$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft File: xbajYOSK75Kf3CcpbR1S9b9umRY.mft (raw, json) Hash identifier: A2UkNHUYR5mQnkbcxMPLun29klAhm2AQwNkVavHyI8M= Subject key identifier: 97:2D:02:63:16:88:2D:43:CE:F7:F9:EE:E0:0C:32:FA:88:80:2C:40 Authority key identifier: C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 Certificate issuer: /CN=A91FD088/serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Certificate serial: 085B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft Manifest number: 0850 Signing time: Tue 24 Mar 2026 20:32:39 +0000 Manifest this update: Tue 24 Mar 2026 20:32:39 +0000 Manifest next update: Tue 31 Mar 2026 20:32:39 +0000 Files and hashes: 1: xbajYOSK75Kf3CcpbR1S9b9umRY.crl (hash: oB6iC4pSrk9gpQn34pabz34d0YZ3QXQfa0dQ5YGbp2s=) 2: 423EA4CC039B11EBB3C1465CC4F9AE02.roa (hash: 6Topyg8bWLl5O5LsyGLXYfvkh05TDjr30BTYJNqKf6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:32:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2139 (0x85b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD088, serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Validity Not Before: Mar 24 20:32:39 2026 GMT Not After : Mar 31 20:32:39 2026 GMT Subject: CN=69c2f4e7-f2f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:4a:b8:58:3a:0b:5b:f2:a3:3d:e5:55:3a:90: 05:75:f7:cf:6b:8f:32:79:ad:9e:e1:a4:23:52:3e: ba:56:33:c1:93:ef:c9:24:b4:0f:d8:1c:26:bd:de: b0:a7:23:8b:98:20:ed:67:00:2a:73:88:14:f4:18: 0c:58:c2:86:fe:33:4a:86:96:6e:12:43:eb:9e:da: 00:f5:62:c4:a2:e2:2d:12:81:30:2b:1d:7c:a6:51: af:48:b1:c7:33:95:8c:a4:b6:ca:31:64:61:0e:e3: a8:b3:23:9a:f1:1e:cd:7b:b6:45:58:b7:31:1c:61: c5:6d:75:71:2a:76:c8:56:1a:95:f9:c3:68:75:77: 95:dd:e8:81:a0:6d:1c:70:ca:f7:ab:db:37:0e:f3: bb:70:fd:16:69:16:50:e5:cc:4f:9c:31:7b:92:bd: 7e:8a:ca:5e:72:eb:13:6b:76:54:fa:b4:ec:df:8d: bf:63:08:c4:f9:33:56:b4:1f:e0:af:60:c2:18:02: 4f:7c:15:75:fe:68:11:cd:4b:7d:a7:2d:61:34:95: a8:4e:49:2a:d1:31:39:a3:8b:42:b2:79:c7:16:dd: 47:b0:b9:fb:92:5b:b0:48:0c:db:3f:db:86:6c:e7: 5b:45:0e:cd:01:58:5a:e3:c3:22:e7:33:4d:c1:d3: 89:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:2D:02:63:16:88:2D:43:CE:F7:F9:EE:E0:0C:32:FA:88:80:2C:40 X509v3 Authority Key Identifier: keyid:C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:ce:78:71:2c:7a:96:1f:21:e6:8b:28:ae:cb:b5:bd:e9:d6: fc:6b:1f:35:5b:16:38:a1:cf:88:ef:f5:07:b3:fa:7b:43:f1: cb:da:7d:16:ed:24:ad:2b:2c:25:39:87:56:8e:69:9d:97:47: 70:4d:65:6d:ab:81:60:6f:24:34:00:98:21:cf:f3:ba:88:98: 56:c6:5a:a8:9b:15:44:96:21:0e:3d:44:66:81:c8:9a:cc:69: 2c:53:ed:5f:71:a6:3f:54:80:8a:2f:c1:ea:b6:31:72:09:89: 7e:43:b8:82:b6:fa:45:5a:69:a3:f8:af:b7:15:21:8d:64:dd: e0:87:38:d9:11:f8:ed:e2:73:3c:32:8e:64:7c:36:fd:38:28: bb:2c:c7:7e:4c:46:7a:50:69:0f:db:da:c1:75:5e:7b:2c:01: 99:0f:4e:bf:ad:e8:a2:e2:28:70:27:76:63:4f:76:a7:cc:c8: 0c:84:ae:ae:fb:62:b2:ca:d8:2c:4a:31:15:cc:5b:06:30:be: 08:da:b8:55:2a:43:b8:1c:c6:60:3e:7b:0d:e0:88:0b:e2:60: c5:37:3f:35:29:63:20:7f:8a:bd:06:77:34:3b:eb:88:a3:68: 75:89:d1:26:9a:b5:82:a1:57:f8:cc:22:2c:ae:03:b2:0e:e1: 56:1d:2e:90 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQwODgxMTAvBgNVBAUTKEM1QjZBMzYwRTQ4QUVGOTI5RkRDMjcyOTZEMUQ1MkY1 QkY2RTk5MTYwHhcNMjYwMzI0MjAzMjM5WhcNMjYwMzMxMjAzMjM5WjAYMRYwFAYD VQQDEw02OWMyZjRlNy1mMmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAykq4WDoLW/KjPeVVOpAFdffPa48yea2e4aQjUj66VjPBk+/JJLQP2Bwmvd6w pyOLmCDtZwAqc4gU9BgMWMKG/jNKhpZuEkPrntoA9WLEouItEoEwKx18plGvSLHH M5WMpLbKMWRhDuOosyOa8R7Ne7ZFWLcxHGHFbXVxKnbIVhqV+cNodXeV3eiBoG0c cMr3q9s3DvO7cP0WaRZQ5cxPnDF7kr1+ispecusTa3ZU+rTs342/YwjE+TNWtB/g r2DCGAJPfBV1/mgRzUt9py1hNJWoTkkq0TE5o4tCsnnHFt1HsLn7kluwSAzbP9uG bOdbRQ7NAVha48Mi5zNNwdOJFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJctAmMW iC1Dzvf57uAMMvqIgCxAMB8GA1UdIwQYMBaAFMW2o2Dkiu+Sn9wnKW0dUvW/bpkW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDA4OC80NEJBN0NBMkZE OUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1S2YzQ2NwYlIxUzliOXVt UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hiYWpZT1NLNzVLZjNDY3BiUjFTOWI5dW1SWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDA4OC80NEJBN0NBMkZEOUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1 S2YzQ2NwYlIxUzliOXVtUlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXM54cSx6lh8h5osorsu1venW/GsfNVsWOKHPiO/1B7P6e0Pxy9p9Fu0krSss JTmHVo5pnZdHcE1lbauBYG8kNACYIc/zuoiYVsZaqJsVRJYhDj1EZoHImsxpLFPt X3GmP1SAii/B6rYxcgmJfkO4grb6RVppo/ivtxUhjWTd4Ic42RH47eJzPDKOZHw2 /TgouyzHfkxGelBpD9vawXVeeywBmQ9Ov63oouIocCd2Y092p8zIDISurvtissrY LEoxFcxbBjC+CNq4VSpDuBzGYD57DeCIC+JgxTc/NSljIH+KvQZ3NDvriKNodYnR Jpq1gqFX+MwiLK4Dsg7hVh0ukA== -----END CERTIFICATE-----Generated at Thu Mar 26 02:18:55 2026 by rpki-client