$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: aC5OXlEZseRH0F5eHniPdB6kRDLPtV83MDpA2W4hNV8= Subject key identifier: CC:4E:53:FC:D1:50:C7:EF:3C:72:F1:E2:B8:E7:BA:3E:81:B2:65:2D Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 259A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 259A Signing time: Mon 02 Mar 2026 14:34:02 +0000 Manifest this update: Mon 02 Mar 2026 14:34:01 +0000 Manifest next update: Mon 09 Mar 2026 14:34:01 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: 9mR4FIslcFVM5Nt7oczx/juOlYGJCwXYf4I3hGbfim0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:34:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9626 (0x259a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Validity Not Before: Mar 2 14:34:01 2026 GMT Not After : Mar 9 14:34:01 2026 GMT Subject: CN=69a59fda-2e83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:32:b1:09:2f:19:d3:92:64:75:7f:78:6f:a6: 8d:64:eb:89:2c:0b:3f:59:be:87:f1:39:2a:7a:04: 1c:e2:9e:d9:9b:8f:a3:db:da:d8:8f:aa:2f:b8:3d: b8:b9:c4:52:8e:5d:22:23:96:8f:61:43:ca:1b:f4: 9f:85:f4:57:0c:e3:43:17:6b:06:8b:6a:c4:e9:79: 84:24:16:27:3c:05:27:17:e4:e1:4d:4c:18:81:e8: 19:06:3a:27:b4:95:87:a6:95:bc:28:33:2c:bb:42: d0:6f:6a:ff:ef:a1:ed:f6:7a:7e:8e:36:c4:a6:0c: a4:d6:63:5c:f7:ff:73:f6:dc:cb:e5:d3:bc:e7:fd: 08:56:b7:78:4e:f2:a1:d1:67:69:aa:78:ab:9b:a1: e2:5c:cc:66:31:37:70:9f:bb:21:66:65:76:60:be: 65:27:21:b8:2c:4d:bf:3e:fe:15:f5:a2:6d:7a:34: cd:91:75:56:f4:6b:bb:30:0b:64:ee:80:05:0e:ac: ab:93:f9:b7:97:8a:15:ac:ea:64:4e:92:79:eb:5a: 52:1d:04:d1:00:a4:37:ab:a9:fa:08:93:60:86:dc: 8b:8e:a4:ad:7e:5c:9a:8d:2c:eb:de:6d:16:5b:cd: da:9a:1b:87:87:5e:d4:f6:62:4d:07:30:83:d0:24: 6e:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:4E:53:FC:D1:50:C7:EF:3C:72:F1:E2:B8:E7:BA:3E:81:B2:65:2D X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:29:cc:a6:da:0e:9b:b8:d1:b8:f0:ed:1f:2a:58:a3:aa:4a: 2e:73:2c:6c:3e:ab:18:83:55:38:95:08:4b:64:6d:44:57:af: a4:83:4a:93:d9:e3:b7:3c:b0:25:4e:45:10:35:26:77:19:d3: 27:9b:3e:c3:38:28:2a:b6:b1:c0:ad:58:b9:6e:42:34:fc:0b: 8d:72:c2:97:10:23:04:ae:2d:43:8e:a8:65:63:4c:c2:40:9d: 9f:ba:ca:5b:07:c5:46:7d:41:19:cb:e5:d0:15:a3:29:8c:e5: dd:21:2d:0c:29:7b:b8:40:cb:09:94:63:32:f5:64:43:b3:e1: a6:90:3d:42:09:51:9f:c3:c0:08:9f:8a:6f:68:72:fc:c7:28: 86:c2:1e:97:f4:26:25:31:37:b8:e6:06:1b:8f:27:26:d7:df: 29:94:ab:3b:3f:20:9f:a0:b8:6f:05:cf:46:ad:aa:b6:e8:ea: 3f:4b:a5:72:cc:23:f6:63:d3:45:a4:55:df:a9:6a:5c:12:85: 11:b3:a9:a6:37:11:00:b8:aa:7c:c9:66:6e:cc:74:b1:46:0f: 47:41:f6:08:c8:1f:c6:e4:9b:3a:36:e7:92:0e:f1:60:aa:bb: 42:c9:45:86:86:9b:30:f6:c8:25:7f:de:05:2f:0c:e1:f8:e1: ba:62:e6:79 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjYwMzAyMTQzNDAxWhcNMjYwMzA5MTQzNDAxWjAYMRYwFAYD VQQDEw02OWE1OWZkYS0yZTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjKxCS8Z05JkdX94b6aNZOuJLAs/Wb6H8TkqegQc4p7Zm4+j29rYj6ovuD24 ucRSjl0iI5aPYUPKG/SfhfRXDONDF2sGi2rE6XmEJBYnPAUnF+ThTUwYgegZBjon tJWHppW8KDMsu0LQb2r/76Ht9np+jjbEpgyk1mNc9/9z9tzL5dO85/0IVrd4TvKh 0Wdpqnirm6HiXMxmMTdwn7shZmV2YL5lJyG4LE2/Pv4V9aJtejTNkXVW9Gu7MAtk 7oAFDqyrk/m3l4oVrOpkTpJ561pSHQTRAKQ3q6n6CJNghtyLjqStflyajSzr3m0W W83amhuHh17U9mJNBzCD0CRukQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMxOU/zR UMfvPHLx4rjnuj6BsmUtMB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAACnMptoOm7jRuPDtHypYo6pKLnMsbD6rGINVOJUIS2RtRFevpINKk9njtzyw JU5FEDUmdxnTJ5s+wzgoKraxwK1YuW5CNPwLjXLClxAjBK4tQ46oZWNMwkCdn7rK WwfFRn1BGcvl0BWjKYzl3SEtDCl7uEDLCZRjMvVkQ7PhppA9QglRn8PACJ+Kb2hy /McohsIel/QmJTE3uOYGG48nJtffKZSrOz8gn6C4bwXPRq2qtujqP0ulcswj9mPT RaRV36lqXBKFEbOppjcRALiqfMlmbsx0sUYPR0H2CMgfxuSbOjbnkg7xYKq7QslF hoabMPbIJX/eBS8M4fjhumLmeQ== -----END CERTIFICATE-----Generated at Wed Mar 4 08:29:00 2026 by rpki-client