$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft File: XmtaBob1a6DA93-zvzGzhWMiCCQ.mft (raw, json) Hash identifier: dn0HagE730K/BdCLJ1sLv/0+Pv/svb5ItIWR0hk+ONA= Subject key identifier: 22:67:25:DB:1F:B1:E4:E4:9D:AF:38:C6:F3:6B:84:2D:8A:98:1A:EB Authority key identifier: 5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 Certificate issuer: /CN=A91FE107/serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Certificate serial: 2382 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft Manifest number: 2367 Signing time: Tue 24 Mar 2026 15:46:02 +0000 Manifest this update: Tue 24 Mar 2026 15:46:01 +0000 Manifest next update: Tue 31 Mar 2026 15:46:01 +0000 Files and hashes: 1: XmtaBob1a6DA93-zvzGzhWMiCCQ.crl (hash: 5TLRlJGfC38d9tEWqoeoureW7atqq4QxHfyU95mZekw=) 2: 44C007B0A0D611EDA2603C4EC4F9AE02.roa (hash: R5xEKjp2COzsPx07QmJ9ZHVVMUSggpYYD3FgaBWcVMU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:46:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9090 (0x2382) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE107, serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Validity Not Before: Mar 24 15:46:01 2026 GMT Not After : Mar 31 15:46:01 2026 GMT Subject: CN=69c2b1ba-6207 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:45:f1:e0:ae:0e:85:89:b6:a5:9c:ca:5c:5e: 6f:96:c0:41:f9:d4:5f:d6:77:61:ca:28:b4:90:83: 25:6b:02:d4:c6:cf:d3:69:45:b5:ce:09:c1:ea:88: 1b:92:8d:97:8e:03:6f:50:3a:68:26:c4:78:51:50: f3:61:e2:ec:b0:35:fd:92:10:ce:18:c4:a4:ec:b0: 20:35:a9:b3:0f:30:af:03:b9:60:e4:50:46:15:b0: 00:40:23:9c:d8:13:ef:80:5b:d4:31:cb:80:ba:fe: 53:13:34:6b:f3:aa:70:cf:5f:8b:86:e4:3a:28:97: 4f:a0:9f:f5:93:3b:98:64:11:f8:1b:ec:ee:96:fa: 5d:83:11:d6:6e:e0:f5:bd:b1:e7:4b:ad:6f:1d:5d: d6:b4:99:a1:1b:e3:97:bb:3d:d0:bb:27:97:4e:a7: e4:59:89:12:09:4e:93:0c:9c:24:cb:db:07:d5:ce: 40:06:79:d8:74:d0:89:0a:e0:0a:72:94:69:36:ff: 0a:af:80:92:eb:7f:65:65:08:9a:12:31:ae:1b:f2: cd:17:7e:ad:26:e6:f2:56:af:3d:59:e2:00:cb:32: 23:c5:77:12:f1:0d:b8:c6:04:52:aa:9d:6e:fa:bf: 32:9f:61:d2:f9:40:ba:ae:08:de:e8:7c:47:de:50: 9b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:67:25:DB:1F:B1:E4:E4:9D:AF:38:C6:F3:6B:84:2D:8A:98:1A:EB X509v3 Authority Key Identifier: keyid:5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:5b:b7:ac:13:26:b2:28:b7:45:6e:81:b5:ae:8f:5b:b8:f9: fe:9e:04:62:5d:61:7d:6d:c7:3e:7e:fc:0a:de:62:9d:a4:5c: 3c:73:7b:c6:31:c3:28:4e:8e:2b:0f:b7:7d:b3:21:b7:bd:01: 64:d9:15:32:0a:d4:a1:1d:a4:54:1f:42:54:53:e9:d4:72:e1: cb:f4:24:05:6d:18:8d:d6:c8:de:e7:0d:5f:e7:f6:6c:96:24: df:53:ad:0a:15:a6:08:ed:e4:fb:a6:95:1b:5a:81:b1:ca:45: 7a:25:48:3e:84:c8:df:c3:91:45:76:b7:16:82:a2:d4:00:19: 6e:2e:ed:11:ac:8a:29:3e:53:84:fb:f2:22:09:bb:ed:f6:bb: b7:9f:ed:44:d1:6d:63:3c:66:79:a0:d7:70:39:32:d4:5e:7c: 13:4a:02:77:5c:ef:77:20:70:13:2c:15:3e:72:7b:f8:dc:4d: 54:26:f5:71:1d:aa:1a:27:19:c5:38:8e:93:a6:19:6c:ac:e1: 9b:e6:b9:d9:d5:0d:cb:72:e8:04:a4:a4:55:34:26:81:35:03: 5d:c9:a8:12:ee:35:84:ad:0a:c2:18:93:7c:79:d8:0c:72:24: 5b:23:84:e6:6d:d6:2b:42:2d:4b:a6:6c:ed:40:fd:e8:53:c3: 65:df:a0:ea -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICI4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUxMDcxMTAvBgNVBAUTKDVFNkI1QTA2ODZGNTZCQTBDMEY3N0ZCM0JGMzFCMzg1 NjMyMjA4MjQwHhcNMjYwMzI0MTU0NjAxWhcNMjYwMzMxMTU0NjAxWjAYMRYwFAYD VQQDEw02OWMyYjFiYS02MjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5UXx4K4OhYm2pZzKXF5vlsBB+dRf1ndhyii0kIMlawLUxs/TaUW1zgnB6ogb ko2XjgNvUDpoJsR4UVDzYeLssDX9khDOGMSk7LAgNamzDzCvA7lg5FBGFbAAQCOc 2BPvgFvUMcuAuv5TEzRr86pwz1+LhuQ6KJdPoJ/1kzuYZBH4G+zulvpdgxHWbuD1 vbHnS61vHV3WtJmhG+OXuz3QuyeXTqfkWYkSCU6TDJwky9sH1c5ABnnYdNCJCuAK cpRpNv8Kr4CS639lZQiaEjGuG/LNF36tJubyVq89WeIAyzIjxXcS8Q24xgRSqp1u +r8yn2HS+UC6rgje6HxH3lCbawIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCJnJdsf seTkna84xvNrhC2KmBrrMB8GA1UdIwQYMBaAFF5rWgaG9WugwPd/s78xs4VjIggk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTEwNy9FRTM1QzQ0NjlF NjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2REE5My16dnpHemhXTWlD Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1htdGFCb2IxYTZEQTkzLXp2ekd6aFdNaUNDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTEwNy9FRTM1QzQ0NjlFNjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2 REE5My16dnpHemhXTWlDQ1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQlu3rBMmsii3RW6Bta6PW7j5/p4EYl1hfW3HPn78Ct5inaRcPHN7xjHDKE6O Kw+3fbMht70BZNkVMgrUoR2kVB9CVFPp1HLhy/QkBW0YjdbI3ucNX+f2bJYk31Ot ChWmCO3k+6aVG1qBscpFeiVIPoTI38ORRXa3FoKi1AAZbi7tEayKKT5ThPvyIgm7 7fa7t5/tRNFtYzxmeaDXcDky1F58E0oCd1zvdyBwEywVPnJ7+NxNVCb1cR2qGicZ xTiOk6YZbKzhm+a52dUNy3LoBKSkVTQmgTUDXcmoEu41hK0KwhiTfHnYDHIkWyOE 5m3WK0ItS6Zs7UD96FPDZd+g6g== -----END CERTIFICATE-----Generated at Thu Mar 26 00:53:54 2026 by rpki-client