$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: I99CQmThVEaY3HjdMIl2jv62ZqiGnLQgcgE6zLX/58Q= Subject key identifier: 97:8C:70:79:A2:ED:B3:20:1D:FF:A7:56:08:B0:CD:89:A6:F1:1D:CC Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 25A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 25A6 Signing time: Thu 26 Mar 2026 14:35:07 +0000 Manifest this update: Thu 26 Mar 2026 14:35:06 +0000 Manifest next update: Thu 02 Apr 2026 14:35:06 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: FrXMTHrAmffli0v8u/8hw4bNax4idabPkV0+k9cFn8c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:35:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9638 (0x25a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Validity Not Before: Mar 26 14:35:06 2026 GMT Not After : Apr 2 14:35:06 2026 GMT Subject: CN=69c5441b-3fd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:bb:b4:59:34:c4:f3:62:51:a8:36:e3:e7:e5: 41:8e:f0:0f:16:69:73:81:da:ed:cf:01:8d:82:7b: ed:65:49:15:55:70:9e:f1:a0:b5:35:20:47:54:86: e0:04:cf:6e:55:5a:49:cb:3a:16:b4:36:11:6d:39: 2a:44:71:ef:ef:54:cd:63:13:69:f5:8e:9e:64:4d: a6:86:82:8d:af:a4:84:e9:80:b3:c6:6e:f5:9c:f7: d0:1f:33:15:2a:ed:76:9e:d5:e3:8e:35:74:93:39: 27:10:95:26:55:8e:f4:0a:40:a4:e1:78:24:6f:e7: 5f:b4:a4:be:62:55:b7:56:8d:35:38:b8:75:1d:ee: 27:c6:70:49:40:c4:de:ca:d0:31:67:4e:e2:c0:aa: 14:77:79:fc:31:32:d3:b5:b9:f8:1d:ca:a8:97:c9: 81:b8:d2:42:5e:5d:71:bd:7e:8f:5d:62:ef:ca:76: 1d:f4:41:36:32:90:dd:2a:83:2a:9b:fc:ea:62:e9: 79:93:e8:5d:d2:5e:55:1b:19:d4:3e:d7:16:9b:4d: 47:b0:d4:d7:fd:ee:79:12:9e:62:78:c2:8e:ad:ec: 51:52:0b:ea:16:b8:8d:5d:ad:08:7f:03:6c:8b:91: 53:81:c3:14:7d:ea:30:fc:52:da:1b:5a:39:57:af: f0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:8C:70:79:A2:ED:B3:20:1D:FF:A7:56:08:B0:CD:89:A6:F1:1D:CC X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:3e:35:3d:0f:09:8a:cd:26:40:be:99:b3:67:b3:6c:41:e3: b9:04:cb:e7:1a:4e:ab:18:13:1d:81:bb:fd:d3:33:cf:ee:3f: 1e:e3:c4:ad:ae:3a:9e:3d:36:37:18:0b:8e:fc:13:1f:ec:e0: 94:53:88:9e:1d:44:1b:3e:9a:8f:c0:88:d6:63:a8:43:b4:ba: ad:10:a9:51:ea:37:98:97:85:91:f1:8f:aa:a1:e8:52:31:d6: 38:f4:ac:c5:d7:ca:70:71:78:16:28:25:23:60:0c:79:ed:85: be:5b:64:be:73:a3:ad:a3:dc:dd:de:b6:84:27:f2:e9:c4:ef: 58:0a:5e:b2:33:d9:85:48:f2:ea:f6:c4:48:8d:11:2b:59:64: ab:e0:07:99:7e:36:5c:59:0f:80:ab:e6:0f:d6:e6:ad:ed:18: e0:0f:9a:8f:8d:66:dd:90:87:5e:57:4c:9d:8a:48:f0:e8:87: 8a:4d:e6:fb:59:ac:b7:31:31:cc:19:df:d9:43:cb:c1:31:97: 93:3e:b5:82:15:cf:e3:1e:83:b8:3a:55:55:91:58:16:0a:bf: 79:95:97:36:ce:89:48:1e:51:a3:fa:5a:46:56:e0:c8:c8:20: ec:e7:46:5c:80:81:5a:a5:05:4f:b8:d3:6c:ec:98:d0:a3:ab: e3:fc:e5:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjYwMzI2MTQzNTA2WhcNMjYwNDAyMTQzNTA2WjAYMRYwFAYD VQQDEw02OWM1NDQxYi0zZmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ru0WTTE82JRqDbj5+VBjvAPFmlzgdrtzwGNgnvtZUkVVXCe8aC1NSBHVIbg BM9uVVpJyzoWtDYRbTkqRHHv71TNYxNp9Y6eZE2mhoKNr6SE6YCzxm71nPfQHzMV Ku12ntXjjjV0kzknEJUmVY70CkCk4Xgkb+dftKS+YlW3Vo01OLh1He4nxnBJQMTe ytAxZ07iwKoUd3n8MTLTtbn4Hcqol8mBuNJCXl1xvX6PXWLvynYd9EE2MpDdKoMq m/zqYul5k+hd0l5VGxnUPtcWm01HsNTX/e55Ep5ieMKOrexRUgvqFriNXa0IfwNs i5FTgcMUfeow/FLaG1o5V6/wPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJeMcHmi 7bMgHf+nVgiwzYmm8R3MMB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiz41PQ8Jis0mQL6Zs2ezbEHjuQTL5xpOqxgTHYG7/dMzz+4/HuPEra46nj02 NxgLjvwTH+zglFOInh1EGz6aj8CI1mOoQ7S6rRCpUeo3mJeFkfGPqqHoUjHWOPSs xdfKcHF4FiglI2AMee2FvltkvnOjraPc3d62hCfy6cTvWApesjPZhUjy6vbESI0R K1lkq+AHmX42XFkPgKvmD9bmre0Y4A+aj41m3ZCHXldMnYpI8OiHik3m+1mstzEx zBnf2UPLwTGXkz61ghXP4x6DuDpVVZFYFgq/eZWXNs6JSB5Ro/paRlbgyMgg7OdG XICBWqUFT7jTbOyY0KOr4/zlWw== -----END CERTIFICATE-----Generated at Fri Mar 27 01:28:15 2026 by rpki-client