$ rpki-client -vvf rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft File: XDlbosoKv2WIhyaHTHgktpt4mZU.mft (raw, json) Hash identifier: 4qXKQlcfr9jIB3r1eFuzwwRO1/AtQXFEEiR6DiVovgw= Subject key identifier: D9:68:4F:6B:CF:08:79:22:08:AC:C1:73:F0:86:EB:2D:DE:0F:5E:B6 Authority key identifier: 5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 Certificate issuer: /CN=A91E66E5/serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Certificate serial: 0EDA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft Manifest number: 0ECC Signing time: Fri 06 Mar 2026 17:28:05 +0000 Manifest this update: Fri 06 Mar 2026 17:28:04 +0000 Manifest next update: Fri 13 Mar 2026 17:28:04 +0000 Files and hashes: 1: XDlbosoKv2WIhyaHTHgktpt4mZU.crl (hash: 4uLnS57C3vTzhG/I19s70iHjF32tM2ZuzCB05dORNtI=) 2: AECDA1B0448F11EDACC30815C4F9AE02.roa (hash: FqhmTiuHqY8gw1t5J7HJvzNjKMgTbM9279JGx7rvFLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:28:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3802 (0xeda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E66E5, serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Validity Not Before: Mar 6 17:28:04 2026 GMT Not After : Mar 13 17:28:04 2026 GMT Subject: CN=69ab0ea5-18d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ed:df:da:82:6a:83:2d:e4:9e:8e:42:ec:cb: 1c:c5:19:7f:16:c7:fd:64:8f:45:a3:19:87:cb:b2: 4f:74:f3:4f:c0:6a:9b:d0:14:40:8a:e4:e4:17:26: 14:34:30:05:6d:8a:2f:30:b1:0c:ad:17:b6:88:40: f4:6f:76:66:3b:5e:e6:11:6e:ad:21:06:54:e4:11: 89:89:03:8d:b9:44:5b:b0:15:04:51:c5:f1:09:45: cf:7b:33:e6:02:ba:7b:a9:82:2e:a0:f2:35:f0:51: 79:9f:28:48:d8:de:b9:73:19:31:01:8b:64:70:96: d8:3e:df:5c:95:47:d2:5e:f5:83:d3:a2:62:75:9d: 15:cd:e6:20:76:0c:32:2a:87:9e:53:90:3a:83:66: be:02:49:cc:fa:01:65:9d:2b:b6:56:c5:51:bd:88: 5c:d0:d7:49:e0:81:1e:d9:73:08:3a:e1:1d:33:ce: 75:8b:a8:36:8f:df:a9:89:e4:ec:27:83:d7:f9:88: 40:f7:d2:9f:a6:63:2a:1c:b7:57:52:18:5e:c2:87: 09:92:7d:8a:96:6c:39:fe:f0:bb:2b:ed:60:3c:23: 3a:80:a0:45:10:b5:ff:bf:24:3f:c8:6a:80:b3:9c: 6b:36:11:5d:18:f6:9b:3a:44:09:b9:9c:94:82:9c: ce:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:68:4F:6B:CF:08:79:22:08:AC:C1:73:F0:86:EB:2D:DE:0F:5E:B6 X509v3 Authority Key Identifier: keyid:5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:64:9f:66:e9:b7:52:d5:f1:80:2e:31:4d:a4:9c:42:85:94: 61:59:f1:5e:63:27:01:c7:8a:2c:60:39:f2:b3:ad:39:6d:0f: 22:89:69:b3:3b:00:68:5d:03:55:c7:33:f3:ca:15:91:c0:96: 02:47:0b:cf:e5:0c:72:7b:d6:3e:95:95:2b:ab:4b:ad:fa:12: 04:ef:9a:d8:4d:3b:1f:29:6b:87:ee:80:0e:df:d6:19:2c:74: b2:59:b2:5f:ee:15:ca:a6:39:d5:d7:6c:79:42:6d:46:71:9d: 6b:10:a8:0c:be:01:29:e1:be:6c:fe:06:e2:b3:5e:17:53:31: f7:85:dd:00:fd:24:d3:35:a6:44:01:23:c3:78:c0:1d:3f:c6: c1:04:5a:fc:fa:f1:1c:f8:77:63:c6:2e:01:a3:b1:4a:78:bc: a3:e7:44:44:90:ba:54:21:27:cc:c3:97:54:7d:5e:b4:f7:a3: 16:4b:93:89:93:8a:d5:e3:2e:6b:c0:69:90:5c:d6:34:4f:b6: 31:bd:24:78:67:16:a5:bd:6d:19:8d:3e:06:0c:31:6e:5e:fc: 46:1f:f3:c8:79:71:c2:50:b5:20:0d:78:40:3b:4d:1e:d8:0c: 21:7f:ed:1f:b8:26:a6:10:21:fa:12:a6:0d:7a:88:11:00:ab: f1:5a:a1:1a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY2RTUxMTAvBgNVBAUTKDVDMzk1QkEyQ0EwQUJGNjU4ODg3MjY4NzRDNzgyNEI2 OUI3ODk5OTUwHhcNMjYwMzA2MTcyODA0WhcNMjYwMzEzMTcyODA0WjAYMRYwFAYD VQQDEw02OWFiMGVhNS0xOGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxu3f2oJqgy3kno5C7MscxRl/Fsf9ZI9FoxmHy7JPdPNPwGqb0BRAiuTkFyYU NDAFbYovMLEMrRe2iED0b3ZmO17mEW6tIQZU5BGJiQONuURbsBUEUcXxCUXPezPm Arp7qYIuoPI18FF5nyhI2N65cxkxAYtkcJbYPt9clUfSXvWD06JidZ0VzeYgdgwy KoeeU5A6g2a+AknM+gFlnSu2VsVRvYhc0NdJ4IEe2XMIOuEdM851i6g2j9+pieTs J4PX+YhA99KfpmMqHLdXUhhewocJkn2Klmw5/vC7K+1gPCM6gKBFELX/vyQ/yGqA s5xrNhFdGPabOkQJuZyUgpzOoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNloT2vP CHkiCKzBc/CG6y3eD162MB8GA1UdIwQYMBaAFFw5W6LKCr9liIcmh0x4JLabeJmV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjZFNS81NjQzMDU4NkEy NzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3YyV0loeWFIVEhna3RwdDRt WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEbGJvc29LdjJXSWh5YUhUSGdrdHB0NG1aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjZFNS81NjQzMDU4NkEyNzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3Yy V0loeWFIVEhna3RwdDRtWlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAA2SfZum3UtXxgC4xTaScQoWUYVnxXmMnAceKLGA58rOtOW0PIolpszsAaF0D Vccz88oVkcCWAkcLz+UMcnvWPpWVK6tLrfoSBO+a2E07Hylrh+6ADt/WGSx0slmy X+4VyqY51ddseUJtRnGdaxCoDL4BKeG+bP4G4rNeF1Mx94XdAP0k0zWmRAEjw3jA HT/GwQRa/PrxHPh3Y8YuAaOxSni8o+dERJC6VCEnzMOXVH1etPejFkuTiZOK1eMu a8BpkFzWNE+2Mb0keGcWpb1tGY0+Bgwxbl78Rh/zyHlxwlC1IA14QDtNHtgMIX/t H7gmphAh+hKmDXqIEQCr8VqhGg== -----END CERTIFICATE-----Generated at Sat Mar 7 22:58:14 2026 by rpki-client