$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: /Hr7uemB+9D+hST5THTj1wTEAreMTRgvG7UOzxa+0Iw= Subject key identifier: 96:0E:E2:AD:C2:D3:C7:AC:5E:A7:79:D5:BC:ED:59:62:5F:C3:71:21 Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 2599 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 2599 Signing time: Mon 02 Mar 2026 02:25:43 +0000 Manifest this update: Mon 02 Mar 2026 02:25:42 +0000 Manifest next update: Mon 09 Mar 2026 02:25:42 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: 2bapFDePB+2Ba+fjixbY6zvpzsgKwRy9XS3xnVgzbVk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:25:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9625 (0x2599) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Validity Not Before: Mar 2 02:25:42 2026 GMT Not After : Mar 9 02:25:42 2026 GMT Subject: CN=69a4f527-1d7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0c:16:37:db:e5:3b:7d:57:34:03:76:b5:b7: db:d4:5a:b7:7e:86:fa:a9:f3:f5:30:dd:93:24:31: 42:15:cf:65:b7:88:c5:05:5b:91:65:f4:d9:da:1c: 40:4b:32:f2:d8:ee:08:2e:fb:bf:5d:28:43:fd:83: b8:eb:61:2e:82:bb:dd:b5:f2:68:12:b6:5b:2b:07: 3d:64:2b:b6:ff:76:50:6b:c4:65:f6:23:ff:7e:52: 52:62:e3:c9:7c:1b:d6:01:23:ea:96:f7:93:39:bb: 92:1c:e5:a9:ef:ab:86:eb:5f:8d:57:b5:e3:4b:1f: 11:a5:6a:3f:60:a5:fd:f9:00:97:52:c1:f2:c8:0a: 50:43:6e:fe:c5:31:7c:2b:fd:6b:1b:06:4e:4e:d9: ee:9c:46:54:a0:f7:27:0d:4f:73:76:94:02:62:47: ee:7a:08:02:4b:e4:f4:f3:0e:08:36:ef:78:3f:ab: 96:99:6d:41:e2:12:c3:77:12:d4:5b:28:15:43:a9: 3a:bb:f0:85:79:2f:ff:54:8b:0f:f3:fc:e7:96:03: 28:38:b5:23:f6:b1:41:09:66:f8:40:4b:20:c1:3a: 44:15:04:b4:8f:2d:ab:29:a5:76:0d:3e:f9:bb:f5: 9b:b3:47:5a:a8:31:3f:c6:76:cd:8d:7a:a0:2f:36: 55:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:0E:E2:AD:C2:D3:C7:AC:5E:A7:79:D5:BC:ED:59:62:5F:C3:71:21 X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:d5:10:8a:42:fd:69:79:a2:1e:fb:e8:db:1b:5f:66:d6:e1: 57:75:ad:82:aa:8b:8a:6e:1e:50:40:5c:d4:bf:9f:a5:70:ac: e8:f9:6c:3e:8c:1c:8a:e3:48:3c:83:71:2d:77:dd:8a:11:1c: c5:58:12:f2:e4:ec:d5:37:f4:2c:39:30:68:5c:a6:cd:6d:a6: 8c:b8:fb:ab:44:f3:35:77:38:9a:50:04:2e:05:65:2e:55:87: 13:89:42:99:c6:15:1f:e9:62:ce:e9:5e:82:9c:87:a0:40:bb: d5:4a:f1:d8:09:b4:0c:ce:53:34:31:bd:51:d4:d6:3c:ff:45: bc:a4:18:ee:50:c9:80:26:0a:90:3b:bd:56:60:1d:c7:15:69: 71:da:a2:be:05:d2:30:4b:a0:42:4c:8f:d7:01:41:40:49:11: d7:23:61:38:91:69:3d:ef:e9:76:03:45:6f:85:aa:1a:72:34: 37:2b:dc:99:62:fd:74:88:61:cd:c5:0c:d1:cc:71:b1:4f:0b: 8f:18:c4:36:74:d8:58:00:63:78:6f:9a:18:39:db:ad:06:8f: 8c:74:ee:ec:3a:65:47:bc:05:f1:77:22:1c:7b:90:79:9f:7e: ba:a0:61:ba:a4:06:95:2b:9b:79:70:21:da:1e:bd:5f:9f:4c: fb:d5:f7:7a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjYwMzAyMDIyNTQyWhcNMjYwMzA5MDIyNTQyWjAYMRYwFAYD VQQDEw02OWE0ZjUyNy0xZDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAwWN9vlO31XNAN2tbfb1Fq3fob6qfP1MN2TJDFCFc9lt4jFBVuRZfTZ2hxA SzLy2O4ILvu/XShD/YO462EugrvdtfJoErZbKwc9ZCu2/3ZQa8Rl9iP/flJSYuPJ fBvWASPqlveTObuSHOWp76uG61+NV7XjSx8RpWo/YKX9+QCXUsHyyApQQ27+xTF8 K/1rGwZOTtnunEZUoPcnDU9zdpQCYkfueggCS+T08w4INu94P6uWmW1B4hLDdxLU WygVQ6k6u/CFeS//VIsP8/znlgMoOLUj9rFBCWb4QEsgwTpEFQS0jy2rKaV2DT75 u/Wbs0daqDE/xnbNjXqgLzZVvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJYO4q3C 08esXqd51bztWWJfw3EhMB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMNUQikL9aXmiHvvo2xtfZtbhV3WtgqqLim4eUEBc1L+fpXCs6PlsPowciuNI PINxLXfdihEcxVgS8uTs1Tf0LDkwaFymzW2mjLj7q0TzNXc4mlAELgVlLlWHE4lC mcYVH+lizulegpyHoEC71Urx2Am0DM5TNDG9UdTWPP9FvKQY7lDJgCYKkDu9VmAd xxVpcdqivgXSMEugQkyP1wFBQEkR1yNhOJFpPe/pdgNFb4WqGnI0NyvcmWL9dIhh zcUM0cxxsU8LjxjENnTYWABjeG+aGDnbrQaPjHTu7DplR7wF8XciHHuQeZ9+uqBh uqQGlSubeXAh2h69X59M+9X3eg== -----END CERTIFICATE-----Generated at Mon Mar 2 10:13:33 2026 by rpki-client