$ rpki-client -vvf rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.mft File: 1xhrKGW4YA1mKCKv65AVcAbg9BA.mft (raw, json) Hash identifier: kV1b6QCZg7/0hsZg3JYCC5gEa/E4blKp+g8qUHQNfWg= Subject key identifier: E1:2D:14:77:95:F5:3F:75:88:FC:90:24:4D:02:5D:3E:BD:52:40:60 Authority key identifier: D7:18:6B:28:65:B8:60:0D:66:28:22:AF:EB:90:15:70:06:E0:F4:10 Certificate issuer: /CN=A91F428C/serialNumber=D7186B2865B8600D662822AFEB90157006E0F410 Certificate serial: 352C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xhrKGW4YA1mKCKv65AVcAbg9BA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.mft Manifest number: 3525 Signing time: Tue 24 Mar 2026 15:01:39 +0000 Manifest this update: Tue 24 Mar 2026 15:01:38 +0000 Manifest next update: Tue 31 Mar 2026 15:01:38 +0000 Files and hashes: 1: 1xhrKGW4YA1mKCKv65AVcAbg9BA.crl (hash: 7KtGFNlTblXLx/OB5BvvtOZjYwHMxcF9Da3qRkN4kjQ=) 2: B8201598BED111EC93B74C4FC4F9AE02.roa (hash: 2kB+l6pOb5zT/KlsA2xEtLzgFrgfMDCnlHiA1i2V1lw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.crl rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xhrKGW4YA1mKCKv65AVcAbg9BA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13612 (0x352c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F428C, serialNumber=D7186B2865B8600D662822AFEB90157006E0F410 Validity Not Before: Mar 24 15:01:38 2026 GMT Not After : Mar 31 15:01:38 2026 GMT Subject: CN=69c2a753-954f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:02:98:97:7e:b7:cb:92:51:11:78:f8:21:c0: f5:7c:60:7e:da:f9:7d:dd:fa:a1:06:02:5e:6c:c9: 52:52:37:53:43:e9:b3:1e:c8:09:7e:c8:f6:96:a0: 25:13:52:97:e3:2e:81:c0:1c:2d:0e:18:7c:7a:2d: 13:d6:20:d7:0b:4e:2e:57:f1:0f:98:cb:49:f7:99: 1c:18:12:a6:73:d1:f3:61:6e:f8:72:46:51:e3:a7: 4e:62:13:f2:92:3b:25:9b:a0:48:17:a2:7a:e9:9f: dd:2b:28:75:77:a0:25:c4:21:b9:b9:a9:e4:43:89: 4d:c7:39:ba:f9:43:82:7d:8e:f0:b4:31:ab:99:b8: cc:62:2b:bd:12:f1:97:ae:a3:0c:de:b9:f2:97:a7: e5:7f:0d:20:a6:01:c8:0f:79:f4:34:52:f1:5e:4c: bc:fc:e4:ca:4b:37:9c:ee:51:21:0b:1c:9e:55:4b: d0:c8:69:dc:af:10:3e:24:eb:85:18:53:23:1a:a2: ed:61:2d:a4:eb:ac:f0:41:fe:41:16:28:51:b5:cb: 80:d1:10:80:f7:03:86:7b:6d:d6:ac:5c:ff:1e:3b: 32:d6:08:0f:53:fe:ee:4a:d0:3f:27:01:7b:5f:db: 88:2f:0c:b0:78:87:30:10:bb:51:a7:3f:7e:13:74: de:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:2D:14:77:95:F5:3F:75:88:FC:90:24:4D:02:5D:3E:BD:52:40:60 X509v3 Authority Key Identifier: keyid:D7:18:6B:28:65:B8:60:0D:66:28:22:AF:EB:90:15:70:06:E0:F4:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xhrKGW4YA1mKCKv65AVcAbg9BA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F428C/52FCC6481DA011E2B6D8709108B02CD2/1xhrKGW4YA1mKCKv65AVcAbg9BA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:9a:72:d5:57:8f:43:e0:ac:7e:d9:33:ac:7d:53:66:ba:4f: 96:8f:b6:08:8c:f2:86:55:1e:a8:ff:3b:83:bb:a3:d7:d4:f5: 88:f1:a7:aa:14:7c:a2:7e:66:ad:b0:a5:4f:65:f1:b6:72:de: aa:04:49:95:dd:bd:61:49:bf:8f:0a:44:8f:9c:81:31:91:50: 4e:cd:47:cf:1c:58:47:7c:da:8c:13:62:29:9b:e0:f1:47:e4: 54:4a:9b:f5:1d:9f:d9:65:bc:f2:90:a8:dc:c5:cc:b9:ea:8a: 89:57:d4:38:c8:8a:89:2d:cc:5a:49:32:6c:2f:00:5f:22:87: c0:89:96:03:0e:39:57:41:f4:79:c4:7d:68:db:17:19:2e:05: 51:8b:9c:7a:4a:c2:06:84:d5:16:06:04:16:70:75:e4:61:5e: 49:57:91:12:29:a5:54:94:e6:dc:ec:ab:67:e2:82:87:c2:f1: 9f:c3:ab:40:a5:c2:b4:f4:c2:2f:ba:02:d6:37:be:2a:3a:15: 36:5a:97:5f:fa:be:0c:e3:42:9a:9a:a4:79:0b:32:53:a7:2b: 05:e4:65:83:64:b3:f0:42:20:29:0d:e4:2c:0b:86:0b:ee:1a: bc:93:34:db:c1:55:d6:7b:94:3e:30:e7:8c:27:55:3e:7a:dc: 4a:1d:03:61 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyOEMxMTAvBgNVBAUTKEQ3MTg2QjI4NjVCODYwMEQ2NjI4MjJBRkVCOTAxNTcw MDZFMEY0MTAwHhcNMjYwMzI0MTUwMTM4WhcNMjYwMzMxMTUwMTM4WjAYMRYwFAYD VQQDEw02OWMyYTc1My05NTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArwKYl363y5JREXj4IcD1fGB+2vl93fqhBgJebMlSUjdTQ+mzHsgJfsj2lqAl E1KX4y6BwBwtDhh8ei0T1iDXC04uV/EPmMtJ95kcGBKmc9HzYW74ckZR46dOYhPy kjslm6BIF6J66Z/dKyh1d6AlxCG5uankQ4lNxzm6+UOCfY7wtDGrmbjMYiu9EvGX rqMM3rnyl6flfw0gpgHID3n0NFLxXky8/OTKSzec7lEhCxyeVUvQyGncrxA+JOuF GFMjGqLtYS2k66zwQf5BFihRtcuA0RCA9wOGe23WrFz/Hjsy1ggPU/7uStA/JwF7 X9uILwyweIcwELtRpz9+E3TeOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOEtFHeV 9T91iPyQJE0CXT69UkBgMB8GA1UdIwQYMBaAFNcYayhluGANZigir+uQFXAG4PQQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI4Qy81MkZDQzY0ODFE QTAxMUUyQjZEODcwOTEwOEIwMkNEMi8xeGhyS0dXNFlBMW1LQ0t2NjVBVmNBYmc5 QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF4aHJLR1c0WUExbUtDS3Y2NUFWY0FiZzlCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDI4Qy81MkZDQzY0ODFEQTAxMUUyQjZEODcwOTEwOEIwMkNEMi8xeGhyS0dXNFlB MW1LQ0t2NjVBVmNBYmc5QkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAD5py1VePQ+CsftkzrH1TZrpPlo+2CIzyhlUeqP87g7uj19T1iPGnqhR8on5m rbClT2XxtnLeqgRJld29YUm/jwpEj5yBMZFQTs1HzxxYR3zajBNiKZvg8UfkVEqb 9R2f2WW88pCo3MXMueqKiVfUOMiKiS3MWkkybC8AXyKHwImWAw45V0H0ecR9aNsX GS4FUYucekrCBoTVFgYEFnB15GFeSVeREimlVJTm3OyrZ+KCh8Lxn8OrQKXCtPTC L7oC1je+KjoVNlqXX/q+DONCmpqkeQsyU6crBeRlg2Sz8EIgKQ3kLAuGC+4avJM0 28FV1nuUPjDnjCdVPnrcSh0DYQ== -----END CERTIFICATE-----Generated at Thu Mar 26 02:26:07 2026 by rpki-client