$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft File: xIKbbAf9gE3wklz_wWHGcCgHoCY.mft (raw, json) Hash identifier: VhQjMaP1y9Iy8QP9ZgXAAv8NJ5uMW0xXyHdU5GQPvAk= Subject key identifier: 6E:CD:AA:15:24:32:28:D9:55:E9:5C:75:83:D8:5A:0D:C3:73:01:B9 Authority key identifier: C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 Certificate issuer: /CN=A91E7E45/serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026 Certificate serial: 0AAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft Manifest number: 0A70 Signing time: Tue 24 Mar 2026 19:27:39 +0000 Manifest this update: Tue 24 Mar 2026 19:27:38 +0000 Manifest next update: Tue 31 Mar 2026 19:27:38 +0000 Files and hashes: 1: xIKbbAf9gE3wklz_wWHGcCgHoCY.crl (hash: I+lAXdM2nKxjN1jYNgKvJXjKxoF/kNdakIGGvQw8Azc=) 2: 9406C1209FDB11EDB88C5662C4F9AE02.roa (hash: pkpKzzYuOEBQdYXn1MjC6HjBlTd2nHWd29Mz1RROab0=) 3: E8137EDEA29011EAA7A47878C4F9AE02.roa (hash: db/oDMvRYlv9hm/34dDs3pJLSn6e8R5e4bTUyYz0ShE=) 4: FBA017C0B26F11EF9B327759C4F9AE02.roa (hash: 2IWV1tq3KxLsmWrr5ovLvQvX2a3uguiNF6reAut4GmA=) 5: 0FD437CAC11811EE8328EF7AC4F9AE02.roa (hash: YLqs8j5I9Oued0rnV/KVHPEdZA2XD39GzEPZsSpw0f4=) 6: 7A976A4E0A7011F0AA901820C4F9AE02.roa (hash: mbqoxKDJPHiSyhYMIw4gKLEzDKHZNlFJqP6JEMgmZY8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:27:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2731 (0xaab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7E45, serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026 Validity Not Before: Mar 24 19:27:38 2026 GMT Not After : Mar 31 19:27:38 2026 GMT Subject: CN=69c2e5ab-daa0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4b:34:69:f5:af:73:4d:54:27:72:7e:bd:af: 96:ce:2c:70:35:f1:31:3c:f2:0c:41:c9:9f:be:3f: 82:c5:3f:54:b6:23:9a:19:06:a9:2f:f7:2f:38:36: 8a:7f:26:15:df:0d:cd:24:11:f4:a8:11:80:3d:82: b0:7a:ce:b7:55:ae:14:77:90:af:5f:e1:51:97:22: 36:9c:1c:96:83:ca:55:47:e5:c0:3c:f9:bc:48:a9: 96:2a:94:dc:08:95:fa:36:a7:f7:8c:5e:30:7e:e3: 17:e8:f5:cd:fd:ec:81:82:c1:12:46:1a:54:d3:ab: a3:09:e4:68:c2:3e:e3:7a:5b:b6:1f:bd:93:2d:9f: 96:34:11:65:12:ce:84:64:b1:5c:12:d3:36:e1:c2: e3:74:bc:02:66:e3:3e:52:2a:32:9d:88:10:ad:b5: 9f:7a:d4:b6:b2:55:45:1e:1c:d5:22:45:63:29:e7: 8f:2b:c8:c4:f4:ff:40:bc:b5:56:89:30:5b:b8:36: 10:1d:e0:a2:52:4f:e4:77:66:fd:d9:72:44:a2:68: a1:97:a6:74:4f:ac:9e:d0:43:27:38:a0:64:28:a9: 3b:ad:31:d1:8f:90:71:74:18:3c:ed:25:dd:a1:e7: 6e:44:e3:a2:a6:a3:49:08:5d:d1:81:0f:25:65:27: 92:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:CD:AA:15:24:32:28:D9:55:E9:5C:75:83:D8:5A:0D:C3:73:01:B9 X509v3 Authority Key Identifier: keyid:C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:f6:0d:0c:bf:a3:3c:0c:38:65:43:38:16:1d:a8:dc:cd:0c: b2:65:a7:04:98:89:b4:23:f4:13:8f:ec:54:18:68:25:ed:09: 18:4b:a8:7c:3c:26:ae:c8:91:1c:b5:85:9c:79:dd:c5:86:28: 9a:8e:82:38:57:13:83:0e:95:23:5d:40:de:37:0e:dc:29:dc: 10:dc:0e:73:52:1d:a0:eb:27:1a:67:a8:8c:b0:02:bb:2a:7a: 31:06:fb:f1:5e:54:88:88:47:e8:5a:af:b0:f4:48:30:0d:45: ba:a1:e8:98:a2:7e:51:95:25:04:f7:c8:f4:7d:cb:3d:7f:23: 1e:01:7f:13:17:0e:58:e1:d8:15:83:5a:3f:6e:49:d2:68:ac: e4:b5:8c:1c:38:ba:a1:ef:e4:79:77:0d:df:54:f4:62:0b:7a: df:f2:2d:ae:6a:6a:2c:71:c6:7d:e8:a8:df:1a:6d:42:af:1d: 90:75:65:0e:22:7e:8f:df:0d:8f:cd:87:3a:83:86:c5:e7:67: c8:0d:00:ef:8b:ac:f4:a5:2a:f5:a3:6c:c5:06:3f:ba:0a:82: 1c:fc:3f:a3:3c:4c:d3:23:4b:e6:2d:ef:7e:ea:07:b5:e4:27: 46:65:95:af:d3:b2:5e:c7:77:3c:32:c7:74:94:0d:01:f3:7b: 70:a8:89:72 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFNDUxMTAvBgNVBAUTKEM0ODI5QjZDMDdGRDgwNERGMDkyNUNGRkMxNjFDNjcw MjgwN0EwMjYwHhcNMjYwMzI0MTkyNzM4WhcNMjYwMzMxMTkyNzM4WjAYMRYwFAYD VQQDEw02OWMyZTVhYi1kYWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0s0afWvc01UJ3J+va+WzixwNfExPPIMQcmfvj+CxT9UtiOaGQapL/cvODaK fyYV3w3NJBH0qBGAPYKwes63Va4Ud5CvX+FRlyI2nByWg8pVR+XAPPm8SKmWKpTc CJX6Nqf3jF4wfuMX6PXN/eyBgsESRhpU06ujCeRowj7jelu2H72TLZ+WNBFlEs6E ZLFcEtM24cLjdLwCZuM+UioynYgQrbWfetS2slVFHhzVIkVjKeePK8jE9P9AvLVW iTBbuDYQHeCiUk/kd2b92XJEomihl6Z0T6ye0EMnOKBkKKk7rTHRj5BxdBg87SXd oeduROOipqNJCF3RgQ8lZSeSPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG7NqhUk MijZVelcdYPYWg3DcwG5MB8GA1UdIwQYMBaAFMSCm2wH/YBN8JJc/8FhxnAoB6Am MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0U0NS8wNkM4NTYzQzgz RDkxMUVBQTMxMjRGNUNDNEY5QUUwMi94SUtiYkFmOWdFM3drbHpfd1dIR2NDZ0hv Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJS2JiQWY5Z0Uzd2tsel93V0hHY0NnSG9DWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0U0NS8wNkM4NTYzQzgzRDkxMUVBQTMxMjRGNUNDNEY5QUUwMi94SUtiYkFmOWdF M3drbHpfd1dIR2NDZ0hvQ1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAH/YNDL+jPAw4ZUM4Fh2o3M0MsmWnBJiJtCP0E4/sVBhoJe0JGEuofDwmrsiR HLWFnHndxYYomo6COFcTgw6VI11A3jcO3CncENwOc1IdoOsnGmeojLACuyp6MQb7 8V5UiIhH6FqvsPRIMA1FuqHomKJ+UZUlBPfI9H3LPX8jHgF/ExcOWOHYFYNaP25J 0mis5LWMHDi6oe/keXcN31T0Ygt63/ItrmpqLHHGfeio3xptQq8dkHVlDiJ+j98N j82HOoOGxednyA0A74us9KUq9aNsxQY/ugqCHPw/ozxM0yNL5i3vfuoHteQnRmWV r9OyXsd3PDLHdJQNAfN7cKiJcg== -----END CERTIFICATE-----Generated at Thu Mar 26 02:33:22 2026 by rpki-client