$ rpki-client -vvf rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft File: XUXapVj_ZfZmNblniAm4rPBAc9I.mft (raw, json) Hash identifier: BQWEgE5+j+oq1KFLTGwef1Df8uTsqedfCXXkETQaqqY= Subject key identifier: 30:74:F4:1B:8A:00:4E:11:E7:A3:8B:3A:1B:30:E4:6D:4C:6C:22:F5 Authority key identifier: 5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 Certificate issuer: /CN=A91F52FD/serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Certificate serial: 0689 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft Manifest number: 0679 Signing time: Thu 26 Mar 2026 22:24:46 +0000 Manifest this update: Thu 26 Mar 2026 22:24:46 +0000 Manifest next update: Thu 02 Apr 2026 22:24:46 +0000 Files and hashes: 1: XUXapVj_ZfZmNblniAm4rPBAc9I.crl (hash: gksQ+MNaOJgSB8SNtOMLWK+OHAEhsGDwrs3t7MgwAyM=) 2: 68A88182237011F191BDBAA2B9833773.roa (hash: jJN2AkLqxp991N6LCfgyPrQsqtyTKtHrIpXKhu8DnZs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 22:24:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1673 (0x689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F52FD, serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Validity Not Before: Mar 26 22:24:46 2026 GMT Not After : Apr 2 22:24:46 2026 GMT Subject: CN=69c5b22e-7636 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a6:dd:89:9a:e2:fe:48:3d:5d:ea:74:40:0c: 15:ca:3d:b7:34:e7:dd:85:79:eb:3e:bd:31:47:2e: 76:3a:b2:93:c4:e7:d0:88:ac:dd:40:b0:98:73:06: e2:da:3b:df:c3:9f:5e:a8:b4:cf:ae:a0:41:c5:bf: ed:fc:6f:99:8e:aa:5d:9b:08:46:4f:16:4e:55:2d: f3:54:27:0a:0f:98:11:15:e7:cd:2f:fe:d2:1d:a2: 88:36:6f:e2:4d:df:2c:c9:53:04:98:9e:54:ad:30: 6a:bc:2d:d6:f7:95:78:10:f9:7b:db:2b:17:f5:a6: e5:fc:8c:e4:5b:17:2e:b7:68:15:9c:b3:2a:90:1b: 76:1d:38:b3:86:f9:20:6d:b8:9a:2b:03:2c:98:6b: d3:f5:5c:b7:56:49:69:2b:3b:8c:5b:a5:3f:f6:65: 09:bc:c4:e7:80:d3:86:f5:30:02:35:a6:66:24:fa: 35:83:34:58:ab:ad:c6:02:c6:c2:1a:ee:81:6a:d4: 52:b0:fe:e4:15:67:e8:ef:de:ce:16:e5:5f:a2:83: d7:2d:37:18:ce:6a:e5:09:f9:e2:35:8d:d1:ec:77: f9:2f:d8:99:4d:ec:10:8e:68:ea:11:a4:66:3a:83: a7:17:01:18:89:6a:b5:86:16:6c:a2:3b:83:8d:f1: 4d:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:74:F4:1B:8A:00:4E:11:E7:A3:8B:3A:1B:30:E4:6D:4C:6C:22:F5 X509v3 Authority Key Identifier: keyid:5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:d3:53:41:73:d8:47:b5:8e:0b:33:e9:87:81:54:43:a7:1e: 71:6d:29:1d:8f:54:2e:7a:1a:1a:1a:30:8f:82:dc:12:8c:9d: 81:ae:ca:bc:5d:75:98:9e:cd:b9:2a:4e:20:d6:c8:3a:88:60: 53:41:97:97:b4:c0:46:79:79:6a:e9:10:e6:4f:aa:d9:18:fc: 9f:65:3f:a2:b5:4f:8d:63:02:fd:c5:d7:90:0b:94:26:d1:8b: 5c:00:6a:0e:42:82:64:b5:c7:2c:56:f0:1c:2d:2b:06:dd:12: 6e:d5:60:7d:b1:0c:aa:dd:e7:a6:a2:a0:68:e8:88:42:85:40: cf:6c:63:6f:28:c1:8d:d1:a8:f9:0e:f4:8e:13:02:10:8b:0b: 4c:ff:05:76:25:83:04:b4:a8:0b:53:cd:c4:4e:51:7e:38:81: a7:8a:c9:94:f1:37:aa:78:6d:46:24:1c:92:54:16:65:10:fe: 1c:02:93:c8:62:df:01:f2:9b:4f:9c:78:3f:d7:44:3d:83:23: b9:f2:1e:25:8d:b8:f4:14:41:bd:7d:bb:b2:5c:33:70:55:0e: 46:74:d3:5e:cd:ed:aa:35:6c:3e:86:03:7c:07:53:01:d9:82: 81:f0:c6:08:b8:76:af:01:28:72:ed:fa:ef:4b:47:3c:f7:9f: 2b:09:f1:c8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyRkQxMTAvBgNVBAUTKDVENDVEQUE1NThGRjY1RjY2NjM1Qjk2Nzg4MDlCOEFD RjA0MDczRDIwHhcNMjYwMzI2MjIyNDQ2WhcNMjYwNDAyMjIyNDQ2WjAYMRYwFAYD VQQDEw02OWM1YjIyZS03NjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqbdiZri/kg9Xep0QAwVyj23NOfdhXnrPr0xRy52OrKTxOfQiKzdQLCYcwbi 2jvfw59eqLTPrqBBxb/t/G+ZjqpdmwhGTxZOVS3zVCcKD5gRFefNL/7SHaKINm/i Td8syVMEmJ5UrTBqvC3W95V4EPl72ysX9abl/IzkWxcut2gVnLMqkBt2HTizhvkg bbiaKwMsmGvT9Vy3VklpKzuMW6U/9mUJvMTngNOG9TACNaZmJPo1gzRYq63GAsbC Gu6BatRSsP7kFWfo797OFuVfooPXLTcYzmrlCfniNY3R7Hf5L9iZTewQjmjqEaRm OoOnFwEYiWq1hhZsojuDjfFNBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDB09BuK AE4R56OLOhsw5G1MbCL1MB8GA1UdIwQYMBaAFF1F2qVY/2X2ZjW5Z4gJuKzwQHPS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTJGRC82MjVGMEYwQUJB Q0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pmWm1OYmxuaUFtNHJQQkFj OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVWGFwVmpfWmZabU5ibG5pQW00clBCQWM5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTJGRC82MjVGMEYwQUJBQ0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pm Wm1OYmxuaUFtNHJQQkFjOUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAO9NTQXPYR7WOCzPph4FUQ6cecW0pHY9ULnoaGhowj4LcEoydga7KvF11mJ7N uSpOINbIOohgU0GXl7TARnl5aukQ5k+q2Rj8n2U/orVPjWMC/cXXkAuUJtGLXABq DkKCZLXHLFbwHC0rBt0SbtVgfbEMqt3npqKgaOiIQoVAz2xjbyjBjdGo+Q70jhMC EIsLTP8FdiWDBLSoC1PNxE5RfjiBp4rJlPE3qnhtRiQcklQWZRD+HAKTyGLfAfKb T5x4P9dEPYMjufIeJY249BRBvX27slwzcFUORnTTXs3tqjVsPoYDfAdTAdmCgfDG CLh2rwEocu3670tHPPefKwnxyA== -----END CERTIFICATE-----Generated at Sat Mar 28 11:49:08 2026 by rpki-client