$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft File: X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft (raw, json) Hash identifier: nL3qNkU3YsJA3WG4GQ28/9KVXlPMgOkJVA3ZuNCbpSU= Subject key identifier: A7:13:90:36:9D:28:C0:91:3C:E1:01:1B:C8:C2:12:20:A3:AB:4F:32 Authority key identifier: 5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 Certificate issuer: /CN=A91CE285/serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Certificate serial: 0A4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft Manifest number: 0A43 Signing time: Mon 02 Mar 2026 01:31:42 +0000 Manifest this update: Mon 02 Mar 2026 01:31:41 +0000 Manifest next update: Mon 09 Mar 2026 01:31:41 +0000 Files and hashes: 1: X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl (hash: Fx1S/KANtwjKbaNjMd+YxbQNVxoEkNg1YgSllJ05ilg=) 2: E5C4974689CF11EAA39AF441C4F9AE02.roa (hash: 7EwTneGwYj2Gzr31UcIH+4FO/7qpJOQTGhK83Hx75Bo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:31:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2635 (0xa4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE285, serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Validity Not Before: Mar 2 01:31:41 2026 GMT Not After : Mar 9 01:31:41 2026 GMT Subject: CN=69a4e87e-e28c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:5e:d5:80:42:7d:b9:0e:f7:f7:64:c8:2e:dd: d2:3a:b4:ae:86:c7:c1:bc:4c:b7:31:29:e8:8e:95: 77:c4:3e:dc:a5:d1:f7:ff:0b:64:b2:3d:4e:85:2f: 06:9b:ca:d9:2b:a4:d9:0b:94:e4:bc:39:d6:8b:f6: 7a:99:48:dd:90:67:1d:b6:87:26:ea:7a:93:3d:89: a5:fe:6a:47:b6:df:32:84:b7:65:95:7f:fb:cb:ed: c3:8d:15:0d:ff:a5:92:5f:be:f2:92:b3:e2:f7:09: 36:e5:bf:94:35:58:be:63:21:8a:9e:f4:e4:6c:86: 0d:fc:34:c4:f9:63:00:f4:76:0d:66:dc:32:51:0f: 72:58:20:6a:58:d1:7a:18:8f:19:12:72:63:d8:21: e0:14:b8:96:4c:ac:ff:55:9d:36:a1:88:8b:6d:f4: 75:79:12:70:42:5c:74:7d:77:38:21:63:2d:cf:a7: 6b:db:fe:4b:9d:90:00:04:11:47:ca:24:13:78:07: 41:ee:ee:79:6e:71:2a:e6:a7:6a:e2:48:d3:fa:f4: 74:73:22:1a:1c:14:42:7d:5d:17:5a:2f:65:93:65: 98:fa:fa:97:47:a6:e3:5b:a3:c4:d2:e9:79:5e:29: c2:6e:51:96:b4:5b:56:ee:35:2b:bc:b9:e9:ca:c1: 65:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:13:90:36:9D:28:C0:91:3C:E1:01:1B:C8:C2:12:20:A3:AB:4F:32 X509v3 Authority Key Identifier: keyid:5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:c1:7d:0b:43:73:a0:1e:66:5b:4f:d8:74:61:7a:3f:19:ea: e7:4d:a5:9e:fe:f4:21:5b:b9:52:66:a6:25:d9:66:b9:78:af: 31:d8:94:06:06:50:59:76:c3:ab:ca:bf:28:91:61:b5:83:6b: 5d:c9:d3:35:81:74:a7:d2:8a:88:91:1e:6e:7f:41:a3:d4:53: ff:1a:19:90:f1:34:08:33:a0:c5:90:9f:a2:4a:d6:fc:09:cb: 96:39:53:ff:70:ee:33:f2:87:42:53:69:6a:2b:a5:79:45:2f: b6:14:9c:88:9a:74:1d:a3:6b:1c:ce:c1:25:65:6a:f8:28:ea: 8a:1d:51:09:20:b2:9e:6b:e9:e2:07:22:78:45:77:3d:e1:1b: 5f:1b:17:9f:f2:93:bf:e9:78:2e:27:9f:15:6b:4e:f5:5b:3c: 96:18:51:dd:9c:d3:75:3f:09:eb:8c:98:54:ac:d5:5d:82:da: 9d:64:43:e3:14:bf:5b:56:93:c9:8e:ee:3d:d5:04:bb:e6:2a: 3c:d6:72:a4:95:5e:b9:01:5e:c2:5b:a6:ab:14:87:b0:4e:60: 44:ff:31:bc:46:e9:1a:d5:37:da:2b:11:77:e9:24:d6:68:38: 91:9c:73:da:22:2c:18:52:40:12:c6:44:e4:0b:90:89:a9:85: 9d:cf:14:ae -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyODUxMTAvBgNVBAUTKDVGOEFGMzU5NzNGRDRGQTU2M0YzM0I3Mzc2NTM0Njgy MTA3QkM4RjkwHhcNMjYwMzAyMDEzMTQxWhcNMjYwMzA5MDEzMTQxWjAYMRYwFAYD VQQDEw02OWE0ZTg3ZS1lMjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAml7VgEJ9uQ7392TILt3SOrSuhsfBvEy3MSnojpV3xD7cpdH3/wtksj1OhS8G m8rZK6TZC5TkvDnWi/Z6mUjdkGcdtocm6nqTPYml/mpHtt8yhLdllX/7y+3DjRUN /6WSX77ykrPi9wk25b+UNVi+YyGKnvTkbIYN/DTE+WMA9HYNZtwyUQ9yWCBqWNF6 GI8ZEnJj2CHgFLiWTKz/VZ02oYiLbfR1eRJwQlx0fXc4IWMtz6dr2/5LnZAABBFH yiQTeAdB7u55bnEq5qdq4kjT+vR0cyIaHBRCfV0XWi9lk2WY+vqXR6bjW6PE0ul5 XinCblGWtFtW7jUrvLnpysFlHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKcTkDad KMCRPOEBG8jCEiCjq08yMB8GA1UdIwQYMBaAFF+K81lz/U+lY/M7c3ZTRoIQe8j5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTI4NS81RTE2NDhCNjg0 QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2Vmo4enR6ZGxOR2doQjd5 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0cnpXWFA5VDZWajh6dHpkbE5HZ2hCN3lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTI4NS81RTE2NDhCNjg0QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2 Vmo4enR6ZGxOR2doQjd5UGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAicF9C0NzoB5mW0/YdGF6Pxnq502lnv70IVu5UmamJdlmuXivMdiUBgZQWXbD q8q/KJFhtYNrXcnTNYF0p9KKiJEebn9Bo9RT/xoZkPE0CDOgxZCfokrW/AnLljlT /3DuM/KHQlNpaiuleUUvthSciJp0HaNrHM7BJWVq+Cjqih1RCSCynmvp4gcieEV3 PeEbXxsXn/KTv+l4LiefFWtO9Vs8lhhR3ZzTdT8J64yYVKzVXYLanWRD4xS/W1aT yY7uPdUEu+YqPNZypJVeuQFewlumqxSHsE5gRP8xvEbpGtU32isRd+kk1mg4kZxz 2iIsGFJAEsZE5AuQiamFnc8Urg== -----END CERTIFICATE-----Generated at Mon Mar 2 20:17:58 2026 by rpki-client