$ rpki-client -vvf rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft File: xCIPUDVWR7fICyzovHEmqsLiLTc.mft (raw, json) Hash identifier: gdrYlNkKV8oguMK1aHB5/PoXS18rdnXf+7sNQFw59XU= Subject key identifier: BA:A4:02:01:F4:BF:A8:E2:10:80:06:72:1E:B4:8E:A5:BE:8C:08:E5 Authority key identifier: C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 Certificate issuer: /CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Certificate serial: 3561 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft Manifest number: 3539 Signing time: Thu 12 Mar 2026 14:18:22 +0000 Manifest this update: Thu 12 Mar 2026 14:18:21 +0000 Manifest next update: Thu 19 Mar 2026 14:18:21 +0000 Files and hashes: 1: xCIPUDVWR7fICyzovHEmqsLiLTc.crl (hash: 4s6EuBbtS1sHQGThLTlwi17qvzab6O05j0JmzMO8fxY=) 2: 24D6C7C4F1FD11F0B766F66D486F56BC.roa (hash: x81djxirc4TZ7LBWsfaYDwm6dEqBh0TJcdGGB4pBfl8=) 3: D7ABA864DFE611ED8872DE0EC4F9AE02.roa (hash: uTwgdWpEtjV1ALHAM8OqP3F4AfwGv1rbWW6ZiHZWVyg=) 4: 8C2774CA0F3511EF93020023C4F9AE02.roa (hash: kemAcHttVJ/67VTbPvla1uxc5lCQKg8ypYYWxu51V6g=) 5: 074A1CE2F1FD11F0BDA01C59486F56BC.roa (hash: PbRvsMPaciwk4aKrh1Gz2k+CLsuW70foiScaNfZvE3I=) 6: 24C4305A7CD911EEB0B4C962C4F9AE02.roa (hash: x1jt7itPjnC6MQbNejsBQgbeqBxLH2bZYuNPNtNXfYM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 14:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13665 (0x3561) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D64D, serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Validity Not Before: Mar 12 14:18:21 2026 GMT Not After : Mar 19 14:18:21 2026 GMT Subject: CN=69b2cb2d-a041 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:43:a4:51:87:19:72:1c:bb:e1:39:f8:6b:19: 43:2f:33:c1:77:d7:75:6b:fa:23:75:2f:e3:f3:5a: d0:38:12:bc:45:4f:0c:a9:7f:bd:7a:8a:a1:8d:cb: 13:20:af:72:e3:3b:71:17:e4:f1:b0:f2:4f:f6:c6: 06:31:bf:6d:32:9a:3e:6b:c0:cf:44:cb:3c:f8:01: f2:89:43:4e:4a:37:75:a6:c6:51:50:2f:f5:18:1c: bd:c4:89:3a:55:ea:1d:da:3b:c6:a2:2e:3d:04:26: 39:cb:97:0d:96:af:8a:c9:20:f5:7e:41:70:7c:e0: 14:da:59:b7:0a:5f:8c:18:d2:f5:1b:57:ea:8a:7c: d5:c9:cf:44:e6:ad:4b:2b:74:f4:cb:c9:37:fd:a7: 63:70:2f:fa:95:f9:da:fd:da:be:2d:fb:7a:53:63: 9c:2d:00:80:28:2a:fc:02:9a:43:ef:16:7e:5b:11: 66:1d:3e:97:18:7d:cd:6b:29:54:49:45:73:34:a2: db:41:b5:79:ab:0b:78:15:3f:a1:c8:4d:8e:d6:44: 19:83:01:39:60:1b:f3:6c:5e:a7:cb:cd:e0:25:b7: 20:e9:0c:1c:5d:f3:e5:d6:55:7e:8a:50:d3:b5:d4: 81:b9:df:35:fd:a1:5f:2f:ae:03:ae:2b:b3:04:a2: 47:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:A4:02:01:F4:BF:A8:E2:10:80:06:72:1E:B4:8E:A5:BE:8C:08:E5 X509v3 Authority Key Identifier: keyid:C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:46:71:86:24:7a:39:40:30:59:9e:84:3e:43:e6:76:19:35: 5c:ee:bf:56:83:9d:f0:27:f2:04:52:10:ba:fe:25:84:8f:31: 2b:7e:d8:38:16:c1:68:1b:ab:74:1a:d5:05:4d:22:50:23:11: cd:ed:56:83:7f:7e:2c:45:e3:59:36:aa:e0:40:5b:35:69:bd: 40:43:2a:30:6f:6f:37:dc:bf:26:c9:79:19:a9:f8:f0:57:5f: ba:28:18:78:04:eb:ef:e0:b8:f2:33:be:99:68:3c:5f:c7:37: 9e:e8:e7:86:e3:e6:bd:69:22:14:13:b4:59:90:67:23:b4:c2: 77:b6:40:de:14:cc:b8:8e:55:e1:d5:d1:cf:e1:41:47:7c:ad: 67:76:c4:7a:89:b5:ac:9c:b7:56:b8:9a:5d:0d:3e:86:2e:99: d9:27:76:a9:a6:75:89:6a:7e:76:88:db:d0:5f:61:cf:fc:2a: c5:a7:24:6f:0a:24:da:06:86:d5:c1:83:27:e1:48:ca:65:52: 91:88:c6:c9:a3:f5:ed:89:9e:58:37:df:c7:9d:dc:1f:4f:4a: 36:26:fc:95:fd:98:37:67:d1:c6:ea:53:c8:09:7e:4c:2d:5f: 7b:a5:30:48:f2:56:20:7d:86:d2:b7:da:83:7d:94:03:66:f0: 59:7c:82:3d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2NEQxMTAvBgNVBAUTKEM0MjIwRjUwMzU1NjQ3QjdDODBCMkNFOEJDNzEyNkFB QzJFMjJEMzcwHhcNMjYwMzEyMTQxODIxWhcNMjYwMzE5MTQxODIxWjAYMRYwFAYD VQQDEw02OWIyY2IyZC1hMDQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0OkUYcZchy74Tn4axlDLzPBd9d1a/ojdS/j81rQOBK8RU8MqX+9eoqhjcsT IK9y4ztxF+TxsPJP9sYGMb9tMpo+a8DPRMs8+AHyiUNOSjd1psZRUC/1GBy9xIk6 Veod2jvGoi49BCY5y5cNlq+KySD1fkFwfOAU2lm3Cl+MGNL1G1fqinzVyc9E5q1L K3T0y8k3/adjcC/6lfna/dq+Lft6U2OcLQCAKCr8AppD7xZ+WxFmHT6XGH3NaylU SUVzNKLbQbV5qwt4FT+hyE2O1kQZgwE5YBvzbF6ny83gJbcg6QwcXfPl1lV+ilDT tdSBud81/aFfL64DriuzBKJHQQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLqkAgH0 v6jiEIAGch60jqW+jAjlMB8GA1UdIwQYMBaAFMQiD1A1Vke3yAss6LxxJqrC4i03 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDY0RC9EOTMzM0ZFNDFE NkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3ZklDeXpvdkhFbXFzTGlM VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDSVBVRFZXUjdmSUN5em92SEVtcXNMaUxUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDY0RC9EOTMzM0ZFNDFENkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3 ZklDeXpvdkhFbXFzTGlMVGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjkZxhiR6OUAwWZ6EPkPmdhk1XO6/VoOd8CfyBFIQuv4lhI8xK37YOBbBaBur dBrVBU0iUCMRze1Wg39+LEXjWTaq4EBbNWm9QEMqMG9vN9y/Jsl5Gan48FdfuigY eATr7+C48jO+mWg8X8c3nujnhuPmvWkiFBO0WZBnI7TCd7ZA3hTMuI5V4dXRz+FB R3ytZ3bEeom1rJy3VriaXQ0+hi6Z2Sd2qaZ1iWp+dojb0F9hz/wqxackbwok2gaG 1cGDJ+FIymVSkYjGyaP17YmeWDffx53cH09KNib8lf2YN2fRxupTyAl+TC1fe6Uw SPJWIH2G0rfag32UA2bwWXyCPQ== -----END CERTIFICATE-----Generated at Fri Mar 13 14:53:59 2026 by rpki-client