$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft File: XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft (raw, json) Hash identifier: y6jarQ+tB2p5A6C5IFmQPEpeyK4UEVbUrP7j8lxv2j8= Subject key identifier: 55:1E:9A:27:83:D2:1B:21:C8:12:73:3E:63:56:0E:5F:C7:DF:10:C0 Authority key identifier: 5D:4F:41:2A:E4:80:10:FE:54:87:F0:18:F1:71:A9:C6:46:9D:9A:C5 Certificate issuer: /CN=A91BCA5B/serialNumber=5D4F412AE48010FE5487F018F171A9C6469D9AC5 Certificate serial: 3E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft Manifest number: 3B Signing time: Sun 01 Mar 2026 09:54:47 +0000 Manifest this update: Sun 01 Mar 2026 09:54:47 +0000 Manifest next update: Sun 08 Mar 2026 09:54:47 +0000 Files and hashes: 1: XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl (hash: gVfBv8AdQzXHoARNvKmENQurOq5dzi0Rmlop/PPr38w=) 2: AF2E6AE2C03B11F09EE7012FC4F9AE02.roa (hash: X+3wJMfk1XJRp+yqbhiP7HWaocFMU1AXSgdZNrsdlvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:54:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCA5B, serialNumber=5D4F412AE48010FE5487F018F171A9C6469D9AC5 Validity Not Before: Mar 1 09:54:47 2026 GMT Not After : Mar 8 09:54:47 2026 GMT Subject: CN=69a40ce7-659e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:07:9f:34:b2:76:80:07:b9:7d:c4:f4:60:3d: 9d:bd:e5:0e:39:b7:fd:bb:bc:a4:ba:cd:a2:10:a3: 87:0f:ae:ef:aa:1e:5d:27:ac:4d:f8:d7:11:6c:b5: d5:9f:91:46:1c:7b:00:c5:72:35:a3:19:38:6c:a1: 5a:e3:7d:b5:52:eb:0f:b9:c7:34:a7:07:1a:7f:c2: 21:4f:90:63:98:47:5b:df:25:b9:8e:31:b3:01:5e: c7:13:2c:51:8a:7a:40:b7:b1:4e:46:fb:a4:ca:ef: 85:99:e4:00:d9:10:07:42:30:01:02:50:0d:2a:d8: 4b:a9:b1:16:46:c4:30:20:ec:b1:a8:82:f8:57:cb: 5a:bc:5b:a8:79:69:ae:fc:ac:c7:1e:37:f5:6c:7b: 05:e9:b8:e2:95:c5:b7:73:7e:18:9f:74:0b:17:e7: cf:30:03:dd:5b:af:c8:93:c1:84:cd:fa:fc:22:c4: 78:d4:ba:a2:41:6f:3e:74:58:66:c1:51:13:ae:bf: 8b:4c:5d:10:52:6b:73:fb:c6:e2:a3:47:e2:5d:e8: c8:0e:ec:64:24:71:b3:e4:eb:e1:ff:c5:78:44:f1: 94:bf:4f:1c:75:ec:fd:c5:93:82:94:90:86:40:6d: 74:1c:82:57:28:ca:3c:05:0a:15:38:85:e5:56:00: f0:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:1E:9A:27:83:D2:1B:21:C8:12:73:3E:63:56:0E:5F:C7:DF:10:C0 X509v3 Authority Key Identifier: keyid:5D:4F:41:2A:E4:80:10:FE:54:87:F0:18:F1:71:A9:C6:46:9D:9A:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:e2:44:22:03:66:49:d6:96:eb:9f:bf:00:5f:05:cf:8f:37: d9:26:8d:47:7e:30:42:a2:4f:02:31:8f:bf:55:f1:33:41:f5: eb:94:d3:8c:11:63:fa:0d:1c:04:e5:18:01:f9:ab:e6:49:b3: e0:fa:71:5f:24:80:63:10:c0:b1:b2:1b:f0:fc:53:bb:32:5b: 42:cb:e7:b7:5f:bf:75:1c:df:33:4d:43:74:1a:36:f4:51:0c: cc:01:d2:19:51:ac:c1:2e:65:37:fb:82:1a:61:9a:87:66:1d: f8:02:33:f2:bb:b6:ba:3b:42:9f:4b:82:36:da:62:c4:7c:18: b6:7c:0c:39:0b:52:29:95:f6:bc:0f:64:6a:eb:4c:fc:5a:de: 6e:04:27:07:74:36:e9:49:fc:a0:ff:85:d7:6d:f4:e1:26:27: 13:0d:5a:58:28:b5:04:fc:fd:89:20:f4:55:30:d0:b2:e4:ab: 6e:c1:de:a2:ef:08:f6:b1:69:0e:d3:f7:ef:25:f0:74:b9:00: fb:cc:1f:10:9e:b8:04:bd:cc:70:c1:f7:e9:f0:96:df:6c:e1: 36:a4:d0:e7:d8:06:50:5b:3d:70:6e:95:8a:0d:50:11:2f:82: 92:79:8b:5a:12:10:73:b6:b2:37:e9:f7:05:30:18:63:52:c8: 58:5c:14:cb -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC Q0E1QjExMC8GA1UEBRMoNUQ0RjQxMkFFNDgwMTBGRTU0ODdGMDE4RjE3MUE5QzY0 NjlEOUFDNTAeFw0yNjAzMDEwOTU0NDdaFw0yNjAzMDgwOTU0NDdaMBgxFjAUBgNV BAMTDTY5YTQwY2U3LTY1OWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1B580snaAB7l9xPRgPZ295Q45t/27vKS6zaIQo4cPru+qHl0nrE341xFstdWf kUYcewDFcjWjGThsoVrjfbVS6w+5xzSnBxp/wiFPkGOYR1vfJbmOMbMBXscTLFGK ekC3sU5G+6TK74WZ5ADZEAdCMAECUA0q2EupsRZGxDAg7LGogvhXy1q8W6h5aa78 rMceN/VsewXpuOKVxbdzfhifdAsX588wA91br8iTwYTN+vwixHjUuqJBbz50WGbB UROuv4tMXRBSa3P7xuKjR+Jd6MgO7GQkcbPk6+H/xXhE8ZS/Txx17P3Fk4KUkIZA bXQcglcoyjwFChU4heVWAPDbAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUVR6aJ4PS GyHIEnM+Y1YOX8ffEMAwHwYDVR0jBBgwFoAUXU9BKuSAEP5Uh/AY8XGpxkadmsUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDQTVCL0QyNUQ4NjhFQzAz QTExRjA4OEEzNDYyQ0M0RjlBRTAyL1hVOUJLdVNBRVA1VWhfQVk4WEdweGthZG1z VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWFU5Qkt1U0FFUDVVaF9BWThYR3B4a2FkbXNVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJD QTVCL0QyNUQ4NjhFQzAzQTExRjA4OEEzNDYyQ0M0RjlBRTAyL1hVOUJLdVNBRVA1 VWhfQVk4WEdweGthZG1zVS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA14kQiA2ZJ1pbrn78AXwXPjzfZJo1HfjBCok8CMY+/VfEzQfXrlNOMEWP6DRwE 5RgB+avmSbPg+nFfJIBjEMCxshvw/FO7MltCy+e3X791HN8zTUN0Gjb0UQzMAdIZ UazBLmU3+4IaYZqHZh34AjPyu7a6O0KfS4I22mLEfBi2fAw5C1Iplfa8D2Rq60z8 Wt5uBCcHdDbpSfyg/4XXbfThJicTDVpYKLUE/P2JIPRVMNCy5Ktuwd6i7wj2sWkO 0/fvJfB0uQD7zB8QnrgEvcxwwffp8JbfbOE2pNDn2AZQWz1wbpWKDVARL4KSeYta EhBztrI36fcFMBhjUshYXBTL -----END CERTIFICATE-----Generated at Mon Mar 2 00:18:46 2026 by rpki-client