$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft File: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft (raw, json) Hash identifier: EwPMykmHFarVUzzIJoWnvXRWbANvu2c0fIslDwYyP94= Subject key identifier: 97:B2:BB:A5:69:BC:5B:0F:67:09:24:8B:CE:18:AF:31:7C:4B:F8:68 Authority key identifier: C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 Certificate issuer: /CN=A91E3BF2/serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Certificate serial: 0345 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft Manifest number: 033D Signing time: Sun 01 Mar 2026 22:33:52 +0000 Manifest this update: Sun 01 Mar 2026 22:33:52 +0000 Manifest next update: Sun 08 Mar 2026 22:33:52 +0000 Files and hashes: 1: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl (hash: jIV5XK/dsM0ZGDfw1Efan8RMLAWgxc4AzgmvUMYWiPA=) 2: 6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa (hash: OXdwgZN4vaFZ6nWyjvt24Xk4nrgBuF6Vr7LgDqZpHIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:33:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 837 (0x345) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BF2, serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Validity Not Before: Mar 1 22:33:52 2026 GMT Not After : Mar 8 22:33:52 2026 GMT Subject: CN=69a4bed0-ab7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:76:c9:11:d2:e2:aa:ce:0f:2d:1e:39:d3:c2: 6a:05:41:13:b8:c7:12:c2:4c:de:b5:15:f0:ad:cc: d1:d6:f4:77:f5:f0:6d:ae:2a:5d:ec:a7:13:94:b5: c0:58:b8:fd:e2:21:51:3b:5a:47:ff:4f:c3:de:82: 19:2e:69:c5:c1:3d:e0:79:a1:be:77:e4:ff:56:84: da:3a:7c:d9:25:7f:33:0f:d4:41:c0:c9:d1:a0:16: 25:a3:d8:e5:37:34:f3:58:2f:a0:e6:ba:97:da:c9: 3a:4e:ed:f4:76:3a:64:5c:30:9c:8d:9d:f7:5c:99: 49:46:52:ea:04:eb:2d:6e:c9:eb:96:5e:98:2c:fc: e3:9d:78:f0:e4:a7:0a:10:40:af:7c:89:cd:90:27: c5:45:33:cc:5d:bc:90:a6:64:ef:47:2d:1e:78:41: bc:06:41:43:f2:86:37:39:98:83:37:e1:1d:6e:78: 8c:52:d2:93:ec:2f:40:99:f8:63:f0:21:37:92:96: 1f:84:9e:16:20:8f:01:56:e9:ce:d7:a4:d2:7b:fb: eb:06:8d:c3:37:51:d7:ed:23:2a:48:e9:32:ab:0d: d6:fb:f2:21:e1:62:df:25:3e:91:82:e1:83:ec:a2: 21:8f:b2:cd:63:3d:5b:38:ef:05:80:e8:38:91:88: a8:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:B2:BB:A5:69:BC:5B:0F:67:09:24:8B:CE:18:AF:31:7C:4B:F8:68 X509v3 Authority Key Identifier: keyid:C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:11:58:40:8b:b3:a3:6b:cd:c9:21:b8:4c:3b:bf:2f:a6:19: 48:1e:a2:8d:14:44:5c:3f:bd:c6:2f:96:a7:41:f0:13:c4:c4: 1b:0f:0f:01:39:be:76:3d:4f:16:c9:88:6a:d9:90:25:a3:c6: fa:92:4e:01:8f:c6:ac:d1:ae:27:58:5a:6c:6b:40:1a:42:b8: 41:e3:70:6c:73:25:11:23:8f:22:76:b3:21:90:e4:fe:ed:aa: 11:f0:3f:a8:65:c9:d7:42:3c:ff:2d:6f:62:99:a9:cd:e5:0a: 83:89:25:9b:92:29:52:bf:5c:27:60:ab:7f:bc:17:40:05:84: 90:c8:a1:f7:82:e1:74:31:e0:bf:a0:f8:9b:e5:1b:26:5e:31: 10:d0:fc:a2:4e:39:e7:7f:85:0d:00:9e:d2:89:b7:e9:cf:5b: 2c:e9:b3:84:4d:c8:eb:83:9c:89:de:33:66:d8:e4:ea:76:ec: 48:46:5c:3e:12:01:75:5a:cf:d6:a7:79:64:3b:cd:dd:b5:55: 2f:ff:05:5e:50:e7:70:55:cd:0d:87:4d:df:64:f7:22:56:4c: 12:65:ed:8f:30:e5:05:73:7e:db:ad:3a:d7:d7:b3:b4:1a:3c: fb:51:c5:8b:15:d9:39:c5:8d:7f:f2:b6:7c:5e:73:c9:df:c0: ae:37:67:3f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA0UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCRjIxMTAvBgNVBAUTKEM0NzFBNTZFRTk0RjA1QjQzN0MwOUVFRTBGNDQyMDNG QTQ1OTI3MzYwHhcNMjYwMzAxMjIzMzUyWhcNMjYwMzA4MjIzMzUyWjAYMRYwFAYD VQQDEw02OWE0YmVkMC1hYjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHbJEdLiqs4PLR4508JqBUETuMcSwkzetRXwrczR1vR39fBtripd7KcTlLXA WLj94iFRO1pH/0/D3oIZLmnFwT3geaG+d+T/VoTaOnzZJX8zD9RBwMnRoBYlo9jl NzTzWC+g5rqX2sk6Tu30djpkXDCcjZ33XJlJRlLqBOstbsnrll6YLPzjnXjw5KcK EECvfInNkCfFRTPMXbyQpmTvRy0eeEG8BkFD8oY3OZiDN+EdbniMUtKT7C9Amfhj 8CE3kpYfhJ4WII8BVunO16TSe/vrBo3DN1HX7SMqSOkyqw3W+/Ih4WLfJT6RguGD 7KIhj7LNYz1bOO8FgOg4kYiojQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJeyu6Vp vFsPZwkki84YrzF8S/hoMB8GA1UdIwQYMBaAFMRxpW7pTwW0N8Ce7g9EID+kWSc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JGMi81MDkwOTZBOEY2 QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJiUTN3Sjd1RDBRZ1A2UlpK elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIR2xidWxQQmJRM3dKN3VEMFFnUDZSWkp6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JGMi81MDkwOTZBOEY2QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJi UTN3Sjd1RDBRZ1A2UlpKelkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARxFYQIuzo2vNySG4TDu/L6YZSB6ijRREXD+9xi+Wp0HwE8TEGw8PATm+dj1P FsmIatmQJaPG+pJOAY/GrNGuJ1habGtAGkK4QeNwbHMlESOPInazIZDk/u2qEfA/ qGXJ10I8/y1vYpmpzeUKg4klm5IpUr9cJ2Crf7wXQAWEkMih94LhdDHgv6D4m+Ub Jl4xEND8ok4553+FDQCe0om36c9bLOmzhE3I64Ocid4zZtjk6nbsSEZcPhIBdVrP 1qd5ZDvN3bVVL/8FXlDncFXNDYdN32T3IlZMEmXtjzDlBXN+260619eztBo8+1HF ixXZOcWNf/K2fF5zyd/ArjdnPw== -----END CERTIFICATE-----Generated at Mon Mar 2 09:24:22 2026 by rpki-client