$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft File: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft (raw, json) Hash identifier: XaaH2sH3vhuLcOq1A2lD39Uc09ReurP9ul3bFfN+9HY= Subject key identifier: 28:37:E9:DB:60:98:6E:82:A2:FE:DC:98:39:69:EC:A5:81:F3:18:85 Authority key identifier: F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 Certificate issuer: /CN=A91C9484/serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Certificate serial: 3552 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft Manifest number: 3537 Signing time: Sun 01 Mar 2026 23:23:12 +0000 Manifest this update: Sun 01 Mar 2026 23:23:10 +0000 Manifest next update: Sun 08 Mar 2026 23:23:10 +0000 Files and hashes: 1: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl (hash: w6yMAq3rzMvzEx68XVbKVH6s/KFhaJMeqoZNPUd6NOE=) 2: FFC89DF8CECD11EEA4AA6D44C4F9AE02.roa (hash: 5vDKPCNaPzEtEVT7LOtWJpYKKhlnZvgcsaGE/gZdgy8=) 3: 49036D2CB0D711E58B185E0FC4F9AE02.roa (hash: xX3Ba5H5Sw2Jw8gIsRp9N0DgboX0HpbidadIyPU/Yzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:23:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13650 (0x3552) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9484, serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Validity Not Before: Mar 1 23:23:10 2026 GMT Not After : Mar 8 23:23:10 2026 GMT Subject: CN=69a4ca60-b5a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:31:4c:21:a2:15:c0:98:a0:71:b3:a8:d1:c1: 55:ed:13:b0:af:ec:cd:73:41:b9:17:56:37:19:19: 85:7b:1b:93:75:77:fc:63:ba:c4:50:6d:70:ed:5b: ae:4a:70:e2:91:a6:83:ce:25:0b:8d:0d:8d:39:bd: 3d:4c:e7:79:e4:95:44:d1:cf:f0:6e:cd:09:f6:83: ec:99:c9:ef:22:92:30:64:ca:39:89:7f:f1:2e:f6: d0:c4:2b:6d:56:0e:0f:ec:9e:89:04:0c:6d:f2:9d: 10:d1:e3:7e:cc:05:4d:a0:d9:72:90:fc:24:41:ae: 56:d8:88:15:95:31:44:43:17:f0:58:af:b6:12:43: ce:4c:73:51:d0:2d:0f:f2:a5:0b:a9:3c:08:5c:cb: 49:ef:f3:50:8c:04:20:eb:ab:95:54:e1:0d:c5:4f: bc:a1:42:26:be:fa:ea:64:c7:74:ee:bf:62:5e:c4: 05:84:0e:c5:49:e0:c7:db:b5:7d:e8:05:14:84:ba: bb:6b:a1:07:23:75:df:d6:c0:b9:0c:ae:ce:2a:a2: c7:17:07:8c:ee:08:08:da:e3:13:b7:17:29:6f:a0: e9:9e:52:53:22:fe:2b:9d:c7:33:ea:61:99:29:ad: 2c:f7:9a:9d:fd:eb:95:f1:9a:5d:63:3d:5a:02:87: c7:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:37:E9:DB:60:98:6E:82:A2:FE:DC:98:39:69:EC:A5:81:F3:18:85 X509v3 Authority Key Identifier: keyid:F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:de:7d:10:b3:c0:0d:29:8b:2b:70:df:48:22:85:1a:ca:be: b4:11:8e:f4:be:f0:12:64:05:58:fa:e7:58:97:c6:98:59:7c: db:74:83:fc:06:1b:53:31:5e:dd:bc:bf:d2:c5:ee:93:cb:52: a6:e7:bb:b7:4b:56:29:03:5c:b5:19:d2:ae:05:87:a5:6c:ba: e3:48:ec:d0:5e:65:65:64:83:0d:d7:0f:c6:af:29:5b:0e:fa: ca:3f:c4:f4:bd:e7:94:3c:cb:04:11:ba:98:1e:e6:c1:77:2a: 01:28:a4:ca:fc:f8:35:1e:74:bc:b7:c8:c7:ff:66:14:7f:00: ca:03:d3:57:57:3d:0b:21:15:9a:6f:b1:82:ff:19:40:c2:4f: ee:bf:af:a1:7d:15:69:40:4e:b2:b6:bc:e3:95:ab:16:59:7a: c4:89:b2:36:e0:b8:cd:5f:0e:95:1c:c2:0f:ba:28:26:0a:7f: 53:c7:f4:74:4a:76:75:2c:be:18:8e:28:d4:5f:54:56:95:45: c2:e7:94:60:8c:26:43:3e:1e:f6:d7:77:78:1d:43:08:d6:bf: 42:7e:49:68:7a:d0:f5:d3:ff:5b:c5:1d:7d:df:88:d4:ea:59: b6:a6:1c:a2:96:5b:08:77:59:21:11:1a:c3:b2:fc:ef:59:63: 12:6b:27:1f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0ODQxMTAvBgNVBAUTKEY5NzJFNzVFM0QwM0U1Q0UxOTAxOTMwQzQzRDE2REM0 QTg5QzQ3OTIwHhcNMjYwMzAxMjMyMzEwWhcNMjYwMzA4MjMyMzEwWjAYMRYwFAYD VQQDEw02OWE0Y2E2MC1iNWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhzFMIaIVwJigcbOo0cFV7ROwr+zNc0G5F1Y3GRmFexuTdXf8Y7rEUG1w7Vuu SnDikaaDziULjQ2NOb09TOd55JVE0c/wbs0J9oPsmcnvIpIwZMo5iX/xLvbQxCtt Vg4P7J6JBAxt8p0Q0eN+zAVNoNlykPwkQa5W2IgVlTFEQxfwWK+2EkPOTHNR0C0P 8qULqTwIXMtJ7/NQjAQg66uVVOENxU+8oUImvvrqZMd07r9iXsQFhA7FSeDH27V9 6AUUhLq7a6EHI3Xf1sC5DK7OKqLHFweM7ggI2uMTtxcpb6DpnlJTIv4rnccz6mGZ Ka0s95qd/euV8ZpdYz1aAofHIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCg36dtg mG6Cov7cmDlp7KWB8xiFMB8GA1UdIwQYMBaAFPly5149A+XOGQGTDEPRbcSonEeS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQ4NC82RkYwRERFMDFE OTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVjNFpBWk1NUTlGdHhLaWNS NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YTG5YajBENWM0WkFaTU1ROUZ0eEtpY1I1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQ4NC82RkYwRERFMDFEOTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVj NFpBWk1NUTlGdHhLaWNSNUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQt59ELPADSmLK3DfSCKFGsq+tBGO9L7wEmQFWPrnWJfGmFl823SD/AYbUzFe 3by/0sXuk8tSpue7t0tWKQNctRnSrgWHpWy640js0F5lZWSDDdcPxq8pWw76yj/E 9L3nlDzLBBG6mB7mwXcqASikyvz4NR50vLfIx/9mFH8AygPTV1c9CyEVmm+xgv8Z QMJP7r+voX0VaUBOsra845WrFll6xImyNuC4zV8OlRzCD7ooJgp/U8f0dEp2dSy+ GI4o1F9UVpVFwueUYIwmQz4e9td3eB1DCNa/Qn5JaHrQ9dP/W8Udfd+I1OpZtqYc opZbCHdZIREaw7L871ljEmsnHw== -----END CERTIFICATE-----Generated at Mon Mar 2 11:09:27 2026 by rpki-client