$ rpki-client -vvf rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft File: VXiaNBbn71Fc4I8Fo28d7YNETAk.mft (raw, json) Hash identifier: yx7biMFx5qoEhfQTT95qHliQZ6v331l5foUr6fTjhyw= Subject key identifier: E0:46:C4:54:54:96:98:3B:70:32:75:B3:63:A7:04:38:13:44:C0:3E Authority key identifier: 55:78:9A:34:16:E7:EF:51:5C:E0:8F:05:A3:6F:1D:ED:83:44:4C:09 Certificate issuer: /CN=A91F43F2/serialNumber=55789A3416E7EF515CE08F05A36F1DED83444C09 Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft Manifest number: 86 Signing time: Wed 25 Mar 2026 06:52:05 +0000 Manifest this update: Wed 25 Mar 2026 06:52:04 +0000 Manifest next update: Wed 01 Apr 2026 06:52:04 +0000 Files and hashes: 1: VXiaNBbn71Fc4I8Fo28d7YNETAk.crl (hash: Ia8rT63nGx4doMViQhZZ4gAX4zd8V1w3E4F0IqC4w9w=) 2: A19F973C60C011F0A28C7F2CC4F9AE02.roa (hash: 1+gWdAZ37YIBU2iFVY3fHe/eCmXpEhHdoc6OKpG9wTE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.crl rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:52:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F43F2, serialNumber=55789A3416E7EF515CE08F05A36F1DED83444C09 Validity Not Before: Mar 25 06:52:04 2026 GMT Not After : Apr 1 06:52:04 2026 GMT Subject: CN=69c38615-1cec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8e:4c:cf:15:35:e9:0e:92:c5:73:4b:bb:2e: 68:3c:ec:23:4d:95:c6:8e:85:5c:ee:d0:29:ef:50: 71:d6:6f:ca:4b:9e:ab:a0:a9:43:37:17:42:2b:c9: 47:66:42:e3:b2:45:87:8b:bb:38:b2:05:4e:1c:05: 13:d9:14:7b:60:ee:07:78:3c:c5:a5:c2:ba:d1:4f: b2:f9:8a:31:20:b9:cb:44:0e:c1:de:62:30:11:ff: 6b:da:02:34:03:c3:e7:9f:74:be:4e:23:83:6c:e6: 06:84:59:35:b3:38:3a:d6:ef:ec:ef:e0:a5:e8:cb: b3:08:ab:8f:33:57:23:a8:2c:d3:17:42:3f:51:e7: 48:d2:c7:69:bc:b5:fc:fc:4b:b8:13:24:3d:c6:3b: b4:f2:de:fe:58:28:db:39:7b:48:ab:ef:d7:d9:57: c6:46:df:46:06:5c:7a:7f:34:6c:81:ea:b0:91:93: e3:52:94:6e:e5:b6:b2:f9:66:72:ed:9f:78:91:91: e0:7f:96:90:dc:26:bc:9d:bc:a7:56:ac:16:63:9e: 5e:03:d4:a7:07:28:98:b8:05:da:27:d2:ef:80:e7: ed:b4:4e:f1:8f:a9:2a:3d:48:64:d7:c9:09:1c:e0: a1:2c:02:66:ac:50:32:cc:c9:a4:e0:83:60:d1:ed: 64:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:46:C4:54:54:96:98:3B:70:32:75:B3:63:A7:04:38:13:44:C0:3E X509v3 Authority Key Identifier: keyid:55:78:9A:34:16:E7:EF:51:5C:E0:8F:05:A3:6F:1D:ED:83:44:4C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VXiaNBbn71Fc4I8Fo28d7YNETAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F43F2/4180509460C011F0AFB4572BC4F9AE02/VXiaNBbn71Fc4I8Fo28d7YNETAk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:9c:54:35:1f:5e:82:21:22:4d:ef:1d:54:b2:9a:74:4f:1c: c0:b2:02:e4:a6:83:5b:e5:7c:e7:73:9d:43:c9:e7:af:e1:56: e5:b1:fd:52:35:95:30:67:23:73:bd:9a:8a:15:65:96:61:5b: 8e:7e:d3:a6:9a:82:f5:81:c0:bc:e5:df:eb:93:1f:a4:c7:84: 69:6d:f9:8d:1f:b7:6b:c9:21:4d:f3:a7:f2:f3:dc:6c:49:67: ab:e7:18:91:c2:21:cf:31:d4:a2:6d:6d:91:af:49:42:71:a4: c5:84:e8:f8:99:a6:d9:e6:27:08:55:cf:4c:4b:f5:23:37:1d: 75:be:bc:a3:9e:90:bd:0f:63:84:b4:15:d8:31:d4:11:d2:a7: 6a:f8:2d:8e:e9:39:8c:03:c4:d2:d6:4c:fe:c3:e8:09:2a:b8: 47:d8:e1:e3:0c:44:e5:cf:aa:73:82:5f:b7:5f:b3:21:91:2f: 64:24:df:e0:f8:52:29:5d:7d:9b:18:81:b5:60:8d:b4:9f:f2: ad:d2:05:ba:4d:9f:ce:85:92:6c:53:87:64:a3:d8:28:be:bf: da:28:53:f8:b6:d1:64:a9:70:20:bb:32:ce:f5:64:d4:64:1f: 75:2a:39:b3:f7:3b:8c:ab:e8:aa:b3:a6:37:37:0b:f1:f8:72: db:cc:4a:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQzRjIxMTAvBgNVBAUTKDU1Nzg5QTM0MTZFN0VGNTE1Q0UwOEYwNUEzNkYxREVE ODM0NDRDMDkwHhcNMjYwMzI1MDY1MjA0WhcNMjYwNDAxMDY1MjA0WjAYMRYwFAYD VQQDEw02OWMzODYxNS0xY2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApY5MzxU16Q6SxXNLuy5oPOwjTZXGjoVc7tAp71Bx1m/KS56roKlDNxdCK8lH ZkLjskWHi7s4sgVOHAUT2RR7YO4HeDzFpcK60U+y+YoxILnLRA7B3mIwEf9r2gI0 A8Pnn3S+TiODbOYGhFk1szg61u/s7+Cl6MuzCKuPM1cjqCzTF0I/UedI0sdpvLX8 /Eu4EyQ9xju08t7+WCjbOXtIq+/X2VfGRt9GBlx6fzRsgeqwkZPjUpRu5bay+WZy 7Z94kZHgf5aQ3Ca8nbynVqwWY55eA9SnByiYuAXaJ9LvgOfttE7xj6kqPUhk18kJ HOChLAJmrFAyzMmk4INg0e1kvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOBGxFRU lpg7cDJ1s2OnBDgTRMA+MB8GA1UdIwQYMBaAFFV4mjQW5+9RXOCPBaNvHe2DREwJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDNGMi80MTgwNTA5NDYw QzAxMUYwQUZCNDU3MkJDNEY5QUUwMi9WWGlhTkJibjcxRmM0SThGbzI4ZDdZTkVU QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1ZYaWFOQmJuNzFGYzRJOEZvMjhkN1lORVRBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDNGMi80MTgwNTA5NDYwQzAxMUYwQUZCNDU3MkJDNEY5QUUwMi9WWGlhTkJibjcx RmM0SThGbzI4ZDdZTkVUQWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhJxUNR9egiEiTe8dVLKadE8cwLIC5KaDW+V853OdQ8nnr+FW5bH9UjWVMGcj c72aihVllmFbjn7TppqC9YHAvOXf65MfpMeEaW35jR+3a8khTfOn8vPcbElnq+cY kcIhzzHUom1tka9JQnGkxYTo+Jmm2eYnCFXPTEv1Izcddb68o56QvQ9jhLQV2DHU EdKnavgtjuk5jAPE0tZM/sPoCSq4R9jh4wxE5c+qc4Jft1+zIZEvZCTf4PhSKV19 mxiBtWCNtJ/yrdIFuk2fzoWSbFOHZKPYKL6/2ihT+LbRZKlwILsyzvVk1GQfdSo5 s/c7jKvoqrOmNzcL8fhy28xKkg== -----END CERTIFICATE-----Generated at Thu Mar 26 15:36:07 2026 by rpki-client