$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft File: XsGmrXajq_3B4TKesmN8AYZLSAg.mft (raw, json) Hash identifier: rBpYdYw6VY+BsdTRECQG0559XdXeFjamU0JsXcg/45k= Subject key identifier: D2:A2:9E:97:4F:4D:17:92:AC:F6:97:FA:36:31:BE:33:E3:79:79:A7 Authority key identifier: 5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 Certificate issuer: /CN=A91AB20B/serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Certificate serial: 0878 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft Manifest number: 083B Signing time: Sat 28 Feb 2026 21:27:43 +0000 Manifest this update: Sat 28 Feb 2026 21:27:42 +0000 Manifest next update: Sat 07 Mar 2026 21:27:42 +0000 Files and hashes: 1: XsGmrXajq_3B4TKesmN8AYZLSAg.crl (hash: sAspS1LTSMqfDeiMh2MKJS68TU1RJZQOI91WAqeEXvU=) 2: CF41132A1DE811EB9DE34963C4F9AE02.roa (hash: xo4YbqiE7X/F67UsXOYb5uFnpLPpFvm6ZJLr7VXM8NU=) 3: 82BB885E4B9811EB85F74960C4F9AE02.roa (hash: 4+YaEU8/WKlhoShMZ2jQANGth6P34fJaow29AZ/vK1g=) 4: E3AAE94243B511EB8DA3F473C4F9AE02.roa (hash: TVq9O75Mk8dBtHdZIdf95FNbNlO+Xgr7jZqSFhUdSlc=) 5: 46D6261876A511EB82E04A2FC4F9AE02.roa (hash: WVXeC6AWS7dfqRcacJcoXn1KRTzKsuhGFEjOvtdw4gQ=) 6: 046130D225FC11EC9D57EA7CC4F9AE02.roa (hash: KydrQv3Yet/a3HLO3h2lsIOeUoieRU/2J4jW34hxmG0=) 7: B512A570109211ECA693D74EC4F9AE02.roa (hash: x6M8DR+ao43yWMJcYfflaCD3HANg4LUaSOgGurV26Rc=) 8: 7CF84F084B9111EBBA09CA72C4F9AE02.roa (hash: HBup3egCFQ+j4w8tn/YgKXDolvmk1GZOCKm/FjBELHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 21:27:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2168 (0x878) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB20B, serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Validity Not Before: Feb 28 21:27:42 2026 GMT Not After : Mar 7 21:27:42 2026 GMT Subject: CN=69a35dcf-5dcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:92:4b:89:3d:94:04:f3:de:40:53:fd:b2:ca: ba:e7:96:3a:c8:7a:98:a6:5a:aa:39:85:f1:b6:8b: 64:74:9c:c7:1b:62:a4:a3:0b:91:4e:d2:98:a5:eb: 3a:9f:78:55:df:75:a5:f4:4a:55:97:37:b4:24:0c: ac:9b:61:5f:09:8c:cc:82:a4:a2:82:9d:47:03:2a: 79:09:b5:67:f8:2d:d0:14:06:8f:6b:bb:30:0d:e1: 5b:55:4a:0b:ba:61:62:96:cc:14:62:84:8d:3e:ae: ee:e4:90:29:ba:f5:f3:bb:53:05:a4:11:60:0c:95: 1f:6e:e1:c5:5e:e3:bc:8a:9f:c5:02:18:ae:d3:85: 6a:35:34:86:c8:4b:43:36:a8:00:00:70:20:dc:d2: de:e7:a4:f9:f5:16:57:f9:02:8b:ec:bb:06:40:7e: ed:97:d0:83:a5:e5:00:ab:09:1e:95:4b:ae:75:44: 46:e9:f6:52:a5:fd:ea:6d:de:a8:11:4c:a8:bb:86: 04:c7:07:7d:d1:e3:3b:c6:af:85:ed:e5:8e:79:fe: 1a:52:79:d1:68:66:61:2f:d1:2a:e6:40:23:bd:8a: 80:90:7b:fc:83:61:b2:95:be:fa:76:6e:85:c2:3b: 7f:da:56:67:31:23:fb:a7:89:bd:5e:a2:c8:54:c8: 4c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:A2:9E:97:4F:4D:17:92:AC:F6:97:FA:36:31:BE:33:E3:79:79:A7 X509v3 Authority Key Identifier: keyid:5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:37:b6:d1:7e:98:70:1b:f9:9f:4e:95:17:0e:53:1d:3a:01: 0d:1c:c2:34:0f:68:1d:17:9d:b4:da:b7:42:51:57:2d:f1:da: 82:e7:a7:82:1a:9c:b6:74:f3:87:ec:66:e6:b4:72:6d:5c:68: b3:3c:b3:d4:d5:21:9b:8c:9c:0f:33:ca:19:bb:aa:3e:38:54: 38:9c:7e:54:d8:6d:e9:13:af:1c:9b:5e:56:d5:57:24:7c:62: fc:4f:f7:f7:32:c0:1c:87:99:14:3b:d5:ad:09:2e:ad:35:52: de:7d:e6:59:42:6e:71:d6:15:72:09:80:65:15:1d:a4:ab:d3: 99:82:92:97:1d:89:9d:e9:41:cd:84:37:55:6f:bf:0b:35:a0: e6:1c:4b:4e:1d:89:4b:94:6d:a0:6f:1b:73:41:79:74:0c:19: 50:20:2b:68:50:2e:27:21:8e:4c:c3:15:bd:b6:9c:11:d1:18: b2:fb:1e:03:b8:cd:ee:64:26:8e:c2:28:e0:3e:72:5b:83:25: 6c:41:35:2e:7e:09:13:d8:9f:ac:a8:ac:41:c3:c3:ff:1a:94: de:79:71:c9:54:fc:a0:c1:ba:d7:70:a9:8b:43:e9:11:be:bc: 2c:66:8f:83:ba:b7:a4:ef:a4:de:bc:86:1f:2b:68:8c:e2:b7: 50:56:46:5d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyMEIxMTAvBgNVBAUTKDVFQzFBNkFENzZBM0FCRkRDMUUxMzI5RUIyNjM3QzAx ODY0QjQ4MDgwHhcNMjYwMjI4MjEyNzQyWhcNMjYwMzA3MjEyNzQyWjAYMRYwFAYD VQQDDA02OWEzNWRjZi01ZGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5JLiT2UBPPeQFP9ssq655Y6yHqYplqqOYXxtotkdJzHG2KkowuRTtKYpes6 n3hV33Wl9EpVlze0JAysm2FfCYzMgqSigp1HAyp5CbVn+C3QFAaPa7swDeFbVUoL umFilswUYoSNPq7u5JApuvXzu1MFpBFgDJUfbuHFXuO8ip/FAhiu04VqNTSGyEtD NqgAAHAg3NLe56T59RZX+QKL7LsGQH7tl9CDpeUAqwkelUuudURG6fZSpf3qbd6o EUyou4YExwd90eM7xq+F7eWOef4aUnnRaGZhL9Eq5kAjvYqAkHv8g2Gylb76dm6F wjt/2lZnMSP7p4m9XqLIVMhMqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNKinpdP TReSrPaX+jYxvjPjeXmnMB8GA1UdIwQYMBaAFF7Bpq12o6v9weEynrJjfAGGS0gI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjIwQi9CQTcxQjY0ODEy MDMxMUVCQkFBMTk0MTRDNEY5QUUwMi9Yc0dtclhhanFfM0I0VEtlc21OOEFZWkxT QWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzR21yWGFqcV8zQjRUS2VzbU44QVlaTFNBZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjIwQi9CQTcxQjY0ODEyMDMxMUVCQkFBMTk0MTRDNEY5QUUwMi9Yc0dtclhhanFf M0I0VEtlc21OOEFZWkxTQWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACje20X6YcBv5n06VFw5THToBDRzCNA9oHRedtNq3QlFXLfHaguenghqctnTz h+xm5rRybVxoszyz1NUhm4ycDzPKGbuqPjhUOJx+VNht6ROvHJteVtVXJHxi/E/3 9zLAHIeZFDvVrQkurTVS3n3mWUJucdYVcgmAZRUdpKvTmYKSlx2JnelBzYQ3VW+/ CzWg5hxLTh2JS5RtoG8bc0F5dAwZUCAraFAuJyGOTMMVvbacEdEYsvseA7jN7mQm jsIo4D5yW4MlbEE1Ln4JE9ifrKisQcPD/xqU3nlxyVT8oMG613Cpi0PpEb68LGaP g7q3pO+k3ryGHytojOK3UFZGXQ== -----END CERTIFICATE-----Generated at Sun Mar 1 20:56:21 2026 by rpki-client