$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft File: XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft (raw, json) Hash identifier: K7eZ7eDfi8kAfTq94+iwWSO7edjlngD3hpV0IsZtBEY= Subject key identifier: E8:2A:BD:A9:2D:2F:F9:58:18:1D:76:F1:7C:8B:02:B7:E5:CA:F9:9C Authority key identifier: 5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F Certificate issuer: /CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Certificate serial: 0367 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft Manifest number: 035F Signing time: Wed 25 Mar 2026 00:34:17 +0000 Manifest this update: Wed 25 Mar 2026 00:34:17 +0000 Manifest next update: Wed 01 Apr 2026 00:34:17 +0000 Files and hashes: 1: XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl (hash: uFe4wSSfsxuwE5GhHOdw7oOihXZHAYsk7I1ZqZokAAU=) 2: FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa (hash: 2U6xmhzv0fOgJj7RZr6nEhhX0Za/2a3PlEUXvRGOzUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:34:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 871 (0x367) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C73, serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Validity Not Before: Mar 25 00:34:17 2026 GMT Not After : Apr 1 00:34:17 2026 GMT Subject: CN=69c32d89-f7ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e3:a0:7b:c2:c4:29:0e:c3:e8:47:1a:5f:c2: 4e:c7:c8:47:94:a4:16:fa:f0:68:33:ba:19:aa:86: 95:76:4a:c3:01:fd:a1:20:64:c1:77:2b:8e:8c:1a: 08:78:c3:31:1b:a5:64:49:d2:bc:33:04:d6:21:af: 7b:cb:c2:bd:63:00:f0:b9:3a:51:6d:20:db:da:32: 8a:0e:ef:6e:cd:8c:55:4e:7a:a0:73:39:f4:9d:fa: cc:84:d5:f9:08:5f:fd:69:b7:af:72:a9:c7:1b:42: a2:8b:77:48:b2:52:4d:47:0b:72:13:b5:74:67:d7: 52:35:06:ac:ca:1d:c2:01:41:5e:ce:dd:bf:8f:ee: 38:06:3c:b6:29:03:4c:90:0c:3d:34:de:f6:06:2d: b8:a3:19:63:e0:31:01:80:63:41:0a:b4:45:88:3e: f3:3d:e1:2b:22:f8:c8:22:87:85:5f:9a:22:d0:28: 10:be:b3:89:5c:d6:96:12:90:9e:26:94:ed:53:d0: 8b:8b:8a:12:a8:96:65:52:38:56:f2:06:95:65:1e: fe:d3:7f:3c:64:ab:13:57:b5:9a:7c:07:27:bd:5c: f0:40:18:88:10:dd:92:74:48:55:b5:57:a2:cc:2a: 3b:1b:18:a5:c0:3d:f3:e1:2f:b8:29:cc:de:65:2c: 45:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:2A:BD:A9:2D:2F:F9:58:18:1D:76:F1:7C:8B:02:B7:E5:CA:F9:9C X509v3 Authority Key Identifier: keyid:5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:ce:70:55:30:af:b1:54:dc:c9:87:a7:7a:42:df:66:bd:1b: e9:11:6d:62:e2:16:d4:3b:04:41:36:65:10:a4:16:d2:d0:d7: 50:34:31:28:8f:10:5f:a4:50:93:8f:22:8f:70:b4:19:05:7d: 87:aa:dc:b1:b5:6f:40:3f:43:56:fa:32:61:2d:ac:ba:c2:0b: b5:5e:b7:b7:db:2c:2a:5f:88:57:a3:7c:80:f0:90:5c:3b:ec: 02:ad:fe:48:a2:33:5f:7c:ef:8b:78:02:09:02:ef:c7:01:13: 28:53:6e:2e:6c:43:91:15:0e:8d:c3:c2:35:d7:ee:a5:d8:da: 5f:d6:a5:01:28:9f:a6:ff:36:e7:68:e0:06:f4:50:5f:d9:97: 54:d1:cb:90:5d:6a:ea:9d:1e:92:72:bb:e2:61:3a:85:76:72: 92:8b:0b:1f:bc:b2:1c:e8:ac:f2:81:b4:d2:6b:8c:d6:b1:59: 1e:67:66:bf:db:e4:41:7d:40:e6:0c:16:5a:fc:4d:4c:ef:c4: 81:92:03:04:f5:e2:e9:d6:e7:5d:e2:28:0a:57:e3:bc:76:5d: 56:92:ff:5d:1f:61:2b:64:87:f7:b1:0e:db:0a:10:d3:19:23: 3d:08:d8:96:56:22:79:5b:a0:6d:a8:46:f0:86:79:15:c4:17: 77:e9:31:01 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA2cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBDNzMxMTAvBgNVBAUTKDVFNzA5OTQ5QkFBNDBBN0Q0N0Q0NEQyMTE2OTBCMzc3 RTA1MUM0NUYwHhcNMjYwMzI1MDAzNDE3WhcNMjYwNDAxMDAzNDE3WjAYMRYwFAYD VQQDEw02OWMzMmQ4OS1mN2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoeOge8LEKQ7D6EcaX8JOx8hHlKQW+vBoM7oZqoaVdkrDAf2hIGTBdyuOjBoI eMMxG6VkSdK8MwTWIa97y8K9YwDwuTpRbSDb2jKKDu9uzYxVTnqgczn0nfrMhNX5 CF/9abevcqnHG0Kii3dIslJNRwtyE7V0Z9dSNQasyh3CAUFezt2/j+44Bjy2KQNM kAw9NN72Bi24oxlj4DEBgGNBCrRFiD7zPeErIvjIIoeFX5oi0CgQvrOJXNaWEpCe JpTtU9CLi4oSqJZlUjhW8gaVZR7+0388ZKsTV7WafAcnvVzwQBiIEN2SdEhVtVei zCo7GxilwD3z4S+4KczeZSxFsQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOgqvakt L/lYGB128XyLArflyvmcMB8GA1UdIwQYMBaAFF5wmUm6pAp9R9RNIRaQs3fgUcRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEM3My84MjE0NTdEMkYx MzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0NuMUgxRTBoRnBDemQtQlJ4 RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huQ1pTYnFrQ24xSDFFMGhGcEN6ZC1CUnhGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEM3My84MjE0NTdEMkYxMzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0Nu MUgxRTBoRnBDemQtQlJ4RjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZs5wVTCvsVTcyYenekLfZr0b6RFtYuIW1DsEQTZlEKQW0tDXUDQxKI8QX6RQ k48ij3C0GQV9h6rcsbVvQD9DVvoyYS2susILtV63t9ssKl+IV6N8gPCQXDvsAq3+ SKIzX3zvi3gCCQLvxwETKFNuLmxDkRUOjcPCNdfupdjaX9alASifpv8252jgBvRQ X9mXVNHLkF1q6p0eknK74mE6hXZykosLH7yyHOis8oG00muM1rFZHmdmv9vkQX1A 5gwWWvxNTO/EgZIDBPXi6dbnXeIoClfjvHZdVpL/XR9hK2SH97EO2woQ0xkjPQjY llYieVugbahG8IZ5FcQXd+kxAQ== -----END CERTIFICATE-----Generated at Thu Mar 26 07:21:29 2026 by rpki-client