$ rpki-client -vvf rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft File: XLKYvBpwUBeAXFYfCQoNR5UOar0.mft (raw, json) Hash identifier: 2WKvWblUw0/fZg19Q9wuB5kZ8xw8iS2T3Cn5Bq7e80k= Subject key identifier: AA:4E:8F:DC:B6:E7:CE:F6:08:08:6E:E1:16:5B:29:F0:20:B9:9A:5F Authority key identifier: 5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD Certificate issuer: /CN=A912BFC5/serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Certificate serial: 2595 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft Manifest number: 2595 Signing time: Mon 02 Mar 2026 14:16:45 +0000 Manifest this update: Mon 02 Mar 2026 14:16:44 +0000 Manifest next update: Mon 09 Mar 2026 14:16:44 +0000 Files and hashes: 1: XLKYvBpwUBeAXFYfCQoNR5UOar0.crl (hash: x9yqx8uHGwr/wn4wzLZcbslUfU9y3wNm4NNSaKsLods=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:16:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9621 (0x2595) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BFC5, serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Validity Not Before: Mar 2 14:16:44 2026 GMT Not After : Mar 9 14:16:44 2026 GMT Subject: CN=69a59bcd-ef38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e0:4e:fb:1b:54:cc:78:36:d1:1f:a2:3b:00: a8:d0:e3:03:54:48:bb:f9:05:be:50:99:14:c9:15: fe:98:14:3b:42:9a:7a:e7:e7:0c:c7:58:a3:01:9b: f0:3f:28:e3:17:79:73:42:1b:d3:6f:0f:36:a9:ef: f5:62:29:ec:29:ed:97:86:5e:b2:e3:c1:ba:3e:50: 6b:21:90:8a:f9:11:c6:d1:33:e9:31:c7:8e:76:71: 83:97:a4:a1:db:8a:d1:09:8b:fa:e8:50:1b:be:5e: b7:8f:7e:c3:27:3b:fb:13:87:ee:07:1e:01:a1:40: 6a:80:a7:fd:8d:9b:f4:3e:62:a4:69:8b:0c:d2:4d: 36:25:c8:db:3e:2c:e3:49:48:ec:96:79:ae:b9:05: c9:56:52:7d:9f:9e:3d:56:d1:ec:e9:83:d2:eb:1a: 97:56:f3:bf:c0:ef:7e:f6:00:f7:f5:70:d7:32:98: 14:66:3a:55:b7:58:c5:28:e8:93:38:eb:a4:6b:e2: 3a:f1:54:d8:13:49:5e:e0:d1:b5:af:ff:0d:5b:03: b1:8c:47:b4:f4:08:00:bb:5b:e3:94:4c:d9:d3:40: 8c:45:43:57:6f:56:ea:c5:fd:35:76:69:2f:48:fb: 8d:bf:d8:fa:3c:33:2a:98:7f:95:b1:8c:8a:e1:0e: f6:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:4E:8F:DC:B6:E7:CE:F6:08:08:6E:E1:16:5B:29:F0:20:B9:9A:5F X509v3 Authority Key Identifier: keyid:5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:0e:71:f0:dd:dc:c2:fd:0c:2c:6b:fb:f9:69:4a:8f:ea:a5: 90:d8:02:ad:2c:8e:3b:c4:c7:53:78:49:cf:87:f4:2c:93:b7: ee:36:56:6f:bb:24:86:0e:41:90:f7:45:50:c3:ee:51:7f:d4: ce:cd:2c:59:fd:2d:d3:ed:db:33:cb:57:52:3b:ba:de:e1:37: 08:d4:b6:f2:d6:2c:68:f4:36:8a:e7:67:ce:f2:1e:34:56:a6: 82:e6:36:0c:c0:45:d4:7f:4f:c8:c5:13:17:96:08:20:af:ad: 16:8f:6b:f7:46:c1:50:5c:00:28:0a:d8:91:96:e5:32:9e:aa: cf:3f:72:bd:22:eb:b3:54:52:88:0e:ca:f5:1b:6b:9a:c2:6b: 8a:7f:64:4c:26:4e:9e:52:5e:bb:f9:71:1c:cd:37:38:0a:5c: 5f:1c:43:87:9a:51:7c:22:46:b3:0c:88:66:ed:05:9b:e1:eb: 54:1a:54:dc:cc:1e:ba:6d:92:02:b3:6c:c4:fa:da:0a:a7:94: 16:10:d0:75:a7:6f:99:3d:f8:4a:87:81:ec:ba:f8:e1:a4:74: 1b:bc:7d:ca:c1:dc:7c:20:8b:db:a7:e0:4b:30:28:2f:d0:66: 04:09:38:5d:92:ba:7e:37:92:51:22:20:5c:a6:bb:75:ea:3f: fd:4d:71:6d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJGQzUxMTAvBgNVBAUTKDVDQjI5OEJDMUE3MDUwMTc4MDVDNTYxRjA5MEEwRDQ3 OTUwRTZBQkQwHhcNMjYwMzAyMTQxNjQ0WhcNMjYwMzA5MTQxNjQ0WjAYMRYwFAYD VQQDEw02OWE1OWJjZC1lZjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+BO+xtUzHg20R+iOwCo0OMDVEi7+QW+UJkUyRX+mBQ7Qpp65+cMx1ijAZvw PyjjF3lzQhvTbw82qe/1YinsKe2Xhl6y48G6PlBrIZCK+RHG0TPpMceOdnGDl6Sh 24rRCYv66FAbvl63j37DJzv7E4fuBx4BoUBqgKf9jZv0PmKkaYsM0k02JcjbPizj SUjslnmuuQXJVlJ9n549VtHs6YPS6xqXVvO/wO9+9gD39XDXMpgUZjpVt1jFKOiT OOuka+I68VTYE0le4NG1r/8NWwOxjEe09AgAu1vjlEzZ00CMRUNXb1bqxf01dmkv SPuNv9j6PDMqmH+VsYyK4Q720wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKpOj9y2 5872CAhu4RZbKfAguZpfMB8GA1UdIwQYMBaAFFyymLwacFAXgFxWHwkKDUeVDmq9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkZDNS8zRjM0MjAzRTI5 MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VCZUFYRllmQ1FvTlI1VU9h cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hMS1l2QnB3VUJlQVhGWWZDUW9OUjVVT2FyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkZDNS8zRjM0MjAzRTI5MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VC ZUFYRllmQ1FvTlI1VU9hcjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHg5x8N3cwv0MLGv7+WlKj+qlkNgCrSyOO8THU3hJz4f0LJO37jZWb7skhg5B kPdFUMPuUX/Uzs0sWf0t0+3bM8tXUju63uE3CNS28tYsaPQ2iudnzvIeNFamguY2 DMBF1H9PyMUTF5YIIK+tFo9r90bBUFwAKArYkZblMp6qzz9yvSLrs1RSiA7K9Rtr msJrin9kTCZOnlJeu/lxHM03OApcXxxDh5pRfCJGswyIZu0Fm+HrVBpU3Mweum2S ArNsxPraCqeUFhDQdadvmT34SoeB7Lr44aR0G7x9ysHcfCCL26fgSzAoL9BmBAk4 XZK6fjeSUSIgXKa7deo//U1xbQ== -----END CERTIFICATE-----Generated at Wed Mar 4 08:40:08 2026 by rpki-client