$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft File: Xx7oK_cJomzAAJlbR0geVPbzgG4.mft (raw, json) Hash identifier: HWKm/vOtYHXqxRZVEBYvskt5QH4fpcGWCM4VpCXM9OE= Subject key identifier: B3:21:05:8F:05:9C:B7:BD:B2:98:E7:F0:E4:77:65:2A:D9:83:FF:71 Authority key identifier: 5F:1E:E8:2B:F7:09:A2:6C:C0:00:99:5B:47:48:1E:54:F6:F3:80:6E Certificate issuer: /CN=A91F9E0A/serialNumber=5F1EE82BF709A26CC000995B47481E54F6F3806E Certificate serial: 0150 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft Manifest number: 014B Signing time: Wed 25 Mar 2026 04:31:25 +0000 Manifest this update: Wed 25 Mar 2026 04:31:24 +0000 Manifest next update: Wed 01 Apr 2026 04:31:24 +0000 Files and hashes: 1: Xx7oK_cJomzAAJlbR0geVPbzgG4.crl (hash: 4/aMUg100AOnSzG6jv0++CCQI33PndoUIJjwZedwuDA=) 2: 9F4A37143EA511EF882FE276C4F9AE02.roa (hash: HtTTgZnkokVoTsTwgIBUK/V2b+CIHpg3pHHzLxRKi1o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.crl rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:31:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9E0A, serialNumber=5F1EE82BF709A26CC000995B47481E54F6F3806E Validity Not Before: Mar 25 04:31:24 2026 GMT Not After : Apr 1 04:31:24 2026 GMT Subject: CN=69c3651c-613d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:4e:8e:7f:7f:4d:3a:0b:09:ee:35:7d:cf:ea: 3a:e0:f2:db:ce:a5:b8:ca:ed:e8:da:0a:3e:d1:e3: 05:54:30:ef:5b:29:90:c2:9b:a2:74:80:24:d9:4a: ae:ad:1e:22:53:43:d7:19:9f:91:dc:f7:5a:bd:f5: 2d:9f:62:35:4f:a6:b1:a1:be:24:8d:76:29:a1:4f: e6:44:56:0b:8f:06:c1:e1:e6:b4:c5:c0:04:b7:24: 0d:be:58:ef:25:72:96:4c:19:98:06:bd:32:cf:25: 45:89:ea:90:4b:14:b7:45:4e:49:2d:84:3b:8a:62: 24:55:36:f3:45:f7:b7:f7:97:18:d8:72:a5:03:3f: 60:54:84:ba:9f:26:bc:1b:d8:85:ed:9a:64:f2:ba: ec:85:10:bd:98:45:c9:af:e9:ce:cd:b9:ce:4d:e5: 4f:7f:3e:12:3a:fd:6c:9f:62:56:02:f3:8e:47:1f: 1a:db:16:19:41:48:f3:32:e5:f3:c0:0e:96:48:99: 08:b6:49:45:bb:9c:ed:59:13:26:de:31:4e:6f:63: b9:9b:f0:d1:36:57:33:b9:1b:88:66:d0:73:e7:e2: 4d:23:41:80:06:a6:de:b4:9f:f9:4a:e3:b2:82:a9: 04:8a:77:8d:8e:4c:1c:dc:f3:38:2a:9d:93:f8:c9: 1e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:21:05:8F:05:9C:B7:BD:B2:98:E7:F0:E4:77:65:2A:D9:83:FF:71 X509v3 Authority Key Identifier: keyid:5F:1E:E8:2B:F7:09:A2:6C:C0:00:99:5B:47:48:1E:54:F6:F3:80:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:f4:08:77:9a:f5:87:20:09:ce:bd:37:be:fd:14:32:9d:0b: 58:b6:aa:a6:42:06:9b:59:e1:3f:b6:bb:54:a3:9e:34:98:43: 9f:89:d0:5f:a2:08:c6:20:60:4a:90:7e:90:d3:1a:da:1c:cd: 6d:2a:c7:99:1f:15:0b:cd:dd:35:0c:8e:47:b4:1b:cf:5f:ad: 1f:d4:ca:cd:44:b9:3f:ae:e3:ef:fb:01:71:71:e2:f6:eb:b4: a8:f2:1e:af:ab:4f:f9:59:ba:0d:32:c2:bf:5f:07:ea:7b:1d: fb:1f:ce:14:5b:46:90:8a:e1:30:84:6a:6c:2e:5a:95:69:6c: 44:36:9c:a6:26:37:a8:8e:00:41:62:c0:ab:61:8f:80:90:22: 80:26:e6:f8:c8:8b:19:59:22:43:31:4c:5c:7f:36:ca:8e:a9: d4:52:d7:79:c8:7c:53:7d:e8:dc:09:c0:48:49:66:57:6b:bd: f7:fb:67:50:39:eb:eb:e6:b9:9b:3e:04:98:d9:a0:66:e4:31: 1e:aa:1d:b9:38:ff:85:bf:07:8f:95:2d:76:89:f4:3b:1e:49: 5a:66:26:c7:f6:25:e1:86:13:76:17:8b:c2:bf:4f:b8:0d:9e: 81:b6:3f:92:65:ab:7f:7f:c6:ea:0a:bf:93:1e:a8:6f:84:31: 0d:59:f5:45 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlFMEExMTAvBgNVBAUTKDVGMUVFODJCRjcwOUEyNkNDMDAwOTk1QjQ3NDgxRTU0 RjZGMzgwNkUwHhcNMjYwMzI1MDQzMTI0WhcNMjYwNDAxMDQzMTI0WjAYMRYwFAYD VQQDEw02OWMzNjUxYy02MTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjk6Of39NOgsJ7jV9z+o64PLbzqW4yu3o2go+0eMFVDDvWymQwpuidIAk2Uqu rR4iU0PXGZ+R3PdavfUtn2I1T6axob4kjXYpoU/mRFYLjwbB4ea0xcAEtyQNvljv JXKWTBmYBr0yzyVFieqQSxS3RU5JLYQ7imIkVTbzRfe395cY2HKlAz9gVIS6nya8 G9iF7Zpk8rrshRC9mEXJr+nOzbnOTeVPfz4SOv1sn2JWAvOORx8a2xYZQUjzMuXz wA6WSJkItklFu5ztWRMm3jFOb2O5m/DRNlczuRuIZtBz5+JNI0GABqbetJ/5SuOy gqkEineNjkwc3PM4Kp2T+MketwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLMhBY8F nLe9spjn8OR3ZSrZg/9xMB8GA1UdIwQYMBaAFF8e6Cv3CaJswACZW0dIHlT284Bu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUUwQS8wM0IwNTJENDNF NjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9YeDdvS19jSm9tekFBSmxiUjBnZVZQYnpn RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1h4N29LX2NKb216QUFKbGJSMGdlVlBiemdHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUUwQS8wM0IwNTJENDNFNjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9YeDdvS19jSm9t ekFBSmxiUjBnZVZQYnpnRzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOfQId5r1hyAJzr03vv0UMp0LWLaqpkIGm1nhP7a7VKOeNJhDn4nQX6IIxiBg SpB+kNMa2hzNbSrHmR8VC83dNQyOR7Qbz1+tH9TKzUS5P67j7/sBcXHi9uu0qPIe r6tP+Vm6DTLCv18H6nsd+x/OFFtGkIrhMIRqbC5alWlsRDacpiY3qI4AQWLAq2GP gJAigCbm+MiLGVkiQzFMXH82yo6p1FLXech8U33o3AnASElmV2u99/tnUDnr6+a5 mz4EmNmgZuQxHqoduTj/hb8Hj5Utdon0Ox5JWmYmx/Yl4YYTdheLwr9PuA2egbY/ kmWrf3/G6gq/kx6ob4QxDVn1RQ== -----END CERTIFICATE-----Generated at Thu Mar 26 18:26:19 2026 by rpki-client