$ rpki-client -vvf rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft File: xHWJli7Q04kmIr5be4vu_ozniKc.mft (raw, json) Hash identifier: IcAiHskSVEwQRtNQZF1XMRWpE5chySPWPxHRYLjAO5g= Subject key identifier: C2:21:3F:D8:31:0A:86:72:EE:1F:01:92:90:7D:8E:E0:FC:22:D9:32 Authority key identifier: C4:75:89:96:2E:D0:D3:89:26:22:BE:5B:7B:8B:EE:FE:8C:E7:88:A7 Certificate issuer: /CN=A91A13A6/serialNumber=C47589962ED0D3892622BE5B7B8BEEFE8CE788A7 Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xHWJli7Q04kmIr5be4vu_ozniKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft Manifest number: 019B Signing time: Fri 13 Mar 2026 03:28:46 +0000 Manifest this update: Fri 13 Mar 2026 03:28:45 +0000 Manifest next update: Fri 20 Mar 2026 03:28:45 +0000 Files and hashes: 1: xHWJli7Q04kmIr5be4vu_ozniKc.crl (hash: 0+XXKCVyRE92m2lebtfk7PB2Li1qiyc+nURhpfuBlCA=) 2: 8C7D223C2DAB11EF88127264C4F9AE02.roa (hash: X6aIaG1zQqgDiSqMFiuqRqeQ5WZkrDJTEHFLzyOj2LU=) 3: 4E2CAC386E8711EF8521ED6FC4F9AE02.roa (hash: eKVOlBNn+5WuwNFphnK/oDxQ3aByduRE2UhfBxYvHBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.crl rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xHWJli7Q04kmIr5be4vu_ozniKc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 02:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A13A6, serialNumber=C47589962ED0D3892622BE5B7B8BEEFE8CE788A7 Validity Not Before: Mar 13 03:28:45 2026 GMT Not After : Mar 20 03:28:45 2026 GMT Subject: CN=69b3846d-f4d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7d:e3:80:fe:a8:bd:fd:1d:8a:5a:13:1a:a4: 70:b7:e5:4b:79:2a:9a:b7:e0:c8:de:97:a8:6f:20: de:8b:35:05:0b:0c:ae:b5:5d:f4:65:af:2b:b1:2c: e2:28:f3:ad:fe:60:c6:83:6d:eb:25:5d:77:c9:a2: 57:2a:4a:e3:7e:7a:85:84:0c:45:37:c6:3c:47:55: 2e:aa:73:4f:68:f4:4c:f6:5a:aa:d6:e6:09:98:03: 92:09:b5:8a:7f:be:e2:85:be:06:6f:e2:b6:24:f4: 13:eb:43:dd:ea:16:9a:b4:a2:22:b0:5d:a4:c9:36: d2:8c:cd:43:96:80:cf:b0:9c:dd:b6:53:54:d7:ce: ec:c0:c1:4a:7e:5e:70:0d:97:78:6c:7f:ac:51:cd: 6a:c1:a2:d9:42:85:0c:eb:3b:b7:75:51:ac:8e:cf: 98:44:c9:b2:4a:f1:e0:4c:02:12:41:86:6d:3f:8a: e1:67:fa:e0:1b:a3:85:4e:de:f9:c0:d8:07:a6:53: 77:19:ee:b5:36:91:1f:6b:cc:5d:7d:3b:9e:b1:cb: 9c:2b:57:84:6c:52:3e:31:01:32:00:ae:19:29:36: fd:3c:dc:af:b2:d8:78:15:a7:7f:ee:2a:64:f8:e1: 56:6e:d7:09:1a:d3:ba:9d:d5:d1:0f:aa:66:78:6e: 44:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:21:3F:D8:31:0A:86:72:EE:1F:01:92:90:7D:8E:E0:FC:22:D9:32 X509v3 Authority Key Identifier: keyid:C4:75:89:96:2E:D0:D3:89:26:22:BE:5B:7B:8B:EE:FE:8C:E7:88:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xHWJli7Q04kmIr5be4vu_ozniKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:b4:f5:5c:48:59:df:f3:71:a1:f3:da:c9:b5:b9:de:5f:e1: e0:58:22:6c:96:ea:dc:32:21:41:9f:40:b2:d0:3d:a1:63:54: bc:91:2e:b8:c2:19:7e:c8:be:d8:d7:d6:cf:13:c6:0c:b1:60: 77:82:1c:f8:9b:4d:e5:bc:27:58:b8:31:f3:cc:01:20:b3:5a: 34:2a:f1:07:a0:32:d0:34:f2:a6:da:b4:dc:f9:70:7c:97:e3: 5b:f1:a3:cb:68:65:3d:af:ab:54:94:95:0c:02:b0:af:52:ea: e3:d1:4e:f1:0c:fd:34:50:5a:ed:6a:22:b0:8c:09:ff:52:78: ff:e8:11:b4:1e:3b:4b:29:b4:51:de:cc:55:65:a1:36:cf:95: 2c:ce:3c:d9:23:db:40:6d:66:f6:a6:9b:ed:b7:61:08:94:a5: 47:b2:02:7c:10:28:fd:a8:f7:5c:9b:a0:42:e8:1d:e9:74:1b: ed:e7:4f:15:05:1b:5d:2c:26:c6:19:09:d2:2f:fd:21:27:dc: f2:c8:3b:5c:93:d0:7e:59:d0:35:3b:ed:2f:17:f2:7a:38:44: 50:74:99:56:68:57:5a:7a:2a:cf:88:60:5f:81:2f:14:d7:96: 96:88:51:75:c7:23:9e:0f:61:ca:ef:57:6f:4a:46:40:7c:13: f1:a2:ef:96 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEzQTYxMTAvBgNVBAUTKEM0NzU4OTk2MkVEMEQzODkyNjIyQkU1QjdCOEJFRUZF OENFNzg4QTcwHhcNMjYwMzEzMDMyODQ1WhcNMjYwMzIwMDMyODQ1WjAYMRYwFAYD VQQDEw02OWIzODQ2ZC1mNGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyn3jgP6ovf0diloTGqRwt+VLeSqat+DI3peobyDeizUFCwyutV30Za8rsSzi KPOt/mDGg23rJV13yaJXKkrjfnqFhAxFN8Y8R1UuqnNPaPRM9lqq1uYJmAOSCbWK f77ihb4Gb+K2JPQT60Pd6haatKIisF2kyTbSjM1DloDPsJzdtlNU187swMFKfl5w DZd4bH+sUc1qwaLZQoUM6zu3dVGsjs+YRMmySvHgTAISQYZtP4rhZ/rgG6OFTt75 wNgHplN3Ge61NpEfa8xdfTuescucK1eEbFI+MQEyAK4ZKTb9PNyvsth4Fad/7ipk +OFWbtcJGtO6ndXRD6pmeG5EWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMIhP9gx CoZy7h8BkpB9juD8ItkyMB8GA1UdIwQYMBaAFMR1iZYu0NOJJiK+W3uL7v6M54in MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTNBNi84MDc5NEM5QUMw OEMxMUVFQkQ4MDVCMjRDNEY5QUUwMi94SFdKbGk3UTA0a21JcjViZTR2dV9vem5p S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hIV0psaTdRMDRrbUlyNWJlNHZ1X296bmlLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTNBNi84MDc5NEM5QUMwOEMxMUVFQkQ4MDVCMjRDNEY5QUUwMi94SFdKbGk3UTA0 a21JcjViZTR2dV9vem5pS2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXLT1XEhZ3/NxofPaybW53l/h4FgibJbq3DIhQZ9AstA9oWNUvJEuuMIZfsi+ 2NfWzxPGDLFgd4Ic+JtN5bwnWLgx88wBILNaNCrxB6Ay0DTyptq03PlwfJfjW/Gj y2hlPa+rVJSVDAKwr1Lq49FO8Qz9NFBa7WoisIwJ/1J4/+gRtB47Sym0Ud7MVWWh Ns+VLM482SPbQG1m9qab7bdhCJSlR7ICfBAo/aj3XJugQugd6XQb7edPFQUbXSwm xhkJ0i/9ISfc8sg7XJPQflnQNTvtLxfyejhEUHSZVmhXWnoqz4hgX4EvFNeWlohR dccjng9hyu9Xb0pGQHwT8aLvlg== -----END CERTIFICATE-----Generated at Fri Mar 13 12:12:48 2026 by rpki-client