$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft File: XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft (raw, json) Hash identifier: ErDRtNR/bY8+Vz1KMt0HaDrBOEVSKz0Y+1gNBriwKf8= Subject key identifier: 27:A0:83:9D:45:C0:5D:63:01:94:19:F1:59:94:FD:E3:8B:08:EC:98 Authority key identifier: 5E:78:64:2B:03:CC:37:E2:6F:D4:15:E7:D7:61:BE:48:47:36:C5:66 Certificate issuer: /CN=A91E7B89/serialNumber=5E78642B03CC37E26FD415E7D761BE484736C566 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnhkKwPMN-Jv1BXn12G-SEc2xWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft Manifest number: 29 Signing time: Sun 01 Mar 2026 10:11:35 +0000 Manifest this update: Sun 01 Mar 2026 10:11:34 +0000 Manifest next update: Sun 08 Mar 2026 10:11:34 +0000 Files and hashes: 1: XnhkKwPMN-Jv1BXn12G-SEc2xWY.crl (hash: Vlt5q0U+Z6kcT+el3/cIW/S8Hb6PXCKxWpost6YCNGs=) 2: 72480DC0D9A111F0989DD75268D3641D.roa (hash: /m7dePdPhCd+iFe1dsv0pa92EOKO9ZVeLTSq8mVj9oY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.crl rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnhkKwPMN-Jv1BXn12G-SEc2xWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:11:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7B89, serialNumber=5E78642B03CC37E26FD415E7D761BE484736C566 Validity Not Before: Mar 1 10:11:34 2026 GMT Not After : Mar 8 10:11:34 2026 GMT Subject: CN=69a410d7-9aa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:39:61:8d:58:ab:f7:ba:ae:af:99:7c:1e:09: 36:63:2b:62:2f:39:f1:76:ea:5b:20:77:a4:e0:4c: 0f:a3:5a:0f:a5:30:50:f6:75:cd:29:f3:91:19:1a: 96:e1:8e:b2:0d:1b:c0:0c:0b:29:0b:66:37:fc:17: 2d:74:aa:ae:50:56:39:76:bc:89:02:bd:fe:cd:ce: 21:87:2f:2f:c7:45:43:8a:70:b0:41:9c:cc:59:22: 7f:cd:95:b7:db:74:2c:43:96:4b:85:6c:61:f2:7a: 85:cc:74:88:da:33:01:74:9d:c2:00:9e:66:f7:e7: a9:65:2d:73:90:60:27:57:51:3d:c5:3f:6a:19:71: c9:e0:bf:2d:7d:98:6b:f2:af:e3:74:5c:41:dd:79: 2e:77:1d:fe:18:65:a7:4c:7d:88:0b:df:76:dd:3d: 6d:2c:50:bd:a0:f1:f9:b2:35:7e:ad:06:0c:9e:a7: 3e:ef:64:12:11:b4:f9:46:b5:30:2b:87:a6:72:c5: cc:28:94:1b:68:4d:49:50:ec:fc:16:fd:47:6f:63: 69:40:06:f4:3b:94:52:da:c1:ac:d3:30:01:b5:2a: 2c:c0:43:0d:0d:cc:cf:09:19:bb:b5:12:b7:0c:34: 3d:0c:bd:4f:45:37:1b:86:8f:a9:a8:d7:e6:1d:68: e4:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:A0:83:9D:45:C0:5D:63:01:94:19:F1:59:94:FD:E3:8B:08:EC:98 X509v3 Authority Key Identifier: keyid:5E:78:64:2B:03:CC:37:E2:6F:D4:15:E7:D7:61:BE:48:47:36:C5:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnhkKwPMN-Jv1BXn12G-SEc2xWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:9a:03:0e:12:e5:14:af:f4:14:af:4b:58:88:78:00:9b:17: 0b:d5:c9:3e:ff:3f:9f:a3:94:cf:10:bd:7b:24:82:3a:85:fe: c5:21:9a:bb:17:e8:41:af:38:ac:f0:9d:25:e6:6d:39:57:87: be:af:97:04:64:e3:7f:4d:2c:3b:87:3c:33:ae:5d:2e:fc:7c: 30:13:05:1a:20:48:a6:fa:cb:06:26:dc:b4:4f:ef:2a:0d:aa: f6:e0:85:7e:69:09:35:80:49:c2:7f:93:45:6c:aa:6c:56:68: 4f:f6:80:b2:4a:10:95:1b:be:b3:76:94:6f:43:c9:33:6b:64: 15:42:8c:9f:d1:93:55:1b:a2:7f:ca:59:5e:25:8e:f8:42:bb: fc:27:a0:eb:66:1d:ee:4c:55:e5:d0:e1:3c:db:24:80:ce:13: a9:f3:5d:df:00:a5:fe:de:0e:ba:f5:d5:50:38:63:3d:95:a3: 71:9d:60:17:41:a3:0b:7b:4b:75:dc:78:65:c2:6b:dd:ce:43: 8b:8a:24:cb:26:2f:b4:98:dd:8e:bd:84:1c:8b:bf:28:cd:5f: 74:30:e2:c4:16:01:12:6a:47:f2:b3:79:08:5c:a1:d8:34:08: 39:a3:ee:1c:73:58:ee:9f:5e:a7:30:5e:d9:54:40:fe:45:da: d4:cc:2f:b7 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF N0I4OTExMC8GA1UEBRMoNUU3ODY0MkIwM0NDMzdFMjZGRDQxNUU3RDc2MUJFNDg0 NzM2QzU2NjAeFw0yNjAzMDExMDExMzRaFw0yNjAzMDgxMDExMzRaMBgxFjAUBgNV BAMTDTY5YTQxMGQ3LTlhYTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHOWGNWKv3uq6vmXweCTZjK2IvOfF26lsgd6TgTA+jWg+lMFD2dc0p85EZGpbh jrING8AMCykLZjf8Fy10qq5QVjl2vIkCvf7NziGHLy/HRUOKcLBBnMxZIn/Nlbfb dCxDlkuFbGHyeoXMdIjaMwF0ncIAnmb356llLXOQYCdXUT3FP2oZccngvy19mGvy r+N0XEHdeS53Hf4YZadMfYgL33bdPW0sUL2g8fmyNX6tBgyepz7vZBIRtPlGtTAr h6ZyxcwolBtoTUlQ7PwW/UdvY2lABvQ7lFLawazTMAG1KizAQw0NzM8JGbu1ErcM ND0MvU9FNxuGj6mo1+YdaOR1AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUJ6CDnUXA XWMBlBnxWZT944sI7JgwHwYDVR0jBBgwFoAUXnhkKwPMN+Jv1BXn12G+SEc2xWYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3Qjg5LzQxQkU0RjQ0RDlB MDExRjA5MzEzMEUwNzY4RDM2NDFEL1huaGtLd1BNTi1KdjFCWG4xMkctU0VjMnhX WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWG5oa0t3UE1OLUp2MUJYbjEyRy1TRWMyeFdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3 Qjg5LzQxQkU0RjQ0RDlBMDExRjA5MzEzMEUwNzY4RDM2NDFEL1huaGtLd1BNTi1K djFCWG4xMkctU0VjMnhXWS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA4mgMOEuUUr/QUr0tYiHgAmxcL1ck+/z+fo5TPEL17JII6hf7FIZq7F+hBrzis 8J0l5m05V4e+r5cEZON/TSw7hzwzrl0u/HwwEwUaIEim+ssGJty0T+8qDar24IV+ aQk1gEnCf5NFbKpsVmhP9oCyShCVG76zdpRvQ8kza2QVQoyf0ZNVG6J/ylleJY74 Qrv8J6DrZh3uTFXl0OE82ySAzhOp813fAKX+3g669dVQOGM9laNxnWAXQaMLe0t1 3HhlwmvdzkOLiiTLJi+0mN2OvYQci78ozV90MOLEFgESakfys3kIXKHYNAg5o+4c c1jun16nMF7ZVED+RdrUzC+3 -----END CERTIFICATE-----Generated at Mon Mar 2 18:35:51 2026 by rpki-client