$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft File: XEzzdpk9EYUoJw3ZUvMCztV18dw.mft (raw, json) Hash identifier: WEHLiQVTumiXnavGLN6YIMotYEe6Y+amgj0zNkRQp8s= Subject key identifier: 7F:D9:33:7C:71:0E:C7:6E:6B:66:04:25:98:C5:2B:74:E2:B1:FA:F5 Authority key identifier: 5C:4C:F3:76:99:3D:11:85:28:27:0D:D9:52:F3:02:CE:D5:75:F1:DC Certificate issuer: /CN=A91FBD89/serialNumber=5C4CF376993D118528270DD952F302CED575F1DC Certificate serial: 05A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft Manifest number: 05A5 Signing time: Tue 24 Mar 2026 22:52:32 +0000 Manifest this update: Tue 24 Mar 2026 22:52:32 +0000 Manifest next update: Tue 31 Mar 2026 22:52:32 +0000 Files and hashes: 1: XEzzdpk9EYUoJw3ZUvMCztV18dw.crl (hash: OIeyToIvJho4o+I1I5KpDeSInaQECGTRYD2DzdrgLY8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.crl rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:52:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1445 (0x5a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD89, serialNumber=5C4CF376993D118528270DD952F302CED575F1DC Validity Not Before: Mar 24 22:52:32 2026 GMT Not After : Mar 31 22:52:32 2026 GMT Subject: CN=69c315b0-2ba6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bf:8c:b9:d8:2a:8d:3f:ea:2d:40:2d:07:50: c1:2b:62:d1:b8:73:38:42:62:2d:75:c8:ec:0b:8e: 07:95:56:a7:ca:c8:21:98:e2:02:45:6e:5d:b7:92: c9:2b:39:5a:66:d7:7b:97:75:d8:3d:50:38:bd:0d: 31:1f:28:50:12:6b:4d:47:e7:ab:bc:54:52:65:8a: a9:12:7a:9a:0e:d2:c3:88:77:7e:bd:f7:ce:32:9c: da:64:3d:23:76:1e:f9:2b:3d:8b:c3:75:c8:1c:99: 7c:71:93:d5:2b:9b:ee:e1:17:f7:cc:7c:0e:c3:3b: 10:02:7c:45:0d:f6:10:01:95:02:01:c2:e2:47:a1: e9:4e:cf:77:51:dc:e2:bd:92:a4:86:58:f0:e1:ff: 70:ee:38:e1:a9:7a:f8:bc:75:ce:e8:ef:92:75:ae: b8:0f:ce:e4:44:fe:d0:9d:83:83:43:e5:e6:88:76: d6:92:34:b3:83:9d:71:2b:c6:fb:62:39:ed:e2:c9: 0b:89:c4:fc:23:ff:68:8d:a3:af:6e:a4:f5:7e:53: 86:16:c6:ee:96:3f:8e:58:d8:23:02:80:04:37:40: d3:02:e6:e4:7c:e3:e8:ad:90:8e:53:11:11:fe:ab: 96:34:f9:74:c0:c8:2b:2c:9c:12:70:32:92:37:3e: ce:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:D9:33:7C:71:0E:C7:6E:6B:66:04:25:98:C5:2B:74:E2:B1:FA:F5 X509v3 Authority Key Identifier: keyid:5C:4C:F3:76:99:3D:11:85:28:27:0D:D9:52:F3:02:CE:D5:75:F1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:c0:8a:66:65:b8:36:ae:7d:84:c4:a1:7a:87:f3:cc:51:26: 56:34:e0:aa:da:38:f5:79:cc:4d:f9:08:e3:61:da:69:ff:2e: 48:11:29:41:30:c0:69:68:04:ab:5e:08:ac:65:1c:de:bd:4d: ef:94:71:78:8c:8e:c6:1c:5e:dd:4c:6c:b0:cc:ed:6f:d3:9a: 37:e9:c0:c7:80:aa:3b:26:28:b9:54:a7:4b:57:d5:7d:2a:2f: 78:8c:70:64:d9:ba:d9:b5:88:b0:9b:9d:98:cd:2b:4a:46:95: 75:d0:68:89:a5:a7:74:16:7f:20:30:8f:16:49:24:3a:27:bf: db:39:43:f5:70:db:9d:35:5c:0d:22:92:1e:93:c4:16:f4:1f: 76:2b:29:fe:3c:20:11:15:41:34:42:9b:d2:c7:65:ed:dc:de: a4:a5:d3:df:c4:ee:b5:ed:00:4f:54:3f:b0:1b:7c:8c:61:cf: 9b:5e:49:af:8e:cb:09:4e:12:b3:31:bd:16:c7:f9:8a:5f:b7: cf:93:d1:35:6e:27:84:c5:14:f1:ba:aa:61:d4:c7:39:84:8c: 79:7e:1c:66:9b:61:a1:d4:5a:78:e3:76:bd:07:3d:59:08:7a: b1:0a:ec:e9:56:66:09:55:34:bb:84:bd:67:d1:99:37:9e:d6: 83:2f:d5:b8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEODkxMTAvBgNVBAUTKDVDNENGMzc2OTkzRDExODUyODI3MEREOTUyRjMwMkNF RDU3NUYxREMwHhcNMjYwMzI0MjI1MjMyWhcNMjYwMzMxMjI1MjMyWjAYMRYwFAYD VQQDEw02OWMzMTViMC0yYmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsr+MudgqjT/qLUAtB1DBK2LRuHM4QmItdcjsC44HlVanysghmOICRW5dt5LJ KzlaZtd7l3XYPVA4vQ0xHyhQEmtNR+ervFRSZYqpEnqaDtLDiHd+vffOMpzaZD0j dh75Kz2Lw3XIHJl8cZPVK5vu4Rf3zHwOwzsQAnxFDfYQAZUCAcLiR6HpTs93Udzi vZKkhljw4f9w7jjhqXr4vHXO6O+Sda64D87kRP7QnYODQ+XmiHbWkjSzg51xK8b7 Yjnt4skLicT8I/9ojaOvbqT1flOGFsbulj+OWNgjAoAEN0DTAubkfOPorZCOUxER /quWNPl0wMgrLJwScDKSNz7OMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH/ZM3xx Dsdua2YEJZjFK3Tisfr1MB8GA1UdIwQYMBaAFFxM83aZPRGFKCcN2VLzAs7VdfHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQ4OS9GMzdDODhFRTBC N0UxMUVDODMxMjk2NDhDNEY5QUUwMi9YRXp6ZHBrOUVZVW9KdzNaVXZNQ3p0VjE4 ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hFenpkcGs5RVlVb0p3M1pVdk1DenRWMThkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQ4OS9GMzdDODhFRTBCN0UxMUVDODMxMjk2NDhDNEY5QUUwMi9YRXp6ZHBrOUVZ VW9KdzNaVXZNQ3p0VjE4ZHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABMCKZmW4Nq59hMSheofzzFEmVjTgqto49XnMTfkI42Haaf8uSBEpQTDAaWgE q14IrGUc3r1N75RxeIyOxhxe3UxssMztb9OaN+nAx4CqOyYouVSnS1fVfSoveIxw ZNm62bWIsJudmM0rSkaVddBoiaWndBZ/IDCPFkkkOie/2zlD9XDbnTVcDSKSHpPE FvQfdisp/jwgERVBNEKb0sdl7dzepKXT38Tute0AT1Q/sBt8jGHPm15Jr47LCU4S szG9Fsf5il+3z5PRNW4nhMUU8bqqYdTHOYSMeX4cZpthodRaeON2vQc9WQh6sQrs 6VZmCVU0u4S9Z9GZN57Wgy/VuA== -----END CERTIFICATE-----Generated at Thu Mar 26 00:56:37 2026 by rpki-client