$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft File: XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft (raw, json) Hash identifier: VxpHC6qqScyq8/T4pyDvRg5tHnHFO6F9fxeiLGrpy3o= Subject key identifier: AE:43:42:95:07:96:B0:6E:EB:85:C0:B5:5F:1D:4C:2D:E6:F7:8C:5B Authority key identifier: 5D:4F:41:2A:E4:80:10:FE:54:87:F0:18:F1:71:A9:C6:46:9D:9A:C5 Certificate issuer: /CN=A91BCA5B/serialNumber=5D4F412AE48010FE5487F018F171A9C6469D9AC5 Certificate serial: 3F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft Manifest number: 3C Signing time: Tue 03 Mar 2026 08:07:07 +0000 Manifest this update: Tue 03 Mar 2026 08:07:07 +0000 Manifest next update: Tue 10 Mar 2026 08:07:07 +0000 Files and hashes: 1: XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl (hash: DI8/ioHp2613sVY3hm3xVZrRRLOrXTosHjlTOgcXETI=) 2: AF2E6AE2C03B11F09EE7012FC4F9AE02.roa (hash: X+3wJMfk1XJRp+yqbhiP7HWaocFMU1AXSgdZNrsdlvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 08:07:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCA5B, serialNumber=5D4F412AE48010FE5487F018F171A9C6469D9AC5 Validity Not Before: Mar 3 08:07:07 2026 GMT Not After : Mar 10 08:07:07 2026 GMT Subject: CN=69a696ab-56d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9a:fa:2f:71:cf:e5:ed:c1:0d:1a:7a:7d:e2: 6c:1c:5c:fc:0b:19:7e:bc:a8:d9:94:0d:04:ba:e3: 4e:2d:74:28:5c:65:58:8a:59:04:99:b6:11:58:21: 8b:27:23:c3:6b:7a:c9:ec:4d:f3:3f:17:df:7f:00: a3:ff:b3:06:67:fc:fc:c1:8d:00:a1:08:fc:b1:ba: 5b:50:77:2a:47:d3:b5:ee:0d:d6:61:cb:e6:72:19: b3:6b:10:e2:a8:96:d0:83:6a:a9:57:8a:98:f9:ef: 86:38:6b:4c:8f:9d:4b:1a:9f:19:e5:a1:ce:9e:e6: 38:8d:cd:48:3b:a3:9a:f9:d4:8e:8f:b8:07:ff:78: 2f:7d:ed:39:cf:93:94:c4:04:b9:a2:7d:1b:69:43: 39:f0:c9:34:83:6f:d6:1b:c0:7e:a1:fb:3f:c8:cc: e9:35:11:72:fc:ee:8e:b2:6e:8b:04:55:08:80:79: 69:5f:c1:f1:15:2e:c4:7d:81:ce:36:a0:8b:98:50: 2c:8d:3d:23:84:ad:2f:f6:91:e4:c1:f0:9c:fd:b4: 79:29:59:2a:ce:20:dc:8f:aa:5f:33:37:91:de:05: e5:7c:d1:9e:5b:ef:38:6c:f7:48:5d:98:66:3b:31: 4b:c3:50:ca:51:47:b4:23:92:8d:2c:1c:20:39:b1: 3b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:43:42:95:07:96:B0:6E:EB:85:C0:B5:5F:1D:4C:2D:E6:F7:8C:5B X509v3 Authority Key Identifier: keyid:5D:4F:41:2A:E4:80:10:FE:54:87:F0:18:F1:71:A9:C6:46:9D:9A:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:76:7f:a2:f7:29:f6:10:8e:db:e1:ee:41:f9:f9:f7:d9:d2: 38:fc:6b:ea:85:73:f6:0e:d7:26:a5:b9:0d:3d:92:b9:31:c0: ce:8b:08:a9:c4:ce:ee:5c:7b:7d:db:dd:2f:4a:16:88:e8:4f: 92:4b:2b:70:0d:e5:2f:f4:87:b0:8a:94:ea:c6:f2:e6:0c:21: ae:2f:0f:ba:90:16:0b:3b:77:3f:49:ce:82:73:08:56:99:3f: 61:af:dd:17:4d:35:0e:e7:14:1b:6e:f9:a1:2d:7e:a3:0d:34: 8d:d9:38:e4:0b:35:c0:d4:3d:71:4d:89:6b:1a:49:ea:ca:bd: c0:99:71:9d:9e:d9:c9:a1:60:41:9b:23:99:6c:86:68:70:9f: 8f:38:b1:f6:d6:d2:c9:62:aa:a8:46:1c:30:c1:a4:d2:fa:8f: 71:dd:d1:44:49:72:d6:23:34:06:08:8a:db:90:b9:01:3d:1e: cb:d2:82:27:b5:2a:64:75:a3:bd:56:92:d0:2b:d7:86:fb:53: fd:52:1e:a7:45:42:e8:46:ec:4b:48:e8:22:ab:32:54:3d:f6: f5:3d:df:5d:8e:e3:dd:68:c3:dd:c0:cb:1d:92:61:6b:ab:9a: 57:52:d5:01:51:69:0d:24:68:9d:61:0f:20:0d:91:d1:45:a0: ca:08:31:b9 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC Q0E1QjExMC8GA1UEBRMoNUQ0RjQxMkFFNDgwMTBGRTU0ODdGMDE4RjE3MUE5QzY0 NjlEOUFDNTAeFw0yNjAzMDMwODA3MDdaFw0yNjAzMTAwODA3MDdaMBgxFjAUBgNV BAMTDTY5YTY5NmFiLTU2ZDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQComvovcc/l7cENGnp94mwcXPwLGX68qNmUDQS6404tdChcZViKWQSZthFYIYsn I8NresnsTfM/F99/AKP/swZn/PzBjQChCPyxultQdypH07XuDdZhy+ZyGbNrEOKo ltCDaqlXipj574Y4a0yPnUsanxnloc6e5jiNzUg7o5r51I6PuAf/eC997TnPk5TE BLmifRtpQznwyTSDb9YbwH6h+z/IzOk1EXL87o6ybosEVQiAeWlfwfEVLsR9gc42 oIuYUCyNPSOErS/2keTB8Jz9tHkpWSrOINyPql8zN5HeBeV80Z5b7zhs90hdmGY7 MUvDUMpRR7Qjko0sHCA5sTtHAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUrkNClQeW sG7rhcC1Xx1MLeb3jFswHwYDVR0jBBgwFoAUXU9BKuSAEP5Uh/AY8XGpxkadmsUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDQTVCL0QyNUQ4NjhFQzAz QTExRjA4OEEzNDYyQ0M0RjlBRTAyL1hVOUJLdVNBRVA1VWhfQVk4WEdweGthZG1z VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWFU5Qkt1U0FFUDVVaF9BWThYR3B4a2FkbXNVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJD QTVCL0QyNUQ4NjhFQzAzQTExRjA4OEEzNDYyQ0M0RjlBRTAyL1hVOUJLdVNBRVA1 VWhfQVk4WEdweGthZG1zVS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAfdn+i9yn2EI7b4e5B+fn32dI4/GvqhXP2DtcmpbkNPZK5McDOiwipxM7uXHt9 290vShaI6E+SSytwDeUv9IewipTqxvLmDCGuLw+6kBYLO3c/Sc6CcwhWmT9hr90X TTUO5xQbbvmhLX6jDTSN2TjkCzXA1D1xTYlrGknqyr3AmXGdntnJoWBBmyOZbIZo cJ+POLH21tLJYqqoRhwwwaTS+o9x3dFESXLWIzQGCIrbkLkBPR7L0oIntSpkdaO9 VpLQK9eG+1P9Uh6nRULoRuxLSOgiqzJUPfb1Pd9djuPdaMPdwMsdkmFrq5pXUtUB UWkNJGidYQ8gDZHRRaDKCDG5 -----END CERTIFICATE-----Generated at Wed Mar 4 08:42:48 2026 by rpki-client