$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft File: XpnXCH3VTqLn519cgIcHE4Posp4.mft (raw, json) Hash identifier: dzcy/yuBqHrpaC9vEGY0gwnYpMSZXnHhGAJq2J66oFc= Subject key identifier: E1:6D:E1:77:66:9F:CD:4A:93:C4:80:AA:75:7C:97:2E:FE:17:E5:69 Authority key identifier: 5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E Certificate issuer: /CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Certificate serial: 0B79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft Manifest number: 0B57 Signing time: Mon 02 Mar 2026 00:00:52 +0000 Manifest this update: Mon 02 Mar 2026 00:00:48 +0000 Manifest next update: Mon 09 Mar 2026 00:00:48 +0000 Files and hashes: 1: XpnXCH3VTqLn519cgIcHE4Posp4.crl (hash: GiVgHHvFNCQNugQf/xySI9/5j1WnnhPbCOgqhcLATX0=) 2: E4A8C1240A3611F08B9CFD4FC4F9AE02.roa (hash: j3k7WwD0iiySNKc2qcbP8gwjXXX36elVSYGyaWkKFwc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2937 (0xb79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81D3, serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Validity Not Before: Mar 2 00:00:48 2026 GMT Not After : Mar 9 00:00:48 2026 GMT Subject: CN=69a4d332-248e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ae:fa:c8:32:7b:1a:91:dc:b9:c2:7a:2e:ee: 98:4d:dd:de:e1:f9:2c:d0:c8:1d:c6:e7:14:a7:a0: 04:cc:e2:f4:4b:59:3b:56:d4:84:27:95:c7:0f:b7: fc:2d:97:e7:7a:10:da:92:9e:5f:ab:50:ca:27:7f: 7b:cb:1c:13:63:82:b8:53:28:da:04:8b:14:6c:13: 3d:7e:65:38:49:e6:0e:b7:89:a9:19:88:e1:17:c6: 31:37:eb:b7:69:6a:6d:c4:ee:4a:b3:d9:a6:4b:de: b3:1f:2a:86:cf:78:44:4c:a0:ae:39:8e:f0:9e:6e: 7d:cf:22:3f:53:af:ab:ea:e2:e5:18:20:4a:ae:f0: 9e:e1:d1:22:52:cc:62:37:90:17:0e:64:74:ce:33: e2:0f:d6:d3:56:3e:c8:f3:97:96:c8:97:57:68:78: f3:63:e1:80:80:39:de:06:b7:78:19:b3:7c:0d:aa: 79:f2:93:19:60:33:33:f1:3d:48:ba:b6:7d:46:cd: 34:8e:b7:c2:40:87:69:d2:0a:5e:74:5c:5a:6e:e2: 22:a6:3e:2b:e1:07:46:f0:58:63:6b:a1:9b:14:47: 30:51:9c:70:9d:2e:c4:45:e7:46:60:b7:67:35:60: 10:45:d2:4e:0a:1b:ae:4d:7b:6d:c1:1b:60:c4:7e: 4a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:6D:E1:77:66:9F:CD:4A:93:C4:80:AA:75:7C:97:2E:FE:17:E5:69 X509v3 Authority Key Identifier: keyid:5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:e6:f8:63:d1:e5:d7:09:0d:56:bc:80:96:ce:c5:d7:a1:f3: 86:d5:f5:2e:4f:e5:df:bb:30:07:12:90:fa:0b:3b:21:53:51: e4:01:96:c1:4a:ea:19:a4:84:9f:bb:2a:e9:81:cb:b5:df:40: c3:c0:5d:6b:d9:ae:e0:3f:a3:8c:ce:cc:8c:42:04:64:b5:9c: 5d:b0:7e:5b:be:b0:5a:8e:ab:99:e6:3c:b5:71:26:a5:66:37: e1:64:49:69:3e:26:c4:67:23:e8:9c:59:62:2e:f1:0b:57:67: d0:16:00:2c:38:5d:91:67:71:7f:4f:3d:b7:bb:7a:5f:0e:4a: f1:e8:9b:e3:df:f8:c2:d3:fd:29:73:45:e2:10:4f:0c:6e:11: 8d:8d:4c:d2:a7:36:b3:f2:4b:59:8d:96:11:c7:df:e9:ec:15: 82:49:7c:a5:9d:5d:9f:bd:dd:0a:e9:21:4f:4d:6b:17:81:4a: 92:75:12:62:ab:76:97:f0:58:95:5d:23:c0:aa:cc:f3:48:22: e8:2d:d6:cb:68:41:cc:d9:1a:90:6d:3f:c9:14:e5:e6:95:c2: f8:16:09:15:9d:dd:e9:24:da:75:30:5c:54:33:cf:fb:fe:0c: bd:3f:9b:89:72:5c:fb:bb:63:a2:bb:61:74:2f:1d:a3:72:9d: c5:0a:32:4f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxRDMxMTAvBgNVBAUTKDVFOTlENzA4N0RENTRFQTJFN0U3NUY1QzgwODcwNzEz ODNFOEIyOUUwHhcNMjYwMzAyMDAwMDQ4WhcNMjYwMzA5MDAwMDQ4WjAYMRYwFAYD VQQDEw02OWE0ZDMzMi0yNDhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAya76yDJ7GpHcucJ6Lu6YTd3e4fks0MgdxucUp6AEzOL0S1k7VtSEJ5XHD7f8 LZfnehDakp5fq1DKJ397yxwTY4K4UyjaBIsUbBM9fmU4SeYOt4mpGYjhF8YxN+u3 aWptxO5Ks9mmS96zHyqGz3hETKCuOY7wnm59zyI/U6+r6uLlGCBKrvCe4dEiUsxi N5AXDmR0zjPiD9bTVj7I85eWyJdXaHjzY+GAgDneBrd4GbN8Dap58pMZYDMz8T1I urZ9Rs00jrfCQIdp0gpedFxabuIipj4r4QdG8Fhja6GbFEcwUZxwnS7ERedGYLdn NWAQRdJOChuuTXttwRtgxH5KvQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOFt4Xdm n81Kk8SAqnV8ly7+F+VpMB8GA1UdIwQYMBaAFF6Z1wh91U6i5+dfXICHBxOD6LKe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFEMy8wQTg0NTlGNDUy MzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRxTG41MTljZ0ljSEU0UG9z cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hwblhDSDNWVHFMbjUxOWNnSWNIRTRQb3NwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODFEMy8wQTg0NTlGNDUyMzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRx TG41MTljZ0ljSEU0UG9zcDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAO+b4Y9Hl1wkNVryAls7F16HzhtX1Lk/l37swBxKQ+gs7IVNR5AGWwUrqGaSE n7sq6YHLtd9Aw8Bda9mu4D+jjM7MjEIEZLWcXbB+W76wWo6rmeY8tXEmpWY34WRJ aT4mxGcj6JxZYi7xC1dn0BYALDhdkWdxf089t7t6Xw5K8eib49/4wtP9KXNF4hBP DG4RjY1M0qc2s/JLWY2WEcff6ewVgkl8pZ1dn73dCukhT01rF4FKknUSYqt2l/BY lV0jwKrM80gi6C3Wy2hBzNkakG0/yRTl5pXC+BYJFZ3d6STadTBcVDPP+/4MvT+b iXJc+7tjorthdC8do3KdxQoyTw== -----END CERTIFICATE-----Generated at Mon Mar 2 04:00:49 2026 by rpki-client