$ rpki-client -vvf rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft File: XDlbosoKv2WIhyaHTHgktpt4mZU.mft (raw, json) Hash identifier: YUThtYLgp4LjcYvRTZOGhVsQoVJ6H2zoYq8gIuOkTPA= Subject key identifier: 02:38:62:22:DA:02:AC:8A:D9:D3:27:A0:7B:7D:E9:FE:E7:55:51:73 Authority key identifier: 5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 Certificate issuer: /CN=A91E66E5/serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Certificate serial: 0EE3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft Manifest number: 0ED5 Signing time: Tue 24 Mar 2026 17:31:34 +0000 Manifest this update: Tue 24 Mar 2026 17:31:34 +0000 Manifest next update: Tue 31 Mar 2026 17:31:34 +0000 Files and hashes: 1: XDlbosoKv2WIhyaHTHgktpt4mZU.crl (hash: mH5vfSwqXNP8u2egEwWKdrT0pvBl/KHsou4Pv7qPINw=) 2: AECDA1B0448F11EDACC30815C4F9AE02.roa (hash: FqhmTiuHqY8gw1t5J7HJvzNjKMgTbM9279JGx7rvFLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:31:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3811 (0xee3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E66E5, serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Validity Not Before: Mar 24 17:31:34 2026 GMT Not After : Mar 31 17:31:34 2026 GMT Subject: CN=69c2ca76-fc67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ec:fd:1b:4a:b1:13:a0:02:ed:a8:f2:31:dd: 89:0b:8b:f4:82:22:1c:c4:80:1f:85:1f:02:f5:2c: b0:11:cb:f7:7b:61:8b:73:17:75:b0:a9:bb:6b:49: 73:45:ba:16:88:35:6e:95:90:e0:a7:9b:25:99:e8: 8d:fa:02:cc:88:3e:85:e2:68:01:f4:5f:a2:40:d4: 74:63:34:14:f6:15:12:bb:fa:c2:b8:53:6d:89:11: 17:f9:97:a3:40:19:e5:08:06:46:ca:dc:28:02:8b: d2:f5:71:9f:42:c1:07:51:cc:49:46:ab:6b:f4:f1: 53:03:e1:23:5c:fd:30:83:a7:ec:3c:09:b0:f9:db: 73:b8:31:97:62:70:dd:7f:21:8b:ad:9a:dc:56:bf: ba:6b:33:d8:87:e6:f0:dc:a1:71:79:7d:04:c8:e9: f0:2e:0a:c1:8d:b3:04:de:b0:af:cb:59:f5:37:38: 0a:9e:c5:7f:cb:62:7f:72:39:d7:cc:11:71:88:93: d3:d1:c1:c0:f6:dd:f4:13:94:67:72:9b:f6:6b:85: 41:db:45:68:f9:96:ba:ff:01:2c:90:4a:58:46:2c: c8:fd:59:c7:df:a9:d3:9c:e5:a5:dd:18:8a:1c:ae: 16:ea:6b:63:e2:74:c3:c7:c5:ae:4a:d8:13:70:78: 7f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:38:62:22:DA:02:AC:8A:D9:D3:27:A0:7B:7D:E9:FE:E7:55:51:73 X509v3 Authority Key Identifier: keyid:5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:f9:14:fa:55:9d:6b:f7:33:67:28:49:d8:20:36:27:c6:12: ce:31:32:7a:96:98:f6:1e:46:43:bb:38:ca:13:f7:5f:8e:c3: d7:50:78:1a:5a:32:33:83:dc:cd:0f:39:1f:20:6d:1a:fb:a4: ae:49:c6:54:91:8d:8e:0d:ef:d0:81:b0:29:4c:ff:90:fd:24: d8:99:3e:0f:fc:ae:64:dc:59:1f:33:19:92:2c:41:cc:e6:f5: 2e:b8:1f:39:03:c4:52:2e:13:ec:cb:94:c8:2a:99:a0:38:04: ee:8d:73:0e:c6:f5:da:55:a3:04:33:d4:9b:69:31:9b:94:28: 08:91:eb:3d:3a:3c:0d:84:b0:4b:86:84:02:04:c1:8a:67:4d: fe:66:9b:b8:18:b1:5a:0d:ff:62:66:7a:df:0d:ec:b2:c2:2c: ca:72:f9:d5:cc:22:8b:7f:3a:84:3e:32:41:94:7f:ad:c5:ea: f0:f8:75:9b:a7:4f:7f:99:b8:fd:3f:fd:51:9f:49:d5:99:0a: 9d:25:40:3f:07:8e:49:49:65:33:cf:ab:7a:ac:95:15:2e:22: 1a:88:22:6b:b5:fe:11:d3:fd:ab:1e:bb:01:c9:ac:09:6d:a2: d0:3a:a8:e1:03:ab:fe:18:b8:cd:af:f8:40:a7:b8:ae:47:b3: da:e6:8b:38 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDuMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY2RTUxMTAvBgNVBAUTKDVDMzk1QkEyQ0EwQUJGNjU4ODg3MjY4NzRDNzgyNEI2 OUI3ODk5OTUwHhcNMjYwMzI0MTczMTM0WhcNMjYwMzMxMTczMTM0WjAYMRYwFAYD VQQDEw02OWMyY2E3Ni1mYzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+z9G0qxE6AC7ajyMd2JC4v0giIcxIAfhR8C9SywEcv3e2GLcxd1sKm7a0lz RboWiDVulZDgp5slmeiN+gLMiD6F4mgB9F+iQNR0YzQU9hUSu/rCuFNtiREX+Zej QBnlCAZGytwoAovS9XGfQsEHUcxJRqtr9PFTA+EjXP0wg6fsPAmw+dtzuDGXYnDd fyGLrZrcVr+6azPYh+bw3KFxeX0EyOnwLgrBjbME3rCvy1n1NzgKnsV/y2J/cjnX zBFxiJPT0cHA9t30E5Rncpv2a4VB20Vo+Za6/wEskEpYRizI/VnH36nTnOWl3RiK HK4W6mtj4nTDx8WuStgTcHh/3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAI4YiLa AqyK2dMnoHt96f7nVVFzMB8GA1UdIwQYMBaAFFw5W6LKCr9liIcmh0x4JLabeJmV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjZFNS81NjQzMDU4NkEy NzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3YyV0loeWFIVEhna3RwdDRt WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEbGJvc29LdjJXSWh5YUhUSGdrdHB0NG1aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjZFNS81NjQzMDU4NkEyNzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3Yy V0loeWFIVEhna3RwdDRtWlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAw/kU+lWda/czZyhJ2CA2J8YSzjEyepaY9h5GQ7s4yhP3X47D11B4GloyM4Pc zQ85HyBtGvukrknGVJGNjg3v0IGwKUz/kP0k2Jk+D/yuZNxZHzMZkixBzOb1Lrgf OQPEUi4T7MuUyCqZoDgE7o1zDsb12lWjBDPUm2kxm5QoCJHrPTo8DYSwS4aEAgTB imdN/mabuBixWg3/YmZ63w3sssIsynL51cwii386hD4yQZR/rcXq8Ph1m6dPf5m4 /T/9UZ9J1ZkKnSVAPweOSUllM8+reqyVFS4iGogia7X+EdP9qx67AcmsCW2i0Dqo 4QOr/hi4za/4QKe4rkez2uaLOA== -----END CERTIFICATE-----Generated at Thu Mar 26 02:38:05 2026 by rpki-client