$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft File: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft (raw, json) Hash identifier: TlQT/qSu4OllFJ5Cd0vS0eCzKXWBNLqUQSU07HR4z6s= Subject key identifier: 8B:16:AA:65:2E:1E:7C:92:BD:81:6E:17:02:29:A4:97:E6:1A:97:60 Authority key identifier: C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 Certificate issuer: /CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Certificate serial: 01C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft Manifest number: 01C4 Signing time: Sun 01 Mar 2026 04:30:21 +0000 Manifest this update: Sun 01 Mar 2026 04:30:20 +0000 Manifest next update: Sun 08 Mar 2026 04:30:20 +0000 Files and hashes: 1: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl (hash: l7tASfWgaSZoW/3oUBFRyv6l7E8wOZT15qBQI45xjYw=) 2: 4B2F1F725E7811EE9307D234C4F9AE02.roa (hash: 3yvbzjuUuh9G6qcJ8V8xglcFed2rUg7lvlhKdI7EHEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 04:30:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF73, serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Validity Not Before: Mar 1 04:30:20 2026 GMT Not After : Mar 8 04:30:20 2026 GMT Subject: CN=69a3c0dc-67c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ea:6a:db:3f:1f:79:8e:07:89:79:28:b1:50: b0:90:8a:12:90:26:bc:74:92:95:ce:cc:15:2d:0c: 6d:7c:0a:2e:89:c7:8a:91:4f:79:e7:76:71:46:61: df:1b:8d:7e:d2:ff:eb:40:19:c5:20:6e:a9:f7:ab: 06:f3:20:c5:41:6c:da:79:58:8e:22:e3:c3:09:7b: 91:b1:a2:f1:0e:9b:cb:9f:f7:0f:96:14:f2:e0:66: 9b:41:b3:ea:0f:1a:57:44:86:46:6d:71:66:7f:ff: b1:f7:69:08:75:c1:51:53:b0:a7:35:64:4f:08:cd: 85:92:29:eb:4a:14:9e:85:63:d0:8f:9c:4e:a4:5f: d2:26:e5:4c:39:d5:26:9f:49:65:63:ff:f4:0e:67: 4b:78:c9:38:7b:1b:65:b7:b2:7f:99:68:12:a1:19: 38:77:5f:df:5a:66:9f:25:56:d5:99:28:6b:b0:92: af:f6:99:80:b1:b1:8f:55:32:07:5a:80:f9:03:cc: b6:82:66:73:a3:a7:7b:b3:53:ea:c1:eb:d4:43:d4: 9f:4c:bd:f0:74:ba:d2:3b:30:19:3d:f2:ed:bb:02: 9c:c2:bb:3b:32:02:7a:ad:36:96:35:43:23:3e:f2: 24:2d:82:ff:09:0a:c5:d9:f4:47:c4:d4:9a:5d:94: fa:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:16:AA:65:2E:1E:7C:92:BD:81:6E:17:02:29:A4:97:E6:1A:97:60 X509v3 Authority Key Identifier: keyid:C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:56:be:b9:1a:5d:02:62:e6:4a:4b:09:90:8b:94:9c:e7:74: 4a:af:11:1f:8a:f2:cc:f7:74:07:75:43:e6:78:70:32:d5:5d: 5c:08:c7:32:01:39:e6:75:2a:6d:9a:53:ad:cf:4a:b9:9b:71: ce:25:41:f2:d6:90:43:9a:d8:5b:37:ea:91:43:a8:1e:0b:51: 53:d4:06:c5:68:c6:c3:da:30:07:4a:f2:ba:4e:52:79:ab:6b: f7:a0:cb:3a:7b:8d:da:dd:e3:59:31:4a:75:e2:b6:51:f4:d4: fa:87:13:a8:9b:ca:ab:09:39:0d:73:89:33:50:0f:8a:2e:24: d6:42:d1:94:d3:6c:2f:3d:c9:1e:7b:ec:a1:67:eb:be:31:32: 0e:a0:50:87:0e:e3:0d:bd:03:f6:7d:2c:ae:d4:46:47:3c:3e: 2a:90:ba:a3:ff:b6:54:d0:28:5c:c9:5b:0d:3e:e4:05:d9:4c: 58:65:27:8a:4f:3f:ca:1e:9c:c6:9f:a1:53:6a:3d:ea:92:64: 85:79:51:02:33:f7:64:2b:42:8b:c2:06:62:51:fc:40:ef:16: 81:41:a0:e5:63:d4:f3:d7:ca:aa:dc:0b:70:b6:d0:bf:ad:8f: 5f:21:28:b9:f9:37:30:b1:35:5c:17:1f:83:f9:de:a6:dd:15: 1f:f2:53:15 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGNzMxMTAvBgNVBAUTKEM0MDVGMDYxRTMzQjA3MTdDOTA0RkMxREYzRTc5QkNE Nzk1MjBGQTYwHhcNMjYwMzAxMDQzMDIwWhcNMjYwMzA4MDQzMDIwWjAYMRYwFAYD VQQDDA02OWEzYzBkYy02N2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsupq2z8feY4HiXkosVCwkIoSkCa8dJKVzswVLQxtfAouiceKkU9553ZxRmHf G41+0v/rQBnFIG6p96sG8yDFQWzaeViOIuPDCXuRsaLxDpvLn/cPlhTy4GabQbPq DxpXRIZGbXFmf/+x92kIdcFRU7CnNWRPCM2FkinrShSehWPQj5xOpF/SJuVMOdUm n0llY//0DmdLeMk4extlt7J/mWgSoRk4d1/fWmafJVbVmShrsJKv9pmAsbGPVTIH WoD5A8y2gmZzo6d7s1PqwevUQ9SfTL3wdLrSOzAZPfLtuwKcwrs7MgJ6rTaWNUMj PvIkLYL/CQrF2fRHxNSaXZT6sQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIsWqmUu HnySvYFuFwIppJfmGpdgMB8GA1UdIwQYMBaAFMQF8GHjOwcXyQT8HfPnm815Ug+m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUY3My9ENUZGMUY0MDVF NzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4ZkpCUHdkOC1lYnpYbFNE NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBWHdZZU03QnhmSkJQd2Q4LWVielhsU0Q2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUY3My9ENUZGMUY0MDVFNzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4 ZkpCUHdkOC1lYnpYbFNENlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAI1a+uRpdAmLmSksJkIuUnOd0Sq8RH4ryzPd0B3VD5nhwMtVdXAjHMgE55nUq bZpTrc9KuZtxziVB8taQQ5rYWzfqkUOoHgtRU9QGxWjGw9owB0ryuk5Seatr96DL OnuN2t3jWTFKdeK2UfTU+ocTqJvKqwk5DXOJM1APii4k1kLRlNNsLz3JHnvsoWfr vjEyDqBQhw7jDb0D9n0srtRGRzw+KpC6o/+2VNAoXMlbDT7kBdlMWGUnik8/yh6c xp+hU2o96pJkhXlRAjP3ZCtCi8IGYlH8QO8WgUGg5WPU89fKqtwLcLbQv62PXyEo ufk3MLE1XBcfg/nept0VH/JTFQ== -----END CERTIFICATE-----Generated at Mon Mar 2 00:55:51 2026 by rpki-client