$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft File: XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft (raw, json) Hash identifier: kUx/MKZ9c2WZC20tLRWTF+FwGX3k9TdMYRFv7tmoC/k= Subject key identifier: D4:43:6F:8D:79:6C:AE:DA:51:D6:60:29:BC:85:AB:42:44:60:C9:B2 Authority key identifier: 5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 Certificate issuer: /CN=A91B23B3/serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Certificate serial: 0A46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft Manifest number: 0A21 Signing time: Sat 28 Feb 2026 20:04:15 +0000 Manifest this update: Sat 28 Feb 2026 20:04:14 +0000 Manifest next update: Sat 07 Mar 2026 20:04:14 +0000 Files and hashes: 1: XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl (hash: o9NwbsSjkNiRsV9hYvIpjLqqKRVwvKFR2XTmSoei5r4=) 2: 2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa (hash: MvhHzk/9f8tTuJ4ji5wkdvYja5PdDGGnrgSYFLH3YU4=) 3: 3818D9A09A9011EFB14F1729C4F9AE02.roa (hash: vvb4CejOVJri8OIdHwWGwZEAuucKhYGTP+ke3m07dcM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 20:04:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2630 (0xa46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23B3, serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Validity Not Before: Feb 28 20:04:14 2026 GMT Not After : Mar 7 20:04:14 2026 GMT Subject: CN=69a34a3e-3c76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9c:8f:75:3b:20:78:c3:61:5a:5f:95:4e:75: 25:1f:af:9d:3f:58:d0:73:8f:68:51:fb:1f:92:ff: a1:58:43:cf:92:0c:f5:23:72:89:e4:4d:72:f4:74: 6a:71:05:45:4a:2a:d1:2a:3e:a9:09:c2:08:e9:f9: e3:cb:3f:94:c6:dc:aa:13:84:65:95:36:79:6f:13: f5:a6:c1:60:21:15:57:2f:54:2f:ef:d6:c6:38:6d: 10:3d:95:d4:0a:07:43:7d:76:b2:97:f8:e4:4f:83: 16:12:b2:95:9b:36:f6:02:22:d2:17:a8:c4:9c:e5: bd:5f:53:34:37:1d:8c:22:40:50:ba:1e:fd:bd:77: b0:4d:c2:3f:49:a0:d2:07:a3:56:0d:7a:13:9a:7b: d1:bc:73:ad:65:5e:ab:76:4d:b3:10:71:d6:5d:a1: 6a:e1:85:c7:19:0c:cb:b9:bf:28:18:ab:93:4d:80: 0c:98:d4:f3:1b:a9:1e:be:d3:f8:1e:be:f6:48:ca: 7b:51:c4:f5:9e:43:ba:e0:0c:19:cf:82:13:2b:4e: 44:4a:dd:ec:51:84:6c:45:f0:70:2d:55:f6:1e:db: f0:71:1f:91:20:97:f2:29:98:db:d1:c5:fa:ed:95: 95:c6:9e:7e:db:32:40:7c:5b:34:91:20:b2:c1:2d: 46:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:43:6F:8D:79:6C:AE:DA:51:D6:60:29:BC:85:AB:42:44:60:C9:B2 X509v3 Authority Key Identifier: keyid:5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:a5:a3:0d:63:3c:1c:89:87:15:83:b5:56:41:bd:c7:f0:1b: 3c:b2:a6:74:f0:70:8a:3d:43:ec:9b:dc:46:e2:91:ea:a6:8b: ed:78:c7:23:74:9e:d3:df:d8:e2:de:6b:81:f8:af:36:44:7b: 7a:41:cd:a9:f8:fa:0e:47:15:bb:82:a0:f8:44:60:e2:cb:5f: 0f:2c:82:06:04:a5:ac:76:c3:28:57:3d:c6:83:cc:e4:65:bd: 54:bc:6d:01:27:b4:1d:5e:5f:de:a7:95:a7:6d:39:6d:1f:5e: b2:34:64:8f:de:d7:96:b7:3f:ae:fb:a5:83:31:ea:51:1b:8b: e1:db:69:70:07:78:3d:17:03:44:85:65:f2:cf:e5:f3:7b:6d: ee:11:df:58:d5:b7:6b:31:e7:5a:59:3e:ef:31:c1:d9:46:af: c4:9f:e0:b2:c7:3f:b9:84:ac:9c:f7:e4:68:f5:3a:70:67:cc: 75:45:f6:5e:ca:47:fa:fe:46:ec:4f:25:db:c7:2f:d5:a2:3b: d9:d2:a4:bc:e1:85:3a:b4:44:41:2a:d7:3c:9a:44:55:1a:3d: db:d0:d0:3a:2e:a3:58:2a:e7:73:15:a9:e0:5b:f2:f0:9b:5b: 23:17:b5:00:0c:77:05:05:2c:29:78:c2:e8:93:e8:2c:d1:77: 54:21:b2:06 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIzQjMxMTAvBgNVBAUTKDVDMzY4NDM5Q0JDNUY1QTQ1NzE1RDY0NzZCRUFBNjY4 NkQwOTUxQjEwHhcNMjYwMjI4MjAwNDE0WhcNMjYwMzA3MjAwNDE0WjAYMRYwFAYD VQQDDA02OWEzNGEzZS0zYzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZyPdTsgeMNhWl+VTnUlH6+dP1jQc49oUfsfkv+hWEPPkgz1I3KJ5E1y9HRq cQVFSirRKj6pCcII6fnjyz+UxtyqE4RllTZ5bxP1psFgIRVXL1Qv79bGOG0QPZXU CgdDfXayl/jkT4MWErKVmzb2AiLSF6jEnOW9X1M0Nx2MIkBQuh79vXewTcI/SaDS B6NWDXoTmnvRvHOtZV6rdk2zEHHWXaFq4YXHGQzLub8oGKuTTYAMmNTzG6kevtP4 Hr72SMp7UcT1nkO64AwZz4ITK05ESt3sUYRsRfBwLVX2HtvwcR+RIJfyKZjb0cX6 7ZWVxp5+2zJAfFs0kSCywS1G7QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNRDb415 bK7aUdZgKbyFq0JEYMmyMB8GA1UdIwQYMBaAFFw2hDnLxfWkVxXWR2vqpmhtCVGx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjNCMy9FNjQ2NUExMDhF OTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2RjlhUlhGZFpIYS1xbWFHMEpV YkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEYUVPY3ZGOWFSWEZkWkhhLXFtYUcwSlViRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjNCMy9FNjQ2NUExMDhFOTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2Rjlh UlhGZFpIYS1xbWFHMEpVYkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqqWjDWM8HImHFYO1VkG9x/AbPLKmdPBwij1D7JvcRuKR6qaL7XjHI3Se09/Y 4t5rgfivNkR7ekHNqfj6DkcVu4Kg+ERg4stfDyyCBgSlrHbDKFc9xoPM5GW9VLxt ASe0HV5f3qeVp205bR9esjRkj97Xlrc/rvulgzHqURuL4dtpcAd4PRcDRIVl8s/l 83tt7hHfWNW3azHnWlk+7zHB2UavxJ/gssc/uYSsnPfkaPU6cGfMdUX2XspH+v5G 7E8l28cv1aI72dKkvOGFOrREQSrXPJpEVRo929DQOi6jWCrncxWp4Fvy8JtbIxe1 AAx3BQUsKXjC6JPoLNF3VCGyBg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:49:47 2026 by rpki-client