$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft File: XOe82cbkE4HMCvkJkN2gNpOF5lU.mft (raw, json) Hash identifier: hCBoX1MjrxvV7Uw+ekSaaX230Vq9Ka1oCgwNkzflpq4= Subject key identifier: BB:0E:DC:0C:0B:B3:B4:A2:1E:2C:22:02:48:07:5D:83:F2:CD:C9:20 Authority key identifier: 5C:E7:BC:D9:C6:E4:13:81:CC:0A:F9:09:90:DD:A0:36:93:85:E6:55 Certificate issuer: /CN=A91EC3A8/serialNumber=5CE7BCD9C6E41381CC0AF90990DDA0369385E655 Certificate serial: 0518 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft Manifest number: 0503 Signing time: Thu 26 Mar 2026 23:27:14 +0000 Manifest this update: Thu 26 Mar 2026 23:27:14 +0000 Manifest next update: Thu 02 Apr 2026 23:27:14 +0000 Files and hashes: 1: XOe82cbkE4HMCvkJkN2gNpOF5lU.crl (hash: 1NzifrBI7CTpNMBADrKlM8xq7O2R5ijH3HIe65sM/Qs=) 2: C71919900BEE11EDBB84E711C4F9AE02.roa (hash: kY65kJ7Z3Mu7QEVILrGdTmAvqTkSFv9BjhpNLh4YUPY=) 3: 11330A4663F611ECB344F979C4F9AE02.roa (hash: 3M+74bn/sA2p4TiZmfBp8pwqRm0NY6QA2mPOgZx57gA=) 4: 10A8D0E263F611ECB344F979C4F9AE02.roa (hash: SmcwGq0dD9iTZhV8jdPLgAp8Fs3hII4+H1WFKJpXd7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.crl rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 23:27:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1304 (0x518) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC3A8, serialNumber=5CE7BCD9C6E41381CC0AF90990DDA0369385E655 Validity Not Before: Mar 26 23:27:14 2026 GMT Not After : Apr 2 23:27:14 2026 GMT Subject: CN=69c5c0d2-7968 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:40:75:c4:bf:52:80:48:13:2b:ac:38:8f:ab: 17:28:a1:84:29:e2:75:a2:1a:f5:37:a4:21:82:3a: cb:5a:77:56:f5:fd:63:7e:06:03:67:42:0f:8b:97: 47:47:ba:48:aa:3f:38:1d:39:a8:24:3a:aa:30:9e: cb:19:d2:31:e8:e9:b1:3b:2d:f5:c3:e3:ba:3c:df: 08:6b:cf:3a:2f:1f:f2:ed:fb:8d:d3:86:63:b6:ad: a3:90:22:26:a2:e1:db:3c:d5:9f:e1:e5:fc:e1:fb: d1:0a:f7:56:6c:a8:92:e3:5b:39:a4:4f:c3:bc:c1: 88:8e:96:20:c8:69:0a:29:8c:aa:12:cd:cc:72:53: 6b:9e:d9:e1:03:86:52:7d:20:d5:8d:e5:ce:ab:89: d9:0e:9e:21:88:fa:6a:1a:25:45:ca:7c:12:09:e1: 4c:1d:6c:2c:1b:c9:4e:fa:0f:6b:57:e3:f6:ce:c5: bd:8a:26:2a:51:01:56:26:a0:1a:92:96:1f:f1:11: d2:05:40:fa:0b:1f:76:b8:46:0c:49:99:e6:1b:57: ce:67:f5:be:f4:94:77:48:77:c7:c2:bf:18:fa:fd: 84:2b:76:76:de:bb:e5:ae:f0:0d:69:ff:12:1c:de: 38:eb:e3:44:cf:b6:26:04:98:7c:c1:83:c8:21:a4: 3d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:0E:DC:0C:0B:B3:B4:A2:1E:2C:22:02:48:07:5D:83:F2:CD:C9:20 X509v3 Authority Key Identifier: keyid:5C:E7:BC:D9:C6:E4:13:81:CC:0A:F9:09:90:DD:A0:36:93:85:E6:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:1e:10:11:a0:ef:85:e3:0c:8d:83:a8:cd:e1:e2:eb:03:75: 04:42:da:9c:8f:bb:2b:f5:4e:bd:b4:53:d9:bf:fd:45:98:58: ab:0a:0b:72:c8:13:41:fa:88:5b:7c:c0:37:ec:c5:b9:ea:7b: ad:61:b3:b6:d7:71:2a:5b:91:c8:26:c3:37:27:05:3e:81:db: ac:dd:cb:2c:75:3a:13:a0:b5:a3:2b:92:62:ae:95:2e:d1:00: b8:21:c2:fb:f0:98:74:46:e2:be:85:24:a5:de:42:db:e4:c9: f6:da:21:9f:3d:15:67:f3:97:f3:e5:f9:11:cf:78:d9:88:91: ba:07:96:63:c1:d7:ea:1b:98:01:29:aa:48:f9:03:4d:30:a6: ab:0c:b7:f4:21:73:03:2d:06:7f:86:8f:88:22:cb:91:2e:43: 85:25:de:99:bf:ac:62:e3:7a:7d:be:3d:71:ca:00:c3:6e:53: a9:ac:48:47:f2:ef:82:ce:4c:26:37:cf:0a:db:32:27:b6:3f: 71:81:4e:23:bb:cb:5e:9f:97:69:7a:5e:16:70:6a:c0:f6:61: 8d:f3:48:32:36:92:f6:2b:49:a1:0f:41:56:cd:a3:0f:b5:2d: 91:65:7b:73:cf:67:68:d7:3b:b6:a6:65:99:74:f3:5c:b2:c3: 01:74:d2:27 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMzQTgxMTAvBgNVBAUTKDVDRTdCQ0Q5QzZFNDEzODFDQzBBRjkwOTkwRERBMDM2 OTM4NUU2NTUwHhcNMjYwMzI2MjMyNzE0WhcNMjYwNDAyMjMyNzE0WjAYMRYwFAYD VQQDEw02OWM1YzBkMi03OTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnkB1xL9SgEgTK6w4j6sXKKGEKeJ1ohr1N6QhgjrLWndW9f1jfgYDZ0IPi5dH R7pIqj84HTmoJDqqMJ7LGdIx6OmxOy31w+O6PN8Ia886Lx/y7fuN04Zjtq2jkCIm ouHbPNWf4eX84fvRCvdWbKiS41s5pE/DvMGIjpYgyGkKKYyqEs3MclNrntnhA4ZS fSDVjeXOq4nZDp4hiPpqGiVFynwSCeFMHWwsG8lO+g9rV+P2zsW9iiYqUQFWJqAa kpYf8RHSBUD6Cx92uEYMSZnmG1fOZ/W+9JR3SHfHwr8Y+v2EK3Z23rvlrvANaf8S HN446+NEz7YmBJh8wYPIIaQ9lQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLsO3AwL s7SiHiwiAkgHXYPyzckgMB8GA1UdIwQYMBaAFFznvNnG5BOBzAr5CZDdoDaTheZV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzNBOC8yMUZBMDI3MjRD NkMxMUVDQkJDRkFEMjZDNEY5QUUwMi9YT2U4MmNia0U0SE1DdmtKa04yZ05wT0Y1 bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hPZTgyY2JrRTRITUN2a0prTjJnTnBPRjVsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzNBOC8yMUZBMDI3MjRDNkMxMUVDQkJDRkFEMjZDNEY5QUUwMi9YT2U4MmNia0U0 SE1DdmtKa04yZ05wT0Y1bFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAex4QEaDvheMMjYOozeHi6wN1BELanI+7K/VOvbRT2b/9RZhYqwoLcsgTQfqI W3zAN+zFuep7rWGzttdxKluRyCbDNycFPoHbrN3LLHU6E6C1oyuSYq6VLtEAuCHC +/CYdEbivoUkpd5C2+TJ9tohnz0VZ/OX8+X5Ec942YiRugeWY8HX6huYASmqSPkD TTCmqwy39CFzAy0Gf4aPiCLLkS5DhSXemb+sYuN6fb49ccoAw25TqaxIR/Lvgs5M JjfPCtsyJ7Y/cYFOI7vLXp+XaXpeFnBqwPZhjfNIMjaS9itJoQ9BVs2jD7UtkWV7 c89naNc7tqZlmXTzXLLDAXTSJw== -----END CERTIFICATE-----Generated at Sat Mar 28 10:42:04 2026 by rpki-client