$ rpki-client -vvf rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft File: XKzlv2VarPfLxicsXGl_N3oGzow.mft (raw, json) Hash identifier: 8WnDoPg9t9LXwjsji/7ibxltiNhbIf/XQITRY3lqTXA= Subject key identifier: B4:88:D6:F6:FC:56:80:E9:6C:C8:64:7F:FF:9B:5D:DF:6D:8C:17:7B Authority key identifier: 5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C Certificate issuer: /CN=A917C9BF/serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Certificate serial: 012C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft Manifest number: 0126 Signing time: Sun 05 Apr 2026 05:07:54 +0000 Manifest this update: Sun 05 Apr 2026 05:07:53 +0000 Manifest next update: Sun 12 Apr 2026 05:07:53 +0000 Files and hashes: 1: XKzlv2VarPfLxicsXGl_N3oGzow.crl (hash: OYTop0omKPNiWGCLut5Ywlr5LnFk7+tNRiLmRYZxMrU=) 2: 15875DC27B5E11EFAB71253BC4F9AE02.roa (hash: zbGwECDik3OAcu543q9pzZB/RKrVhWGvUuUO/9+kdaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 05:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C9BF, serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Validity Not Before: Apr 5 05:07:53 2026 GMT Not After : Apr 12 05:07:53 2026 GMT Subject: CN=69d1ee2a-3fe9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9e:91:fa:10:12:a6:43:96:20:7c:f3:19:b3: f5:dc:6f:4f:ca:75:c2:48:cc:2f:cd:08:31:f6:f2: 79:4f:1c:be:70:a4:07:da:1e:75:f5:b7:22:b4:73: 8a:5f:fe:4e:94:2e:23:75:e5:d3:1e:34:a9:cf:db: 1d:75:ca:bf:1d:c9:ab:4c:35:3c:e4:fb:f3:98:ee: 53:b3:ae:73:05:b9:72:64:27:62:7b:f3:e4:9a:07: 03:28:14:54:1c:d3:4d:f4:ff:60:7a:65:a1:21:1e: db:9b:26:8f:06:76:9c:07:df:b2:f2:7e:56:69:00: 14:35:2b:f9:a7:36:7a:61:40:2d:5a:9f:fe:a2:ac: 39:4d:42:b7:24:41:02:b3:5b:20:ca:00:c0:4a:ab: 0d:20:54:5b:c9:10:45:10:e3:fe:94:35:83:ad:89: 2b:f5:c6:16:ce:4d:56:44:42:a5:b3:2c:9f:54:b6: b6:0d:d8:12:76:13:cd:8d:33:7d:58:76:b3:3b:c0: cd:79:f4:0d:34:3a:b2:92:bd:1d:f3:02:1c:1d:d7: b8:9b:35:3a:d1:dc:40:5a:3e:fb:1d:f9:62:43:1a: 11:fa:50:90:98:f3:ac:f4:9e:de:09:b9:81:b6:a5: 66:f5:81:2b:ce:85:05:ba:18:a7:43:92:34:a7:2d: 75:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:88:D6:F6:FC:56:80:E9:6C:C8:64:7F:FF:9B:5D:DF:6D:8C:17:7B X509v3 Authority Key Identifier: keyid:5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:ce:d4:29:ce:d5:d9:a8:bd:b0:4a:fa:e3:3f:a6:ea:9a:c0: f3:8e:ac:96:05:e7:2d:74:5f:5d:39:c5:73:fe:d5:c1:c4:da: a0:2d:e8:eb:85:e4:55:22:a0:fa:e5:eb:e8:96:83:89:e8:11: 00:72:21:a5:c7:22:88:8b:7d:1f:8b:47:d7:fe:3a:76:21:f5: 48:30:a7:c5:01:54:02:31:d9:da:96:70:5d:11:6e:cb:7d:fe: 4a:f9:13:3b:48:33:4f:e2:a2:68:25:c6:e9:a2:06:b0:68:01: d0:9b:fe:e5:c0:b3:25:c6:3e:85:77:be:c7:05:64:1c:bc:18: 79:69:b5:aa:d5:0d:27:ae:fc:d8:12:f6:4c:e5:b7:83:44:d7: d0:e2:99:14:8f:a4:2c:d6:9d:77:33:e4:7c:4d:fb:88:0b:40: 9d:53:e5:7b:52:47:ea:a2:0e:6e:f4:18:a6:6f:5c:29:e8:c2: 33:f2:31:4e:9a:f9:ca:ef:e2:2a:93:19:de:2f:9d:47:7a:b5: 8a:a5:6f:02:87:27:a2:d1:46:57:02:5e:a9:81:57:07:2b:16: db:29:6e:5a:77:df:ea:fd:2a:2f:87:0a:02:31:76:07:13:d9: 62:db:d6:92:d3:f7:f2:ef:c2:b9:6e:4d:1b:90:2c:0c:b8:1c: 00:91:c2:11 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5QkYxMTAvBgNVBAUTKDVDQUNFNUJGNjU1QUFDRjdDQkM2MjcyQzVDNjk3RjM3 N0EwNkNFOEMwHhcNMjYwNDA1MDUwNzUzWhcNMjYwNDEyMDUwNzUzWjAYMRYwFAYD VQQDEw02OWQxZWUyYS0zZmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZ6R+hASpkOWIHzzGbP13G9PynXCSMwvzQgx9vJ5Txy+cKQH2h519bcitHOK X/5OlC4jdeXTHjSpz9sddcq/HcmrTDU85PvzmO5Ts65zBblyZCdie/PkmgcDKBRU HNNN9P9gemWhIR7bmyaPBnacB9+y8n5WaQAUNSv5pzZ6YUAtWp/+oqw5TUK3JEEC s1sgygDASqsNIFRbyRBFEOP+lDWDrYkr9cYWzk1WREKlsyyfVLa2DdgSdhPNjTN9 WHazO8DNefQNNDqykr0d8wIcHde4mzU60dxAWj77HfliQxoR+lCQmPOs9J7eCbmB tqVm9YErzoUFuhinQ5I0py11xQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLSI1vb8 VoDpbMhkf/+bXd9tjBd7MB8GA1UdIwQYMBaAFFys5b9lWqz3y8YnLFxpfzd6Bs6M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzlCRi9CRTFENEEzNDdC NEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQZkx4aWNzWEdsX04zb0d6 b3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLemx2MlZhclBmTHhpY3NYR2xfTjNvR3pvdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzlCRi9CRTFENEEzNDdCNEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQ Zkx4aWNzWEdsX04zb0d6b3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANc7UKc7V2ai9sEr64z+m6prA846slgXnLXRfXTnFc/7VwcTaoC3o64XkVSKg +uXr6JaDiegRAHIhpcciiIt9H4tH1/46diH1SDCnxQFUAjHZ2pZwXRFuy33+SvkT O0gzT+KiaCXG6aIGsGgB0Jv+5cCzJcY+hXe+xwVkHLwYeWm1qtUNJ6782BL2TOW3 g0TX0OKZFI+kLNaddzPkfE37iAtAnVPle1JH6qIObvQYpm9cKejCM/IxTpr5yu/i KpMZ3i+dR3q1iqVvAocnotFGVwJeqYFXBysW2yluWnff6v0qL4cKAjF2BxPZYtvW ktP38u/CuW5NG5AsDLgcAJHCEQ== -----END CERTIFICATE-----Generated at Mon Apr 6 09:54:55 2026 by rpki-client