$ rpki-client -vvf rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft File: X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft (raw, json) Hash identifier: Hi1IAaiCb60uhg8LaLnHhxYZ1gQC95in2NebJu4lFHI= Subject key identifier: 41:C4:91:9D:21:22:1C:3B:6B:43:3F:0F:DB:C9:5F:6C:98:4E:FE:A0 Authority key identifier: 5F:C2:79:2C:F4:40:B8:57:83:9D:68:8A:70:B6:0F:07:62:AB:AB:35 Certificate issuer: /CN=A9170304/serialNumber=5FC2792CF440B857839D688A70B60F0762ABAB35 Certificate serial: 353E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft Manifest number: 3531 Signing time: Sat 04 Apr 2026 14:39:25 +0000 Manifest this update: Sat 04 Apr 2026 14:39:25 +0000 Manifest next update: Sat 11 Apr 2026 14:39:25 +0000 Files and hashes: 1: X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl (hash: S1OAmf0YxSYvuezCq3FKWaSX96PJMikALaCd28ounZ8=) 2: 3A304DB4F54411EE8FF34627C4F9AE02.roa (hash: +9NKbw4Yf5cbYoj9nHJEgGLqyGEjkbYD3jkxgLpPwwo=) 3: 6D106CEE3AA011EB963B4842C4F9AE02.roa (hash: lk8+oDVmkh0IMVihDlSAF01esZtzK+ueFBrIlPTYmfg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 14:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13630 (0x353e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170304, serialNumber=5FC2792CF440B857839D688A70B60F0762ABAB35 Validity Not Before: Apr 4 14:39:25 2026 GMT Not After : Apr 11 14:39:25 2026 GMT Subject: CN=69d1229d-293c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e9:3a:e4:14:7f:67:1b:2f:28:19:5b:f7:dd: 8a:4b:0c:1f:86:6d:95:ca:93:fa:cd:19:26:0c:61: ee:1c:ac:98:d7:10:e1:4c:45:08:52:d9:d8:ba:13: 49:d7:db:56:b4:ac:0d:47:ee:66:08:88:76:c3:d9: 34:35:e5:a3:f4:30:58:2f:ed:3d:9d:19:ad:10:25: 0f:69:72:a1:11:fe:f3:e8:b0:25:18:d7:be:82:a6: a0:e8:06:8b:df:d5:87:1e:f4:ba:9f:64:c0:71:f3: 2d:29:14:67:36:af:90:8e:0a:09:a9:53:58:7c:27: 8e:af:9a:e3:b5:cb:7b:95:f2:b7:56:83:5e:18:d8: 88:f1:a8:b3:dc:ab:e0:f2:01:1a:8d:f5:96:e8:bc: 82:13:f1:b9:09:3d:3d:ac:d3:fa:95:56:45:b7:ff: f8:fa:dc:73:bf:83:93:58:0a:4b:bc:e5:ea:2f:65: 92:ad:23:f6:ab:01:04:af:37:78:fe:3b:8a:af:b0: 41:c9:d2:23:c4:c4:ef:8e:ed:6b:87:48:35:9e:96: 20:d1:05:c1:2b:26:27:be:3d:3d:ef:85:64:69:3d: 88:31:c2:b5:3e:85:7b:de:d0:bc:20:aa:86:d4:78: 10:b3:8c:f6:d2:e3:c8:24:43:8e:a5:62:3b:56:68: e4:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:C4:91:9D:21:22:1C:3B:6B:43:3F:0F:DB:C9:5F:6C:98:4E:FE:A0 X509v3 Authority Key Identifier: keyid:5F:C2:79:2C:F4:40:B8:57:83:9D:68:8A:70:B6:0F:07:62:AB:AB:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:69:ca:10:f6:98:0e:a3:82:b0:ec:56:de:2a:ae:67:07:3f: 1a:cf:31:70:96:11:b7:34:d3:fe:79:de:e9:7e:c5:98:76:b1: 4a:f4:a8:07:f9:f4:d1:fe:bb:30:d0:8c:28:66:0c:94:3a:2a: 8e:b6:c1:61:7b:38:84:8d:eb:03:04:fa:b8:36:62:fb:80:88: e2:c3:36:52:35:13:d7:c8:4a:c0:75:85:02:c7:fe:7e:95:73: e8:7a:bc:d8:05:da:9d:87:6d:7a:78:15:7d:e3:ac:94:a7:83: 8f:78:f0:a6:f7:02:26:37:b3:90:cb:62:29:4d:44:90:7e:71: cc:fa:ac:52:33:c6:14:f6:58:1e:8c:cf:90:f8:f3:5b:fb:4c: 24:ac:9f:25:d3:15:4f:b6:1c:78:4a:2a:ee:66:e5:1a:f4:7c: cc:e8:35:c9:a6:1f:c5:ab:22:60:ee:33:aa:34:06:4f:a2:49: d8:60:f7:31:03:8f:cf:30:c9:11:7f:21:9b:24:02:7c:82:e0: 0d:43:4a:c5:8e:05:e7:7e:11:51:10:7e:6e:7c:b2:7c:7d:0b: ee:35:53:52:99:6a:78:b9:38:9d:f2:58:d3:0f:73:04:00:e4: fa:b6:20:15:24:8a:99:e4:48:0d:74:0f:0c:e7:15:b5:98:07: 6c:56:bc:88 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzMDQxMTAvBgNVBAUTKDVGQzI3OTJDRjQ0MEI4NTc4MzlENjg4QTcwQjYwRjA3 NjJBQkFCMzUwHhcNMjYwNDA0MTQzOTI1WhcNMjYwNDExMTQzOTI1WjAYMRYwFAYD VQQDEw02OWQxMjI5ZC0yOTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOk65BR/ZxsvKBlb992KSwwfhm2VypP6zRkmDGHuHKyY1xDhTEUIUtnYuhNJ 19tWtKwNR+5mCIh2w9k0NeWj9DBYL+09nRmtECUPaXKhEf7z6LAlGNe+gqag6AaL 39WHHvS6n2TAcfMtKRRnNq+QjgoJqVNYfCeOr5rjtct7lfK3VoNeGNiI8aiz3Kvg 8gEajfWW6LyCE/G5CT09rNP6lVZFt//4+txzv4OTWApLvOXqL2WSrSP2qwEErzd4 /juKr7BBydIjxMTvju1rh0g1npYg0QXBKyYnvj0974VkaT2IMcK1PoV73tC8IKqG 1HgQs4z20uPIJEOOpWI7VmjkswIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEHEkZ0h Ihw7a0M/D9vJX2yYTv6gMB8GA1UdIwQYMBaAFF/CeSz0QLhXg51oinC2Dwdiq6s1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDMwNC9BQjgyNDlCMjFE OEUxMUUyQjE4MjI2RUQwOEIwMkNEMi9YOEo1TFBSQXVGZURuV2lLY0xZUEIyS3Jx elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g4SjVMUFJBdUZlRG5XaUtjTFlQQjJLcnF6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDMwNC9BQjgyNDlCMjFEOEUxMUUyQjE4MjI2RUQwOEIwMkNEMi9YOEo1TFBSQXVG ZURuV2lLY0xZUEIyS3JxelUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVGnKEPaYDqOCsOxW3iquZwc/Gs8xcJYRtzTT/nne6X7FmHaxSvSoB/n00f67 MNCMKGYMlDoqjrbBYXs4hI3rAwT6uDZi+4CI4sM2UjUT18hKwHWFAsf+fpVz6Hq8 2AXanYdtengVfeOslKeDj3jwpvcCJjezkMtiKU1EkH5xzPqsUjPGFPZYHozPkPjz W/tMJKyfJdMVT7YceEoq7mblGvR8zOg1yaYfxasiYO4zqjQGT6JJ2GD3MQOPzzDJ EX8hmyQCfILgDUNKxY4F534RURB+bnyyfH0L7jVTUplqeLk4nfJY0w9zBADk+rYg FSSKmeRIDXQPDOcVtZgHbFa8iA== -----END CERTIFICATE-----Generated at Mon Apr 6 09:55:06 2026 by rpki-client