:b4:f7:bf:3b:1e:67:5a:93:8d:06:1e:57: a2:cd:a4:af:50:49:f1:37:2f:59:43:92:5b:d7:f8: d7:db:80:1b:b4:da:a6:10:6c:c3:ee:01:53:35:92: 80:e7:06:e3:6b:20:5d:eb:78:8c:70:7c:00:44:ea: 6b:7a:b1:c1:7b:90:48:05:02:22:08:ea:b5:03:6b: aa:ae:df:d0:21:57:ee:ab:98:e3:18:06:ad:5c:52: 81:8f:45:cc:fa:17:c8:6c:b7:9b:40:15:b2:df:6e: 1a:a2:c9:c7:12:f7:f8:e3:33:b2:43:2c:71:51:6a: f7:3f:dc:13:90:44:fb:c7:da:6d:a4:15:bd:16:d1: bc:de:b4:e6:97:3d:3c:03:b0:8e:1e:8b:e7:31:53: c1:d3:78:3b:f5:ff:70:5c:84:96:a6:e2:ba:1f:56: d0:11:47:8b:08:12:1a:75:bb:34:a6:e0:f5:82:e7: eb:20:78:e3:94:18:c3:dd:38:a5:fc:f0:fe:9a:08: 3d:06:ba:07:ec:b0:03:97:71:18:a5:92:1c:9a:00: af:95:21:0e:bc:64:81:40:e7:5b:4b:7f:a1:7a:0e: 72:b6:e4:0f:00:00:b7:8a:3b:14:4f:f5:04:66:cf: 8b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:E5:E4:71:DC:31:23:37:AD:ED:59:51:31:B8:46:D1:BD:3F:9D:E8 X509v3 Authority Key Identifier: keyid:5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:a2:61:21:3d:10:d8:1a:ae:44:dc:0b:0e:22:41:21:4d:49: 7b:96:56:72:11:d5:c0:03:d9:22:f4:b4:19:ed:00:ae:34:f5: 24:32:08:b2:0c:fe:5b:d0:2a:89:b0:47:80:d2:4f:70:0f:df: 56:4a:c7:23:4a:a4:7f:7d:67:d1:43:3b:10:01:7f:5d:13:46: fc:19:1d:24:55:32:fe:38:83:37:9e:0c:52:d4:d2:e9:be:bc: aa:45:45:bb:bc:f2:88:91:98:49:41:a8:dc:f7:86:23:63:d6: 63:a7:62:1e:39:8b:4b:17:74:89:0d:ce:d7:d2:fb:0b:fc:3c: 30:8d:05:a7:e0:c2:1f:84:11:47:96:62:37:b2:b6:df:05:e0: 74:64:3f:87:56:d7:e2:df:63:27:dc:37:26:50:fb:22:1e:15: ae:f3:8a:64:9b:f5:c3:07:9a:c6:9a:38:f1:df:73:ea:d9:6e: fa:4c:dc:3b:84:fc:98:3f:84:d5:df:4d:27:46:f1:76:e0:ca: 7b:13:e8:6a:42:02:00:92:8c:b9:a1:c6:3a:ca:aa:a2:47:09: 42:a4:ec:7d:2d:2c:e4:f0:e7:3e:f9:f5:28:24:c7:7b:6e:f1: 55:92:47:66:81:3a:fa:a2:8b:6a:2f:7e:7e:0c:8b:bc:28:ed: c1:8d:5b:1d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NTYxMTAvBgNVBAUTKDVGNjk5MTg2QTJFQkNENDVCMUZGNkEwQTRBRjYwNjA2 RjNCM0QwOEQwHhcNMjYwMzI1MDYyMTEzWhcNMjYwNDAxMDYyMTEzWjAYMRYwFAYD VQQDEw02OWMzN2VkYS00OGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvX0VEx+Jv6vaHwN8N7TFTLm09787Hmdak40GHleizaSvUEnxNy9ZQ5Jb1/jX 24AbtNqmEGzD7gFTNZKA5wbjayBd63iMcHwAROprerHBe5BIBQIiCOq1A2uqrt/Q IVfuq5jjGAatXFKBj0XM+hfIbLebQBWy324aosnHEvf44zOyQyxxUWr3P9wTkET7 x9ptpBW9FtG83rTmlz08A7COHovnMVPB03g79f9wXISWpuK6H1bQEUeLCBIadbs0 puD1gufrIHjjlBjD3Til/PD+mgg9BroH7LADl3EYpZIcmgCvlSEOvGSBQOdbS3+h eg5ytuQPAAC3ijsUT/UEZs+LDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP7l5HHc MSM3re1ZUTG4RtG9P53oMB8GA1UdIwQYMBaAFF9pkYai681Fsf9qCkr2Bgbzs9CN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg1Ni9FRkYyQTBBMDFD NDExMUYwQTk4MjFGM0VDNEY5QUUwMi9YMm1SaHFMcnpVV3hfMm9LU3ZZR0J2T3ow STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gybVJocUxyelVXeF8yb0tTdllHQnZPejBJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg1Ni9FRkYyQTBBMDFDNDExMUYwQTk4MjFGM0VDNEY5QUUwMi9YMm1SaHFMcnpV V3hfMm9LU3ZZR0J2T3owSTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADaJhIT0Q2BquRNwLDiJBIU1Je5ZWchHVwAPZIvS0Ge0ArjT1JDIIsgz+W9Aq ibBHgNJPcA/fVkrHI0qkf31n0UM7EAF/XRNG/BkdJFUy/jiDN54MUtTS6b68qkVF u7zyiJGYSUGo3PeGI2PWY6diHjmLSxd0iQ3O19L7C/w8MI0Fp+DCH4QRR5ZiN7K2 3wXgdGQ/h1bX4t9jJ9w3JlD7Ih4VrvOKZJv1wweaxpo48d9z6tlu+kzcO4T8mD+E 1d9NJ0bxduDKexPoakICAJKMuaHGOsqqokcJQqTsfS0s5PDnPvn1KCTHe27xVZJH ZoE6+qKLai9+fgyLvCjtwY1bHQ== -----END CERTIFICATE-----Generated at Thu Mar 26 14:33:17 2026 by rpki-client