$ rpki-client -vvf rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft File: xGIlbhG2PuqR1z02Q867tRojUK8.mft (raw, json) Hash identifier: tUScu0a+5zcQxx4E6GUi6WoSYyFHdnWfFKo3zsIZPkk= Subject key identifier: 3B:77:B0:11:CF:F7:AA:E6:87:CE:4D:7B:4B:42:03:D8:A2:A0:AB:60 Authority key identifier: C4:62:25:6E:11:B6:3E:EA:91:D7:3D:36:43:CE:BB:B5:1A:23:50:AF Certificate issuer: /CN=A91A210A/serialNumber=C462256E11B63EEA91D73D3643CEBBB51A2350AF Certificate serial: 10EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGIlbhG2PuqR1z02Q867tRojUK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft Manifest number: 10DE Signing time: Fri 06 Mar 2026 17:07:53 +0000 Manifest this update: Fri 06 Mar 2026 17:07:52 +0000 Manifest next update: Fri 13 Mar 2026 17:07:52 +0000 Files and hashes: 1: xGIlbhG2PuqR1z02Q867tRojUK8.crl (hash: P00Sb4j46ZnvrMZaK1AOswP1AxRu0x0sgDazBTuIA6Y=) 2: 691023063A8311E99AF5572DC4F9AE02.roa (hash: 2eE+CDRlSHY5Ior8e4vYqF46aXCqPlrmKLCnk7wj7fQ=) 3: 797BF786FB2C11EFA405F334C4F9AE02.roa (hash: HFvIVd/rWVPzXXKKiOWON2cvnwjOeJoH4rrOAqA8YGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.crl rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGIlbhG2PuqR1z02Q867tRojUK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:07:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4332 (0x10ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A210A, serialNumber=C462256E11B63EEA91D73D3643CEBBB51A2350AF Validity Not Before: Mar 6 17:07:52 2026 GMT Not After : Mar 13 17:07:52 2026 GMT Subject: CN=69ab09e9-2a24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f3:0f:8f:3b:82:db:6b:d5:39:1a:93:62:cb: 93:8b:3d:37:34:61:3d:89:68:b8:1d:4f:b6:5b:ef: b6:7e:48:37:5c:38:33:34:f5:06:03:2e:05:00:e3: e2:14:e2:d8:b5:5e:cd:a2:93:ea:cf:56:f1:02:de: 4c:f6:92:65:94:c6:39:1f:96:32:3d:22:3f:e0:68: e1:8a:20:6d:52:4b:92:6a:64:46:c0:d2:19:67:35: 14:86:4a:a0:2d:ca:e2:3a:b2:5d:6c:65:0d:8f:07: a5:40:37:e4:42:fd:48:33:4a:91:4f:49:cc:8b:38: 92:27:9c:c2:2f:7b:85:0f:ef:52:a7:ce:1f:6c:eb: 08:dc:a9:46:aa:95:6d:ce:86:ed:de:8c:23:53:7e: bd:88:d2:e1:7e:b1:67:f2:46:f4:ec:9d:b1:1f:35: b1:d9:b0:db:52:b8:f1:2e:64:da:c0:e9:6e:58:ec: a2:ff:82:0e:08:97:df:87:9d:eb:f2:b8:f7:12:5b: 0c:79:fb:a0:02:fa:2d:c0:fe:0b:70:be:51:60:74: 78:8d:83:3a:2e:d6:c3:16:49:68:41:a0:e6:9e:83: 45:1b:ac:68:34:3a:d9:34:57:97:4f:62:6d:db:ea: 53:2c:ac:1c:06:7c:6a:48:b7:a6:62:b8:08:11:7e: 07:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:77:B0:11:CF:F7:AA:E6:87:CE:4D:7B:4B:42:03:D8:A2:A0:AB:60 X509v3 Authority Key Identifier: keyid:C4:62:25:6E:11:B6:3E:EA:91:D7:3D:36:43:CE:BB:B5:1A:23:50:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGIlbhG2PuqR1z02Q867tRojUK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:e9:ba:7d:d8:f4:93:f8:c7:d3:56:1c:6c:90:62:8f:82:71: df:ae:40:92:b8:ac:ae:cc:ac:81:9c:e6:da:c3:28:6f:a6:ca: 8f:99:99:1e:e5:87:f1:32:58:c8:5e:4a:e3:a6:63:d3:de:ee: 56:20:f3:93:65:78:81:c2:76:8a:fe:7f:d6:c8:0f:77:69:1f: d2:15:de:a2:6c:12:be:56:8c:55:02:bb:45:0d:cb:f5:00:f6: 41:db:f6:83:29:90:f3:a8:67:95:cf:27:73:1d:e9:f6:dc:e3: d3:c1:6a:12:ae:60:d1:a2:41:3b:b1:e1:9f:b6:c2:6f:9a:9e: 05:13:44:a0:17:0c:12:c4:cc:c9:62:e1:c8:a2:a3:2c:4b:7f: 1d:e6:6d:62:5a:22:cd:7d:1b:d6:56:6c:c4:e7:0d:12:30:80: d0:d2:a1:79:2c:e2:d3:09:d2:2e:64:89:71:97:26:29:a9:e7: b6:3d:29:1c:f2:b6:fb:cf:63:64:1c:0a:7f:f1:36:b1:e5:cf: d8:3e:ca:16:d3:ed:67:60:be:d1:67:0f:6c:df:16:62:2d:b2: 2b:37:14:76:e6:93:77:1c:6f:77:2c:4b:30:b6:79:a0:00:e6: a6:fb:17:5d:5a:ff:c6:22:7c:7a:99:3e:be:66:1e:5e:c7:81: 98:58:a2:d1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTIxMEExMTAvBgNVBAUTKEM0NjIyNTZFMTFCNjNFRUE5MUQ3M0QzNjQzQ0VCQkI1 MUEyMzUwQUYwHhcNMjYwMzA2MTcwNzUyWhcNMjYwMzEzMTcwNzUyWjAYMRYwFAYD VQQDEw02OWFiMDllOS0yYTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PMPjzuC22vVORqTYsuTiz03NGE9iWi4HU+2W++2fkg3XDgzNPUGAy4FAOPi FOLYtV7NopPqz1bxAt5M9pJllMY5H5YyPSI/4GjhiiBtUkuSamRGwNIZZzUUhkqg LcriOrJdbGUNjwelQDfkQv1IM0qRT0nMiziSJ5zCL3uFD+9Sp84fbOsI3KlGqpVt zobt3owjU369iNLhfrFn8kb07J2xHzWx2bDbUrjxLmTawOluWOyi/4IOCJffh53r 8rj3ElsMefugAvotwP4LcL5RYHR4jYM6LtbDFkloQaDmnoNFG6xoNDrZNFeXT2Jt 2+pTLKwcBnxqSLemYrgIEX4HGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDt3sBHP 96rmh85Ne0tCA9iioKtgMB8GA1UdIwQYMBaAFMRiJW4Rtj7qkdc9NkPOu7UaI1Cv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjEwQS9BNTM4QURCODNB ODIxMUU5QTRDMjgxMkNDNEY5QUUwMi94R0lsYmhHMlB1cVIxejAyUTg2N3RSb2pV SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHSWxiaEcyUHVxUjF6MDJRODY3dFJvalVLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjEwQS9BNTM4QURCODNBODIxMUU5QTRDMjgxMkNDNEY5QUUwMi94R0lsYmhHMlB1 cVIxejAyUTg2N3RSb2pVSzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYem6fdj0k/jH01YcbJBij4Jx365AkrisrsysgZzm2sMob6bKj5mZHuWH8TJY yF5K46Zj097uViDzk2V4gcJ2iv5/1sgPd2kf0hXeomwSvlaMVQK7RQ3L9QD2Qdv2 gymQ86hnlc8ncx3p9tzj08FqEq5g0aJBO7Hhn7bCb5qeBRNEoBcMEsTMyWLhyKKj LEt/HeZtYloizX0b1lZsxOcNEjCA0NKheSzi0wnSLmSJcZcmKanntj0pHPK2+89j ZBwKf/E2seXP2D7KFtPtZ2C+0WcPbN8WYi2yKzcUduaTdxxvdyxLMLZ5oADmpvsX XVr/xiJ8epk+vmYeXseBmFii0Q== -----END CERTIFICATE-----Generated at Sun Mar 8 08:26:02 2026 by rpki-client