$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft File: xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft (raw, json) Hash identifier: Tr9c1TWX+I66iJ+no3hZOSHccv0FpkS1iJwqu9K7LGY= Subject key identifier: 31:49:9B:D3:38:75:0C:1A:64:8F:65:35:EF:7F:07:92:B4:F4:87:F8 Authority key identifier: C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 Certificate issuer: /CN=A91D51A0/serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Certificate serial: 04D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft Manifest number: 0496 Signing time: Sun 01 Mar 2026 22:34:00 +0000 Manifest this update: Sun 01 Mar 2026 22:33:59 +0000 Manifest next update: Sun 08 Mar 2026 22:33:59 +0000 Files and hashes: 1: xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl (hash: KNCMLjF3bQ9guXP19wwo7uu7vCqsP2TIrBRZQKdOHSw=) 2: 350FEB88D40611EDADEE3D1EC4F9AE02.roa (hash: ygIVTRHkjSjw+m/d9u5b3R5Zq2RQCsVBy7/u3sYJ+QE=) 3: 874B6EBC0F6E11F190C9BD30293D8C67.roa (hash: ek7sy4OOm6qixvfck/7goixN8JVqVrFfFrSOMV47TTU=) 4: 6F8A81CCF30C11ED94750772C4F9AE02.roa (hash: /tVLLIcJ56MgGEa+8mAVT0+AxGaibRs9TyO5qSrhFdU=) 5: C5B45CA014F411F180EDEBBD193D8C67.roa (hash: J7qMDeWpaQmZJMwNoLNZEKl6A0HTe8R1hOEYVXx93g4=) 6: 5CA964A68AC111EC91D19A11C4F9AE02.roa (hash: Qo9C+TY336fKfT7yajGgeBvtqAar5YTpBVq3LZL1zVM=) 7: 8FD0B12E400311EEBF5A8B52C4F9AE02.roa (hash: p9RVi+s1ILV3mpgFASP2Wwedaky8oSfRWWEMGENRGTk=) 8: D83192B0152B11EE85ED4B1DC4F9AE02.roa (hash: LGeozBW8ScIny7vfJj5gLatMSQ4kRYXTUOoqvl6ruXM=) 9: C3261EF826DF11ED94E18118C4F9AE02.roa (hash: zHZSCV7TUnqBqW1mMwEFK58jkcAFPj0B9GyasE9HIj8=) 10: D46B2C087F8711EC81E76A59C4F9AE02.roa (hash: 8gFFRq3SlgMuYbFLuAKfwQbZJroeVnfvgsR2xzQ4aFU=) 11: F0259B5AC4BF11F0B2402975C4F9AE02.roa (hash: 1HS3Wy5XDlvJdNZcpdK9N5KmdJ+L0rGJZkTr+oBjTzM=) 12: F179A39E0F0011F1AA61A6530E3D8C67.roa (hash: ArWjU050hHZHI5gDp1CfcRN0t6wL6hTKL66VlsNPOmk=) 13: 86131D8AEA5D11ED80641166C4F9AE02.roa (hash: akZ7H2CCWjRteC0DsYzzpQopHtGbHczA7D7Pola5e8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:33:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1235 (0x4d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51A0, serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Validity Not Before: Mar 1 22:33:59 2026 GMT Not After : Mar 8 22:33:59 2026 GMT Subject: CN=69a4bed8-ed17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:76:d5:e8:b7:bd:6b:a6:5b:11:05:70:a6:de: c8:b4:ed:29:6e:95:78:6e:bb:5c:e9:f8:12:aa:87: 3d:ac:95:f2:42:5c:9a:eb:ad:6b:29:aa:44:bc:cd: 57:4d:c7:d3:e8:4a:30:0a:ff:3e:8a:5f:ea:ed:d8: 11:71:3d:0b:50:06:f5:20:df:07:03:79:ea:8b:d0: e5:61:95:7d:f4:89:43:18:8e:3e:92:b0:4c:3c:b5: 6c:8c:71:51:81:8f:a9:0a:09:e5:b9:d1:3b:38:a1: e7:12:16:1f:a7:f9:92:7e:df:86:d3:a6:38:95:4f: 27:27:8f:12:e4:37:b5:f1:be:ec:93:14:ee:a4:1e: 71:9c:ea:46:39:a0:8b:58:65:1e:57:63:a6:fe:be: 6c:61:b2:84:6a:7b:7c:dc:48:b5:6c:4c:43:41:99: 22:f9:42:c2:91:ad:53:b5:11:6c:b9:d6:b4:c5:32: 60:91:e5:76:4b:61:20:e8:f8:fa:e0:b2:32:b7:e6: 0c:fd:aa:5b:5d:cc:d2:d9:4d:eb:6a:73:d7:d2:b9: 8b:67:08:cf:22:cf:4f:51:8a:4d:c6:5d:ff:97:64: 99:51:79:bd:17:f4:6e:62:49:dd:7c:90:85:37:11: 71:4e:14:30:a3:59:08:a4:61:59:ab:0d:41:a1:88: 70:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:49:9B:D3:38:75:0C:1A:64:8F:65:35:EF:7F:07:92:B4:F4:87:F8 X509v3 Authority Key Identifier: keyid:C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:cd:2b:dc:11:e4:19:56:80:d0:f2:4d:87:66:12:37:03:1e: c9:c6:05:93:28:5e:6d:92:ed:d5:1d:14:22:dc:f7:e8:fb:95: 49:c4:45:20:3a:41:c3:e2:92:9c:ea:0d:63:55:e7:f9:fa:23: fa:70:ec:97:d6:7e:11:b1:f6:ad:c9:5f:36:b7:73:6b:c4:78: 16:7d:80:a7:ee:03:d3:00:b8:1b:12:68:c1:94:fc:5b:bf:4f: 58:6a:22:19:cb:4e:bd:c0:a4:b2:d5:12:d0:ce:1b:45:0a:46: 88:ce:9d:a8:9e:f3:73:23:99:33:a0:0f:59:14:ba:d6:27:39: ac:c9:45:83:f4:49:7b:9a:9c:8e:78:d1:a2:7e:d0:cb:9e:f2: 14:27:71:6d:3a:3c:b0:56:a5:c8:1f:c4:b3:63:30:5d:e9:53: 6b:e5:6d:5e:d8:e9:63:0a:0d:32:c6:71:4f:4c:bb:03:ce:3f: 62:d0:36:43:2b:ef:c9:0d:4c:01:2a:eb:d9:1c:8a:60:bc:c6: ad:43:04:31:d9:49:e0:37:d3:04:c7:38:8a:77:53:ae:18:11: d8:6b:e0:34:2d:42:d6:70:64:65:34:19:93:18:3e:31:02:1e: 4e:aa:40:22:98:37:bb:b9:ab:11:e9:80:3a:96:63:d5:64:11: e2:0c:a5:1c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQTAxMTAvBgNVBAUTKEM2RUFCRUI5M0UxRDA2RTJDMzJFMUM0Q0JFMTQ3Q0ZC Mzk5OTI1MzkwHhcNMjYwMzAxMjIzMzU5WhcNMjYwMzA4MjIzMzU5WjAYMRYwFAYD VQQDEw02OWE0YmVkOC1lZDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnnbV6Le9a6ZbEQVwpt7ItO0pbpV4brtc6fgSqoc9rJXyQlya661rKapEvM1X TcfT6EowCv8+il/q7dgRcT0LUAb1IN8HA3nqi9DlYZV99IlDGI4+krBMPLVsjHFR gY+pCgnludE7OKHnEhYfp/mSft+G06Y4lU8nJ48S5De18b7skxTupB5xnOpGOaCL WGUeV2Om/r5sYbKEant83Ei1bExDQZki+ULCka1TtRFsuda0xTJgkeV2S2Eg6Pj6 4LIyt+YM/apbXczS2U3ranPX0rmLZwjPIs9PUYpNxl3/l2SZUXm9F/RuYkndfJCF NxFxThQwo1kIpGFZqw1BoYhwzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDFJm9M4 dQwaZI9lNe9/B5K09If4MB8GA1UdIwQYMBaAFMbqvrk+HQbiwy4cTL4UfPs5mSU5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFBMC83QzUzOTEwQzdG ODQxMUVDODA1MThFNTFDNEY5QUUwMi94dXEtdVQ0ZEJ1TERMaHhNdmhSOC16bVpK VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h1cS11VDRkQnVMRExoeE12aFI4LXptWkpUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTFBMC83QzUzOTEwQzdGODQxMUVDODA1MThFNTFDNEY5QUUwMi94dXEtdVQ0ZEJ1 TERMaHhNdmhSOC16bVpKVGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPc0r3BHkGVaA0PJNh2YSNwMeycYFkyhebZLt1R0UItz36PuVScRFIDpBw+KS nOoNY1Xn+foj+nDsl9Z+EbH2rclfNrdza8R4Fn2Ap+4D0wC4GxJowZT8W79PWGoi GctOvcCkstUS0M4bRQpGiM6dqJ7zcyOZM6APWRS61ic5rMlFg/RJe5qcjnjRon7Q y57yFCdxbTo8sFalyB/Es2MwXelTa+VtXtjpYwoNMsZxT0y7A84/YtA2QyvvyQ1M ASrr2RyKYLzGrUMEMdlJ4DfTBMc4indTrhgR2GvgNC1C1nBkZTQZkxg+MQIeTqpA Ipg3u7mrEemAOpZj1WQR4gylHA== -----END CERTIFICATE-----Generated at Mon Mar 2 13:26:29 2026 by rpki-client