$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft File: XHIqJhQciPfNQPObN0raf7wfmx8.mft (raw, json) Hash identifier: nrcuMozfyg5X24b21AbGIU6tJr2TZHbOl28n+nbCN6s= Subject key identifier: 48:22:30:7C:CE:A0:8F:3F:15:FC:0E:0B:54:C6:52:C7:90:F0:D2:D5 Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: 0133 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft Manifest number: 012A Signing time: Sun 01 Mar 2026 06:42:41 +0000 Manifest this update: Sun 01 Mar 2026 06:42:41 +0000 Manifest next update: Sun 08 Mar 2026 06:42:41 +0000 Files and hashes: 1: XHIqJhQciPfNQPObN0raf7wfmx8.crl (hash: ECxx+f2w9eI5kl1CIB8H8pUJ+PhTWJc+rExdPeaV1+c=) 2: F0FCC9ECABF411F0B9E4F837C4F9AE02.roa (hash: pm0hO1J76gHUpFtZLRftHGLMinnMePQpbTLnXHjj3KU=) 3: D956F03AAB0211F083CD7E11C4F9AE02.roa (hash: InhzX7iIGzcMe6Kho+3PqVBZEDr5gXLOQBoPpmS3pUQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:42:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A, serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: Mar 1 06:42:41 2026 GMT Not After : Mar 8 06:42:41 2026 GMT Subject: CN=69a3dfe1-7212 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f6:fc:94:32:54:d6:48:f9:57:cc:f9:ac:59: 9e:a4:48:b1:0c:c2:94:01:f9:43:34:c4:4b:6d:51: 1f:82:ed:ab:cd:a9:73:bb:e9:16:79:e0:0a:04:9a: 8b:c2:1e:49:80:c6:e1:f1:91:30:9b:e2:2f:27:7e: 7a:6f:c4:c0:c7:d0:ce:8c:f1:8d:54:1d:dd:bc:58: f9:49:62:8b:53:f3:a6:c8:cf:60:9e:16:40:d2:fc: 73:da:a9:a3:0b:c0:2c:ce:af:eb:44:e1:fa:de:a4: db:8d:58:1b:80:78:71:ec:73:9e:59:cf:b9:c7:4d: 28:89:c4:87:a3:96:13:2e:64:26:1f:a8:1a:42:68: 75:35:f2:83:74:34:a6:c5:9a:17:af:30:ec:36:d9: d3:e3:0a:06:e9:8b:4e:30:db:14:7d:97:8f:ec:36: d7:b4:3b:de:44:f3:24:82:45:76:c8:3d:6e:14:a8: 5b:84:32:aa:47:93:12:1b:83:7c:d6:59:73:eb:9b: d7:5b:26:c6:f9:bf:99:8f:b7:de:36:4b:d0:ab:3d: 1d:eb:65:5d:b1:94:9f:54:b7:c1:f7:1a:f7:5a:41: 7e:0c:39:f7:25:75:a0:5c:34:93:26:01:ec:13:03: 85:b1:2d:bd:23:e1:92:fa:40:ae:1e:90:34:37:9d: 0f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:22:30:7C:CE:A0:8F:3F:15:FC:0E:0B:54:C6:52:C7:90:F0:D2:D5 X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:24:6b:99:45:0d:ba:0c:2d:92:cf:d3:03:00:c1:d6:8a:4e: 65:a1:ac:be:5d:e8:cd:f4:37:cc:e2:22:ee:b9:aa:26:aa:82: 2e:ea:f1:6b:ad:09:4c:0a:69:62:ee:cc:bd:b2:5d:5a:ed:aa: 88:0b:9b:48:13:2b:c3:6b:1f:b4:6d:6c:3e:68:14:b9:cd:44: 2b:b7:41:c3:c6:d0:0c:6b:34:6a:d4:0e:2f:0c:01:45:48:ac: d7:8d:9d:36:87:70:c8:1d:5d:c4:39:70:33:c2:a8:6a:76:4b: ae:2d:b5:83:e1:a3:98:e0:e8:57:0b:1a:1d:cd:c2:34:c6:00: 39:6c:6d:c0:ca:86:24:30:42:e5:f9:2a:0a:5b:b0:01:48:fd: 44:60:8c:d8:39:58:a1:d8:b2:64:a2:9f:01:f1:f9:64:db:6c: 52:6c:6b:6e:64:b0:f7:a6:c0:98:b8:84:a0:c1:be:22:4d:81: 04:82:b6:9f:55:c9:8e:88:50:72:6d:01:fe:81:a4:61:8b:a0: 88:cb:af:e9:43:cd:97:e9:7c:e8:02:3f:d9:a9:ea:fc:09:bf: 7f:63:67:ab:df:8b:9d:57:75:b7:51:f6:6e:0c:fa:30:97:41: 1a:6d:90:7a:e5:4d:2f:16:04:8a:a7:4a:9d:5d:1d:7f:64:e4: 45:15:f8:5f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgyNEExMTAvBgNVBAUTKDVDNzIyQTI2MTQxQzg4RjdDRDQwRjM5QjM3NEFEQTdG QkMxRjlCMUYwHhcNMjYwMzAxMDY0MjQxWhcNMjYwMzA4MDY0MjQxWjAYMRYwFAYD VQQDEw02OWEzZGZlMS03MjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2/b8lDJU1kj5V8z5rFmepEixDMKUAflDNMRLbVEfgu2rzalzu+kWeeAKBJqL wh5JgMbh8ZEwm+IvJ356b8TAx9DOjPGNVB3dvFj5SWKLU/OmyM9gnhZA0vxz2qmj C8Aszq/rROH63qTbjVgbgHhx7HOeWc+5x00oicSHo5YTLmQmH6gaQmh1NfKDdDSm xZoXrzDsNtnT4woG6YtOMNsUfZeP7DbXtDveRPMkgkV2yD1uFKhbhDKqR5MSG4N8 1llz65vXWybG+b+Zj7feNkvQqz0d62VdsZSfVLfB9xr3WkF+DDn3JXWgXDSTJgHs EwOFsS29I+GS+kCuHpA0N50PWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEgiMHzO oI8/FfwOC1TGUseQ8NLVMB8GA1UdIwQYMBaAFFxyKiYUHIj3zUDzmzdK2n+8H5sf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODI0QS80QURGMzNGQzVC OUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQZk5RUE9iTjByYWY3d2Zt eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODI0QS80QURGMzNGQzVCOUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQ Zk5RUE9iTjByYWY3d2ZteDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASyRrmUUNugwtks/TAwDB1opOZaGsvl3ozfQ3zOIi7rmqJqqCLurxa60JTApp Yu7MvbJdWu2qiAubSBMrw2sftG1sPmgUuc1EK7dBw8bQDGs0atQOLwwBRUis142d NodwyB1dxDlwM8KoanZLri21g+GjmODoVwsaHc3CNMYAOWxtwMqGJDBC5fkqCluw AUj9RGCM2DlYodiyZKKfAfH5ZNtsUmxrbmSw96bAmLiEoMG+Ik2BBIK2n1XJjohQ cm0B/oGkYYugiMuv6UPNl+l86AI/2anq/Am/f2Nnq9+LnVd1t1H2bgz6MJdBGm2Q euVNLxYEiqdKnV0df2TkRRX4Xw== -----END CERTIFICATE-----Generated at Mon Mar 2 06:02:16 2026 by rpki-client