$ rpki-client -vvf rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft File: XUofz1MBwCdZyE7qVZFeJcFxpz8.mft (raw, json) Hash identifier: 3FN6cJllwC+v1mUefQPeawxSr40BdyswXaxSMEY55Fo= Subject key identifier: FB:74:5A:4F:A1:04:1C:74:EB:5F:25:22:F7:02:68:5B:D6:C0:20:41 Authority key identifier: 5D:4A:1F:CF:53:01:C0:27:59:C8:4E:EA:55:91:5E:25:C1:71:A7:3F Certificate issuer: /CN=A91194E9/serialNumber=5D4A1FCF5301C02759C84EEA55915E25C171A73F Certificate serial: 0323 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft Manifest number: 031B Signing time: Sun 01 Mar 2026 23:19:56 +0000 Manifest this update: Sun 01 Mar 2026 23:19:53 +0000 Manifest next update: Sun 08 Mar 2026 23:19:53 +0000 Files and hashes: 1: XUofz1MBwCdZyE7qVZFeJcFxpz8.crl (hash: hw2K3wXgLDB/DF8g1zy+2zVmmejlJZMSHgxsJVkW7mw=) 2: 388802BC067711EDA1DEB529C4F9AE02.roa (hash: ZLrpjaK1+7gnd1piN93H0vUz3/K0I8ARXc+tRTMhSrw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.crl rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:19:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 803 (0x323) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91194E9, serialNumber=5D4A1FCF5301C02759C84EEA55915E25C171A73F Validity Not Before: Mar 1 23:19:53 2026 GMT Not After : Mar 8 23:19:53 2026 GMT Subject: CN=69a4c99b-d6f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:53:21:b8:24:a0:a8:5b:38:45:e2:9b:09:c5: d2:27:69:4f:9a:af:ee:2c:83:0d:f6:23:21:49:e4: 9e:e3:09:10:2c:fc:b4:c3:a1:0c:28:83:57:8d:04: 1e:58:2f:cd:1a:7c:2b:6a:9f:81:2a:ec:ea:d1:64: 70:a8:40:5e:11:be:ff:d2:45:cb:da:a1:29:0e:fd: 7a:f0:b5:12:95:83:f4:22:68:52:f4:3b:dd:ef:9c: c6:a8:25:ed:61:38:37:12:74:cb:9a:2d:d6:b1:81: a5:97:c9:30:ff:e0:38:ab:d8:81:48:45:c2:34:9f: 67:36:9d:69:bb:25:86:83:c2:ed:39:7b:4c:ed:f0: da:25:f7:2f:a9:aa:d3:93:03:12:59:98:c7:36:8a: ea:ba:df:05:5c:c7:27:37:51:56:ca:1b:d1:dd:b4: de:a2:ab:bf:39:e9:a5:95:6c:5b:40:5f:21:7e:b1: 83:7d:8f:b4:d4:6a:2c:2e:ae:fe:ee:66:dc:6d:67: 16:4f:3a:94:e4:06:b7:ba:4d:27:18:ef:82:ae:88: 27:7e:a6:59:64:4e:7e:94:ac:3d:3e:9a:31:1a:aa: 87:f5:8e:7c:3e:06:72:86:a9:28:63:98:18:11:fc: 1c:20:bc:9b:c6:9e:37:18:2a:81:60:54:14:b2:d8: b0:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:74:5A:4F:A1:04:1C:74:EB:5F:25:22:F7:02:68:5B:D6:C0:20:41 X509v3 Authority Key Identifier: keyid:5D:4A:1F:CF:53:01:C0:27:59:C8:4E:EA:55:91:5E:25:C1:71:A7:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:42:cc:13:47:fc:0e:8b:6b:90:cf:7e:86:2c:a1:04:30:a6: 7d:ae:d6:74:cc:b6:e7:af:20:14:1c:90:8c:3f:21:9a:d0:ab: 35:aa:36:ab:99:74:b4:d0:3c:0b:10:ed:e9:bf:3f:ef:e9:b4: bb:b2:a6:23:aa:83:1c:84:04:18:a2:3a:ca:79:16:d4:ea:dc: 56:1f:55:46:d5:b5:b7:d9:e1:e1:99:c6:11:85:c6:66:6e:83: a2:be:3b:34:da:3b:20:54:d4:74:34:47:83:0f:b9:2f:47:48: c3:65:f3:52:e8:1b:b9:bf:83:de:72:ee:07:e4:6e:42:b4:77: 99:0d:88:ef:4e:14:a7:43:3b:a8:6e:d4:65:68:7f:3e:8a:e8: dc:0d:c6:74:fd:5f:41:64:79:84:67:78:03:0f:d3:45:19:6c: 10:b0:01:39:ae:db:60:c1:07:87:e0:6f:ce:53:16:49:14:e6: ca:47:f2:c8:68:20:fa:98:7b:79:08:f8:31:43:c2:2d:92:26: af:93:f4:1e:af:4d:d9:50:bd:13:b2:07:5e:e5:cc:1a:4e:f6: 46:01:62:8b:c3:25:dc:a1:a9:19:aa:79:5f:46:fe:c7:16:38: 6a:6d:19:f4:ed:79:22:37:30:73:53:d2:39:14:7d:a6:50:7e: 66:93:7a:89 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAyMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk0RTkxMTAvBgNVBAUTKDVENEExRkNGNTMwMUMwMjc1OUM4NEVFQTU1OTE1RTI1 QzE3MUE3M0YwHhcNMjYwMzAxMjMxOTUzWhcNMjYwMzA4MjMxOTUzWjAYMRYwFAYD VQQDEw02OWE0Yzk5Yi1kNmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1MhuCSgqFs4ReKbCcXSJ2lPmq/uLIMN9iMhSeSe4wkQLPy0w6EMKINXjQQe WC/NGnwrap+BKuzq0WRwqEBeEb7/0kXL2qEpDv168LUSlYP0ImhS9Dvd75zGqCXt YTg3EnTLmi3WsYGll8kw/+A4q9iBSEXCNJ9nNp1puyWGg8LtOXtM7fDaJfcvqarT kwMSWZjHNorqut8FXMcnN1FWyhvR3bTeoqu/OemllWxbQF8hfrGDfY+01GosLq7+ 7mbcbWcWTzqU5Aa3uk0nGO+CrognfqZZZE5+lKw9PpoxGqqH9Y58PgZyhqkoY5gY EfwcILybxp43GCqBYFQUstiwuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPt0Wk+h BBx0618lIvcCaFvWwCBBMB8GA1UdIwQYMBaAFF1KH89TAcAnWchO6lWRXiXBcac/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTRFOS9DNUQ1RTRDQTA2 NzQxMUVEQjFEMjlBMjhDNEY5QUUwMi9YVW9mejFNQndDZFp5RTdxVlpGZUpjRnhw ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVb2Z6MU1Cd0NkWnlFN3FWWkZlSmNGeHB6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTRFOS9DNUQ1RTRDQTA2NzQxMUVEQjFEMjlBMjhDNEY5QUUwMi9YVW9mejFNQndD ZFp5RTdxVlpGZUpjRnhwejgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACELME0f8DotrkM9+hiyhBDCmfa7WdMy2568gFByQjD8hmtCrNao2q5l0tNA8 CxDt6b8/7+m0u7KmI6qDHIQEGKI6ynkW1OrcVh9VRtW1t9nh4ZnGEYXGZm6Dor47 NNo7IFTUdDRHgw+5L0dIw2XzUugbub+D3nLuB+RuQrR3mQ2I704Up0M7qG7UZWh/ Poro3A3GdP1fQWR5hGd4Aw/TRRlsELABOa7bYMEHh+BvzlMWSRTmykfyyGgg+ph7 eQj4MUPCLZImr5P0Hq9N2VC9E7IHXuXMGk72RgFii8Ml3KGpGap5X0b+xxY4am0Z 9O15Ijcwc1PSORR9plB+ZpN6iQ== -----END CERTIFICATE-----Generated at Mon Mar 2 11:24:16 2026 by rpki-client