$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft File: rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft (raw, json) Hash identifier: am0+NzGdCfMgWGNAAFuxFN0PbS1lCNtEFXFVaiOGeqI= Subject key identifier: 6A:28:5E:E1:83:63:97:10:23:5D:E0:66:0F:72:E7:3B:A7:44:34:91 Authority key identifier: AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 Certificate issuer: /CN=A91EE735/serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Certificate serial: 0A1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft Manifest number: 0A09 Signing time: Tue 24 Mar 2026 19:37:19 +0000 Manifest this update: Tue 24 Mar 2026 19:37:18 +0000 Manifest next update: Tue 31 Mar 2026 19:37:18 +0000 Files and hashes: 1: rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl (hash: tIoPoOl1jHBi/RDQiR2qs6ZHkTgswea/oAfUFgDpWKc=) 2: E7F141609E9911EBB4117632C4F9AE02.roa (hash: v6k0jsddCRTxnduBCevo9h7oXXgJAgW/4ikmMahgMvM=) 3: 7AEEA290829E11F0975FC440C4F9AE02.roa (hash: ffwoJq84kOy2tG4k/aN3n6ozf9LlqpCjd9uK2ZJO1BM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:37:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2589 (0xa1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE735, serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Validity Not Before: Mar 24 19:37:18 2026 GMT Not After : Mar 31 19:37:18 2026 GMT Subject: CN=69c2e7ef-19a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:6f:89:72:0b:36:b8:1f:2d:68:ad:1a:8b:ca: 41:98:14:8f:bc:60:5a:c5:42:3f:08:83:1b:27:15: e7:bc:b4:02:24:7c:70:b0:30:34:dd:9d:39:35:e9: cc:57:b4:dc:9f:bd:4b:24:b1:9c:03:bf:bd:cc:99: ea:1e:d6:a6:72:d5:bf:66:c3:8c:6a:6a:de:b1:21: e0:d6:9c:fb:2e:9b:a3:4a:0d:51:40:5c:af:5e:17: 32:4a:21:c2:68:4c:54:a0:65:57:33:ec:35:a0:ca: 75:75:21:7e:94:b4:a0:61:f0:3f:b8:62:5b:ad:b4: 6d:be:f2:32:5f:06:98:08:c6:5d:a8:0d:25:89:6d: 2e:24:24:ea:32:7a:d2:ed:f9:ea:3a:2e:56:bc:ea: e6:ca:93:74:28:68:d3:f2:79:60:df:df:60:74:42: 25:c5:04:30:ac:f3:e6:3e:0d:49:28:98:50:e5:2d: ba:26:fc:b1:d6:58:4e:a5:88:0d:71:fe:b4:87:b3: 83:81:3a:cc:b6:d9:49:84:d2:de:53:7e:a7:71:47: 71:00:80:b5:3c:ea:0c:83:e9:46:59:a5:b0:f2:5d: fb:52:90:ad:13:af:04:32:78:6c:d5:e7:13:df:d2: ad:8f:5f:49:f2:63:a1:a2:19:8f:e7:4f:f7:0a:73: 39:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:28:5E:E1:83:63:97:10:23:5D:E0:66:0F:72:E7:3B:A7:44:34:91 X509v3 Authority Key Identifier: keyid:AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:03:2d:0f:cd:90:79:17:dd:e9:da:58:a9:3b:88:96:43:95: 27:8a:68:71:0d:ff:c8:67:75:cd:88:71:80:71:11:5e:7c:27: 56:d0:31:d8:07:b0:57:a3:8f:51:6a:fc:d0:30:7b:53:0f:04: 06:1f:7f:97:6e:4c:50:92:6c:15:9c:4b:29:be:2a:9e:b2:46: e0:22:ef:6b:87:fb:9d:88:3f:24:9e:b1:6b:29:7e:64:63:c3: c8:4a:40:b7:7b:09:12:fc:01:af:24:85:8b:ac:db:df:48:7c: 68:ee:46:a9:9b:2f:61:39:2f:22:36:7c:49:94:a2:92:19:7e: 32:9f:62:14:45:c6:25:2b:5c:76:0c:02:ed:a0:22:4e:be:91: 37:fb:83:cd:87:e9:35:c0:fd:7d:76:6c:a6:39:bc:a2:b9:48: b1:9b:9d:f5:3e:bf:eb:01:29:8c:d6:a2:0c:f0:25:57:c5:fe: 0c:9b:cb:75:49:70:38:d0:a5:c6:fa:e9:04:01:f2:81:91:03: 45:1b:cb:7e:82:a2:ab:9e:f3:93:34:2f:ac:6e:74:f3:4a:3c: f3:cc:fb:30:13:77:3c:26:1c:9d:47:17:13:10:07:3a:59:49: 8b:cb:97:d9:be:11:eb:33:7b:ca:67:85:68:e6:a9:d6:29:e2: 36:7a:29:2f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU3MzUxMTAvBgNVBAUTKEFENzNBREI5MTQyMTM4NjJFRDhFMTRENzcwNjlGNDc0 RDgzQ0M4RjUwHhcNMjYwMzI0MTkzNzE4WhcNMjYwMzMxMTkzNzE4WjAYMRYwFAYD VQQDEw02OWMyZTdlZi0xOWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjG+Jcgs2uB8taK0ai8pBmBSPvGBaxUI/CIMbJxXnvLQCJHxwsDA03Z05NenM V7Tcn71LJLGcA7+9zJnqHtamctW/ZsOMamresSHg1pz7LpujSg1RQFyvXhcySiHC aExUoGVXM+w1oMp1dSF+lLSgYfA/uGJbrbRtvvIyXwaYCMZdqA0liW0uJCTqMnrS 7fnqOi5WvOrmypN0KGjT8nlg399gdEIlxQQwrPPmPg1JKJhQ5S26Jvyx1lhOpYgN cf60h7ODgTrMttlJhNLeU36ncUdxAIC1POoMg+lGWaWw8l37UpCtE68EMnhs1ecT 39Ktj19J8mOhohmP50/3CnM5xQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGooXuGD Y5cQI13gZg9y5zunRDSRMB8GA1UdIwQYMBaAFK1zrbkUIThi7Y4U13Bp9HTYPMj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTczNS9FOEU2NjdDQTk0 QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9HTHRqaFRYY0duMGROZzh5 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYT3R1UlFoT0dMdGpoVFhjR24wZE5nOHlQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTczNS9FOEU2NjdDQTk0QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9H THRqaFRYY0duMGROZzh5UFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMwMtD82QeRfd6dpYqTuIlkOVJ4pocQ3/yGd1zYhxgHERXnwnVtAx2AewV6OP UWr80DB7Uw8EBh9/l25MUJJsFZxLKb4qnrJG4CLva4f7nYg/JJ6xayl+ZGPDyEpA t3sJEvwBrySFi6zb30h8aO5GqZsvYTkvIjZ8SZSikhl+Mp9iFEXGJStcdgwC7aAi Tr6RN/uDzYfpNcD9fXZspjm8orlIsZud9T6/6wEpjNaiDPAlV8X+DJvLdUlwONCl xvrpBAHygZEDRRvLfoKiq57zkzQvrG5080o888z7MBN3PCYcnUcXExAHOllJi8uX 2b4R6zN7ymeFaOap1iniNnopLw== -----END CERTIFICATE-----Generated at Thu Mar 26 16:31:19 2026 by rpki-client