$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft File: XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft (raw, json) Hash identifier: tPVh5gfUl5A4pqAqxcpXmLyLDduJcuT+Lgdnzq/UHug= Subject key identifier: 0C:08:9B:96:D5:D1:AE:19:57:13:36:35:EF:18:38:A7:6A:3B:A2:93 Authority key identifier: 5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 Certificate issuer: /CN=A91E4BD2/serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Certificate serial: 0998 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft Manifest number: 0990 Signing time: Tue 24 Mar 2026 19:46:59 +0000 Manifest this update: Tue 24 Mar 2026 19:46:59 +0000 Manifest next update: Tue 31 Mar 2026 19:46:59 +0000 Files and hashes: 1: XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl (hash: oQ7KyquZ9pxW62Kauy2bC74wb2JL6YFvAGYYkq6dMvg=) 2: A862F866AA3111EA9E08C324C4F9AE02.roa (hash: ugSUEDm51JpwxsKQw3/Ce/i8kMyJ/T7+EguAolkLIDY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2456 (0x998) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4BD2, serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Validity Not Before: Mar 24 19:46:59 2026 GMT Not After : Mar 31 19:46:59 2026 GMT Subject: CN=69c2ea33-ff5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:81:4f:8c:1e:73:76:d2:5f:df:d4:74:9c:aa: a9:51:fb:44:6a:e3:e6:1e:bd:81:eb:12:4b:78:a5: d5:10:5e:f4:c7:4f:bd:5a:8d:a0:04:fd:48:e2:49: c6:8b:7e:75:1d:32:af:cd:bc:2c:b8:b4:fd:af:0b: 67:05:0d:b7:83:6d:7c:d2:ab:6e:2f:35:16:1f:e8: 46:89:91:4e:8a:e2:a3:99:89:1a:5c:c7:5d:f2:2a: e9:8c:81:c9:48:14:43:89:a9:c6:cd:9c:10:df:7d: 63:65:78:5e:02:d4:00:9e:c7:d8:20:48:9c:ac:24: d8:54:e6:b6:0a:22:04:6b:3b:7f:39:02:d8:1e:2b: f4:96:d8:87:f7:a7:ef:59:26:10:18:d5:e4:17:07: 9e:ac:d6:93:0d:b3:52:e1:90:a5:48:20:b5:13:be: 22:34:4d:47:b4:0a:0b:74:4e:4b:e7:7a:72:c0:21: 70:38:2d:3e:24:65:1e:a1:de:7f:cf:e5:49:20:f8: 15:86:04:cc:f1:09:ca:b1:a3:ea:b9:ff:30:2c:61: 99:30:3b:50:dc:e3:f8:1b:0a:e7:d7:68:36:89:1f: e7:ee:99:c5:29:be:a8:cc:32:b0:f4:63:ed:2b:f4: f0:38:dc:90:87:14:8d:5b:f5:b4:af:68:cf:d9:a7: d5:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:08:9B:96:D5:D1:AE:19:57:13:36:35:EF:18:38:A7:6A:3B:A2:93 X509v3 Authority Key Identifier: keyid:5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:2d:eb:0a:70:20:aa:d3:21:99:64:1e:3f:19:72:17:51:3a: f6:d8:a5:6c:a2:c7:0a:76:0b:4d:e9:bb:3a:13:e0:e6:4c:5b: 42:f7:80:f7:71:64:c5:6d:8a:17:e8:cf:d3:c9:49:6f:25:26: 61:ad:6f:3d:6e:e7:ec:d9:0f:de:6f:58:3b:0f:7e:bc:36:f1: 36:b1:55:5c:11:2d:25:ce:0b:12:86:be:c9:47:d7:61:7f:cc: 43:c4:e9:ff:f4:35:83:31:78:f5:cd:5e:20:9e:d1:7b:0b:65: 9c:92:9a:64:42:6c:7a:71:1f:a6:53:ea:ac:18:51:df:bd:bd: bd:fe:03:c0:94:23:d7:25:e2:7f:4d:85:2f:ca:3e:a4:15:1c: 2a:24:3d:9b:88:36:e2:63:2e:76:e6:d3:8d:eb:4f:a6:d0:16: 1d:14:12:eb:d7:13:4f:e7:c9:01:2f:42:8c:04:40:6a:dc:1d: 8e:32:5f:dd:0a:16:c8:7c:33:40:ab:c3:a1:2a:ed:7b:b2:fd: 23:79:17:3b:54:82:77:64:2c:8f:57:9a:57:eb:37:ff:1b:30: 99:6c:98:22:ae:68:5b:78:ae:f5:79:20:7d:ff:66:41:a6:7e: db:07:15:79:ef:b6:ab:3f:61:ce:a5:c8:96:3e:dd:53:68:1e: 6e:46:50:14 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRCRDIxMTAvBgNVBAUTKDVEQ0E0NTI4QjlFNDBDODhFNDY3QTQzRkRDMTJCNzhG MkIzNTQ1RTMwHhcNMjYwMzI0MTk0NjU5WhcNMjYwMzMxMTk0NjU5WjAYMRYwFAYD VQQDEw02OWMyZWEzMy1mZjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2IFPjB5zdtJf39R0nKqpUftEauPmHr2B6xJLeKXVEF70x0+9Wo2gBP1I4knG i351HTKvzbwsuLT9rwtnBQ23g2180qtuLzUWH+hGiZFOiuKjmYkaXMdd8irpjIHJ SBRDianGzZwQ331jZXheAtQAnsfYIEicrCTYVOa2CiIEazt/OQLYHiv0ltiH96fv WSYQGNXkFweerNaTDbNS4ZClSCC1E74iNE1HtAoLdE5L53pywCFwOC0+JGUeod5/ z+VJIPgVhgTM8QnKsaPquf8wLGGZMDtQ3OP4Gwrn12g2iR/n7pnFKb6ozDKw9GPt K/TwONyQhxSNW/W0r2jP2afV/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAwIm5bV 0a4ZVxM2Ne8YOKdqO6KTMB8GA1UdIwQYMBaAFF3KRSi55AyI5GekP9wSt48rNUXj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEJEMi9GNDBCMTE2QUFB MkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJamtaNlFfM0JLM2p5czFS ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjcEZLTG5rRElqa1o2UV8zQkszanlzMVJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEJEMi9GNDBCMTE2QUFBMkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJ amtaNlFfM0JLM2p5czFSZU0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYy3rCnAgqtMhmWQePxlyF1E69tilbKLHCnYLTem7OhPg5kxbQveA93FkxW2K F+jP08lJbyUmYa1vPW7n7NkP3m9YOw9+vDbxNrFVXBEtJc4LEoa+yUfXYX/MQ8Tp //Q1gzF49c1eIJ7RewtlnJKaZEJsenEfplPqrBhR3729vf4DwJQj1yXif02FL8o+ pBUcKiQ9m4g24mMudubTjetPptAWHRQS69cTT+fJAS9CjARAatwdjjJf3QoWyHwz QKvDoSrte7L9I3kXO1SCd2Qsj1eaV+s3/xswmWyYIq5oW3iu9Xkgff9mQaZ+2wcV ee+2qz9hzqXIlj7dU2gebkZQFA== -----END CERTIFICATE-----Generated at Thu Mar 26 10:08:31 2026 by rpki-client