$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft File: XnKqfVsdVjLl0z_scvp0M_Sc4po.mft (raw, json) Hash identifier: pQ3GIhw80nFWKJWy/j131Y+TGyfQJH6ADu8tB2Xqkis= Subject key identifier: 72:2D:7A:86:0A:80:47:1D:29:86:C5:FF:36:E0:48:25:E8:86:32:0B Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 0218 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft Manifest number: 01E6 Signing time: Mon 02 Mar 2026 02:01:29 +0000 Manifest this update: Mon 02 Mar 2026 02:01:26 +0000 Manifest next update: Mon 09 Mar 2026 02:01:26 +0000 Files and hashes: 1: XnKqfVsdVjLl0z_scvp0M_Sc4po.crl (hash: S10OmRKMb9+hYajRmgM2TmohuXdusRgdJPXC9yJlqw0=) 2: 36C31E00637111EEA51CA05EC4F9AE02.roa (hash: sT56QjRFMA5RYNrfwK84aeqd2CWRIQx/z7cMGwk6r48=) 3: 678C24C0663F11EEBD955D43C4F9AE02.roa (hash: r/B/wTWM1e+RbFQV+OxoufBd8XhZQMs6+SrSBQGZEm0=) 4: 00E626A4A57611EF98285E5FC4F9AE02.roa (hash: yxoJxjt522RCtypxdpCWh8Ki8MQz+o9DlkQu175uTk8=) 5: 99341DD6663D11EE8CBBAE7CC4F9AE02.roa (hash: kvLOqAvejoloIcBp8iOod+XLqcMm6Km2ICEQUCNEODY=) 6: 98BE8828663D11EE8CBBAE7CC4F9AE02.roa (hash: d0JlKivvI0UuN/+g7FjPgsMv6qjwloa3O1BziCQ3cTE=) 7: 9830B6D8663D11EE8CBBAE7CC4F9AE02.roa (hash: CKjWrRKFrq5wIXerALs28X5SJv1uenx7ZdloeFQoUHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82, serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: Mar 2 02:01:26 2026 GMT Not After : Mar 9 02:01:26 2026 GMT Subject: CN=69a4ef78-817a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:90:87:44:ab:e6:f9:1b:b2:ad:51:b9:88:75: 14:be:d8:93:3f:3c:ef:69:bf:b4:29:dc:40:86:26: 37:5a:38:ee:2c:ad:a6:8e:c6:de:b9:6b:90:5e:73: 65:cd:4a:7a:5a:64:d7:45:3c:09:79:4e:96:98:63: 89:05:ae:e8:7b:ad:9f:88:8f:a7:9b:19:ca:7a:2b: a5:b7:99:b6:18:5d:49:f3:9e:31:4d:33:1a:41:ec: e1:aa:b3:5e:16:0d:4f:67:65:e5:52:bd:0e:87:92: 69:cf:6c:ff:85:ff:0e:81:44:81:09:fe:d3:f5:23: b0:6d:4a:09:c5:c1:3b:af:8a:50:e4:76:01:6e:1d: b7:02:56:6b:d4:05:f4:32:72:1b:4c:66:9c:03:b4: 92:95:d9:71:54:29:3b:22:19:93:2f:b4:55:cb:5a: a2:0f:bd:69:e2:8a:4d:f0:27:ee:fd:56:ee:dd:f0: a4:ed:b2:10:bf:8f:70:c6:4b:43:a2:d1:85:be:ef: 01:de:05:2c:d8:4d:86:9a:e8:41:5e:d7:6d:fb:9c: 84:3c:d8:f6:ac:c8:fc:d5:c9:35:3a:54:f3:36:3c: 2b:e6:6f:21:a9:58:5c:59:40:99:3d:a0:57:ee:e9: ef:f8:66:38:a6:b2:24:26:29:8c:d5:75:00:e4:c8: bc:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:2D:7A:86:0A:80:47:1D:29:86:C5:FF:36:E0:48:25:E8:86:32:0B X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:af:68:e9:fd:8d:e9:8e:1d:cb:b0:57:a2:c0:cd:31:83:33: d0:bc:26:82:cc:e1:21:83:26:c0:63:8a:e2:5c:33:b1:54:2e: 13:00:e0:c5:dd:65:32:74:e2:4e:17:3f:31:cf:8e:03:3f:c5: 56:e2:b7:4a:03:c4:68:c0:04:07:2a:5a:0f:03:73:65:c4:0e: b6:2a:ae:07:41:b7:a0:9b:d1:7e:d4:66:67:e9:4d:dc:7a:83: 45:c8:67:15:89:62:64:a1:b1:e9:97:f3:82:f0:37:db:db:06: d6:94:0c:99:e8:e6:f0:91:d0:8c:02:af:b3:37:74:a9:67:49: fa:8e:49:8d:5f:81:3e:06:c4:f7:e6:11:c9:19:9e:2c:4e:81: 36:92:83:e6:af:58:ab:52:82:c4:3e:81:58:d5:b6:2b:8a:d7: 66:53:40:59:0a:43:35:7f:6a:dd:7f:35:20:27:13:94:6d:57: 7a:94:ac:54:b5:8e:2a:31:a8:a2:83:a0:b7:f3:b1:a4:c4:92: 4a:f5:1a:a7:27:80:9e:68:49:29:de:66:5e:5e:00:c9:c6:83: cb:ce:df:db:0b:1e:81:80:a1:c7:1a:13:8d:57:29:3b:1c:90: b9:b9:76:6e:1d:05:90:de:aa:7f:df:37:0a:1d:eb:18:44:54: a4:33:e3:48 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjYwMzAyMDIwMTI2WhcNMjYwMzA5MDIwMTI2WjAYMRYwFAYD VQQDEw02OWE0ZWY3OC04MTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9pCHRKvm+RuyrVG5iHUUvtiTPzzvab+0KdxAhiY3WjjuLK2mjsbeuWuQXnNl zUp6WmTXRTwJeU6WmGOJBa7oe62fiI+nmxnKeiult5m2GF1J854xTTMaQezhqrNe Fg1PZ2XlUr0Oh5Jpz2z/hf8OgUSBCf7T9SOwbUoJxcE7r4pQ5HYBbh23AlZr1AX0 MnIbTGacA7SSldlxVCk7IhmTL7RVy1qiD71p4opN8Cfu/Vbu3fCk7bIQv49wxktD otGFvu8B3gUs2E2GmuhBXtdt+5yEPNj2rMj81ck1OlTzNjwr5m8hqVhcWUCZPaBX 7unv+GY4prIkJimM1XUA5Mi8CwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHIteoYK gEcdKYbF/zbgSCXohjILMB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUU4Mi9FQTdFNUZBNjYzNkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZq TGwwel9zY3ZwME1fU2M0cG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAO69o6f2N6Y4dy7BXosDNMYMz0LwmgszhIYMmwGOK4lwzsVQuEwDgxd1lMnTi Thc/Mc+OAz/FVuK3SgPEaMAEBypaDwNzZcQOtiquB0G3oJvRftRmZ+lN3HqDRchn FYliZKGx6ZfzgvA329sG1pQMmejm8JHQjAKvszd0qWdJ+o5JjV+BPgbE9+YRyRme LE6BNpKD5q9Yq1KCxD6BWNW2K4rXZlNAWQpDNX9q3X81ICcTlG1XepSsVLWOKjGo ooOgt/OxpMSSSvUapyeAnmhJKd5mXl4AycaDy87f2wsegYChxxoTjVcpOxyQubl2 bh0FkN6qf983Ch3rGERUpDPjSA== -----END CERTIFICATE-----Generated at Mon Mar 2 17:11:09 2026 by rpki-client