$ rpki-client -vvf rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/XhBeDvkNGLn6S4j640EMah3vcZA.mft File: XhBeDvkNGLn6S4j640EMah3vcZA.mft (raw, json) Hash identifier: mlGiqvxV2g1NqufL0M0zVLi/p4KGf93YbCRew4k9Tuw= Subject key identifier: 20:70:58:72:30:2C:AA:FA:85:2A:D5:DC:70:5B:53:08:EE:4C:78:F5 Authority key identifier: 5E:10:5E:0E:F9:0D:18:B9:FA:4B:88:FA:E3:41:0C:6A:1D:EF:71:90 Certificate issuer: /CN=A91F69E7/serialNumber=5E105E0EF90D18B9FA4B88FAE3410C6A1DEF7190 Certificate serial: 0C92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XhBeDvkNGLn6S4j640EMah3vcZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/XhBeDvkNGLn6S4j640EMah3vcZA.mft Manifest number: 0B42 Signing time: Mon 02 Mar 2026 02:52:03 +0000 Manifest this update: Mon 02 Mar 2026 02:52:02 +0000 Manifest next update: Mon 09 Mar 2026 02:52:02 +0000 Files and hashes: 1: XhBeDvkNGLn6S4j640EMah3vcZA.crl (hash: 0SasmhSxNz0gfB2oKk8H49OfH2KQwyd+IK0kVrAQVB8=) 2: F23138DA130911F1BB5ACCD1163D8C67.roa (hash: 8xxLWCCa8qgLDsuiIftHmP5gReWAO6e2ZS91781gIfE=) 3: 89135068FD2911F09BBA873E426F56BC.roa (hash: k6L2RtaPfs9iJDZ6OaWxGKY/ymoQfy3jPyd5OxyAkZs=) 4: DE2C490EFDDA11F08A9BDF026F6F56BC.roa (hash: 70UT6YcmvBlzj1xKlGcaUiyXDKtBEdfDGecHQzUFaBA=) 5: 37778C1E130A11F18BFDFDDD163D8C67.roa (hash: QzB/b/q1CujH4lpPJnOzRcEImfWO2YUrnWnHTBMghjw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/XhBeDvkNGLn6S4j640EMah3vcZA.crl rsync://rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/XhBeDvkNGLn6S4j640EMah3vcZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XhBeDvkNGLn6S4j640EMah3vcZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:51:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3218 (0xc92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F69E7, serialNumber=5E105E0EF90D18B9FA4B88FAE3410C6A1DEF7190 Validity Not Before: Mar 2 02:52:02 2026 GMT Not After : Mar 9 02:52:02 2026 GMT Subject: CN=69a4fb52-ad9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b7:38:a1:b2:3a:48:58:bb:d7:73:fe:8f:57: 7e:de:c1:d9:26:f0:11:80:30:e9:96:da:1a:14:8b: 67:84:8e:d4:af:5d:be:d3:4a:5f:87:c4:54:88:9f: 19:42:88:09:32:a2:1f:a3:c9:36:21:f5:99:4d:b5: 7b:9c:e2:b4:83:7c:f7:20:3d:62:75:23:1d:a2:a6: 06:35:26:75:4e:4f:c0:ab:a0:22:f3:d2:38:4e:89: 9c:85:f7:43:aa:37:9e:3d:50:30:b3:d1:c8:39:45: 12:d6:52:7a:e2:ff:3b:9a:b4:2b:f2:ca:21:d5:86: 06:c4:e6:56:63:f2:71:05:af:28:fc:e1:7a:42:df: 31:50:97:3a:66:87:c3:66:98:33:bd:ab:cc:ac:51: 2a:52:df:5a:e5:9b:9a:5f:75:fc:e5:3a:af:14:a1: 41:48:cc:3d:07:56:6e:51:28:d2:b9:54:d9:e4:5c: 3e:a6:32:41:90:8f:76:1b:90:fa:74:c2:62:8c:e4: 01:43:6a:2c:3d:5c:fa:e9:b1:15:12:44:04:1d:7f: 45:68:ca:b0:0f:ce:d5:0b:ff:08:f8:d3:51:a1:b6: ea:a3:29:bd:3c:5d:d5:28:67:4e:65:ff:a9:9a:6f: e7:8e:7f:4b:5f:85:0a:bf:91:f4:fe:07:1c:1a:c6: b3:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:70:58:72:30:2C:AA:FA:85:2A:D5:DC:70:5B:53:08:EE:4C:78:F5 X509v3 Authority Key Identifier: keyid:5E:10:5E:0E:F9:0D:18:B9:FA:4B:88:FA:E3:41:0C:6A:1D:EF:71:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/XhBeDvkNGLn6S4j640EMah3vcZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XhBeDvkNGLn6S4j640EMah3vcZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/XhBeDvkNGLn6S4j640EMah3vcZA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:da:71:56:08:53:cd:eb:6b:2b:3e:92:16:ba:17:69:af:c5: 98:30:62:91:7c:98:72:14:87:73:9f:47:c1:57:5b:b7:bd:30: fa:e7:6a:28:0c:6f:c1:9b:1d:38:11:1a:55:d4:40:9b:e7:9c: 45:42:a5:f9:f0:30:02:d5:0b:91:59:b9:b0:da:61:f8:ee:66: 83:d5:f1:1e:62:7e:aa:96:8f:f3:e0:7c:10:95:65:ac:d0:cf: 8a:51:50:ad:79:5f:9d:90:ac:ef:e4:a9:0d:50:59:8b:00:60: ff:95:d2:cf:33:19:1b:b8:fc:44:ce:d8:96:86:80:25:40:dd: 37:52:c9:fe:a5:7f:46:68:ac:66:f3:43:32:86:e2:e7:e7:66: a7:97:4f:83:9b:5e:94:fb:fa:7f:08:72:8d:f5:1a:68:73:21: 82:0a:d6:5e:e2:80:e5:c6:6e:08:ae:7e:d0:3a:d3:01:55:4e: aa:b0:a5:f3:2a:a1:42:cf:07:c3:21:a9:2a:ec:58:60:d2:dd: bd:4c:1a:07:0a:69:90:1a:dc:54:8a:a0:a4:ae:1a:2c:be:94: 6a:7b:cb:89:96:43:57:78:96:fa:3d:e9:87:5c:d4:96:5d:88: bb:cf:38:01:bb:74:c4:58:e5:2b:8c:91:1a:6f:10:48:0b:31: e7:52:2e:da -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY5RTcxMTAvBgNVBAUTKDVFMTA1RTBFRjkwRDE4QjlGQTRCODhGQUUzNDEwQzZB MURFRjcxOTAwHhcNMjYwMzAyMDI1MjAyWhcNMjYwMzA5MDI1MjAyWjAYMRYwFAYD VQQDEw02OWE0ZmI1Mi1hZDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLc4obI6SFi713P+j1d+3sHZJvARgDDpltoaFItnhI7Ur12+00pfh8RUiJ8Z QogJMqIfo8k2IfWZTbV7nOK0g3z3ID1idSMdoqYGNSZ1Tk/Aq6Ai89I4TomchfdD qjeePVAws9HIOUUS1lJ64v87mrQr8soh1YYGxOZWY/JxBa8o/OF6Qt8xUJc6ZofD ZpgzvavMrFEqUt9a5ZuaX3X85TqvFKFBSMw9B1ZuUSjSuVTZ5Fw+pjJBkI92G5D6 dMJijOQBQ2osPVz66bEVEkQEHX9FaMqwD87VC/8I+NNRobbqoym9PF3VKGdOZf+p mm/njn9LX4UKv5H0/gccGsazFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCBwWHIw LKr6hSrV3HBbUwjuTHj1MB8GA1UdIwQYMBaAFF4QXg75DRi5+kuI+uNBDGod73GQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjlFNy80NkFBRDZCMjkw NDAxMUVBQTY4OEJFNDVDNEY5QUUwMi9YaEJlRHZrTkdMbjZTNGo2NDBFTWFoM3Zj WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hoQmVEdmtOR0xuNlM0ajY0MEVNYWgzdmNaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjlFNy80NkFBRDZCMjkwNDAxMUVBQTY4OEJFNDVDNEY5QUUwMi9YaEJlRHZrTkdM bjZTNGo2NDBFTWFoM3ZjWkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAANpxVghTzetrKz6SFroXaa/FmDBikXyYchSHc59HwVdbt70w+udqKAxvwZsd OBEaVdRAm+ecRUKl+fAwAtULkVm5sNph+O5mg9XxHmJ+qpaP8+B8EJVlrNDPilFQ rXlfnZCs7+SpDVBZiwBg/5XSzzMZG7j8RM7YloaAJUDdN1LJ/qV/RmisZvNDMobi 5+dmp5dPg5telPv6fwhyjfUaaHMhggrWXuKA5cZuCK5+0DrTAVVOqrCl8yqhQs8H wyGpKuxYYNLdvUwaBwppkBrcVIqgpK4aLL6UanvLiZZDV3iW+j3ph1zUll2Iu884 Abt0xFjlK4yRGm8QSAsx51Iu2g== -----END CERTIFICATE-----Generated at Mon Mar 2 12:18:19 2026 by rpki-client