$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft File: XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft (raw, json) Hash identifier: ccxwC1LDuAy27l6A7L8/6S24tz3JGG+TokchQ7eHYEg= Subject key identifier: 59:A1:4B:FB:21:83:63:5B:F7:89:5A:8D:1B:06:73:A1:95:73:63:4D Authority key identifier: 5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 Certificate issuer: /CN=A91C9561/serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Certificate serial: 0396 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft Manifest number: 0395 Signing time: Sun 05 Apr 2026 00:31:01 +0000 Manifest this update: Sun 05 Apr 2026 00:31:00 +0000 Manifest next update: Sun 12 Apr 2026 00:31:00 +0000 Files and hashes: 1: XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl (hash: 4uKBf5mEnOR5dMlf27GN6HirCQYMgHh14Tsla5nPZ/A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 918 (0x396) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9561, serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Validity Not Before: Apr 5 00:31:00 2026 GMT Not After : Apr 12 00:31:00 2026 GMT Subject: CN=69d1ad45-20f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:dd:87:7d:d6:0e:b6:b0:04:e9:d0:0e:01:99: 6a:b1:66:62:1c:80:7e:3c:34:28:04:c2:c8:31:91: 3b:c3:81:37:f5:6c:55:b1:4b:5b:95:e8:2e:d1:ed: 40:f5:c5:4a:0e:f3:06:e1:d1:11:d9:e3:17:d3:c8: f5:ee:1b:e5:bc:6a:e0:71:fa:e0:1e:eb:85:fd:27: 6f:21:69:19:c1:c8:10:a6:5b:cb:2e:7c:ad:e5:5b: 47:8d:85:71:3e:28:b9:96:05:2a:6b:8e:43:8e:f2: 84:55:1a:ab:91:61:9b:d4:b2:b8:1c:a4:72:8f:03: 14:7a:56:54:15:a4:80:01:76:55:3e:0d:90:08:49: 2b:5f:8c:e1:53:e3:96:7a:7a:a3:87:1c:7e:ad:2b: 39:6d:69:49:88:24:49:32:58:52:0e:71:44:51:ca: e2:ca:4e:cb:d2:4e:84:15:c1:1e:83:3f:dd:d4:ba: 17:d3:56:5c:71:2e:d0:17:68:7d:7d:b8:ab:22:ef: 39:27:58:62:9a:96:9e:5d:e0:16:5e:5e:6e:07:b0: 67:43:13:74:88:4a:8d:1b:dc:ef:50:3c:dd:c0:cb: 47:74:a4:1a:77:ec:78:52:86:91:5f:be:5f:cb:84: bb:26:88:37:94:95:67:25:11:98:f9:3f:a6:7f:be: d9:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:A1:4B:FB:21:83:63:5B:F7:89:5A:8D:1B:06:73:A1:95:73:63:4D X509v3 Authority Key Identifier: keyid:5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:d2:8a:b5:7c:6f:17:09:ce:e1:42:eb:8d:1a:73:1f:c5:31: bf:4a:fa:54:33:63:01:dc:1a:5a:a4:7e:2f:57:8e:9b:e4:fa: 8d:f7:0b:97:9b:27:3d:39:55:de:e2:94:3d:d4:7d:44:1d:8f: 44:ae:4b:d2:70:f5:8a:fb:fe:a8:0c:01:66:c1:19:a3:f7:be: 50:7b:2b:c3:c6:fc:19:ad:76:a8:b4:6e:aa:4d:75:cf:c6:3f: b7:5f:1e:02:b3:15:42:90:39:db:5a:c0:e1:26:03:25:69:66: 2b:c1:fd:fc:fc:a3:da:17:4e:ad:52:66:b1:6d:3c:61:64:6b: 9a:74:56:92:36:d3:ed:a9:f8:52:9a:f4:b0:cc:ee:32:01:9f: d2:70:97:8d:dd:e1:0b:20:a1:5f:d6:9b:d6:7f:08:15:35:11: 7a:40:67:dc:4c:de:27:9a:66:f3:e3:85:ac:06:04:15:5d:8e: 18:c9:28:9a:94:2c:9d:26:b3:3d:4d:31:0e:f6:19:9c:a5:9d: f3:15:58:3b:ff:fe:db:dd:2e:32:fe:85:09:cd:ff:53:7f:29: fe:0d:9d:db:2a:d9:c8:c7:df:51:08:5c:4f:f8:f2:c2:65:1c: bf:b7:2d:58:0d:dc:75:12:06:66:0c:8a:8f:d7:9e:72:cc:b9: 07:75:86:6d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NjExMTAvBgNVBAUTKDVFM0NGMDI1MUQ4QTYwMDZCODI4NUJEMDk0OUZDRDlC QTNGOUVCQjgwHhcNMjYwNDA1MDAzMTAwWhcNMjYwNDEyMDAzMTAwWjAYMRYwFAYD VQQDEw02OWQxYWQ0NS0yMGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAld2HfdYOtrAE6dAOAZlqsWZiHIB+PDQoBMLIMZE7w4E39WxVsUtblegu0e1A 9cVKDvMG4dER2eMX08j17hvlvGrgcfrgHuuF/SdvIWkZwcgQplvLLnyt5VtHjYVx Pii5lgUqa45DjvKEVRqrkWGb1LK4HKRyjwMUelZUFaSAAXZVPg2QCEkrX4zhU+OW enqjhxx+rSs5bWlJiCRJMlhSDnFEUcriyk7L0k6EFcEegz/d1LoX01ZccS7QF2h9 fbirIu85J1himpaeXeAWXl5uB7BnQxN0iEqNG9zvUDzdwMtHdKQad+x4UoaRX75f y4S7Jog3lJVnJRGY+T+mf77ZOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFmhS/sh g2Nb94lajRsGc6GVc2NNMB8GA1UdIwQYMBaAFF488CUdimAGuChb0JSfzZuj+eu4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2MS9DOUE4REZEQURB NjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lBYTRLRnZRbEpfTm02UDU2 N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hqendKUjJLWUFhNEtGdlFsSl9ObTZQNTY3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2MS9DOUE4REZEQURBNjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lB YTRLRnZRbEpfTm02UDU2N2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAA9KKtXxvFwnO4ULrjRpzH8Uxv0r6VDNjAdwaWqR+L1eOm+T6jfcLl5snPTlV 3uKUPdR9RB2PRK5L0nD1ivv+qAwBZsEZo/e+UHsrw8b8Ga12qLRuqk11z8Y/t18e ArMVQpA521rA4SYDJWlmK8H9/Pyj2hdOrVJmsW08YWRrmnRWkjbT7an4Upr0sMzu MgGf0nCXjd3hCyChX9ab1n8IFTURekBn3EzeJ5pm8+OFrAYEFV2OGMkompQsnSaz PU0xDvYZnKWd8xVYO//+290uMv6FCc3/U38p/g2d2yrZyMffUQhcT/jywmUcv7ct WA3cdRIGZgyKj9eecsy5B3WGbQ== -----END CERTIFICATE-----Generated at Sun Apr 5 19:47:32 2026 by rpki-client