$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft File: xhVwDXyIi-a6dQrezZTYhkaC42E.mft (raw, json) Hash identifier: FL5i1GtI/YJ0x0bd4l/rBIY5olej9iPZLhIrhZmN+FM= Subject key identifier: AB:2A:C4:4B:2F:FC:24:9E:71:40:53:A2:26:EE:B1:F3:6D:28:DF:96 Authority key identifier: C6:15:70:0D:7C:88:8B:E6:BA:75:0A:DE:CD:94:D8:86:46:82:E3:61 Certificate issuer: /CN=A91D0C14/serialNumber=C615700D7C888BE6BA750ADECD94D8864682E361 Certificate serial: 011F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft Manifest number: 011D Signing time: Tue 03 Mar 2026 01:41:06 +0000 Manifest this update: Tue 03 Mar 2026 01:41:06 +0000 Manifest next update: Tue 10 Mar 2026 01:41:06 +0000 Files and hashes: 1: xhVwDXyIi-a6dQrezZTYhkaC42E.crl (hash: h2hzLMCL9WanT1oaha9eLUijugBM6RxB6gGKEFad7S0=) 2: 6C3911AC316A11F090B23283C4F9AE02.roa (hash: BKkwn8f0sraXs+4i8iF1ns+62U78NeM1dUZaJxumAOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.crl rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 01:41:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C14, serialNumber=C615700D7C888BE6BA750ADECD94D8864682E361 Validity Not Before: Mar 3 01:41:06 2026 GMT Not After : Mar 10 01:41:06 2026 GMT Subject: CN=69a63c32-8dec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:08:c8:11:5d:5c:48:a7:a9:6e:54:8c:c3:bd: 34:9b:a4:6f:b2:53:ee:1c:cb:1c:00:30:e9:4a:fc: 2f:57:b0:6f:d0:17:d9:cd:59:e9:f5:e1:59:31:4e: 63:17:f1:6c:e2:aa:f1:00:4d:30:ed:e4:96:75:2f: 90:29:24:36:22:4f:81:bb:db:84:2b:dd:85:50:cd: 33:6f:b1:07:0d:45:30:9b:20:e5:79:be:fc:86:40: 18:62:bc:a4:10:58:8d:74:17:8d:a2:66:a9:27:fc: 74:5a:65:45:aa:2a:4c:00:c8:46:02:91:61:c7:2d: 2c:67:c9:bf:ba:c1:3a:c4:85:17:5d:27:2d:4b:8c: de:1f:69:fd:b0:af:ca:65:78:38:4f:db:2e:bd:7f: d3:50:96:3c:0c:28:45:11:08:90:13:e6:86:86:ce: dd:8d:7d:eb:8c:db:d6:24:e1:88:81:46:f8:92:12: 68:87:62:ff:76:8f:ce:38:15:01:15:95:89:f3:b6: e9:94:d7:70:89:98:0d:9c:39:7b:c8:2f:5d:4c:cf: 64:fd:ef:b8:ba:63:53:06:14:25:96:f1:d1:ba:22: 7d:4d:8d:2a:68:c5:6d:5f:6a:cd:a1:1b:1c:49:88: 48:9a:38:94:e8:2b:03:d6:66:b7:77:72:7e:63:98: 58:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:2A:C4:4B:2F:FC:24:9E:71:40:53:A2:26:EE:B1:F3:6D:28:DF:96 X509v3 Authority Key Identifier: keyid:C6:15:70:0D:7C:88:8B:E6:BA:75:0A:DE:CD:94:D8:86:46:82:E3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:74:8a:6d:6f:fe:72:1b:ed:85:23:f7:cb:86:fc:7e:39:1a: b0:9f:44:d7:bc:6e:15:54:c2:8d:88:04:b7:70:d9:65:4b:9a: 84:14:f3:48:c2:45:3e:f7:6b:e9:ad:05:7b:4a:34:10:a0:f4: 9d:f9:96:8e:dc:ef:d9:77:c8:7c:44:24:77:1f:be:05:28:27: ea:93:2a:f6:fe:a1:67:ad:93:93:6e:b8:49:d1:4f:79:8a:1f: e0:a2:73:c4:ad:82:bd:00:16:89:21:2c:9d:c5:4a:c9:3e:33: f0:74:b5:0a:ed:08:cb:7d:c6:5c:44:2a:6c:d5:a9:9a:d7:43: 26:0b:48:e2:81:9c:2f:cd:a2:f9:14:9a:8f:d5:88:d6:1e:8b: 8b:e5:35:3a:f4:12:5e:47:ab:6c:9d:cf:b1:d4:ea:34:95:8f: 8d:01:0b:48:5e:6b:34:51:ac:b3:f2:6d:6b:48:94:3d:a5:c1: 79:84:60:98:00:2c:d5:48:b5:56:7c:7f:29:48:fc:29:9d:33: 1d:7c:21:51:48:67:e9:a8:1d:f8:62:ac:65:40:91:17:e1:9e: 6c:4b:97:87:49:43:ce:9f:ac:b6:45:ff:da:37:c8:44:eb:21: 4a:50:9e:45:c2:34:f4:36:e5:b8:25:83:55:bb:83:77:0d:33: 03:21:ff:8c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDMTQxMTAvBgNVBAUTKEM2MTU3MDBEN0M4ODhCRTZCQTc1MEFERUNEOTREODg2 NDY4MkUzNjEwHhcNMjYwMzAzMDE0MTA2WhcNMjYwMzEwMDE0MTA2WjAYMRYwFAYD VQQDEw02OWE2M2MzMi04ZGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQjIEV1cSKepblSMw700m6RvslPuHMscADDpSvwvV7Bv0BfZzVnp9eFZMU5j F/Fs4qrxAE0w7eSWdS+QKSQ2Ik+Bu9uEK92FUM0zb7EHDUUwmyDleb78hkAYYryk EFiNdBeNomapJ/x0WmVFqipMAMhGApFhxy0sZ8m/usE6xIUXXSctS4zeH2n9sK/K ZXg4T9suvX/TUJY8DChFEQiQE+aGhs7djX3rjNvWJOGIgUb4khJoh2L/do/OOBUB FZWJ87bplNdwiZgNnDl7yC9dTM9k/e+4umNTBhQllvHRuiJ9TY0qaMVtX2rNoRsc SYhImjiU6CsD1ma3d3J+Y5hYgQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKsqxEsv /CSecUBToibusfNtKN+WMB8GA1UdIwQYMBaAFMYVcA18iIvmunUK3s2U2IZGguNh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEMxNC84RjMzOTk5NjZC RkIxMUVGODQ2MzI2MzVDNEY5QUUwMi94aFZ3RFh5SWktYTZkUXJlelpUWWhrYUM0 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hoVndEWHlJaS1hNmRRcmV6WlRZaGthQzQyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEMxNC84RjMzOTk5NjZCRkIxMUVGODQ2MzI2MzVDNEY5QUUwMi94aFZ3RFh5SWkt YTZkUXJlelpUWWhrYUM0MkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJXSKbW/+chvthSP3y4b8fjkasJ9E17xuFVTCjYgEt3DZZUuahBTzSMJFPvdr 6a0Fe0o0EKD0nfmWjtzv2XfIfEQkdx++BSgn6pMq9v6hZ62Tk264SdFPeYof4KJz xK2CvQAWiSEsncVKyT4z8HS1Cu0Iy33GXEQqbNWpmtdDJgtI4oGcL82i+RSaj9WI 1h6Li+U1OvQSXkerbJ3PsdTqNJWPjQELSF5rNFGss/Jta0iUPaXBeYRgmAAs1Ui1 Vnx/KUj8KZ0zHXwhUUhn6agd+GKsZUCRF+GebEuXh0lDzp+stkX/2jfIROshSlCe RcI09DbluCWDVbuDdw0zAyH/jA== -----END CERTIFICATE-----Generated at Wed Mar 4 08:41:20 2026 by rpki-client