$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft File: XYnzqvmxOgelsmTy3rpk1cUAZRw.mft (raw, json) Hash identifier: 9RYocwDzBUWRa36r6c63t5FUUMdCNW8+nUXXulkNQi8= Subject key identifier: 47:D6:BD:8C:03:9C:F9:7D:07:E5:D5:72:D4:EF:BB:78:94:30:30:A9 Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 0253 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft Manifest number: 0248 Signing time: Sun 01 Mar 2026 03:05:57 +0000 Manifest this update: Sun 01 Mar 2026 03:05:57 +0000 Manifest next update: Sun 08 Mar 2026 03:05:57 +0000 Files and hashes: 1: XYnzqvmxOgelsmTy3rpk1cUAZRw.crl (hash: umjE91/dXtf1NxxeUoerIpGb+VkVTDDmoajE/tMabYc=) 2: 5DCE1A1AA63C11ED9306165AC4F9AE02.roa (hash: QPGj0eJqXgnGukiRaT/QHSiAaiIAXjZCnZKqvteNQAI=) 3: 9EA7B7D8A63911ED874E6630C4F9AE02.roa (hash: 6o0EUZvJBerht1y6bzh1g89SRPPeQ5cLEU5AQhJzOAU=) 4: 9FBA5FCCA63911ED874E6630C4F9AE02.roa (hash: lCV4Wc/C2vG49K6yvqo7KO+pzcjtBqjnxvlmY9cM+oI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 03:05:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 595 (0x253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240, serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: Mar 1 03:05:57 2026 GMT Not After : Mar 8 03:05:57 2026 GMT Subject: CN=69a3ad15-d6d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3d:cf:00:8f:d7:40:22:49:6f:63:22:29:fa: 8f:41:c9:5a:66:16:bc:93:8b:93:dc:34:5c:6b:97: 28:2d:15:09:12:66:09:6b:db:25:e7:1a:db:32:11: 14:33:b0:6e:1d:ac:df:30:48:9c:7d:4b:e7:fb:26: fe:9d:11:df:1b:d8:bf:ed:1d:d6:db:a6:cd:f3:11: ef:73:a3:4a:06:1e:a3:d6:eb:03:13:72:9e:22:a2: 2c:da:60:0d:40:ed:3a:56:cb:fc:72:e4:0e:05:60: e7:3b:21:fe:06:ab:90:05:fa:b3:87:ca:7c:43:8e: 29:e6:03:f8:12:86:4d:94:aa:e7:cc:98:bc:41:d6: 50:ce:a8:1a:1c:58:54:e2:8f:9f:99:21:1e:5c:45: 47:13:22:57:01:89:dc:82:2a:9a:a5:c8:cc:9a:6f: a7:4c:21:96:6a:36:96:c7:a8:20:2b:ee:e4:38:1d: cd:9c:5a:2a:22:ba:b7:cc:ae:bf:ae:37:29:3f:8a: ce:01:45:17:60:9e:e5:b0:a7:3a:ad:a1:a7:37:20: 18:4c:1f:47:84:52:bb:a1:89:9f:44:29:f5:45:ad: 44:dc:8b:5e:2e:d1:99:f7:49:e7:da:78:fe:9c:df: 6f:25:dc:72:4e:06:3d:f3:a5:30:dc:0c:53:27:02: c5:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:D6:BD:8C:03:9C:F9:7D:07:E5:D5:72:D4:EF:BB:78:94:30:30:A9 X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:77:f1:f1:ac:24:73:d2:4c:58:11:95:56:06:a2:b5:6e:b4: 96:c2:34:e1:36:ba:f9:e1:0a:2c:dc:4c:38:00:5a:b9:31:a0: 26:38:02:da:74:47:a9:dd:42:cd:d7:c1:0e:3c:94:69:c4:8d: 0d:44:d1:55:fe:da:a7:1e:d3:28:10:ca:ac:3b:41:8c:9a:82: 65:fb:42:e6:69:18:34:83:5a:97:6b:e1:2e:6e:57:e1:b2:a4: b7:f9:ec:7d:d1:09:36:70:ae:4d:d4:12:91:17:c7:bd:c8:54: a8:4b:0d:39:88:7c:4b:1b:27:0a:e7:1d:b3:77:29:1b:37:83: 6d:18:77:6f:2e:a7:8f:92:e9:a5:b8:e9:38:6e:a2:1b:0e:15: 2e:01:e5:2a:98:cf:bd:71:24:e0:b0:6a:c0:ea:18:d9:d8:9c: 40:1f:a7:70:59:ea:21:14:df:de:fe:6f:c4:06:65:73:b9:6d: 7e:17:96:5f:5f:38:b3:07:e7:b0:78:a0:f4:a1:eb:42:ff:8e: ba:bb:53:11:a7:c6:43:19:54:ea:7c:93:19:1b:89:77:77:07: 96:65:6d:80:02:3b:8a:ad:12:98:6e:a2:ca:3f:ea:c8:0b:c4: 46:61:3a:a2:dc:5a:23:ae:af:1a:d0:83:c5:a2:d7:ad:0b:4a: 77:b5:e8:03 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjYwMzAxMDMwNTU3WhcNMjYwMzA4MDMwNTU3WjAYMRYwFAYD VQQDDA02OWEzYWQxNS1kNmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzD3PAI/XQCJJb2MiKfqPQclaZha8k4uT3DRca5coLRUJEmYJa9sl5xrbMhEU M7BuHazfMEicfUvn+yb+nRHfG9i/7R3W26bN8xHvc6NKBh6j1usDE3KeIqIs2mAN QO06Vsv8cuQOBWDnOyH+BquQBfqzh8p8Q44p5gP4EoZNlKrnzJi8QdZQzqgaHFhU 4o+fmSEeXEVHEyJXAYncgiqapcjMmm+nTCGWajaWx6ggK+7kOB3NnFoqIrq3zK6/ rjcpP4rOAUUXYJ7lsKc6raGnNyAYTB9HhFK7oYmfRCn1Ra1E3IteLtGZ90nn2nj+ nN9vJdxyTgY986Uw3AxTJwLF7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEfWvYwD nPl9B+XVctTvu3iUMDCpMB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTI0MC8yN0RERTdEODlCN0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9n ZWxzbVR5M3JwazFjVUFaUncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUXfx8awkc9JMWBGVVgaitW60lsI04Ta6+eEKLNxMOABauTGgJjgC2nRHqd1C zdfBDjyUacSNDUTRVf7apx7TKBDKrDtBjJqCZftC5mkYNINal2vhLm5X4bKkt/ns fdEJNnCuTdQSkRfHvchUqEsNOYh8SxsnCucds3cpGzeDbRh3by6nj5LppbjpOG6i Gw4VLgHlKpjPvXEk4LBqwOoY2dicQB+ncFnqIRTf3v5vxAZlc7ltfheWX184swfn sHig9KHrQv+OurtTEafGQxlU6nyTGRuJd3cHlmVtgAI7iq0SmG6iyj/qyAvERmE6 otxaI66vGtCDxaLXrQtKd7XoAw== -----END CERTIFICATE-----Generated at Sun Mar 1 21:12:47 2026 by rpki-client