$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft File: XK9B9ks3Umh5jipdqgwUAADNdHM.mft (raw, json) Hash identifier: 9zGDgyw0TwiiJm2Q2Tr+dW9qSKglkfBjpth+ipTN/Zw= Subject key identifier: 63:34:9C:28:57:12:DF:11:0A:84:A7:57:1B:73:10:76:4E:92:B3:2B Authority key identifier: 5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73 Certificate issuer: /CN=A91ED73E/serialNumber=5CAF41F64B375268798E2A5DAA0C140000CD7473 Certificate serial: 14A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft Manifest number: 1476 Signing time: Tue 24 Mar 2026 16:46:29 +0000 Manifest this update: Tue 24 Mar 2026 16:46:28 +0000 Manifest next update: Tue 31 Mar 2026 16:46:28 +0000 Files and hashes: 1: XK9B9ks3Umh5jipdqgwUAADNdHM.crl (hash: 4U44zhkmriApv5isOuICbCsI95pm9MJ4kA/SUPs8EFY=) 2: 1983150A3BB911EEB0CA4809C4F9AE02.roa (hash: 5RNyMR+3G/bk8qvZSiyds5uiwVr/sSQ5ExXQPxGSzo8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.crl rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:46:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5280 (0x14a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED73E, serialNumber=5CAF41F64B375268798E2A5DAA0C140000CD7473 Validity Not Before: Mar 24 16:46:28 2026 GMT Not After : Mar 31 16:46:28 2026 GMT Subject: CN=69c2bfe5-d745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:bd:57:9e:32:9c:9d:ef:c1:86:5b:6c:f9:e7: a6:98:04:c4:61:23:8a:37:fe:53:40:1c:55:e0:2a: 0c:d4:7d:2d:c5:92:a7:22:db:b4:e1:ae:14:51:75: e9:e7:16:85:41:9c:3e:29:21:78:f6:94:72:e5:cc: fa:e5:5f:9b:ef:27:82:f4:9a:dd:a7:c1:00:bc:13: cf:04:42:10:5c:4c:9e:a1:ff:5f:12:5a:43:cf:5a: 70:eb:da:57:6d:01:10:c3:64:75:38:14:6d:81:14: ea:2a:a3:9f:81:36:bc:dd:c4:ad:47:48:11:75:09: a5:86:15:72:e0:d0:6a:ba:50:37:e7:3d:aa:4c:5a: 6c:f4:a0:f0:8f:8c:5b:a5:94:a5:24:d7:51:a7:83: 3f:ad:2a:51:b9:0f:0e:23:e7:94:db:85:d5:54:e6: 37:38:bf:6c:00:b1:79:86:bb:b3:ab:02:62:ed:8e: 05:9e:ff:a7:34:dd:43:60:c2:0f:7b:1d:46:3a:49: b5:6f:72:c7:29:94:9d:aa:fe:11:e6:2a:be:60:7c: f2:09:a6:9c:e7:76:a4:c2:42:38:19:af:d9:1a:de: 33:26:8e:56:85:d5:48:87:d0:ac:ec:5d:95:3c:62: 6b:3d:59:1b:ec:b3:3a:fe:d2:90:fc:84:7b:b4:48: 17:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:34:9C:28:57:12:DF:11:0A:84:A7:57:1B:73:10:76:4E:92:B3:2B X509v3 Authority Key Identifier: keyid:5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:52:b2:08:73:db:24:2f:31:0d:8c:c6:a9:05:1d:ce:13:77: af:4e:35:32:f9:64:75:f4:95:c6:06:d3:cd:14:a4:14:b1:fb: 86:7a:63:3b:9d:64:c4:d2:62:54:9d:f4:b1:0b:4e:7b:52:f0: 40:f0:b3:8f:1e:51:cc:d6:77:a9:a9:5e:60:b9:b2:b8:eb:33: ab:06:6c:13:ad:62:a3:16:68:ff:b4:b6:a3:cc:eb:34:94:23: 6c:fa:fd:c3:fc:87:cb:7d:65:54:f7:cd:63:fe:5f:7e:e9:dd: 65:24:46:e4:0f:8e:a2:72:55:82:f5:11:d4:bc:e6:d7:91:7f: 89:af:c9:ce:f0:74:86:0f:ec:2e:6f:11:31:da:eb:06:73:1b: 9b:ec:bf:18:7f:0a:08:27:df:86:da:62:01:5c:9b:30:ac:83: ec:41:db:28:8d:d2:0d:13:82:0d:36:f3:75:88:8a:04:29:3d: 23:69:60:87:3b:d3:7b:be:28:78:06:38:78:f9:61:2a:ec:66: 3d:2e:0a:6e:b7:ef:56:4c:9c:88:a7:aa:22:3d:0f:6e:da:b3: 3e:54:21:77:92:4b:89:2f:56:ca:e1:21:e5:02:90:b8:ec:9c: f0:95:9c:b8:bb:13:04:31:4d:d9:bc:ff:bf:86:81:c9:79:d4: 06:5f:b4:fb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICFKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ3M0UxMTAvBgNVBAUTKDVDQUY0MUY2NEIzNzUyNjg3OThFMkE1REFBMEMxNDAw MDBDRDc0NzMwHhcNMjYwMzI0MTY0NjI4WhcNMjYwMzMxMTY0NjI4WjAYMRYwFAYD VQQDEw02OWMyYmZlNS1kNzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3r1XnjKcne/Bhlts+eemmATEYSOKN/5TQBxV4CoM1H0txZKnItu04a4UUXXp 5xaFQZw+KSF49pRy5cz65V+b7yeC9Jrdp8EAvBPPBEIQXEyeof9fElpDz1pw69pX bQEQw2R1OBRtgRTqKqOfgTa83cStR0gRdQmlhhVy4NBqulA35z2qTFps9KDwj4xb pZSlJNdRp4M/rSpRuQ8OI+eU24XVVOY3OL9sALF5hruzqwJi7Y4Fnv+nNN1DYMIP ex1GOkm1b3LHKZSdqv4R5iq+YHzyCaac53akwkI4Ga/ZGt4zJo5WhdVIh9Cs7F2V PGJrPVkb7LM6/tKQ/IR7tEgXrwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGM0nChX Et8RCoSnVxtzEHZOkrMrMB8GA1UdIwQYMBaAFFyvQfZLN1JoeY4qXaoMFAAAzXRz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDczRS8wMUI4MjEwQTg5 ODkxMUU4Qjk4QkVDM0FDNEY5QUUwMi9YSzlCOWtzM1VtaDVqaXBkcWd3VUFBRE5k SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLOUI5a3MzVW1oNWppcGRxZ3dVQUFETmRITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDczRS8wMUI4MjEwQTg5ODkxMUU4Qjk4QkVDM0FDNEY5QUUwMi9YSzlCOWtzM1Vt aDVqaXBkcWd3VUFBRE5kSE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADFKyCHPbJC8xDYzGqQUdzhN3r041MvlkdfSVxgbTzRSkFLH7hnpjO51kxNJi VJ30sQtOe1LwQPCzjx5RzNZ3qaleYLmyuOszqwZsE61ioxZo/7S2o8zrNJQjbPr9 w/yHy31lVPfNY/5ffundZSRG5A+OonJVgvUR1Lzm15F/ia/JzvB0hg/sLm8RMdrr BnMbm+y/GH8KCCffhtpiAVybMKyD7EHbKI3SDROCDTbzdYiKBCk9I2lghzvTe74o eAY4ePlhKuxmPS4KbrfvVkyciKeqIj0PbtqzPlQhd5JLiS9WyuEh5QKQuOyc8JWc uLsTBDFN2bz/v4aByXnUBl+0+w== -----END CERTIFICATE-----Generated at Thu Mar 26 17:58:23 2026 by rpki-client