$ rpki-client -vvf rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft File: XAVrgGGoYiwsBruFeG6dxhNhS8o.mft (raw, json) Hash identifier: kxxNCkX3VUaHwgpmR6P0WmhiMex1tCxkl7svDoXY07Q= Subject key identifier: BC:41:55:39:D8:D0:89:71:89:4B:A5:1E:DA:AE:DF:EA:99:98:3D:7F Authority key identifier: 5C:05:6B:80:61:A8:62:2C:2C:06:BB:85:78:6E:9D:C6:13:61:4B:CA Certificate issuer: /CN=A914A814/serialNumber=5C056B8061A8622C2C06BB85786E9DC613614BCA Certificate serial: 02B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAVrgGGoYiwsBruFeG6dxhNhS8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft Manifest number: 0289 Signing time: Mon 09 Mar 2026 01:15:57 +0000 Manifest this update: Mon 09 Mar 2026 01:15:56 +0000 Manifest next update: Mon 16 Mar 2026 01:15:56 +0000 Files and hashes: 1: XAVrgGGoYiwsBruFeG6dxhNhS8o.crl (hash: aBn7sPyTaitYn7i2cLSmMyWwg0NhAqFDzzHWtvNEdUM=) 2: 710A095EB62A11EF9D01E53DC4F9AE02.roa (hash: DoI1H5cBVDVpM0o3Z6TBBwhDvf1Ij5PjDVqCV737dgA=) 3: 8C1315A8060611EFB7EFA66CC4F9AE02.roa (hash: DxSoqS3b+Y/gdSbATN2rSyfLU8qRKds7oUL0VnUHIkU=) 4: 8A537D0CEB8811F09D1C7947556F56BC.roa (hash: HXOczdbG3jBtr/wzTx6ipHvHkHT1tt95ne5sa0eRBf8=) 5: 71DFDF18890111EEB3F2581FC4F9AE02.roa (hash: EqT4x+M1dS0lAoKnprnpqiEWavrDyHejbJDUqIhSKBc=) 6: 6121C23230AC11F08C150767C4F9AE02.roa (hash: yFAyH86XSQnek6ohQ/lpmbhrJ7zT+NkCgAJN/G3hbEI=) 7: 01A55FE8EB8811F09418252C556F56BC.roa (hash: cFB/8Vgkj4i8BlW9emUOHcyZlqasNRUOsxhp6QEZNAo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.crl rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAVrgGGoYiwsBruFeG6dxhNhS8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Mar 2026 01:15:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 697 (0x2b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A814, serialNumber=5C056B8061A8622C2C06BB85786E9DC613614BCA Validity Not Before: Mar 9 01:15:56 2026 GMT Not After : Mar 16 01:15:56 2026 GMT Subject: CN=69ae1f4c-fb79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a3:2b:ae:14:4d:82:74:c5:5a:24:2a:25:be: 6d:df:cd:2d:6e:fc:89:e3:fd:3f:8c:1e:1c:c9:2a: 4c:2e:fd:80:d8:df:f9:bd:ee:ac:5b:1e:83:4d:17: bb:4f:6b:6b:33:e7:37:84:72:9e:a9:6e:3d:5a:17: a2:4c:04:b5:91:0a:56:b3:59:00:74:c4:ae:cb:fd: a5:16:90:dd:32:c0:6a:32:b8:2e:8d:9b:8f:50:9a: a2:e9:16:70:4d:e8:8d:80:4c:19:c0:48:ba:08:18: 7c:0c:51:10:8d:45:6b:ea:c9:34:d7:0d:d1:02:2f: af:02:11:d7:70:6e:60:1d:71:d5:05:69:d3:69:da: 3d:87:3f:42:24:3c:b7:5e:1b:15:b3:2f:42:93:e7: d0:17:fb:34:68:e8:46:d6:8e:e9:71:bb:80:4a:32: 6d:10:8b:14:db:ba:64:37:10:76:98:79:c9:87:3c: fd:5f:d3:87:e9:4d:05:d8:65:73:13:be:22:b0:98: 25:71:93:0a:f6:e2:3f:de:c2:d5:fa:e1:50:19:ef: df:3e:8f:a1:6c:f6:f8:64:0d:81:1d:c4:46:d2:22: c3:e3:1a:46:4f:76:96:ff:c4:c2:9b:0f:ac:51:8c: fe:81:d0:a0:dc:13:72:2e:7e:47:87:2b:71:8f:08: 17:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:41:55:39:D8:D0:89:71:89:4B:A5:1E:DA:AE:DF:EA:99:98:3D:7F X509v3 Authority Key Identifier: keyid:5C:05:6B:80:61:A8:62:2C:2C:06:BB:85:78:6E:9D:C6:13:61:4B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAVrgGGoYiwsBruFeG6dxhNhS8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:e3:b7:a2:41:87:cf:fa:99:13:f6:51:50:56:1a:0b:d1:ee: 09:5a:0b:59:b0:b0:c6:74:48:c2:28:72:22:d4:f3:8d:16:0f: 4d:91:04:b2:f3:09:60:c9:fc:bc:ca:75:ad:d3:4d:f1:5a:ad: ac:a4:51:22:6c:5b:41:6f:39:ba:28:d2:09:93:ee:a7:7f:20: ed:d3:b8:5b:d7:83:03:e0:1d:be:8d:91:a4:ab:35:23:92:e1: 61:94:a9:1c:fe:b9:7a:42:b1:88:97:3d:5b:17:07:0e:c4:4f: 38:eb:47:8d:f1:af:53:27:ca:dd:3c:28:8f:fe:a5:26:94:18: 28:a2:1f:a6:e5:9f:65:40:87:19:16:0e:98:15:2d:2e:c0:32: a5:92:41:c6:6b:71:e7:b8:51:93:53:64:c2:f6:68:fb:1a:0f: 4b:05:ce:ac:34:50:cc:a4:e1:fb:eb:97:9f:66:4e:02:91:dc: 11:86:3e:66:04:24:d9:70:43:a1:7f:f1:d0:2d:d0:bd:77:8e: 6c:40:eb:c9:53:33:5e:d6:ea:40:80:ee:2e:85:16:b6:81:80: ac:f4:4b:d7:bc:c5:3a:39:14:ba:9b:f4:08:b4:87:64:ab:55: 6e:49:d9:37:8b:ce:99:13:a5:34:13:50:5e:0f:14:5e:c1:70: 3f:2a:15:2b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICArkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE4MTQxMTAvBgNVBAUTKDVDMDU2QjgwNjFBODYyMkMyQzA2QkI4NTc4NkU5REM2 MTM2MTRCQ0EwHhcNMjYwMzA5MDExNTU2WhcNMjYwMzE2MDExNTU2WjAYMRYwFAYD VQQDEw02OWFlMWY0Yy1mYjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6MrrhRNgnTFWiQqJb5t380tbvyJ4/0/jB4cySpMLv2A2N/5ve6sWx6DTRe7 T2trM+c3hHKeqW49WheiTAS1kQpWs1kAdMSuy/2lFpDdMsBqMrgujZuPUJqi6RZw TeiNgEwZwEi6CBh8DFEQjUVr6sk01w3RAi+vAhHXcG5gHXHVBWnTado9hz9CJDy3 XhsVsy9Ck+fQF/s0aOhG1o7pcbuASjJtEIsU27pkNxB2mHnJhzz9X9OH6U0F2GVz E74isJglcZMK9uI/3sLV+uFQGe/fPo+hbPb4ZA2BHcRG0iLD4xpGT3aW/8TCmw+s UYz+gdCg3BNyLn5HhytxjwgXxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLxBVTnY 0IlxiUulHtqu3+qZmD1/MB8GA1UdIwQYMBaAFFwFa4BhqGIsLAa7hXhuncYTYUvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTgxNC9EMzhBMTkxMjc0 NUUxMUVEQkE2ODg1MTRDNEY5QUUwMi9YQVZyZ0dHb1lpd3NCcnVGZUc2ZHhoTmhT OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBVnJnR0dvWWl3c0JydUZlRzZkeGhOaFM4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTgxNC9EMzhBMTkxMjc0NUUxMUVEQkE2ODg1MTRDNEY5QUUwMi9YQVZyZ0dHb1lp d3NCcnVGZUc2ZHhoTmhTOG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAM+O3okGHz/qZE/ZRUFYaC9HuCVoLWbCwxnRIwihyItTzjRYPTZEEsvMJYMn8 vMp1rdNN8VqtrKRRImxbQW85uijSCZPup38g7dO4W9eDA+Advo2RpKs1I5LhYZSp HP65ekKxiJc9WxcHDsRPOOtHjfGvUyfK3Twoj/6lJpQYKKIfpuWfZUCHGRYOmBUt LsAypZJBxmtx57hRk1NkwvZo+xoPSwXOrDRQzKTh++uXn2ZOApHcEYY+ZgQk2XBD oX/x0C3QvXeObEDryVMzXtbqQIDuLoUWtoGArPRL17zFOjkUupv0CLSHZKtVbknZ N4vOmROlNBNQXg8UXsFwPyoVKw== -----END CERTIFICATE-----Generated at Tue Mar 10 06:32:37 2026 by rpki-client