$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft File: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft (raw, json) Hash identifier: aV6aaNsOIzZV2RUS8ryRSOZS/HTz9wwpttMLG+5lLXY= Subject key identifier: ED:C4:CF:2C:E8:72:09:81:98:77:CC:3B:9F:A4:16:77:8F:83:E8:60 Authority key identifier: C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 Certificate issuer: /CN=A91E3BF2/serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Certificate serial: 0351 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft Manifest number: 0349 Signing time: Wed 25 Mar 2026 00:36:18 +0000 Manifest this update: Wed 25 Mar 2026 00:36:17 +0000 Manifest next update: Wed 01 Apr 2026 00:36:17 +0000 Files and hashes: 1: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl (hash: wFa6ULKRfdE1z9vjtVzYnypuboEfLVlMoPEhoSVfyNo=) 2: 6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa (hash: OXdwgZN4vaFZ6nWyjvt24Xk4nrgBuF6Vr7LgDqZpHIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:36:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 849 (0x351) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BF2, serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Validity Not Before: Mar 25 00:36:17 2026 GMT Not After : Apr 1 00:36:17 2026 GMT Subject: CN=69c32e02-aea6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:6b:b1:3d:d5:3a:21:77:0f:02:14:44:d2:6c: e4:b0:1b:a3:60:21:79:a1:6b:cd:e5:cc:ba:b5:9b: 5e:bb:38:2e:7e:48:e4:7e:6d:60:2c:f3:a4:e4:2a: 37:72:b9:54:79:8b:0b:b3:79:3e:01:ce:d3:52:1c: c4:42:20:9d:3b:27:11:a1:77:ea:b1:fb:e6:7c:72: bb:a2:28:a7:af:14:40:42:89:1b:c5:09:0c:fd:d1: b7:1e:ce:e4:64:dd:43:07:87:fc:dd:71:6b:6b:54: 00:2c:c2:95:79:fa:21:34:2a:cf:80:32:fe:48:ae: 96:f8:4d:aa:81:7d:73:d6:21:68:35:62:26:cb:ee: 52:b9:28:6d:16:55:82:27:58:d5:65:23:34:a8:cd: 72:25:03:d5:de:94:b5:13:95:22:c1:72:31:1b:19: f2:1a:d0:c9:98:fc:cf:6a:e6:a2:bc:c3:b7:18:2a: e2:23:61:29:f2:c6:af:73:70:c7:86:98:1c:d8:10: 9b:62:9f:e6:6f:a8:5d:23:03:81:9b:34:66:38:38: eb:c9:c0:55:56:0f:f0:89:0c:60:f6:04:c0:64:92: 23:f5:08:21:13:01:1d:ce:55:f9:07:43:c1:08:eb: 1c:c6:8d:d3:32:37:da:16:50:23:ac:7c:1b:c6:bc: 6e:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:C4:CF:2C:E8:72:09:81:98:77:CC:3B:9F:A4:16:77:8F:83:E8:60 X509v3 Authority Key Identifier: keyid:C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:1d:40:99:1c:34:d7:e0:79:07:ee:25:86:87:2d:96:9d:0b: 09:19:7a:55:06:74:ce:17:13:0e:f8:24:ac:83:3b:c9:ff:bb: 14:f4:1d:11:fb:1c:1d:cd:8a:8d:b8:a6:0a:8f:32:69:9a:00: e4:be:05:48:27:1b:90:de:16:de:f9:b2:e7:f1:69:24:10:a4: 5d:1f:a0:5b:fe:ca:b6:27:3a:30:d2:b9:ba:a3:2f:80:76:dc: 9c:56:70:28:3a:68:c5:f2:3e:db:02:1a:74:16:0f:5d:24:06: fc:0a:44:56:c0:67:0f:c9:36:4f:2c:62:d5:87:58:67:4e:c2: 3b:7f:24:8f:e0:31:aa:b2:ad:d2:d2:96:0e:10:90:f8:6b:85: 4a:ea:97:4f:58:5b:4c:9b:20:e2:d1:1f:0e:dc:11:2e:b1:37: c7:06:e7:13:11:6b:63:40:5b:78:27:69:35:f0:96:50:8d:44: 98:a6:ba:f3:08:6a:4f:01:c6:33:ce:b9:55:cd:7a:ce:39:48: a2:4c:d7:1a:0f:c8:90:ca:e7:ff:85:bb:db:b4:5e:a2:03:ea: 6b:5e:04:d9:bf:55:c3:b4:c0:6e:14:57:f0:4b:32:55:e8:a3: 90:47:ec:67:f6:99:e7:5c:9f:70:97:7e:67:ae:2e:90:d9:b7: 4c:b6:e9:03 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCRjIxMTAvBgNVBAUTKEM0NzFBNTZFRTk0RjA1QjQzN0MwOUVFRTBGNDQyMDNG QTQ1OTI3MzYwHhcNMjYwMzI1MDAzNjE3WhcNMjYwNDAxMDAzNjE3WjAYMRYwFAYD VQQDEw02OWMzMmUwMi1hZWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1GuxPdU6IXcPAhRE0mzksBujYCF5oWvN5cy6tZteuzgufkjkfm1gLPOk5Co3 crlUeYsLs3k+Ac7TUhzEQiCdOycRoXfqsfvmfHK7oiinrxRAQokbxQkM/dG3Hs7k ZN1DB4f83XFra1QALMKVefohNCrPgDL+SK6W+E2qgX1z1iFoNWImy+5SuShtFlWC J1jVZSM0qM1yJQPV3pS1E5UiwXIxGxnyGtDJmPzPauaivMO3GCriI2Ep8savc3DH hpgc2BCbYp/mb6hdIwOBmzRmODjrycBVVg/wiQxg9gTAZJIj9QghEwEdzlX5B0PB COscxo3TMjfaFlAjrHwbxrxuEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO3Ezyzo cgmBmHfMO5+kFnePg+hgMB8GA1UdIwQYMBaAFMRxpW7pTwW0N8Ce7g9EID+kWSc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JGMi81MDkwOTZBOEY2 QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJiUTN3Sjd1RDBRZ1A2UlpK elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIR2xidWxQQmJRM3dKN3VEMFFnUDZSWkp6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JGMi81MDkwOTZBOEY2QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJi UTN3Sjd1RDBRZ1A2UlpKelkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYh1AmRw01+B5B+4lhoctlp0LCRl6VQZ0zhcTDvgkrIM7yf+7FPQdEfscHc2K jbimCo8yaZoA5L4FSCcbkN4W3vmy5/FpJBCkXR+gW/7Ktic6MNK5uqMvgHbcnFZw KDpoxfI+2wIadBYPXSQG/ApEVsBnD8k2Tyxi1YdYZ07CO38kj+AxqrKt0tKWDhCQ +GuFSuqXT1hbTJsg4tEfDtwRLrE3xwbnExFrY0BbeCdpNfCWUI1EmKa68whqTwHG M865Vc16zjlIokzXGg/IkMrn/4W727ReogPqa14E2b9Vw7TAbhRX8EsyVeijkEfs Z/aZ51yfcJd+Z64ukNm3TLbpAw== -----END CERTIFICATE-----Generated at Thu Mar 26 05:25:48 2026 by rpki-client