$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft File: XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft (raw, json) Hash identifier: WjnFDBzHnOjt4ZrKSpg1sNTrxXZ/3kCDYOMoabvQNNo= Subject key identifier: 3B:FE:79:A1:C8:E2:56:53:3A:23:3B:7B:8A:73:14:B7:A6:0E:E0:E6 Authority key identifier: 5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F Certificate issuer: /CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Certificate serial: 036D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft Manifest number: 0365 Signing time: Sun 05 Apr 2026 00:40:02 +0000 Manifest this update: Sun 05 Apr 2026 00:40:02 +0000 Manifest next update: Sun 12 Apr 2026 00:40:02 +0000 Files and hashes: 1: XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl (hash: KmOzY1dUTzsZpDyjiDO9Oj5PayAVUP/ReAkTTwPpYjs=) 2: FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa (hash: 2U6xmhzv0fOgJj7RZr6nEhhX0Za/2a3PlEUXvRGOzUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:40:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 877 (0x36d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C73, serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Validity Not Before: Apr 5 00:40:02 2026 GMT Not After : Apr 12 00:40:02 2026 GMT Subject: CN=69d1af62-69ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c7:b4:7b:03:e3:4d:3f:9a:67:3c:71:1e:f5: bf:82:6c:c8:73:c0:e7:3f:3c:7f:ce:ec:02:a7:50: de:6e:32:f8:a2:f8:1a:3a:2b:dc:46:72:1a:54:aa: 57:8d:fe:c8:77:c7:2b:c5:c8:e8:c7:f7:35:b0:40: be:11:71:f6:00:cb:5d:0c:80:c7:3d:72:7e:fe:d8: 60:72:c9:d2:13:a9:bc:2f:cf:b9:92:5d:2d:72:5e: 29:b6:c6:4c:a1:50:85:94:2a:98:41:5e:42:28:e9: ed:89:7d:e4:04:eb:31:cf:9c:67:44:e7:d2:54:61: 5b:e1:d2:a8:f2:15:c0:62:cf:0c:65:58:7a:44:e1: 63:3d:90:82:af:31:39:3f:09:6c:ab:5f:38:9f:bd: 01:62:f3:a7:b5:0f:2f:3e:3a:0f:02:19:b2:0c:08: b6:07:32:b7:ad:77:72:f6:26:c4:28:1c:1e:b7:04: 20:b3:a2:0c:3f:df:0a:f1:49:2c:4a:0b:a8:91:0c: b6:4a:a3:d1:73:90:72:b8:7c:4d:aa:49:84:fb:31: e3:57:5c:f8:d0:00:90:41:ac:ba:24:e6:15:0a:6f: 16:33:31:fc:16:c3:4a:28:da:ea:2b:d7:ef:c6:6d: 2f:51:86:8f:c3:cc:52:5b:85:32:d4:3a:b5:91:38: 4e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:FE:79:A1:C8:E2:56:53:3A:23:3B:7B:8A:73:14:B7:A6:0E:E0:E6 X509v3 Authority Key Identifier: keyid:5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:3a:e7:24:83:10:1a:13:b1:13:f8:b5:08:58:32:26:52:69: 53:99:58:50:39:49:22:52:2a:dc:10:9b:d3:c6:e1:63:7f:57: b7:6b:4a:eb:0b:25:8c:a4:4e:66:8d:99:10:6e:17:69:88:de: 22:aa:b5:3d:38:dc:a5:29:45:54:b3:f9:60:5e:6a:19:f7:d6: 16:84:b8:04:a7:01:80:38:fb:07:f7:8a:81:7e:a8:d2:58:fa: 78:5e:20:34:b5:e0:1f:cc:3e:ae:cf:dd:b9:63:9e:92:60:ea: 28:4d:b6:93:1b:05:f5:c0:07:ab:ad:2a:66:d5:e2:60:f6:ab: 47:8a:e2:4b:e1:4d:6f:bc:fa:a6:e4:05:d1:5c:92:87:a6:da: 0c:fe:80:1a:fe:2b:52:10:b7:33:61:12:df:8d:0f:3d:a0:dc: 2e:93:d3:cf:17:f6:d1:d8:b6:36:42:f8:b2:65:84:83:35:60: a5:a6:36:26:c5:a0:9c:f9:ac:a4:7b:3d:c9:c5:09:3a:d0:ae: eb:1e:71:73:b6:8f:76:a5:3f:68:fe:4e:1c:70:47:f4:2c:15: 42:a1:af:26:dc:f9:ab:cc:16:82:8d:25:00:fd:9f:27:3f:65: bc:91:9e:6f:b1:5b:e7:7a:6b:d0:18:5a:ba:91:68:05:a6:8b: c9:89:61:95 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBDNzMxMTAvBgNVBAUTKDVFNzA5OTQ5QkFBNDBBN0Q0N0Q0NEQyMTE2OTBCMzc3 RTA1MUM0NUYwHhcNMjYwNDA1MDA0MDAyWhcNMjYwNDEyMDA0MDAyWjAYMRYwFAYD VQQDEw02OWQxYWY2Mi02OWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoce0ewPjTT+aZzxxHvW/gmzIc8DnPzx/zuwCp1DebjL4ovgaOivcRnIaVKpX jf7Id8crxcjox/c1sEC+EXH2AMtdDIDHPXJ+/thgcsnSE6m8L8+5kl0tcl4ptsZM oVCFlCqYQV5CKOntiX3kBOsxz5xnROfSVGFb4dKo8hXAYs8MZVh6ROFjPZCCrzE5 Pwlsq184n70BYvOntQ8vPjoPAhmyDAi2BzK3rXdy9ibEKBwetwQgs6IMP98K8Uks SguokQy2SqPRc5ByuHxNqkmE+zHjV1z40ACQQay6JOYVCm8WMzH8FsNKKNrqK9fv xm0vUYaPw8xSW4Uy1Dq1kThOxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDv+eaHI 4lZTOiM7e4pzFLemDuDmMB8GA1UdIwQYMBaAFF5wmUm6pAp9R9RNIRaQs3fgUcRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEM3My84MjE0NTdEMkYx MzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0NuMUgxRTBoRnBDemQtQlJ4 RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huQ1pTYnFrQ24xSDFFMGhGcEN6ZC1CUnhGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEM3My84MjE0NTdEMkYxMzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0Nu MUgxRTBoRnBDemQtQlJ4RjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmTrnJIMQGhOxE/i1CFgyJlJpU5lYUDlJIlIq3BCb08bhY39Xt2tK6wsljKRO Zo2ZEG4XaYjeIqq1PTjcpSlFVLP5YF5qGffWFoS4BKcBgDj7B/eKgX6o0lj6eF4g NLXgH8w+rs/duWOekmDqKE22kxsF9cAHq60qZtXiYParR4riS+FNb7z6puQF0VyS h6baDP6AGv4rUhC3M2ES340PPaDcLpPTzxf20di2NkL4smWEgzVgpaY2JsWgnPms pHs9ycUJOtCu6x5xc7aPdqU/aP5OHHBH9CwVQqGvJtz5q8wWgo0lAP2fJz9lvJGe b7Fb53pr0BhaupFoBaaLyYlhlQ== -----END CERTIFICATE-----Generated at Mon Apr 6 09:02:34 2026 by rpki-client