$ rpki-client -vvf rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft File: XAq0JfK0I14cgVaDvWyOi3uAtyc.mft (raw, json) Hash identifier: FsAffwpXv+rz4YKCUFEIMZL7solB4qjiiMkBxT40/cI= Subject key identifier: 89:93:C3:13:A3:B5:E5:A1:35:DB:64:27:CA:23:54:7E:A0:AB:73:68 Authority key identifier: 5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 Certificate issuer: /CN=A917F8A9/serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Certificate serial: 0A1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft Manifest number: 0A03 Signing time: Sat 14 Mar 2026 19:28:42 +0000 Manifest this update: Sat 14 Mar 2026 19:28:42 +0000 Manifest next update: Sat 21 Mar 2026 19:28:42 +0000 Files and hashes: 1: XAq0JfK0I14cgVaDvWyOi3uAtyc.crl (hash: /mYDeLNmeN+6lEVKDf6B38mlAwgMjkDLJMkVIg44QgY=) 2: 0774A2C894F211EAB30E7682C4F9AE02.roa (hash: l2tsnXDfo/hIktpCNOIO2/elh/NggYLVtKn+htr+20w=) 3: 83DC30E0D0DB11EA9336962FC4F9AE02.roa (hash: 6ZGy644lUjSn/iRWamVdu/Cx4lbrco/8//Ud8xr+hK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 19:28:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2588 (0xa1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F8A9, serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Validity Not Before: Mar 14 19:28:42 2026 GMT Not After : Mar 21 19:28:42 2026 GMT Subject: CN=69b5b6ea-180a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:29:0e:78:be:3a:9c:e3:45:78:3f:5b:f6:46: e0:72:2a:82:88:47:02:8d:08:1b:35:32:ca:c5:72: e7:c0:b2:f6:7e:2c:36:14:48:99:72:62:52:f1:43: 61:d2:80:3c:26:24:c4:c4:5f:3d:7b:42:be:97:5a: 7c:24:e1:20:eb:c9:7f:c6:6a:5c:bb:6e:d3:fb:a0: 48:6b:b2:1b:d0:2a:b9:13:2f:5c:ef:9c:fd:94:11: 69:b5:5b:1b:73:6b:f2:f7:73:f6:56:f3:92:c7:bc: f7:ba:5a:2d:31:02:5e:c0:fa:21:77:51:15:12:d1: c4:74:b6:0f:f7:68:f4:b5:b7:17:9d:48:6f:87:ca: c0:b6:2d:fa:bb:6a:88:07:e6:d5:ff:d4:f3:68:f7: fa:8e:b6:5a:aa:97:d9:90:84:d7:5c:1c:66:b0:79: b8:2d:25:b8:7d:e8:04:61:30:99:fe:90:a3:9c:37: b6:a1:cf:1e:8c:7e:07:d9:09:85:1a:dc:5b:6e:85: e2:14:c2:fc:44:5b:f6:4f:85:53:94:a2:f0:27:be: 26:07:33:33:4e:58:f3:18:b3:a7:18:1b:b3:fc:c4: f7:f7:68:cc:0e:90:8c:6b:81:79:d2:75:e9:f2:1d: c6:fc:91:59:a0:b2:98:73:1a:3d:c3:1b:47:0f:f3: 99:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:93:C3:13:A3:B5:E5:A1:35:DB:64:27:CA:23:54:7E:A0:AB:73:68 X509v3 Authority Key Identifier: keyid:5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:27:c8:6f:30:78:32:58:ea:c9:42:69:bc:09:09:10:62:4e: 0f:73:fd:2b:15:d9:a2:c7:e8:95:e4:d7:91:82:28:cb:4d:39: 59:3b:58:f3:fa:5e:a4:53:b2:94:22:27:36:fc:d4:9a:fb:3d: d1:06:c4:2d:68:d6:60:f2:75:92:94:07:25:9b:37:c4:ff:5b: 30:57:10:44:eb:93:5f:9c:52:92:70:a8:93:d8:7c:a1:14:ca: b9:01:47:8a:67:da:e8:a8:a8:1a:3d:24:93:94:3e:20:4b:53: 6a:a2:d6:83:d9:77:23:36:cd:56:b2:d0:af:46:14:ae:52:9a: 99:f5:8e:ce:b8:33:df:a5:b4:4b:a4:1b:bf:9e:45:b7:fc:4d: 45:8a:bc:8a:cc:11:fc:db:d6:10:57:a8:3a:a5:22:b5:1c:bb: 28:ca:c7:5a:5f:3f:ec:bc:b7:a5:c0:de:04:2d:16:b0:78:08: 96:7a:cb:64:86:53:7c:ba:6f:60:1c:75:f8:1a:a3:8c:32:9d: 71:d7:4f:af:d0:78:78:e8:db:73:a9:92:45:e3:6b:72:cb:74: 74:f5:fc:41:fa:2f:74:43:a8:2e:55:be:bd:14:ec:ea:64:6d: 94:29:77:81:01:2b:c4:8b:29:fc:be:6f:d3:e4:8e:2c:1a:00: 3e:03:4f:87 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICChwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4QTkxMTAvBgNVBAUTKDVDMEFCNDI1RjJCNDIzNUUxQzgxNTY4M0JENkM4RThC N0I4MEI3MjcwHhcNMjYwMzE0MTkyODQyWhcNMjYwMzIxMTkyODQyWjAYMRYwFAYD VQQDEw02OWI1YjZlYS0xODBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCkOeL46nONFeD9b9kbgciqCiEcCjQgbNTLKxXLnwLL2fiw2FEiZcmJS8UNh 0oA8JiTExF89e0K+l1p8JOEg68l/xmpcu27T+6BIa7Ib0Cq5Ey9c75z9lBFptVsb c2vy93P2VvOSx7z3ulotMQJewPohd1EVEtHEdLYP92j0tbcXnUhvh8rAti36u2qI B+bV/9TzaPf6jrZaqpfZkITXXBxmsHm4LSW4fegEYTCZ/pCjnDe2oc8ejH4H2QmF GtxbboXiFML8RFv2T4VTlKLwJ74mBzMzTljzGLOnGBuz/MT392jMDpCMa4F50nXp 8h3G/JFZoLKYcxo9wxtHD/OZiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFImTwxOj teWhNdtkJ8ojVH6gq3NoMB8GA1UdIwQYMBaAFFwKtCXytCNeHIFWg71sjot7gLcn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjhBOS8yQUEwNDMzMDk0 RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkxNGNnVmFEdld5T2kzdUF0 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBcTBKZkswSTE0Y2dWYUR2V3lPaTN1QXR5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjhBOS8yQUEwNDMzMDk0RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkx NGNnVmFEdld5T2kzdUF0eWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOSfIbzB4MljqyUJpvAkJEGJOD3P9KxXZosfoleTXkYIoy005WTtY8/pepFOy lCInNvzUmvs90QbELWjWYPJ1kpQHJZs3xP9bMFcQROuTX5xSknCok9h8oRTKuQFH imfa6KioGj0kk5Q+IEtTaqLWg9l3IzbNVrLQr0YUrlKamfWOzrgz36W0S6Qbv55F t/xNRYq8iswR/NvWEFeoOqUitRy7KMrHWl8/7Ly3pcDeBC0WsHgIlnrLZIZTfLpv YBx1+BqjjDKdcddPr9B4eOjbc6mSReNrcst0dPX8QfovdEOoLlW+vRTs6mRtlCl3 gQErxIsp/L5v0+SOLBoAPgNPhw== -----END CERTIFICATE-----Generated at Sun Mar 15 02:33:49 2026 by rpki-client