$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft File: XSeFtU0WPtAepUGLz6NPG3RWtxM.mft (raw, json) Hash identifier: yvpAxdXUryh7Ln2hhIf+im/G7nq0jpka+dF450L+Wlk= Subject key identifier: 7C:CD:AE:E4:79:2F:5F:FB:0B:9F:B4:CA:8F:F5:98:40:8E:61:B7:D7 Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 0530 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft Manifest number: 050F Signing time: Fri 06 Mar 2026 23:21:15 +0000 Manifest this update: Fri 06 Mar 2026 23:21:14 +0000 Manifest next update: Fri 13 Mar 2026 23:21:14 +0000 Files and hashes: 1: XSeFtU0WPtAepUGLz6NPG3RWtxM.crl (hash: PjBYdWeqvua3E2ZjekPm4lHrj/hotCUH3aGQWdzYS3k=) 2: 1F77EFA44C4011EC952D5A23C4F9AE02.roa (hash: TtIgh6p3MeT87i0AxcRjiCaJmw5Zn2R/2iZkAkCBffQ=) 3: ACE844F047AA11ECA0F05026C4F9AE02.roa (hash: xF2IvoVXmAincHuvdv8xT2emt6/vG3hUCriU6a0X2F4=) 4: 6337963E4C3D11ECB5FF844FC4F9AE02.roa (hash: YlLnh1haCAguuDMWLHxz+klHykWczeyMGFHRpbzDxJg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 23:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1328 (0x530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5, serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: Mar 6 23:21:14 2026 GMT Not After : Mar 13 23:21:14 2026 GMT Subject: CN=69ab616a-b891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:87:83:fe:78:c9:4e:b4:2e:05:0e:2c:57:d1: 20:88:77:3a:e1:d1:21:26:f3:11:fd:d0:16:ee:e6: f0:eb:8f:f1:de:6d:ea:10:19:76:81:2f:66:57:ad: 77:c0:21:99:dd:2e:ae:1b:ef:44:0d:fa:0e:1a:50: f0:d9:16:5d:bc:55:55:2c:f2:f4:f9:e2:67:63:75: 04:e6:0e:c9:22:18:be:44:f0:51:ca:fa:a3:8a:66: 98:df:d6:78:94:02:af:59:c7:f2:3c:bb:1d:f9:d3: 27:58:68:93:79:3d:5f:b8:b1:cf:cc:b3:f8:b2:a9: 0a:6a:0f:82:af:a4:e6:94:2d:3d:98:0a:6c:9b:38: 95:1c:7f:82:7f:1b:67:39:49:07:9d:47:6d:a4:ed: 8b:9e:d3:89:88:bb:11:28:22:3d:42:db:9c:8c:64: 2d:5f:ef:ce:84:66:17:a9:ad:db:d4:3d:de:8e:a7: 4d:56:f8:7b:49:26:57:aa:40:d3:f1:71:5e:2c:fb: cf:b9:76:45:98:98:31:87:c9:0d:d6:9f:72:79:1b: c3:c7:0d:0a:ec:eb:c7:48:12:6f:af:f5:3c:4e:8c: 07:0a:ec:19:09:a5:8b:54:c8:94:6b:be:09:77:45: 8a:39:f0:b0:30:2a:e8:83:db:fe:01:85:f8:11:5d: c6:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:CD:AE:E4:79:2F:5F:FB:0B:9F:B4:CA:8F:F5:98:40:8E:61:B7:D7 X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:1c:c7:57:28:c0:0d:2e:33:97:22:ba:90:38:bd:65:8f:17: a0:43:67:0e:05:a1:e2:02:a5:d9:27:95:0e:5c:14:31:a7:95: 0c:08:d2:c6:f1:2a:b6:ce:84:50:73:7b:39:ba:37:04:4a:65: c3:04:39:cf:c1:ea:a1:49:45:57:d2:a0:30:ce:28:74:b9:86: 1e:2e:66:ed:a5:a0:cc:f5:11:e5:f7:fe:4a:0f:79:54:10:1c: c2:74:51:70:53:09:47:5f:d4:6b:68:78:60:3d:50:07:07:2f: 34:ea:c9:71:12:02:cc:5b:e7:92:16:30:8e:55:bf:20:3c:4e: ac:e4:02:1c:05:6a:0a:0d:f7:e7:fe:8a:33:82:2f:3d:32:9d: aa:f0:16:4e:38:49:1e:a7:50:b0:f0:68:84:17:99:53:c7:3d: 0e:8c:52:d5:61:86:b9:3e:55:f1:3c:25:1c:05:d0:58:c5:96: 4d:41:66:3e:1c:2b:d7:14:db:6c:8f:bd:0a:74:7b:a7:32:57: 21:03:66:9a:15:5a:56:a7:c0:e4:b9:cf:b5:5d:c8:ad:d6:c3: 65:75:fc:48:36:fb:94:c6:1e:f7:93:1a:fe:d6:2a:02:e4:39: 0c:9c:d6:67:7e:6a:62:13:77:69:58:06:19:b6:cb:9d:48:b8: 26:f5:e9:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjYwMzA2MjMyMTE0WhcNMjYwMzEzMjMyMTE0WjAYMRYwFAYD VQQDEw02OWFiNjE2YS1iODkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq4eD/njJTrQuBQ4sV9EgiHc64dEhJvMR/dAW7ubw64/x3m3qEBl2gS9mV613 wCGZ3S6uG+9EDfoOGlDw2RZdvFVVLPL0+eJnY3UE5g7JIhi+RPBRyvqjimaY39Z4 lAKvWcfyPLsd+dMnWGiTeT1fuLHPzLP4sqkKag+Cr6TmlC09mApsmziVHH+Cfxtn OUkHnUdtpO2LntOJiLsRKCI9QtucjGQtX+/OhGYXqa3b1D3ejqdNVvh7SSZXqkDT 8XFeLPvPuXZFmJgxh8kN1p9yeRvDxw0K7OvHSBJvr/U8TowHCuwZCaWLVMiUa74J d0WKOfCwMCrog9v+AYX4EV3GkQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHzNruR5 L1/7C5+0yo/1mECOYbfXMB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NDNS8yQUM0RDMzRTQ2QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0 QWVwVUdMejZOUEczUld0eE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhRzHVyjADS4zlyK6kDi9ZY8XoENnDgWh4gKl2SeVDlwUMaeVDAjSxvEqts6E UHN7Obo3BEplwwQ5z8HqoUlFV9KgMM4odLmGHi5m7aWgzPUR5ff+Sg95VBAcwnRR cFMJR1/Ua2h4YD1QBwcvNOrJcRICzFvnkhYwjlW/IDxOrOQCHAVqCg335/6KM4Iv PTKdqvAWTjhJHqdQsPBohBeZU8c9DoxS1WGGuT5V8TwlHAXQWMWWTUFmPhwr1xTb bI+9CnR7pzJXIQNmmhVaVqfA5LnPtV3IrdbDZXX8SDb7lMYe95Ma/tYqAuQ5DJzW Z35qYhN3aVgGGbbLnUi4JvXpkg== -----END CERTIFICATE-----Generated at Sat Mar 7 19:02:24 2026 by rpki-client