$ rpki-client -vvf rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft File: X3A2SNc_YGlFARjbom-WaC1a5so.mft (raw, json) Hash identifier: NGsatE0jrlJxM4MujPO59n+L50nzqQG2sZ6DQCB33do= Subject key identifier: 66:E1:41:3D:06:B4:BF:99:7F:21:8D:67:87:2C:31:D2:B1:EA:F9:29 Authority key identifier: 5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA Certificate issuer: /CN=A91508BB/serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Certificate serial: 3526 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft Manifest number: 3526 Signing time: Sat 04 Apr 2026 14:37:41 +0000 Manifest this update: Sat 04 Apr 2026 14:37:40 +0000 Manifest next update: Sat 11 Apr 2026 14:37:40 +0000 Files and hashes: 1: X3A2SNc_YGlFARjbom-WaC1a5so.crl (hash: YYak+RM92Z0rmbbY5UWTkExPYNMUPdVdAqZrLaJn134=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 14:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13606 (0x3526) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91508BB, serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Validity Not Before: Apr 4 14:37:40 2026 GMT Not After : Apr 11 14:37:40 2026 GMT Subject: CN=69d12235-acac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:14:67:d0:bf:60:0b:d4:ef:18:3e:a3:03:78: aa:77:af:00:e5:c9:a8:fd:5f:a4:9c:3d:7b:72:09: d5:53:44:08:78:51:b0:42:0c:a3:19:dd:7b:bd:e8: 89:36:eb:fb:44:af:09:3d:4c:b1:6b:29:ce:ee:9b: 7e:75:4b:97:bc:8a:ca:60:43:e8:a7:d3:61:91:e0: 74:d2:33:7c:dd:3b:27:b1:3b:de:35:dc:50:0d:f8: 8b:af:87:19:f0:f3:d2:8a:5e:da:f4:12:44:ee:c1: 60:c5:cd:92:6f:a5:25:64:67:6d:4b:0d:87:f2:87: 87:3c:0a:25:03:b1:3a:cd:25:e2:05:01:3a:ef:17: d7:77:6a:39:60:ae:b7:8a:8e:58:9f:ce:28:6a:8e: d7:c2:07:6b:77:d4:8a:bf:98:1a:b8:2c:ad:ad:b4: 5d:f1:13:e4:9f:20:81:20:fe:0b:a9:4e:95:4b:16: cd:15:42:ef:e3:c2:79:56:ae:ba:20:0a:f3:0a:e1: 19:1e:2d:69:19:ab:cb:03:fb:0b:08:9b:5c:c4:94: b7:d3:ce:c0:da:f3:85:db:7b:34:0f:89:c5:04:43: 11:f8:8e:c7:8c:de:71:b8:4a:8a:c1:d9:e8:bf:bd: 99:68:48:be:9e:0d:31:b0:9b:82:48:10:35:56:d0: 97:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:E1:41:3D:06:B4:BF:99:7F:21:8D:67:87:2C:31:D2:B1:EA:F9:29 X509v3 Authority Key Identifier: keyid:5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:2e:eb:f1:d1:f0:db:45:bd:45:58:1c:33:ec:d3:6d:c1:7c: d1:cc:f3:f4:1c:7c:83:40:29:2b:49:58:3d:11:44:6d:1f:a3: 2f:95:eb:c1:5f:b6:92:f3:4c:5a:7b:41:f7:79:35:7b:e2:7e: ab:d3:2c:69:b8:47:6f:f4:16:33:6a:52:94:d4:79:61:59:23: ec:31:08:56:26:ea:4c:ab:f2:fd:35:96:0d:fb:3b:f1:1f:7f: 2c:60:3c:27:9d:2d:4f:ee:ee:a6:5e:ca:8b:34:aa:02:c8:de: cc:ef:ee:20:3c:78:02:5a:1e:f8:64:9b:28:d0:17:d3:af:54: 05:73:4c:5b:a3:fa:5e:11:57:48:3c:1d:b9:a8:43:aa:b8:50: b4:7f:a7:80:d7:4a:fa:3b:f3:b6:c7:e0:e1:2e:79:af:bd:ba: 2b:a6:50:3e:29:7c:95:a3:d7:47:c2:96:cb:57:33:9a:40:5e: 4d:c9:fd:b6:85:5b:fb:43:48:0d:71:c8:cd:58:5a:be:a2:fc: 58:30:ac:44:7b:46:c4:7f:d1:bc:da:4c:8a:96:48:d5:5d:4d: 47:30:aa:37:5a:fb:84:c8:63:4c:69:15:b7:9e:b3:83:bd:de: 61:da:89:ad:56:13:ee:74:d1:7a:06:65:88:05:db:d9:f6:8e: cc:f9:67:5f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4QkIxMTAvBgNVBAUTKDVGNzAzNjQ4RDczRjYwNjk0NTAxMThEQkEyNkY5NjY4 MkQ1QUU2Q0EwHhcNMjYwNDA0MTQzNzQwWhcNMjYwNDExMTQzNzQwWjAYMRYwFAYD VQQDEw02OWQxMjIzNS1hY2FjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzBRn0L9gC9TvGD6jA3iqd68A5cmo/V+knD17cgnVU0QIeFGwQgyjGd17veiJ Nuv7RK8JPUyxaynO7pt+dUuXvIrKYEPop9NhkeB00jN83TsnsTveNdxQDfiLr4cZ 8PPSil7a9BJE7sFgxc2Sb6UlZGdtSw2H8oeHPAolA7E6zSXiBQE67xfXd2o5YK63 io5Yn84oao7Xwgdrd9SKv5gauCytrbRd8RPknyCBIP4LqU6VSxbNFULv48J5Vq66 IArzCuEZHi1pGavLA/sLCJtcxJS3087A2vOF23s0D4nFBEMR+I7HjN5xuEqKwdno v72ZaEi+ng0xsJuCSBA1VtCX3wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGbhQT0G tL+ZfyGNZ4csMdKx6vkpMB8GA1UdIwQYMBaAFF9wNkjXP2BpRQEY26JvlmgtWubK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDhCQi81QTBEOTU4ODFE OEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lHbEZBUmpib20tV2FDMWE1 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gzQTJTTmNfWUdsRkFSamJvbS1XYUMxYTVzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDhCQi81QTBEOTU4ODFEOEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lH bEZBUmpib20tV2FDMWE1c28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACi7r8dHw20W9RVgcM+zTbcF80czz9Bx8g0ApK0lYPRFEbR+jL5XrwV+2kvNM WntB93k1e+J+q9MsabhHb/QWM2pSlNR5YVkj7DEIVibqTKvy/TWWDfs78R9/LGA8 J50tT+7upl7KizSqAsjezO/uIDx4Aloe+GSbKNAX069UBXNMW6P6XhFXSDwduahD qrhQtH+ngNdK+jvztsfg4S55r726K6ZQPil8laPXR8KWy1czmkBeTcn9toVb+0NI DXHIzVhavqL8WDCsRHtGxH/RvNpMipZI1V1NRzCqN1r7hMhjTGkVt56zg73eYdqJ rVYT7nTRegZliAXb2faOzPlnXw== -----END CERTIFICATE-----Generated at Sun Apr 5 19:57:24 2026 by rpki-client