$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft File: XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft (raw, json) Hash identifier: 7442Xpzo9TU7Pzcn6y0vlojGrCEiLfINujsROPRyhUE= Subject key identifier: 8C:A1:5B:1E:B9:A0:52:AD:E3:FD:3A:5B:BF:9B:81:D1:93:D9:F7:9E Authority key identifier: 5F:30:7E:62:74:AC:39:E5:4E:99:86:6D:AB:B8:5C:2C:9E:FD:16:B1 Certificate issuer: /CN=A91E9F89/serialNumber=5F307E6274AC39E54E99866DABB85C2C9EFD16B1 Certificate serial: 0908 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft Manifest number: 08FF Signing time: Thu 26 Mar 2026 20:12:05 +0000 Manifest this update: Thu 26 Mar 2026 20:12:04 +0000 Manifest next update: Thu 02 Apr 2026 20:12:04 +0000 Files and hashes: 1: XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl (hash: 0u0AhsvxM7C8V9qpT80MXwZPdPl0UF2FmeRmx54drUE=) 2: 05B67AF8C6A011EAA70D183FC4F9AE02.roa (hash: cUXww9pLUmzXMLoFEIgXrShzexTLcuKYoU1Hg9CwYj8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 20:12:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2312 (0x908) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9F89, serialNumber=5F307E6274AC39E54E99866DABB85C2C9EFD16B1 Validity Not Before: Mar 26 20:12:04 2026 GMT Not After : Apr 2 20:12:04 2026 GMT Subject: CN=69c59315-07a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:79:21:70:79:9f:f1:ee:dd:60:72:8d:1f:9e: 01:bb:ac:fd:5c:42:b5:6f:5e:7b:bb:02:67:be:8f: 0e:d9:f9:39:05:8c:24:44:f8:1f:74:16:ab:eb:54: 9d:a6:b6:45:be:57:d9:24:af:4a:b3:71:3a:2a:d1: 05:ec:50:ba:69:b7:db:e1:01:b8:0d:20:12:f8:c0: 08:e4:d8:96:b3:36:0f:44:65:25:7f:e3:45:e5:32: 5a:7a:ec:e1:e7:bd:cf:2b:96:49:1f:0a:b8:b0:50: 30:1a:e4:91:5a:15:65:b0:43:a5:e0:54:65:88:f0: d4:16:cd:3b:a5:c2:74:de:f0:52:ca:d5:63:ef:df: c9:a6:ee:41:7e:67:e7:2b:93:f3:b0:1a:77:0a:56: 9c:a0:b8:cd:2a:73:34:34:e3:c9:1a:f2:c3:a2:ca: 1c:8d:a4:35:b4:9a:cd:35:a4:75:94:7a:7a:62:90: f0:4f:15:1b:12:66:82:40:f0:83:5f:b5:a0:17:21: b0:c1:73:76:38:0a:c5:7f:56:92:49:22:6b:fe:62: a2:4c:57:ef:68:9f:67:3d:96:23:e1:a9:8c:e4:d8: b3:43:fe:75:2f:a6:90:0b:83:81:fc:17:ba:ac:a6: 4b:f3:ac:b0:06:25:8b:72:3b:5e:ca:6f:7a:da:f2: 15:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:A1:5B:1E:B9:A0:52:AD:E3:FD:3A:5B:BF:9B:81:D1:93:D9:F7:9E X509v3 Authority Key Identifier: keyid:5F:30:7E:62:74:AC:39:E5:4E:99:86:6D:AB:B8:5C:2C:9E:FD:16:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:35:81:c5:9b:d2:44:ac:11:87:98:e3:4d:dc:28:f7:bc:30: 2c:36:4b:20:dd:55:91:46:cd:18:45:06:9f:73:55:8c:bf:93: 92:e3:12:fe:fa:c9:f3:88:b7:2a:50:51:02:24:af:0d:85:ef: 2f:8d:90:43:89:ca:69:4e:93:99:c4:ac:6f:71:42:a2:9a:37: cb:67:de:9b:0a:d7:8b:d4:d1:3a:fb:a1:73:ec:db:13:a8:ca: e0:b1:11:b5:8e:d2:aa:2e:9a:01:a6:90:37:14:c1:25:73:d5: 5c:5f:c5:4e:2c:af:41:2f:64:27:8e:eb:34:22:ad:ca:65:98: 53:04:be:81:ca:f4:45:c9:b8:72:95:1d:c6:54:86:47:a8:c8: 4e:36:7f:2d:8d:65:cf:a9:fd:94:3a:d9:ae:7c:a7:28:6c:71: c1:80:72:05:10:97:48:03:75:1b:4e:8f:0a:a7:0e:7a:da:0c: c2:68:55:cb:45:a7:23:55:61:a8:4a:16:aa:a2:2f:30:f5:6d: c5:1a:d0:13:09:b1:65:e8:2f:97:ac:a3:19:12:27:c5:9f:c1: 9c:f2:9f:c7:ab:53:cd:72:e9:05:ee:cf:c8:60:f1:e1:91:bf: 50:85:8f:c7:91:b8:0e:31:18:90:82:bd:28:83:a3:20:e2:97: 94:97:9d:5f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlGODkxMTAvBgNVBAUTKDVGMzA3RTYyNzRBQzM5RTU0RTk5ODY2REFCQjg1QzJD OUVGRDE2QjEwHhcNMjYwMzI2MjAxMjA0WhcNMjYwNDAyMjAxMjA0WjAYMRYwFAYD VQQDEw02OWM1OTMxNS0wN2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunkhcHmf8e7dYHKNH54Bu6z9XEK1b157uwJnvo8O2fk5BYwkRPgfdBar61Sd prZFvlfZJK9Ks3E6KtEF7FC6abfb4QG4DSAS+MAI5NiWszYPRGUlf+NF5TJaeuzh 573PK5ZJHwq4sFAwGuSRWhVlsEOl4FRliPDUFs07pcJ03vBSytVj79/Jpu5Bfmfn K5PzsBp3ClacoLjNKnM0NOPJGvLDosocjaQ1tJrNNaR1lHp6YpDwTxUbEmaCQPCD X7WgFyGwwXN2OArFf1aSSSJr/mKiTFfvaJ9nPZYj4amM5NizQ/51L6aQC4OB/Be6 rKZL86ywBiWLcjteym962vIVXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIyhWx65 oFKt4/06W7+bgdGT2feeMB8GA1UdIwQYMBaAFF8wfmJ0rDnlTpmGbau4XCye/Rax MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUY4OS81QkU3NDg3OEM2 OUUxMUVBOUJGOEEzM0NDNEY5QUUwMi9YekItWW5Tc09lVk9tWVp0cTdoY0xKNzlG ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h6Qi1ZblNzT2VWT21ZWnRxN2hjTEo3OUZyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUY4OS81QkU3NDg3OEM2OUUxMUVBOUJGOEEzM0NDNEY5QUUwMi9YekItWW5Tc09l Vk9tWVp0cTdoY0xKNzlGckUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABTWBxZvSRKwRh5jjTdwo97wwLDZLIN1VkUbNGEUGn3NVjL+TkuMS/vrJ84i3 KlBRAiSvDYXvL42QQ4nKaU6TmcSsb3FCopo3y2femwrXi9TROvuhc+zbE6jK4LER tY7Sqi6aAaaQNxTBJXPVXF/FTiyvQS9kJ47rNCKtymWYUwS+gcr0Rcm4cpUdxlSG R6jITjZ/LY1lz6n9lDrZrnynKGxxwYByBRCXSAN1G06PCqcOetoMwmhVy0WnI1Vh qEoWqqIvMPVtxRrQEwmxZegvl6yjGRInxZ/BnPKfx6tTzXLpBe7PyGDx4ZG/UIWP x5G4DjEYkIK9KIOjIOKXlJedXw== -----END CERTIFICATE-----Generated at Fri Mar 27 01:58:35 2026 by rpki-client