$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft File: XDZbFzHKfOfbgd1XEwvU1kMBm14.mft (raw, json) Hash identifier: xALDapQWEE7tqKqZODEwE5qLxlDWMbDVCo1keji8bZg= Subject key identifier: F0:B2:11:0B:78:E8:44:39:98:C8:8A:B3:96:41:4E:13:97:B1:F6:EE Authority key identifier: 5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E Certificate issuer: /CN=A91D28EB/serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Certificate serial: 0606 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft Manifest number: 05FC Signing time: Sat 04 Apr 2026 22:42:03 +0000 Manifest this update: Sat 04 Apr 2026 22:42:03 +0000 Manifest next update: Sat 11 Apr 2026 22:42:03 +0000 Files and hashes: 1: XDZbFzHKfOfbgd1XEwvU1kMBm14.crl (hash: 85U8rRH/pApDX/3uVuN+BNXHd9mrnsO5YPeN9kp4Vy8=) 2: 8E90AA02EB0B11EBA0B6DD84C4F9AE02.roa (hash: 3VA1KwUIIhxyT4ghxT229oTXXd7seGOOX/95PCsXUZM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 22:42:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1542 (0x606) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28EB, serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Validity Not Before: Apr 4 22:42:03 2026 GMT Not After : Apr 11 22:42:03 2026 GMT Subject: CN=69d193bb-3b0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f5:df:d9:34:18:3f:bc:f9:e0:d3:3d:63:c7: a1:0d:af:4c:30:55:8d:80:f5:8f:d1:61:c4:b6:8c: 4c:11:b3:d0:7f:c5:f4:77:3b:7b:ea:d1:5a:f2:34: ef:55:2d:2a:90:15:b3:c0:31:b7:8d:65:29:2c:e8: a6:44:16:10:ab:ff:1f:1a:93:85:9a:20:c6:14:71: dc:86:a8:2b:45:84:af:21:2d:ff:50:76:51:9c:ed: 68:2b:45:4f:eb:16:69:41:c0:ea:2e:2e:84:7b:95: 23:1c:bc:c5:88:68:42:9c:97:b9:ee:62:5b:f3:d8: 74:c1:08:67:64:26:5c:17:b8:fd:c7:c7:f0:bc:76: d4:be:c0:b2:99:0e:30:9c:05:57:bd:be:7c:7c:d2: 5b:d5:4c:f4:9a:f3:9c:6e:a7:48:bf:9a:f0:a1:45: 86:3b:92:b8:08:d1:c1:24:74:fc:18:38:81:c2:b0: d0:b6:89:8b:13:ad:46:5a:56:42:82:c1:10:8a:c1: e2:01:56:74:4e:17:c9:f2:f7:4a:05:66:df:1f:8a: 06:aa:d1:78:40:cd:2a:ac:cd:68:0a:91:12:5a:98: 26:04:d7:f9:bf:e9:76:db:3c:54:d5:14:07:1e:76: 41:b4:9f:5b:56:3e:d1:d1:70:85:ab:58:14:1d:2e: 1a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:B2:11:0B:78:E8:44:39:98:C8:8A:B3:96:41:4E:13:97:B1:F6:EE X509v3 Authority Key Identifier: keyid:5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:97:b0:e4:fd:2f:50:15:62:f1:8f:93:d3:6f:cc:01:b6:67: 5d:78:9f:43:c8:c5:92:95:ee:f1:d8:d5:09:ba:a2:1a:74:4e: 66:04:76:09:93:0e:e8:08:9b:b7:36:3a:4a:00:d1:e9:49:1f: dd:f4:35:d1:88:be:d7:34:f7:f3:a1:b6:1d:e4:8c:d3:d4:b9: 0f:13:10:16:07:31:5e:b2:ad:d1:d5:07:54:69:35:b6:9d:16: 45:a5:10:5c:ab:8e:fd:e6:0c:07:92:50:21:68:a1:20:fb:16: d2:b8:36:ec:f8:9a:e2:98:ab:9a:21:42:79:13:68:fb:bc:9a: 4a:7a:cf:c4:74:e6:2f:29:79:98:01:f1:74:64:5c:a9:0c:4f: 7f:e6:45:64:07:e2:f8:a4:e7:17:bb:da:10:ad:53:d1:39:69: bb:30:ae:c1:46:37:87:90:ae:1b:24:77:47:ac:6e:46:e6:42: da:3e:91:2f:c2:7d:01:b3:28:04:18:1d:2b:4c:5d:7a:64:2a: 72:66:56:2c:e4:1d:79:d3:51:51:39:f5:57:49:bb:7b:d4:5d: 8c:48:fd:59:60:f2:eb:34:a7:75:09:99:00:a8:1d:2f:03:cd: 67:c6:a3:3c:af:a6:76:12:4a:0c:14:d2:7b:4c:23:21:80:9a: d4:99:3d:06 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4RUIxMTAvBgNVBAUTKDVDMzY1QjE3MzFDQTdDRTdEQjgxREQ1NzEzMEJENEQ2 NDMwMTlCNUUwHhcNMjYwNDA0MjI0MjAzWhcNMjYwNDExMjI0MjAzWjAYMRYwFAYD VQQDEw02OWQxOTNiYi0zYjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/Xf2TQYP7z54NM9Y8ehDa9MMFWNgPWP0WHEtoxMEbPQf8X0dzt76tFa8jTv VS0qkBWzwDG3jWUpLOimRBYQq/8fGpOFmiDGFHHchqgrRYSvIS3/UHZRnO1oK0VP 6xZpQcDqLi6Ee5UjHLzFiGhCnJe57mJb89h0wQhnZCZcF7j9x8fwvHbUvsCymQ4w nAVXvb58fNJb1Uz0mvOcbqdIv5rwoUWGO5K4CNHBJHT8GDiBwrDQtomLE61GWlZC gsEQisHiAVZ0ThfJ8vdKBWbfH4oGqtF4QM0qrM1oCpESWpgmBNf5v+l22zxU1RQH HnZBtJ9bVj7R0XCFq1gUHS4akwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPCyEQt4 6EQ5mMiKs5ZBThOXsfbuMB8GA1UdIwQYMBaAFFw2Wxcxynzn24HdVxML1NZDAZte MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhFQi83NzE0OEFDNkVC MDkxMUVCOUM3NTkxODBDNEY5QUUwMi9YRFpiRnpIS2ZPZmJnZDFYRXd2VTFrTUJt MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEWmJGekhLZk9mYmdkMVhFd3ZVMWtNQm0xNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhFQi83NzE0OEFDNkVCMDkxMUVCOUM3NTkxODBDNEY5QUUwMi9YRFpiRnpIS2ZP ZmJnZDFYRXd2VTFrTUJtMTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgpew5P0vUBVi8Y+T02/MAbZnXXifQ8jFkpXu8djVCbqiGnROZgR2CZMO6Aib tzY6SgDR6Ukf3fQ10Yi+1zT386G2HeSM09S5DxMQFgcxXrKt0dUHVGk1tp0WRaUQ XKuO/eYMB5JQIWihIPsW0rg27Pia4pirmiFCeRNo+7yaSnrPxHTmLyl5mAHxdGRc qQxPf+ZFZAfi+KTnF7vaEK1T0TlpuzCuwUY3h5CuGyR3R6xuRuZC2j6RL8J9AbMo BBgdK0xdemQqcmZWLOQdedNRUTn1V0m7e9RdjEj9WWDy6zSndQmZAKgdLwPNZ8aj PK+mdhJKDBTSe0wjIYCa1Jk9Bg== -----END CERTIFICATE-----Generated at Sun Apr 5 19:47:33 2026 by rpki-client