$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft File: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft (raw, json) Hash identifier: qbjXKzYjwLTrcRVoFfiCwXwzvbNhbeWKrdFOryQ4opY= Subject key identifier: AD:54:DE:E9:3E:C8:DC:08:AE:1B:69:A0:90:CD:55:C9:47:8C:88:CE Authority key identifier: C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 Certificate issuer: /CN=A91E3BF2/serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Certificate serial: 0357 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft Manifest number: 034F Signing time: Sun 05 Apr 2026 00:41:57 +0000 Manifest this update: Sun 05 Apr 2026 00:41:56 +0000 Manifest next update: Sun 12 Apr 2026 00:41:56 +0000 Files and hashes: 1: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl (hash: 6xaHVbSpr0trzLO6mqpduyxSNY7Hah5qDUzN2rrW8/k=) 2: 6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa (hash: OXdwgZN4vaFZ6nWyjvt24Xk4nrgBuF6Vr7LgDqZpHIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:41:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 855 (0x357) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BF2, serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Validity Not Before: Apr 5 00:41:56 2026 GMT Not After : Apr 12 00:41:56 2026 GMT Subject: CN=69d1afd5-1e06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:1b:c4:d4:de:58:09:b1:6e:7a:c2:8a:23:39: bb:05:3c:c0:07:b2:76:1e:ab:70:37:3b:b3:53:33: 29:f5:45:c6:d6:2d:5c:a0:6a:f2:6a:68:91:d3:8e: e5:c9:a5:00:b2:0c:e5:81:fe:55:af:de:fd:af:6c: 0f:c8:b4:e4:4b:cb:fe:a6:66:55:dc:da:83:54:57: 41:38:4d:8b:8c:9c:37:84:a9:9b:3d:3a:b5:a9:8a: 11:2b:dd:af:e4:f0:e9:d8:63:bf:7d:0d:5b:d3:aa: 5a:65:98:d1:c0:6f:47:79:8a:4e:3c:85:cf:fc:54: e0:9d:90:a4:82:a5:44:ac:60:af:41:cf:4a:ce:eb: d2:40:51:97:11:8a:2f:92:2f:81:68:d6:32:64:14: 15:76:5d:40:49:6e:30:b5:9c:db:2c:72:6c:13:3f: 97:72:08:62:42:e6:ec:86:ac:5d:40:a4:4e:6f:32: 52:5c:59:b4:bc:ec:09:6a:81:7f:9a:c1:b4:7a:02: 79:a8:1f:82:d7:d4:e5:8e:f2:aa:12:9c:5c:54:81: 65:38:cd:4b:16:7f:0b:a6:42:57:26:77:2e:48:d0: b1:16:8c:fc:09:a5:65:4e:06:1b:f7:ec:e1:66:e6: b2:4c:83:6f:c9:ee:f8:de:af:a8:af:86:36:05:74: b0:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:54:DE:E9:3E:C8:DC:08:AE:1B:69:A0:90:CD:55:C9:47:8C:88:CE X509v3 Authority Key Identifier: keyid:C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:b4:ee:4a:71:e6:e8:07:9e:01:48:eb:c9:dd:e1:48:a3:35: 0b:5e:6f:d1:12:a1:76:d6:9a:4b:36:03:1c:46:fb:12:32:85: 07:00:27:a6:aa:4a:ec:8c:27:b0:d7:0e:6f:11:b0:55:73:a2: 6a:4c:f6:c4:d9:37:81:05:e7:5a:e3:0e:30:ba:d0:42:93:4d: 00:cd:6e:60:34:03:c8:d1:d1:fb:a6:21:d9:32:5f:f8:83:cf: f3:f2:b0:58:05:e3:1c:6d:80:12:ee:ea:cf:21:d9:a2:41:19: ab:91:9f:2f:dd:d1:8a:94:33:63:45:4d:ad:e1:38:1e:35:ed: d5:33:5e:f0:5c:1f:48:90:64:cb:58:fc:4b:e8:4f:f8:b9:4a: 79:34:46:12:61:5a:48:0b:61:f5:30:4f:07:6f:1b:5f:db:4c: 61:c2:e9:0e:2d:a6:fa:fa:c3:d8:c0:17:06:6f:f8:fd:60:56: 87:59:fe:a0:e5:eb:ce:49:de:55:9d:fb:c0:f6:06:78:55:25: 08:8c:61:a9:58:80:f4:49:03:cd:06:d0:12:7a:9b:bd:fa:e5: 26:4e:55:db:47:6c:b5:a7:d1:fe:38:ac:77:dc:da:47:39:db: 4f:91:a7:50:a7:09:98:ac:28:77:55:74:35:de:a2:5f:14:d6: 0f:53:e7:f5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCRjIxMTAvBgNVBAUTKEM0NzFBNTZFRTk0RjA1QjQzN0MwOUVFRTBGNDQyMDNG QTQ1OTI3MzYwHhcNMjYwNDA1MDA0MTU2WhcNMjYwNDEyMDA0MTU2WjAYMRYwFAYD VQQDEw02OWQxYWZkNS0xZTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1hvE1N5YCbFuesKKIzm7BTzAB7J2HqtwNzuzUzMp9UXG1i1coGryamiR047l yaUAsgzlgf5Vr979r2wPyLTkS8v+pmZV3NqDVFdBOE2LjJw3hKmbPTq1qYoRK92v 5PDp2GO/fQ1b06paZZjRwG9HeYpOPIXP/FTgnZCkgqVErGCvQc9KzuvSQFGXEYov ki+BaNYyZBQVdl1ASW4wtZzbLHJsEz+XcghiQubshqxdQKRObzJSXFm0vOwJaoF/ msG0egJ5qB+C19TljvKqEpxcVIFlOM1LFn8LpkJXJncuSNCxFoz8CaVlTgYb9+zh ZuayTINvye743q+or4Y2BXSwowIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK1U3uk+ yNwIrhtpoJDNVclHjIjOMB8GA1UdIwQYMBaAFMRxpW7pTwW0N8Ce7g9EID+kWSc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JGMi81MDkwOTZBOEY2 QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJiUTN3Sjd1RDBRZ1A2UlpK elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIR2xidWxQQmJRM3dKN3VEMFFnUDZSWkp6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JGMi81MDkwOTZBOEY2QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJi UTN3Sjd1RDBRZ1A2UlpKelkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZbTuSnHm6AeeAUjryd3hSKM1C15v0RKhdtaaSzYDHEb7EjKFBwAnpqpK7Iwn sNcObxGwVXOiakz2xNk3gQXnWuMOMLrQQpNNAM1uYDQDyNHR+6Yh2TJf+IPP8/Kw WAXjHG2AEu7qzyHZokEZq5GfL93RipQzY0VNreE4HjXt1TNe8FwfSJBky1j8S+hP +LlKeTRGEmFaSAth9TBPB28bX9tMYcLpDi2m+vrD2MAXBm/4/WBWh1n+oOXrzkne VZ37wPYGeFUlCIxhqViA9EkDzQbQEnqbvfrlJk5V20dstafR/jisd9zaRznbT5Gn UKcJmKwod1V0Nd6iXxTWD1Pn9Q== -----END CERTIFICATE-----Generated at Mon Apr 6 08:52:00 2026 by rpki-client