$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft File: sXSj1LqbR24rMeR8cqKY0ETZh4U.mft (raw, json) Hash identifier: mXYN2VyMLqszyHAsCBbpBd1QwtD/G09Ur4cyFnByk7g= Subject key identifier: 86:5D:50:A4:17:B7:28:B5:F3:F3:06:30:7C:BF:94:3B:AB:F8:B4:CC Authority key identifier: B1:74:A3:D4:BA:9B:47:6E:2B:31:E4:7C:72:A2:98:D0:44:D9:87:85 Certificate issuer: /CN=A91FBC89/serialNumber=B174A3D4BA9B476E2B31E47C72A298D044D98785 Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft Manifest number: DF Signing time: Wed 25 Mar 2026 05:59:49 +0000 Manifest this update: Wed 25 Mar 2026 05:59:49 +0000 Manifest next update: Wed 01 Apr 2026 05:59:49 +0000 Files and hashes: 1: sXSj1LqbR24rMeR8cqKY0ETZh4U.crl (hash: PLkaaY+SweMzJUtcHEvyNoPIrvD82aVmxJmxQx0zadg=) 2: 000A7CE25A5911F0948C6D20C4F9AE02.roa (hash: GCUFS6qlOIojf4LyhWMHeScjoCzxaabahSDQqvuP0Kk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.crl rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:59:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBC89, serialNumber=B174A3D4BA9B476E2B31E47C72A298D044D98785 Validity Not Before: Mar 25 05:59:49 2026 GMT Not After : Apr 1 05:59:49 2026 GMT Subject: CN=69c379d5-9c64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:58:b9:54:32:1c:45:0a:4d:cb:47:11:18:2e: 83:0b:1f:e7:47:bd:ea:64:e6:97:de:dc:a2:6f:c2: 8a:05:a3:38:4a:02:06:a2:de:59:6d:a5:76:50:35: 0c:54:1b:2b:72:c5:cb:a5:4c:c9:be:92:e2:39:b3: 82:78:0d:76:dc:ab:1f:08:e4:3d:44:43:87:68:6c: f1:94:3f:9f:a0:b8:5e:b2:74:32:18:f6:37:2d:08: 05:a6:1c:9c:2b:de:e1:f9:11:99:aa:3e:f7:9c:30: 56:16:32:76:63:31:9a:48:f7:cd:64:94:6f:0a:05: c8:f0:f0:da:24:34:3d:71:54:fe:47:43:cc:1d:67: e6:a6:e3:84:e5:bd:0c:d1:ee:90:d9:37:9e:1d:fa: 3f:fa:06:1e:04:2f:4e:d6:81:75:2b:d5:85:8d:b3: c3:c0:27:47:b4:fd:6a:57:98:98:2f:bf:13:17:c0: d3:b9:90:16:8a:fa:4a:ec:ed:d7:4a:5d:28:ab:7e: ed:26:50:c5:ab:00:87:99:3d:7c:22:e6:2e:3e:d3: c6:aa:b3:84:bc:99:57:30:5e:3d:54:eb:3c:38:7b: 6b:89:7c:d8:9d:5d:e5:0d:d8:88:ec:06:bd:27:fc: e6:6c:d5:c2:da:ce:a5:4a:5e:17:47:ed:8a:ff:6a: 28:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:5D:50:A4:17:B7:28:B5:F3:F3:06:30:7C:BF:94:3B:AB:F8:B4:CC X509v3 Authority Key Identifier: keyid:B1:74:A3:D4:BA:9B:47:6E:2B:31:E4:7C:72:A2:98:D0:44:D9:87:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:98:cb:e9:10:67:6b:1b:fd:37:89:24:9b:94:75:dc:f1:74: 1f:25:32:24:f5:9c:cc:55:dc:b7:0e:1a:fb:f5:2a:ec:0f:0e: 73:66:4f:7f:31:2f:a9:18:ef:57:9d:52:d3:ad:e9:ee:c1:55: 39:b6:8e:e8:75:b4:35:5a:3f:93:48:2a:fe:d6:6f:6a:a6:56: b2:83:f0:b6:ac:d2:76:6f:36:fc:a4:76:f8:ca:0e:00:76:f2: 03:3f:86:8c:e1:fe:ac:fe:70:7c:b5:93:41:55:55:ca:12:b7: ab:4d:74:00:c2:5a:7a:20:31:6e:33:7d:3f:86:41:d7:6a:26: 96:49:fb:87:d0:79:85:aa:a6:89:1f:c4:ab:78:a1:1f:b5:3f: b5:c6:45:41:00:b1:ce:ad:67:3c:69:67:9c:3d:2e:95:45:fc: 42:64:fa:0a:a3:dc:62:44:a9:ce:95:7a:b8:bc:00:d5:67:c8: b3:8c:53:49:0b:51:b6:3f:10:d0:2c:db:02:16:1c:8c:52:03: c0:ac:a1:e6:3f:e7:d5:c5:13:f7:7c:d9:46:6a:d2:79:cc:a2: 88:2a:51:47:e7:13:88:5f:72:15:d8:32:cd:a5:7d:07:e9:17: bf:47:57:0f:3c:11:be:5f:82:a6:07:47:ff:41:d5:1d:e5:99: fe:72:12:47 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJDODkxMTAvBgNVBAUTKEIxNzRBM0Q0QkE5QjQ3NkUyQjMxRTQ3QzcyQTI5OEQw NDREOTg3ODUwHhcNMjYwMzI1MDU1OTQ5WhcNMjYwNDAxMDU1OTQ5WjAYMRYwFAYD VQQDEw02OWMzNzlkNS05YzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVi5VDIcRQpNy0cRGC6DCx/nR73qZOaX3tyib8KKBaM4SgIGot5ZbaV2UDUM VBsrcsXLpUzJvpLiObOCeA123KsfCOQ9REOHaGzxlD+foLhesnQyGPY3LQgFphyc K97h+RGZqj73nDBWFjJ2YzGaSPfNZJRvCgXI8PDaJDQ9cVT+R0PMHWfmpuOE5b0M 0e6Q2TeeHfo/+gYeBC9O1oF1K9WFjbPDwCdHtP1qV5iYL78TF8DTuZAWivpK7O3X Sl0oq37tJlDFqwCHmT18IuYuPtPGqrOEvJlXMF49VOs8OHtriXzYnV3lDdiI7Aa9 J/zmbNXC2s6lSl4XR+2K/2oomQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIZdUKQX tyi18/MGMHy/lDur+LTMMB8GA1UdIwQYMBaAFLF0o9S6m0duKzHkfHKimNBE2YeF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkM4OS85RTcyNjJCRUVG Q0UxMUVGODkzRkY3MEVDNEY5QUUwMi9zWFNqMUxxYlIyNHJNZVI4Y3FLWTBFVFpo NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NYU2oxTHFiUjI0ck1lUjhjcUtZMEVUWmg0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkM4OS85RTcyNjJCRUVGQ0UxMUVGODkzRkY3MEVDNEY5QUUwMi9zWFNqMUxxYlIy NHJNZVI4Y3FLWTBFVFpoNFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAk5jL6RBnaxv9N4kkm5R13PF0HyUyJPWczFXctw4a+/Uq7A8Oc2ZPfzEvqRjv V51S063p7sFVObaO6HW0NVo/k0gq/tZvaqZWsoPwtqzSdm82/KR2+MoOAHbyAz+G jOH+rP5wfLWTQVVVyhK3q010AMJaeiAxbjN9P4ZB12omlkn7h9B5haqmiR/Eq3ih H7U/tcZFQQCxzq1nPGlnnD0ulUX8QmT6CqPcYkSpzpV6uLwA1WfIs4xTSQtRtj8Q 0CzbAhYcjFIDwKyh5j/n1cUT93zZRmrSecyiiCpRR+cTiF9yFdgyzaV9B+kXv0dX DzwRvl+CpgdH/0HVHeWZ/nISRw== -----END CERTIFICATE-----Generated at Thu Mar 26 05:48:58 2026 by rpki-client