$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft File: XpnXCH3VTqLn519cgIcHE4Posp4.mft (raw, json) Hash identifier: XafttejuwEw30mxO27w/aGUQuqUkPtLPxF3PfOnkYlk= Subject key identifier: 09:71:12:30:D0:79:02:B4:E1:DC:2B:39:84:5C:77:3C:01:1B:CF:2B Authority key identifier: 5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E Certificate issuer: /CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Certificate serial: 0B8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft Manifest number: 0B67 Signing time: Tue 24 Mar 2026 19:00:52 +0000 Manifest this update: Tue 24 Mar 2026 19:00:51 +0000 Manifest next update: Tue 31 Mar 2026 19:00:51 +0000 Files and hashes: 1: XpnXCH3VTqLn519cgIcHE4Posp4.crl (hash: oToNKVX4awdR2BS7eZWMcihy7tPL+wyIId9IpSIABYo=) 2: 1ECAB88C1AD811F193E57F8A3E3D8C67.roa (hash: EEp5QsWdoJsIxpAKqW/3S6obmsW1cvqsTV52GMYJYYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2954 (0xb8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81D3, serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Validity Not Before: Mar 24 19:00:51 2026 GMT Not After : Mar 31 19:00:51 2026 GMT Subject: CN=69c2df64-a13f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1e:28:fd:86:dd:3a:aa:7f:82:df:d0:bc:46: f3:d2:f3:11:bd:2b:de:95:b5:f2:ae:48:0b:3c:65: 44:d3:69:a6:a6:13:10:12:99:9a:26:f1:5e:72:b1: c2:3f:27:ef:25:f8:63:6d:b1:c6:69:82:36:7f:e8: 18:92:6e:a9:2a:e6:f9:82:04:e1:90:6f:02:ba:41: ff:9a:16:46:0d:21:d8:ce:2e:2d:0c:00:26:f6:eb: 3d:13:b1:f7:d5:7b:2d:07:09:d9:85:1a:08:64:4f: 74:db:8e:e8:6e:5d:a8:99:07:50:db:6f:0b:07:83: 3f:5c:6f:79:3a:62:c6:e5:1f:cc:38:9a:3a:a1:3a: ae:a2:17:e4:d5:af:0a:e6:ac:65:00:3a:fb:4d:cc: 7d:24:b8:33:00:15:4d:71:16:a4:92:cd:9d:2f:e7: 03:67:98:17:a9:1a:95:60:a3:55:b6:ef:19:6f:14: 42:a5:fb:89:98:99:08:ae:ff:d0:92:87:7c:1c:b8: 6e:47:ef:20:e7:95:b4:2b:77:10:cd:66:7c:7a:f6: d5:1c:07:4c:68:b4:71:3d:46:41:5d:06:13:81:4b: b7:e5:28:57:1a:bf:0c:a5:f4:e7:9e:9b:8a:66:db: b5:ae:e9:df:73:fd:d0:e9:8c:c1:fc:fd:1f:12:00: fd:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:71:12:30:D0:79:02:B4:E1:DC:2B:39:84:5C:77:3C:01:1B:CF:2B X509v3 Authority Key Identifier: keyid:5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:95:9e:34:75:ed:eb:c5:18:2a:28:56:93:a6:54:b6:12:96: fd:f3:ea:53:55:ac:1f:9d:18:f3:06:09:1d:6a:26:92:a8:d6: a8:b5:10:db:99:43:c6:e4:5d:c1:d5:17:cd:27:ec:b8:1a:3f: 5c:05:e8:bc:a5:5b:02:98:eb:88:ea:ff:c4:83:56:ef:95:9e: e9:b2:db:cc:dc:70:e1:de:ec:0a:71:9a:61:23:4a:60:58:a7: 0f:3f:d3:16:c6:c5:af:af:3d:21:72:d0:4d:0e:f7:67:90:fc: 28:36:6a:f0:ff:bd:67:dc:b8:e6:74:af:23:90:5d:e4:cb:c7: 49:af:52:a7:59:e9:85:b7:ec:b1:fe:a1:19:7c:8e:8c:14:b1: 6e:03:35:f4:93:c9:4a:3f:9a:da:25:d1:57:85:4e:95:74:99: 70:f1:00:38:3e:6c:02:28:0a:8e:88:32:4f:84:26:21:09:30: 70:0a:82:d9:70:5a:2d:58:5c:b0:08:96:93:e9:97:bf:b5:89: 1d:51:ba:22:51:25:40:65:d7:03:29:7d:2b:ee:c5:a8:8e:5b: 05:08:aa:23:09:8d:2a:0c:34:a1:b1:47:18:2f:da:0e:72:1f: 75:bc:44:b5:ca:64:8e:83:84:97:ed:e6:77:6a:a6:8b:de:f4: 32:e4:b4:7c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC4owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxRDMxMTAvBgNVBAUTKDVFOTlENzA4N0RENTRFQTJFN0U3NUY1QzgwODcwNzEz ODNFOEIyOUUwHhcNMjYwMzI0MTkwMDUxWhcNMjYwMzMxMTkwMDUxWjAYMRYwFAYD VQQDEw02OWMyZGY2NC1hMTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzB4o/YbdOqp/gt/QvEbz0vMRvSvelbXyrkgLPGVE02mmphMQEpmaJvFecrHC PyfvJfhjbbHGaYI2f+gYkm6pKub5ggThkG8CukH/mhZGDSHYzi4tDAAm9us9E7H3 1XstBwnZhRoIZE90247obl2omQdQ228LB4M/XG95OmLG5R/MOJo6oTquohfk1a8K 5qxlADr7Tcx9JLgzABVNcRakks2dL+cDZ5gXqRqVYKNVtu8ZbxRCpfuJmJkIrv/Q kod8HLhuR+8g55W0K3cQzWZ8evbVHAdMaLRxPUZBXQYTgUu35ShXGr8MpfTnnpuK Ztu1runfc/3Q6YzB/P0fEgD97wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAlxEjDQ eQK04dwrOYRcdzwBG88rMB8GA1UdIwQYMBaAFF6Z1wh91U6i5+dfXICHBxOD6LKe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFEMy8wQTg0NTlGNDUy MzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRxTG41MTljZ0ljSEU0UG9z cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hwblhDSDNWVHFMbjUxOWNnSWNIRTRQb3NwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODFEMy8wQTg0NTlGNDUyMzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRx TG41MTljZ0ljSEU0UG9zcDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPpWeNHXt68UYKihWk6ZUthKW/fPqU1WsH50Y8wYJHWomkqjWqLUQ25lDxuRd wdUXzSfsuBo/XAXovKVbApjriOr/xINW75We6bLbzNxw4d7sCnGaYSNKYFinDz/T FsbFr689IXLQTQ73Z5D8KDZq8P+9Z9y45nSvI5Bd5MvHSa9Sp1nphbfssf6hGXyO jBSxbgM19JPJSj+a2iXRV4VOlXSZcPEAOD5sAigKjogyT4QmIQkwcAqC2XBaLVhc sAiWk+mXv7WJHVG6IlElQGXXAyl9K+7FqI5bBQiqIwmNKgw0obFHGC/aDnIfdbxE tcpkjoOEl+3md2qmi970MuS0fA== -----END CERTIFICATE-----Generated at Thu Mar 26 08:29:57 2026 by rpki-client