$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft File: XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft (raw, json) Hash identifier: n7IUgbCxfHJUwpVXFZ9kmOWtmKpT2GN3YiqKBQMbOnc= Subject key identifier: 86:A1:B7:56:60:99:DA:E9:C6:66:89:7F:8B:F1:46:CF:55:B9:01:06 Authority key identifier: 5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 Certificate issuer: /CN=A91D0B34/serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Certificate serial: 0A70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft Manifest number: 0A60 Signing time: Mon 02 Mar 2026 01:36:56 +0000 Manifest this update: Mon 02 Mar 2026 01:36:55 +0000 Manifest next update: Mon 09 Mar 2026 01:36:55 +0000 Files and hashes: 1: XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl (hash: bTIxvMgT6K0DLKUqJbfK8BqRdjW1YPPPBIyKDNY92yI=) 2: 97E61FE46F2111EB85D19531C4F9AE02.roa (hash: F/VFxbWKijK0FBQMOwCi6caTAlncQZjF9P40j+MjDLs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:36:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2672 (0xa70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B34, serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Validity Not Before: Mar 2 01:36:55 2026 GMT Not After : Mar 9 01:36:55 2026 GMT Subject: CN=69a4e9b8-09cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:d7:d3:4a:7f:64:c5:5e:7e:5b:02:2d:49:43: 35:54:c7:c3:de:30:df:84:bb:e9:94:80:13:df:04: 57:e8:82:cc:06:4d:92:af:a1:d0:ec:2f:03:0a:e2: 0d:c4:f8:2a:f7:4c:82:18:c6:b4:dc:70:ad:ef:b2: a9:d0:58:34:68:13:11:02:60:e7:51:d8:3e:60:ff: 16:c2:e6:aa:29:bb:1f:9d:24:ee:7f:d2:83:98:95: 31:93:e3:c1:56:d9:19:2d:b0:a6:b4:15:7d:59:94: 8e:ef:ea:a3:db:b3:01:fe:fa:9d:f1:13:4a:2e:75: 98:29:d9:21:cb:db:d5:00:a0:5e:f5:bd:f6:ab:d5: 3f:af:05:0a:38:0c:aa:fa:2c:85:52:b2:ed:c4:02: 6f:3a:06:2e:b0:f8:bf:27:a7:32:ed:a8:8c:8f:c0: 10:30:41:27:a5:3f:52:97:81:68:82:a0:95:52:c8: 4e:3c:44:0d:f5:23:09:78:8e:88:c4:71:ca:e6:5b: 52:fc:8e:7b:64:aa:e2:81:3d:23:0b:7e:3e:57:02: 29:88:f6:dc:88:bc:18:31:d2:fe:8d:33:cf:44:1d: bb:7c:be:ad:9c:28:b0:8b:ef:65:bb:79:d5:6f:3b: 48:03:e7:43:e4:2d:6e:d6:25:f0:af:12:8f:bb:78: 67:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:A1:B7:56:60:99:DA:E9:C6:66:89:7F:8B:F1:46:CF:55:B9:01:06 X509v3 Authority Key Identifier: keyid:5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:1a:43:51:09:fa:de:bb:c0:60:10:85:45:e3:85:d4:47:8f: 63:6b:7d:14:b8:2d:bf:b5:18:cc:ff:5b:d7:b7:ff:5f:19:37: 9b:47:ba:af:75:40:dd:53:89:8c:3d:3b:85:8c:a4:76:94:38: df:52:cf:2f:32:90:cc:57:8a:77:55:e8:ac:87:dc:fc:f5:97: e7:11:d1:20:9a:f7:1d:58:11:d9:3e:46:52:9b:6e:9a:f6:ea: 0c:26:10:4c:02:c0:06:4f:21:76:c6:dc:e5:23:ab:85:7e:b7: b8:14:d2:5e:4a:0a:50:2a:15:88:48:71:e8:a2:1c:68:85:1d: 0e:1d:c7:31:fc:e6:04:5a:cd:22:92:6a:ba:f3:ef:f9:8e:b2: 28:27:0b:0c:31:f9:4c:4b:35:8f:24:b2:e0:cb:f3:79:cf:55: 8b:b3:ef:d2:5c:19:11:b6:d7:09:4f:77:5d:2d:2e:89:f0:4e: c6:5f:07:d5:3e:19:3e:a5:a7:c3:cd:9b:55:8f:ea:3e:80:6b: ca:f2:cd:07:95:96:8b:5b:eb:60:d5:b0:52:30:64:35:b2:d7: a9:c1:a1:33:6f:5d:89:ab:02:39:a8:ff:24:1c:07:40:5e:1f: 9e:f2:51:e9:1c:eb:2e:6b:ff:ff:be:43:42:59:e1:0c:82:2f: 49:5e:17:97 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMzQxMTAvBgNVBAUTKDVERjEwMkUyQTVFNzM2NzcyMUMxMThEQkVDREE2MDJB ODAyOUVFOTQwHhcNMjYwMzAyMDEzNjU1WhcNMjYwMzA5MDEzNjU1WjAYMRYwFAYD VQQDEw02OWE0ZTliOC0wOWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3NfTSn9kxV5+WwItSUM1VMfD3jDfhLvplIAT3wRX6ILMBk2Sr6HQ7C8DCuIN xPgq90yCGMa03HCt77Kp0Fg0aBMRAmDnUdg+YP8WwuaqKbsfnSTuf9KDmJUxk+PB VtkZLbCmtBV9WZSO7+qj27MB/vqd8RNKLnWYKdkhy9vVAKBe9b32q9U/rwUKOAyq +iyFUrLtxAJvOgYusPi/J6cy7aiMj8AQMEEnpT9Sl4FogqCVUshOPEQN9SMJeI6I xHHK5ltS/I57ZKrigT0jC34+VwIpiPbciLwYMdL+jTPPRB27fL6tnCiwi+9lu3nV bztIA+dD5C1u1iXwrxKPu3hn1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIaht1Zg mdrpxmaJf4vxRs9VuQEGMB8GA1UdIwQYMBaAFF3xAuKl5zZ3IcEY2+zaYCqAKe6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIzNC82MDM3RDVEQzgy QTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5uY2h3UmpiN05wZ0tvQXA3 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmRUM0cVhuTm5jaHdSamI3TnBnS29BcDdwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIzNC82MDM3RDVEQzgyQTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5u Y2h3UmpiN05wZ0tvQXA3cFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYxpDUQn63rvAYBCFReOF1EePY2t9FLgtv7UYzP9b17f/Xxk3m0e6r3VA3VOJ jD07hYykdpQ431LPLzKQzFeKd1XorIfc/PWX5xHRIJr3HVgR2T5GUptumvbqDCYQ TALABk8hdsbc5SOrhX63uBTSXkoKUCoViEhx6KIcaIUdDh3HMfzmBFrNIpJquvPv +Y6yKCcLDDH5TEs1jySy4Mvzec9Vi7Pv0lwZEbbXCU93XS0uifBOxl8H1T4ZPqWn w82bVY/qPoBryvLNB5WWi1vrYNWwUjBkNbLXqcGhM29diasCOaj/JBwHQF4fnvJR 6RzrLmv//75DQlnhDIIvSV4Xlw== -----END CERTIFICATE-----Generated at Mon Mar 2 10:54:08 2026 by rpki-client