$ rpki-client -vvf rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft File: Xtho2ocq-NaWpcGp-ngp9lJzynk.mft (raw, json) Hash identifier: 8V6aB+wJo3yw+nCW3EwFJ70DrBzHveDHpbrs/B8z/Ds= Subject key identifier: 0E:AC:83:67:6E:A1:CD:DC:C1:55:69:80:20:68:79:90:15:E4:A7:22 Authority key identifier: 5E:D8:68:DA:87:2A:F8:D6:96:A5:C1:A9:FA:78:29:F6:52:73:CA:79 Certificate issuer: /CN=A9119B43/serialNumber=5ED868DA872AF8D696A5C1A9FA7829F65273CA79 Certificate serial: 0508 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft Manifest number: 04FD Signing time: Sun 01 Mar 2026 23:44:56 +0000 Manifest this update: Sun 01 Mar 2026 23:44:54 +0000 Manifest next update: Sun 08 Mar 2026 23:44:54 +0000 Files and hashes: 1: Xtho2ocq-NaWpcGp-ngp9lJzynk.crl (hash: I4Q1NQL+TtRQAtLONcI19qxLBaZYQLbIcoerz5wUMus=) 2: 6C27C19E4BFA11ECA6797F6DC4F9AE02.roa (hash: d542I90WWDGGQbicaXbMdjG+yHM90agVdnOM5BcvIy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.crl rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:44:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1288 (0x508) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119B43, serialNumber=5ED868DA872AF8D696A5C1A9FA7829F65273CA79 Validity Not Before: Mar 1 23:44:54 2026 GMT Not After : Mar 8 23:44:54 2026 GMT Subject: CN=69a4cf78-8e50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f3:8f:4b:42:ae:89:ae:a6:3f:7c:e7:ae:cb: 4e:62:54:42:0a:a3:aa:95:be:52:2c:75:50:55:70: 16:f4:20:0f:d4:17:9a:57:a9:0c:60:ec:4a:27:ee: de:fa:63:7c:e5:ba:db:ea:d3:d2:0a:14:42:d4:59: e1:c7:f5:b5:ef:32:26:67:50:31:24:a2:b6:93:61: 30:ac:90:fb:f9:04:42:5f:92:a8:b5:c7:eb:a5:d0: 8b:f8:48:17:79:19:ea:51:5a:28:c5:bc:2e:06:cf: 78:d3:43:e0:cb:ab:70:c4:33:25:19:6a:4e:be:06: 8b:4c:e7:da:1f:a2:9d:85:98:9b:97:7c:d2:b0:1a: 9f:b7:3b:ae:f6:0e:b2:09:f5:b1:04:d5:60:f5:18: 72:36:65:e9:03:1b:47:a1:b1:1f:9a:30:e5:80:a2: 69:e1:d9:04:59:46:7a:28:46:fd:70:d6:62:22:df: 21:92:b6:47:6f:57:f1:eb:63:84:3b:9d:5e:33:e3: 14:5d:69:70:d2:14:17:11:2e:26:2d:c1:e1:dd:a1: 7c:48:03:c0:f8:17:77:29:81:c8:60:93:02:70:95: ca:38:e9:58:20:f7:0c:e5:5f:ec:42:4d:be:bb:7a: 3a:04:f7:6c:fb:71:95:1d:e3:15:a9:36:d0:72:8e: 10:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:AC:83:67:6E:A1:CD:DC:C1:55:69:80:20:68:79:90:15:E4:A7:22 X509v3 Authority Key Identifier: keyid:5E:D8:68:DA:87:2A:F8:D6:96:A5:C1:A9:FA:78:29:F6:52:73:CA:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:2a:37:c5:b8:3a:b9:0e:9c:d6:82:5d:b7:ca:ff:1f:f4:41: 8c:5c:85:d9:95:55:29:8d:f2:22:ec:e9:5c:1f:c6:28:d9:ac: ad:71:18:c0:5d:3a:df:11:02:cd:73:cd:34:58:27:86:44:40: 26:a5:20:79:15:eb:27:d0:4f:2c:12:f5:96:ed:60:87:e1:f7: 72:3a:ca:29:a5:0f:af:51:80:33:4e:5f:89:bd:2d:c0:5f:73: 56:01:41:bd:ed:a7:f4:13:64:80:9d:17:10:e8:99:f2:99:76: 2a:2f:e4:03:ae:63:15:b2:a0:84:03:d0:3a:30:bc:16:dc:f4: 4b:ed:21:b1:9d:7c:ed:72:7e:60:12:0d:3a:77:b6:82:5e:c1: 5b:7e:c8:a4:be:b3:d0:6d:ef:17:64:1b:d1:6a:15:4b:09:ec: 41:bd:77:35:86:c2:49:50:06:bb:c9:5b:8f:4f:61:88:29:2d: 67:4a:4c:7f:de:24:fa:1a:77:65:9f:66:70:5d:d5:09:aa:51: 05:19:82:1c:71:18:79:bc:a3:62:ed:f1:b9:94:af:c9:48:6e: c3:9b:15:5a:b5:ba:0d:0a:48:a7:73:b3:5d:ad:91:65:41:c4: b4:eb:28:9b:54:65:d6:b0:12:63:78:01:00:83:61:d7:61:df: d1:35:cd:d5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlCNDMxMTAvBgNVBAUTKDVFRDg2OERBODcyQUY4RDY5NkE1QzFBOUZBNzgyOUY2 NTI3M0NBNzkwHhcNMjYwMzAxMjM0NDU0WhcNMjYwMzA4MjM0NDU0WjAYMRYwFAYD VQQDEw02OWE0Y2Y3OC04ZTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnfOPS0Kuia6mP3znrstOYlRCCqOqlb5SLHVQVXAW9CAP1BeaV6kMYOxKJ+7e +mN85brb6tPSChRC1Fnhx/W17zImZ1AxJKK2k2EwrJD7+QRCX5KotcfrpdCL+EgX eRnqUVooxbwuBs9400Pgy6twxDMlGWpOvgaLTOfaH6KdhZibl3zSsBqftzuu9g6y CfWxBNVg9RhyNmXpAxtHobEfmjDlgKJp4dkEWUZ6KEb9cNZiIt8hkrZHb1fx62OE O51eM+MUXWlw0hQXES4mLcHh3aF8SAPA+Bd3KYHIYJMCcJXKOOlYIPcM5V/sQk2+ u3o6BPds+3GVHeMVqTbQco4QUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA6sg2du oc3cwVVpgCBoeZAV5KciMB8GA1UdIwQYMBaAFF7YaNqHKvjWlqXBqfp4KfZSc8p5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUI0My9FNUI4Mzk4MjRC M0ExMUVDOTkyRTgxNTBDNEY5QUUwMi9YdGhvMm9jcS1OYVdwY0dwLW5ncDlsSnp5 bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h0aG8yb2NxLU5hV3BjR3AtbmdwOWxKenluay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUI0My9FNUI4Mzk4MjRCM0ExMUVDOTkyRTgxNTBDNEY5QUUwMi9YdGhvMm9jcS1O YVdwY0dwLW5ncDlsSnp5bmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiyo3xbg6uQ6c1oJdt8r/H/RBjFyF2ZVVKY3yIuzpXB/GKNmsrXEYwF063xEC zXPNNFgnhkRAJqUgeRXrJ9BPLBL1lu1gh+H3cjrKKaUPr1GAM05fib0twF9zVgFB ve2n9BNkgJ0XEOiZ8pl2Ki/kA65jFbKghAPQOjC8Ftz0S+0hsZ187XJ+YBINOne2 gl7BW37IpL6z0G3vF2Qb0WoVSwnsQb13NYbCSVAGu8lbj09hiCktZ0pMf94k+hp3 ZZ9mcF3VCapRBRmCHHEYebyjYu3xuZSvyUhuw5sVWrW6DQpIp3OzXa2RZUHEtOso m1Rl1rASY3gBAINh12Hf0TXN1Q== -----END CERTIFICATE-----Generated at Mon Mar 2 20:15:51 2026 by rpki-client