$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft File: XcAwMzGJiu_bheTZFABriTdr7-E.mft (raw, json) Hash identifier: PbvaNnNufAEzaFeoFughfEaYlox+ew7B2BIZ5fXVOy0= Subject key identifier: 1B:E7:8B:16:D3:C4:05:8F:DA:BC:75:65:98:87:35:4B:BB:94:53:A1 Authority key identifier: 5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 Certificate issuer: /CN=A91E7BD4/serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Certificate serial: 0709 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft Manifest number: 06FD Signing time: Sat 04 Apr 2026 21:51:08 +0000 Manifest this update: Sat 04 Apr 2026 21:51:07 +0000 Manifest next update: Sat 11 Apr 2026 21:51:07 +0000 Files and hashes: 1: XcAwMzGJiu_bheTZFABriTdr7-E.crl (hash: fiFDpSyfe36rUpZxKSB+qriAHBca1rUuFtHJxHGm3g8=) 2: 81E3F4ACBBDA11ED8FDB4E45C4F9AE02.roa (hash: Pg8G/Pvu/vL6s07U9VvSZMPJr+p68tGkbJJnBYeyeQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:51:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1801 (0x709) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BD4, serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Validity Not Before: Apr 4 21:51:07 2026 GMT Not After : Apr 11 21:51:07 2026 GMT Subject: CN=69d187cb-346f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:62:ce:6d:c4:a8:21:31:77:b6:8e:d4:9f:d5: e9:d6:2c:f9:35:38:66:23:7e:73:0d:24:b3:ec:07: e5:e5:35:3d:14:b6:b9:77:b2:a3:fb:47:a2:cb:04: 3a:bb:3b:44:38:ae:ea:60:15:c3:03:2e:cb:29:f9: e4:de:36:14:c3:cc:25:dc:f4:50:61:78:0a:78:dc: db:da:21:a0:f5:67:cf:0c:f4:c2:1b:43:cf:ff:f0: ed:75:89:c3:86:ff:7a:14:c7:a4:69:77:ea:68:8a: 00:f6:3c:62:38:70:77:62:1c:27:03:3c:45:c9:4f: 02:f0:0c:28:a7:df:4d:d8:43:69:6d:6f:4d:31:c4: f8:fa:dc:46:58:78:2a:4b:e2:e0:52:14:38:b1:67: e6:b8:97:e0:d0:25:41:45:d6:f0:bf:30:a3:47:ee: 0a:ea:0d:ab:97:69:d4:d0:35:04:c5:e8:8b:d7:08: db:88:07:7f:26:56:ea:0d:09:3b:f7:5e:6f:4d:24: e5:2e:7f:00:b1:82:d6:19:4a:32:ab:21:7e:d7:bc: cd:38:4a:30:47:2c:fa:6b:d0:42:84:4f:c9:40:35: 54:48:f4:6e:74:7f:1d:a3:c5:b1:83:7c:d9:fa:ec: d7:16:d6:ee:3a:76:09:96:35:62:fa:ad:b5:22:08: 83:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:E7:8B:16:D3:C4:05:8F:DA:BC:75:65:98:87:35:4B:BB:94:53:A1 X509v3 Authority Key Identifier: keyid:5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:04:13:c0:90:09:be:d0:b3:d4:e6:3f:1a:64:da:05:f2:0b: ea:56:a1:dc:6e:42:b0:36:cc:c0:e7:26:e5:44:b9:bf:da:3b: e8:9d:b8:21:c1:13:3a:ba:ca:a7:f7:e3:18:09:75:c1:fd:52: ff:bb:1a:92:07:b2:85:f4:34:2d:0c:06:0d:21:1c:3c:27:3e: 8c:c4:1f:f9:a2:5c:e4:af:e2:09:c8:32:a5:a9:4a:8a:92:ca: 26:43:53:ba:ac:37:e6:a1:42:f1:f3:25:6c:5c:27:5c:7e:2a: 47:d7:c8:c7:40:6e:b8:9b:85:9e:f5:8d:cc:b9:96:98:3a:e2: e2:bd:e1:8e:49:94:3e:fd:2e:ee:e9:a0:ee:5d:30:05:ea:49: 4a:99:41:5a:bc:5b:38:b5:46:68:ec:c9:69:86:3e:b0:b1:cc: 07:9e:0c:ab:86:cd:10:74:b0:3e:31:f0:28:04:c8:24:c0:4d: 63:fe:30:b3:63:49:7c:2a:24:68:f4:ab:33:f9:5e:d2:50:77: d4:d9:d0:43:5b:6f:38:a0:a4:53:26:7e:41:5d:7d:ff:0a:c0: 5b:9c:f5:64:4e:ef:b5:34:e9:b9:fe:ef:ca:e4:28:63:45:6e: a6:a4:45:37:02:38:63:61:61:58:86:26:ab:a8:7c:07:6c:e4: 93:4a:26:7a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCRDQxMTAvBgNVBAUTKDVEQzAzMDMzMzE4OThBRUZEQjg1RTREOTE0MDA2Qjg5 Mzc2QkVGRTEwHhcNMjYwNDA0MjE1MTA3WhcNMjYwNDExMjE1MTA3WjAYMRYwFAYD VQQDEw02OWQxODdjYi0zNDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo2LObcSoITF3to7Un9Xp1iz5NThmI35zDSSz7Afl5TU9FLa5d7Kj+0eiywQ6 uztEOK7qYBXDAy7LKfnk3jYUw8wl3PRQYXgKeNzb2iGg9WfPDPTCG0PP//DtdYnD hv96FMekaXfqaIoA9jxiOHB3YhwnAzxFyU8C8Awop99N2ENpbW9NMcT4+txGWHgq S+LgUhQ4sWfmuJfg0CVBRdbwvzCjR+4K6g2rl2nU0DUExeiL1wjbiAd/JlbqDQk7 915vTSTlLn8AsYLWGUoyqyF+17zNOEowRyz6a9BChE/JQDVUSPRudH8do8Wxg3zZ +uzXFtbuOnYJljVi+q21IgiDtwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBvnixbT xAWP2rx1ZZiHNUu7lFOhMB8GA1UdIwQYMBaAFF3AMDMxiYrv24Xk2RQAa4k3a+/h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JENC80RTg3QTQ2QTg2 QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1X2JoZVRaRkFCcmlUZHI3 LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjQXdNekdKaXVfYmhlVFpGQUJyaVRkcjctRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JENC80RTg3QTQ2QTg2QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1 X2JoZVRaRkFCcmlUZHI3LUUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACQQTwJAJvtCz1OY/GmTaBfIL6lah3G5CsDbMwOcm5US5v9o76J24IcETOrrK p/fjGAl1wf1S/7sakgeyhfQ0LQwGDSEcPCc+jMQf+aJc5K/iCcgypalKipLKJkNT uqw35qFC8fMlbFwnXH4qR9fIx0BuuJuFnvWNzLmWmDri4r3hjkmUPv0u7umg7l0w BepJSplBWrxbOLVGaOzJaYY+sLHMB54Mq4bNEHSwPjHwKATIJMBNY/4ws2NJfCok aPSrM/le0lB31NnQQ1tvOKCkUyZ+QV19/wrAW5z1ZE7vtTTpuf7vyuQoY0VupqRF NwI4Y2FhWIYmq6h8B2zkk0omeg== -----END CERTIFICATE-----Generated at Mon Apr 6 08:51:50 2026 by rpki-client