$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft File: Xx7oK_cJomzAAJlbR0geVPbzgG4.mft (raw, json) Hash identifier: BNRafBV/nCmxb7QZcuXwwYqlY5tTDkDL1dqNFTst9iA= Subject key identifier: 9E:3A:76:25:F4:E8:A7:CD:FF:57:22:F2:B1:B6:E0:85:A5:81:9F:C5 Authority key identifier: 5F:1E:E8:2B:F7:09:A2:6C:C0:00:99:5B:47:48:1E:54:F6:F3:80:6E Certificate issuer: /CN=A91F9E0A/serialNumber=5F1EE82BF709A26CC000995B47481E54F6F3806E Certificate serial: 0142 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft Manifest number: 013E Signing time: Sun 01 Mar 2026 06:27:59 +0000 Manifest this update: Sun 01 Mar 2026 06:27:59 +0000 Manifest next update: Sun 08 Mar 2026 06:27:59 +0000 Files and hashes: 1: Xx7oK_cJomzAAJlbR0geVPbzgG4.crl (hash: QUKO0JofebMx9PDwhab+eehfqWon1yI4ew5l7KTgTr0=) 2: 9F4A37143EA511EF882FE276C4F9AE02.roa (hash: n1rSG6+YrBdrpyC7jAy4PT81hFwvfJMiF3pinZ5UvAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.crl rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9E0A, serialNumber=5F1EE82BF709A26CC000995B47481E54F6F3806E Validity Not Before: Mar 1 06:27:59 2026 GMT Not After : Mar 8 06:27:59 2026 GMT Subject: CN=69a3dc6f-b6ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8e:5a:e4:f6:54:76:d4:c4:89:26:05:15:d2: 95:39:9b:bb:37:05:a7:18:54:77:93:10:65:c6:56: 9a:c9:2d:78:e4:c1:29:18:06:88:df:93:7d:93:61: 85:02:38:67:e5:33:03:56:78:d9:42:a3:37:46:be: 2b:e6:7b:b7:be:ac:43:4f:85:c0:05:b6:c5:52:29: 3f:a5:45:b1:47:28:4b:c6:d2:bb:f1:33:eb:9a:f3: 8d:3a:73:af:ca:ec:dd:6e:b3:e4:a3:b0:69:80:7e: 2e:fd:00:26:24:b7:78:11:14:96:e1:0f:12:9a:01: a6:93:e4:19:14:9d:d3:e4:33:3e:36:69:56:91:3c: 82:1b:b4:a1:53:af:83:9a:c5:cd:8c:45:d1:7e:be: 90:07:1f:d7:d9:93:82:23:5e:ec:46:93:ef:25:c1: 00:6e:90:a2:73:a5:66:01:c9:fe:7e:32:51:9a:5d: aa:1f:a2:f0:6e:69:b5:86:77:63:60:ee:23:92:a8: d5:67:f6:2c:aa:68:3a:68:9a:b8:4d:e2:10:73:51: f6:3c:17:ad:37:8c:c1:36:8d:2a:9c:2f:6b:5f:fa: c7:43:6b:0a:28:74:7b:29:d6:b9:de:bd:cd:a3:21: 08:86:83:ed:fe:22:b6:41:85:be:c0:ea:46:82:3c: c6:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:3A:76:25:F4:E8:A7:CD:FF:57:22:F2:B1:B6:E0:85:A5:81:9F:C5 X509v3 Authority Key Identifier: keyid:5F:1E:E8:2B:F7:09:A2:6C:C0:00:99:5B:47:48:1E:54:F6:F3:80:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:5b:13:f4:a8:92:40:41:2e:76:a0:3e:57:20:84:00:7d:e9: da:08:aa:83:b8:f2:8b:03:ee:79:bf:a9:af:7f:dd:ee:59:9c: 3e:a5:99:5a:51:9f:66:1f:f2:5d:d1:3c:7d:40:58:d6:d2:bd: 41:1a:51:2f:e8:96:bd:c4:9a:96:33:82:93:f1:ef:44:51:b2: 64:fd:24:46:b9:67:5b:09:f9:c6:b8:a5:37:a0:1c:fa:f7:10: 34:82:3b:5a:81:55:aa:bc:a1:3c:47:25:dc:67:9a:37:bb:7b: ee:30:31:d5:3d:9a:de:74:25:d1:b9:70:df:42:d3:4a:a8:d5: 8b:e3:bd:2d:3a:60:51:0a:55:59:51:05:fe:39:fe:eb:94:97: b9:69:49:03:a6:25:6d:57:b7:1f:b2:48:98:f0:86:b1:99:cf: ec:2a:d3:90:22:79:5f:60:4f:51:be:94:c6:0a:07:d3:80:96: 03:57:9e:b7:20:c5:9c:94:05:ca:7c:7c:b0:f9:53:14:84:4d: 32:6e:20:15:5f:c8:59:d5:fc:39:3f:ae:f8:cc:83:64:f4:60: 0d:60:a9:5f:0e:8a:ef:e5:69:ea:ef:17:be:79:70:4d:a6:9b: 43:bc:a4:2c:ed:91:91:68:8e:9a:32:84:da:2f:db:b8:b2:0e: d2:5e:b4:d0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlFMEExMTAvBgNVBAUTKDVGMUVFODJCRjcwOUEyNkNDMDAwOTk1QjQ3NDgxRTU0 RjZGMzgwNkUwHhcNMjYwMzAxMDYyNzU5WhcNMjYwMzA4MDYyNzU5WjAYMRYwFAYD VQQDEw02OWEzZGM2Zi1iNmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvo5a5PZUdtTEiSYFFdKVOZu7NwWnGFR3kxBlxlaayS145MEpGAaI35N9k2GF Ajhn5TMDVnjZQqM3Rr4r5nu3vqxDT4XABbbFUik/pUWxRyhLxtK78TPrmvONOnOv yuzdbrPko7BpgH4u/QAmJLd4ERSW4Q8SmgGmk+QZFJ3T5DM+NmlWkTyCG7ShU6+D msXNjEXRfr6QBx/X2ZOCI17sRpPvJcEAbpCic6VmAcn+fjJRml2qH6Lwbmm1hndj YO4jkqjVZ/Ysqmg6aJq4TeIQc1H2PBetN4zBNo0qnC9rX/rHQ2sKKHR7Kda53r3N oyEIhoPt/iK2QYW+wOpGgjzGSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ46diX0 6KfN/1ci8rG24IWlgZ/FMB8GA1UdIwQYMBaAFF8e6Cv3CaJswACZW0dIHlT284Bu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUUwQS8wM0IwNTJENDNF NjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9YeDdvS19jSm9tekFBSmxiUjBnZVZQYnpn RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1h4N29LX2NKb216QUFKbGJSMGdlVlBiemdHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUUwQS8wM0IwNTJENDNFNjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9YeDdvS19jSm9t ekFBSmxiUjBnZVZQYnpnRzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALlsT9KiSQEEudqA+VyCEAH3p2giqg7jyiwPueb+pr3/d7lmcPqWZWlGfZh/y XdE8fUBY1tK9QRpRL+iWvcSaljOCk/HvRFGyZP0kRrlnWwn5xrilN6Ac+vcQNII7 WoFVqryhPEcl3GeaN7t77jAx1T2a3nQl0blw30LTSqjVi+O9LTpgUQpVWVEF/jn+ 65SXuWlJA6YlbVe3H7JImPCGsZnP7CrTkCJ5X2BPUb6UxgoH04CWA1eetyDFnJQF ynx8sPlTFIRNMm4gFV/IWdX8OT+u+MyDZPRgDWCpXw6K7+Vp6u8XvnlwTaabQ7yk LO2RkWiOmjKE2i/buLIO0l600A== -----END CERTIFICATE-----Generated at Mon Mar 2 17:12:07 2026 by rpki-client