$ rpki-client -vvf rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft File: XTwWiWSSv8hwyKALZou_6VlF-No.mft (raw, json) Hash identifier: NzT6FJ9cuhCM9D0PLO7hZ66E5PN6Cvj6t1C/MUMh8qk= Subject key identifier: 87:A2:BF:51:DE:0B:A7:4F:65:28:97:6D:16:BE:2C:D6:28:87:2F:E8 Authority key identifier: 5D:3C:16:89:64:92:BF:C8:70:C8:A0:0B:66:8B:BF:E9:59:45:F8:DA Certificate issuer: /CN=A9136C7C/serialNumber=5D3C16896492BFC870C8A00B668BBFE95945F8DA Certificate serial: 01DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft Manifest number: 01C5 Signing time: Tue 03 Mar 2026 03:29:36 +0000 Manifest this update: Tue 03 Mar 2026 03:29:35 +0000 Manifest next update: Tue 10 Mar 2026 03:29:35 +0000 Files and hashes: 1: XTwWiWSSv8hwyKALZou_6VlF-No.crl (hash: 2KABVvY8LMHfOOJq5j2mzq1A4puUNSItarr6ZcuvJno=) 2: 688DF576450C11F0A7A54A80C4F9AE02.roa (hash: yG5g5l4ahe8+QX5msDDHM+u5qeGduBK/xW+5zLNGkzs=) 3: 6821BAB4450C11F0A7A54A80C4F9AE02.roa (hash: D8CvXbZFI8eMzBOfI99cBZdW+iIvKoprUDlzG1boKIs=) 4: DF7C0A6E69E511EE92E9E35AC4F9AE02.roa (hash: poWWLE4I6jhUD5Wmi9+aSqCUDYtylXKLemPgGHYFlmI=) 5: 6911C6C6450C11F0A7A54A80C4F9AE02.roa (hash: 02BK3Rc5B64K8I9rDlPS9wg6HoKTZjWa4LYyMWgRM/4=) 6: DF0BED1069E511EE92E9E35AC4F9AE02.roa (hash: 6ziz8Vbwbuo+v5DPJFlqhouxjGTzfKMnl6UQDVob9A0=) 7: 065143FAB71C11EF9C368D66C4F9AE02.roa (hash: +UGzFoOdYB27w2dtyFnblneGu3br9H01b49RD3SBcIk=) 8: DFE29CB669E511EE92E9E35AC4F9AE02.roa (hash: Dw9bjrXD09PLaGgOnouY4vwEn7ci+sbFDgoI/hc8reE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.crl rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 03:29:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 474 (0x1da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136C7C, serialNumber=5D3C16896492BFC870C8A00B668BBFE95945F8DA Validity Not Before: Mar 3 03:29:35 2026 GMT Not After : Mar 10 03:29:35 2026 GMT Subject: CN=69a6559f-1a18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ab:2c:41:6f:8e:d8:e4:d0:a6:97:2a:21:f6: 31:1b:00:da:5e:02:55:c8:31:38:20:e3:1b:34:22: 5a:06:c9:84:43:33:5c:47:af:6d:c5:62:71:65:1b: 23:f1:d8:04:bb:fc:da:05:03:16:15:32:ab:77:45: 96:8f:81:6e:94:56:6e:5f:70:15:21:52:94:e7:b0: ec:00:35:83:a6:93:19:c4:75:03:b3:c2:40:70:16: 1d:73:ee:9f:2f:5e:ca:d1:17:97:25:03:c7:9f:cf: eb:72:d4:98:ba:a2:7b:2d:13:da:a7:a2:b5:2d:d8: 72:90:fb:fa:a1:21:93:4c:d1:51:e8:3c:39:83:33: 84:22:f0:36:c9:99:41:3e:79:c5:bb:e9:97:72:84: c0:0c:37:73:86:ae:7c:1f:30:45:5a:da:2c:79:37: 3b:ef:42:28:3b:dc:30:1e:be:3c:30:0b:15:d1:6c: 31:ac:9c:27:55:74:1a:ff:f0:4c:d0:01:87:b1:30: fe:12:90:27:d1:27:b5:c6:6b:74:04:77:91:70:c8: 22:69:99:87:1c:56:6c:ab:bc:50:c3:1f:86:07:84: b0:ed:94:b4:94:4c:bd:5d:e6:8c:20:60:f3:8a:fc: a5:d7:e0:a4:17:47:2d:51:4a:43:c9:35:88:bf:ee: 35:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:A2:BF:51:DE:0B:A7:4F:65:28:97:6D:16:BE:2C:D6:28:87:2F:E8 X509v3 Authority Key Identifier: keyid:5D:3C:16:89:64:92:BF:C8:70:C8:A0:0B:66:8B:BF:E9:59:45:F8:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:72:77:eb:94:46:8f:0b:54:47:53:51:6c:23:7d:50:11:c1: 8c:00:e3:91:f7:2a:1d:64:e6:0b:0e:9e:f5:f1:22:96:08:01: 60:18:49:81:f8:3f:a1:28:d2:cc:a1:c1:12:f1:67:f7:43:c9: d7:53:a6:ec:e9:2c:f0:a2:10:90:2b:80:25:80:2e:6a:01:84: b5:ae:f7:63:cd:c2:30:8d:cb:05:56:bd:a8:1a:ee:c1:15:2a: 40:a7:d6:4f:08:8f:6f:1b:0b:f0:79:69:31:7f:67:10:62:df: 1d:67:98:71:fa:a2:a8:af:ce:17:8f:95:02:7f:09:04:0e:06: ad:5c:71:31:36:5e:41:cc:ef:60:a8:a9:da:0a:0f:96:8a:95: 6d:e3:8e:5b:31:d8:09:6d:d7:29:f7:2e:52:15:2a:82:57:cf: 9a:f8:1d:9e:cb:e3:8a:d0:3a:1d:48:e0:65:16:eb:cc:8a:cc: 9c:4d:e9:63:ab:7b:b6:c7:db:ce:65:ae:23:96:f8:a7:13:e4: d3:19:cc:8b:b8:2a:6e:ed:ce:ae:07:fc:5c:66:ae:d9:a0:3a: f1:82:d9:81:01:fd:e7:53:72:5c:cf:77:0a:a7:98:f2:a4:1f: b6:0d:ea:a2:aa:78:c2:7f:d2:5c:1e:1b:8a:75:69:ab:fb:03: 1a:c0:9d:28 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZDN0MxMTAvBgNVBAUTKDVEM0MxNjg5NjQ5MkJGQzg3MEM4QTAwQjY2OEJCRkU5 NTk0NUY4REEwHhcNMjYwMzAzMDMyOTM1WhcNMjYwMzEwMDMyOTM1WjAYMRYwFAYD VQQDEw02OWE2NTU5Zi0xYTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6assQW+O2OTQppcqIfYxGwDaXgJVyDE4IOMbNCJaBsmEQzNcR69txWJxZRsj 8dgEu/zaBQMWFTKrd0WWj4FulFZuX3AVIVKU57DsADWDppMZxHUDs8JAcBYdc+6f L17K0ReXJQPHn8/rctSYuqJ7LRPap6K1LdhykPv6oSGTTNFR6Dw5gzOEIvA2yZlB PnnFu+mXcoTADDdzhq58HzBFWtoseTc770IoO9wwHr48MAsV0WwxrJwnVXQa//BM 0AGHsTD+EpAn0Se1xmt0BHeRcMgiaZmHHFZsq7xQwx+GB4Sw7ZS0lEy9XeaMIGDz ivyl1+CkF0ctUUpDyTWIv+41/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIeiv1He C6dPZSiXbRa+LNYohy/oMB8GA1UdIwQYMBaAFF08Folkkr/IcMigC2aLv+lZRfja MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkM3Qy8yQjVDQUFFODY5 RTUxMUVFQkI2NjgyNDZDNEY5QUUwMi9YVHdXaVdTU3Y4aHd5S0FMWm91XzZWbEYt Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hUd1dpV1NTdjhod3lLQUxab3VfNlZsRi1Oby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkM3Qy8yQjVDQUFFODY5RTUxMUVFQkI2NjgyNDZDNEY5QUUwMi9YVHdXaVdTU3Y4 aHd5S0FMWm91XzZWbEYtTm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqHJ365RGjwtUR1NRbCN9UBHBjADjkfcqHWTmCw6e9fEilggBYBhJgfg/oSjS zKHBEvFn90PJ11Om7Oks8KIQkCuAJYAuagGEta73Y83CMI3LBVa9qBruwRUqQKfW TwiPbxsL8HlpMX9nEGLfHWeYcfqiqK/OF4+VAn8JBA4GrVxxMTZeQczvYKip2goP loqVbeOOWzHYCW3XKfcuUhUqglfPmvgdnsvjitA6HUjgZRbrzIrMnE3pY6t7tsfb zmWuI5b4pxPk0xnMi7gqbu3Orgf8XGau2aA68YLZgQH951NyXM93CqeY8qQftg3q oqp4wn/SXB4binVpq/sDGsCdKA== -----END CERTIFICATE-----Generated at Wed Mar 4 15:25:39 2026 by rpki-client