$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft File: XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft (raw, json) Hash identifier: IIx93zonzoqjtPYkR8bJgNu4WDN+NlCZ4v76G/esej4= Subject key identifier: A7:D6:41:2C:E4:BE:AA:A1:B4:05:2B:2B:C4:A0:A6:9D:AD:85:78:2E Authority key identifier: 5D:5F:61:90:21:5D:FF:0A:C3:54:32:BC:3A:52:A0:8B:D3:41:B7:00 Certificate issuer: /CN=A91D28E1/serialNumber=5D5F6190215DFF0AC35432BC3A52A08BD341B700 Certificate serial: 01A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft Manifest number: 01A1 Signing time: Sun 01 Mar 2026 05:01:42 +0000 Manifest this update: Sun 01 Mar 2026 05:01:42 +0000 Manifest next update: Sun 08 Mar 2026 05:01:42 +0000 Files and hashes: 1: XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl (hash: mErXj7aQXeVgJ57EY7St+iBR8jDFAo5qheRKs3KLx1Y=) 2: 0A576F089A4C11EEBD557E12C4F9AE02.roa (hash: DEN1WpJkF7KEBPtyWLNA539o6YV36ND+eTTHH4uvqCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 05:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28E1, serialNumber=5D5F6190215DFF0AC35432BC3A52A08BD341B700 Validity Not Before: Mar 1 05:01:42 2026 GMT Not After : Mar 8 05:01:42 2026 GMT Subject: CN=69a3c836-5558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:1a:b5:46:01:1d:47:91:28:6c:9e:e3:28:10: df:6f:a3:34:e7:80:6a:29:05:b3:cc:0d:9f:9d:c4: 85:1b:10:9d:1c:32:db:8c:29:8b:f9:8e:c8:59:f8: c6:de:e8:f4:60:db:3b:59:05:d6:06:52:f9:71:74: d8:08:a5:4f:a2:e4:30:23:7d:65:16:8c:5b:d1:96: 9a:7c:fd:22:0d:a6:1d:d9:31:85:63:4d:7c:38:b8: 8b:7a:14:4f:f1:47:88:5f:2d:6e:25:25:13:f9:4a: c6:f2:e1:a2:5d:e5:69:68:56:93:9b:cd:08:ee:18: 2a:24:90:2e:0c:7e:c5:db:c4:fc:ca:f1:f6:ae:69: 7d:fc:ce:4b:fd:2b:38:90:49:76:47:34:0e:24:92: ef:a1:35:f3:0a:b9:dd:35:11:70:6b:84:3d:4b:cc: b4:c5:82:04:94:38:62:75:aa:f0:1a:8c:e2:65:93: 2b:21:81:30:90:46:76:f0:e4:97:b7:0d:f7:37:61: 82:46:49:fc:91:27:cd:61:98:14:32:44:11:94:f3: 32:16:84:fa:83:e9:8e:a8:db:cd:22:26:b6:84:38: 84:0a:21:3e:27:6f:61:c6:cf:0c:89:ea:51:70:0d: 7a:35:fc:aa:41:0b:85:08:2a:39:d9:31:36:f0:38: 97:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:D6:41:2C:E4:BE:AA:A1:B4:05:2B:2B:C4:A0:A6:9D:AD:85:78:2E X509v3 Authority Key Identifier: keyid:5D:5F:61:90:21:5D:FF:0A:C3:54:32:BC:3A:52:A0:8B:D3:41:B7:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:7e:46:a4:cd:c0:56:0c:81:24:88:ea:20:6d:5e:71:bf:c7: 6b:8a:09:11:db:37:c1:88:53:49:c6:38:fc:7d:62:a6:4b:87: 18:50:eb:66:d3:29:b5:6a:f1:b4:47:dc:cd:71:f5:a1:c7:f9: b6:a7:c4:79:ad:f9:a8:b5:09:a1:29:72:96:1c:c8:4f:3a:8d: 94:1d:fd:f0:ab:e0:44:b3:61:3d:3e:76:fc:9e:25:23:2f:90: e1:73:80:e3:45:9e:19:72:2b:17:ee:2a:a9:13:f4:0a:41:50: c3:7b:86:60:a4:e5:8f:64:b9:cd:a1:de:55:e4:a9:1b:61:ab: 35:bb:94:b7:6e:e6:13:d1:22:7e:d8:ab:bf:62:44:b3:81:6e: 51:85:f3:1c:3e:d1:34:98:1e:3e:3e:3f:3b:e9:2a:1f:24:aa: 4f:23:cb:2c:0f:1f:93:b5:d3:49:c5:ac:d3:48:22:2b:40:7a: 25:46:7e:31:de:6b:7a:ee:d0:33:7b:5f:e2:ae:0f:15:9c:1f: ac:9f:5b:6b:2c:28:23:08:43:65:08:c5:13:76:0d:77:11:29: c7:c8:06:ac:3c:8f:ff:a8:61:3e:f0:a8:1e:17:be:af:1e:d9: dc:63:f4:79:5f:13:7d:0b:d8:82:56:32:a6:20:4b:20:fd:49: ec:58:b0:c4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4RTExMTAvBgNVBAUTKDVENUY2MTkwMjE1REZGMEFDMzU0MzJCQzNBNTJBMDhC RDM0MUI3MDAwHhcNMjYwMzAxMDUwMTQyWhcNMjYwMzA4MDUwMTQyWjAYMRYwFAYD VQQDDA02OWEzYzgzNi01NTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0hq1RgEdR5EobJ7jKBDfb6M054BqKQWzzA2fncSFGxCdHDLbjCmL+Y7IWfjG 3uj0YNs7WQXWBlL5cXTYCKVPouQwI31lFoxb0ZaafP0iDaYd2TGFY018OLiLehRP 8UeIXy1uJSUT+UrG8uGiXeVpaFaTm80I7hgqJJAuDH7F28T8yvH2rml9/M5L/Ss4 kEl2RzQOJJLvoTXzCrndNRFwa4Q9S8y0xYIElDhidarwGoziZZMrIYEwkEZ28OSX tw33N2GCRkn8kSfNYZgUMkQRlPMyFoT6g+mOqNvNIia2hDiECiE+J29hxs8MiepR cA16NfyqQQuFCCo52TE28DiXxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKfWQSzk vqqhtAUrK8Sgpp2thXguMB8GA1UdIwQYMBaAFF1fYZAhXf8Kw1QyvDpSoIvTQbcA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhFMS9CQkUzRDQzQTlB NDkxMUVFOTA5MkUwNzBDNEY5QUUwMi9YVjloa0NGZF93ckRWREs4T2xLZ2k5TkJ0 d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hWOWhrQ0ZkX3dyRFZESzhPbEtnaTlOQnR3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhFMS9CQkUzRDQzQTlBNDkxMUVFOTA5MkUwNzBDNEY5QUUwMi9YVjloa0NGZF93 ckRWREs4T2xLZ2k5TkJ0d0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjn5GpM3AVgyBJIjqIG1ecb/Ha4oJEds3wYhTScY4/H1ipkuHGFDrZtMptWrx tEfczXH1ocf5tqfEea35qLUJoSlylhzITzqNlB398KvgRLNhPT52/J4lIy+Q4XOA 40WeGXIrF+4qqRP0CkFQw3uGYKTlj2S5zaHeVeSpG2GrNbuUt27mE9Eiftirv2JE s4FuUYXzHD7RNJgePj4/O+kqHySqTyPLLA8fk7XTScWs00giK0B6JUZ+Md5reu7Q M3tf4q4PFZwfrJ9baywoIwhDZQjFE3YNdxEpx8gGrDyP/6hhPvCoHhe+rx7Z3GP0 eV8TfQvYglYypiBLIP1J7FiwxA== -----END CERTIFICATE-----Generated at Mon Mar 2 00:56:03 2026 by rpki-client