$ rpki-client -vvf rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft File: xNdQnlMs4vbky06OXDwia6MVTm8.mft (raw, json) Hash identifier: oQGvNpJJhYhRfvMRWURB/vlTK4manxCWhQXhCrEPoPA= Subject key identifier: 8D:7C:C0:58:E9:12:3C:9F:AA:2D:44:A6:F3:90:5F:F1:62:30:46:76 Authority key identifier: C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F Certificate issuer: /CN=A912AF0B/serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Certificate serial: 112A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft Manifest number: 110F Signing time: Sat 28 Feb 2026 17:21:42 +0000 Manifest this update: Sat 28 Feb 2026 17:21:42 +0000 Manifest next update: Sat 07 Mar 2026 17:21:42 +0000 Files and hashes: 1: xNdQnlMs4vbky06OXDwia6MVTm8.crl (hash: x8L0iwBgVDlW7jtPxv8Dauj7tWLMfLonxJ1ixdNRNgk=) 2: 9FC6F664BE2A11EFA17DA82CC4F9AE02.roa (hash: AaORu8sCMwbv8JHtt5/RekZXiyN9Tg46Q6eaQZHNsHU=) 3: 1803FFC65E5F11EBBE37FA4CC4F9AE02.roa (hash: eUt1E2TLbdx/xbzWyASK22uYzePTztkTbdss+ADEaLg=) 4: 21151EF0A8C411EC8F560C42C4F9AE02.roa (hash: eTNVjRr/aSchkaouKrk/Oq/42y0wRZtV7uyB0zYEbrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 17:21:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4394 (0x112a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AF0B, serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Validity Not Before: Feb 28 17:21:42 2026 GMT Not After : Mar 7 17:21:42 2026 GMT Subject: CN=69a32426-641e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:1b:ac:d2:73:85:e0:5b:e7:83:67:74:df:45: 13:5a:25:e0:e2:c8:3a:31:87:8d:33:cf:b6:e2:35: 56:d8:76:3e:5d:2a:83:d8:5c:64:b3:84:54:53:90: 7c:ad:c5:94:b2:22:3f:43:cd:f2:93:af:95:cc:a9: f4:42:64:02:06:e0:3e:8c:8f:52:3a:9b:71:7c:97: 1a:38:57:d8:9d:44:44:51:0e:06:03:4c:9c:80:02: 04:9d:74:ff:cb:31:d6:50:d7:83:a2:30:f6:0a:26: 77:95:e5:3a:92:a1:1e:42:59:6b:61:6c:a2:aa:a5: aa:19:84:26:f2:5a:58:c9:3f:a9:42:0a:be:87:fb: e6:b6:94:70:78:b6:45:8f:45:53:fe:9b:74:eb:8c: 72:77:a6:42:61:c1:61:19:20:ac:ae:48:d6:a4:c6: 0d:87:20:3d:c8:3c:f6:a1:8b:94:d7:9a:61:f4:36: 9e:ce:e5:93:b0:ff:a5:1e:2b:a8:c6:cc:69:40:e4: fa:04:21:a3:2b:c3:b0:68:38:da:f1:4f:7a:e9:86: a8:83:45:1a:fb:ff:a8:d5:50:6b:83:a3:9c:0b:69: f1:47:19:0d:dc:e7:7a:b5:17:bb:14:4b:ce:2c:cf: bb:69:d9:9b:63:75:c3:81:94:e9:e9:45:9f:27:db: 20:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:7C:C0:58:E9:12:3C:9F:AA:2D:44:A6:F3:90:5F:F1:62:30:46:76 X509v3 Authority Key Identifier: keyid:C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:1d:9a:df:61:46:9b:34:96:ab:69:83:3d:cc:05:06:11:8d: e3:2e:50:17:4f:c3:2a:9e:2f:2e:f1:d6:0e:a0:b6:a7:dd:fd: 20:4e:eb:e8:e8:b1:eb:a8:66:30:d5:b0:0a:b4:94:ff:46:97: 31:c8:2a:d8:fc:3a:83:cd:30:6a:0c:64:78:26:9e:a5:01:b2: d5:90:75:d9:58:31:6d:71:5f:84:c8:34:79:c2:b5:4f:7b:37: df:3b:7d:7c:50:34:a1:95:aa:7f:14:d6:a5:59:c1:b7:7a:38: 3e:3a:a8:0a:2f:e9:8f:62:8b:db:83:68:7f:e7:24:58:f5:67: 2e:c4:c3:f8:af:64:c9:cf:9a:7e:1c:f0:e1:f5:98:b0:be:b9: a5:28:5f:9d:8a:89:2d:da:19:58:b0:cb:9c:5f:ba:46:3b:a5: df:df:e5:5c:1b:aa:23:50:88:a2:bd:ba:df:6f:50:21:53:d2: 68:e9:ae:bc:3f:22:1c:a7:d1:b9:11:32:d0:2b:e3:a0:41:93: d4:5d:9b:9d:1f:2a:bf:99:16:47:30:e3:c7:20:dd:ef:e0:f4: fc:de:42:80:2b:eb:a5:00:c3:4b:26:57:bf:a0:a3:00:4a:f3: 63:93:c8:03:8f:17:6d:b6:db:4a:15:cd:47:f6:dd:81:c3:34: f0:fb:31:ee -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICESowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFGMEIxMTAvBgNVBAUTKEM0RDc1MDlFNTMyQ0UyRjZFNENCNEU4RTVDM0MyMjZC QTMxNTRFNkYwHhcNMjYwMjI4MTcyMTQyWhcNMjYwMzA3MTcyMTQyWjAYMRYwFAYD VQQDDA02OWEzMjQyNi02NDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xus0nOF4Fvng2d030UTWiXg4sg6MYeNM8+24jVW2HY+XSqD2Fxks4RUU5B8 rcWUsiI/Q83yk6+VzKn0QmQCBuA+jI9SOptxfJcaOFfYnUREUQ4GA0ycgAIEnXT/ yzHWUNeDojD2CiZ3leU6kqEeQllrYWyiqqWqGYQm8lpYyT+pQgq+h/vmtpRweLZF j0VT/pt064xyd6ZCYcFhGSCsrkjWpMYNhyA9yDz2oYuU15ph9DaezuWTsP+lHiuo xsxpQOT6BCGjK8OwaDja8U966Yaog0Ua+/+o1VBrg6OcC2nxRxkN3Od6tRe7FEvO LM+7admbY3XDgZTp6UWfJ9sgWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI18wFjp Ejyfqi1EpvOQX/FiMEZ2MB8GA1UdIwQYMBaAFMTXUJ5TLOL25MtOjlw8ImujFU5v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUYwQi9CNTk0MTlEMjMy RUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2Ymt5MDZPWER3aWE2TVZU bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOZFFubE1zNHZia3kwNk9YRHdpYTZNVlRtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUYwQi9CNTk0MTlEMjMyRUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2 Ymt5MDZPWER3aWE2TVZUbTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAex2a32FGmzSWq2mDPcwFBhGN4y5QF0/DKp4vLvHWDqC2p939IE7r6Oix66hm MNWwCrSU/0aXMcgq2Pw6g80wagxkeCaepQGy1ZB12VgxbXFfhMg0ecK1T3s33zt9 fFA0oZWqfxTWpVnBt3o4PjqoCi/pj2KL24Nof+ckWPVnLsTD+K9kyc+afhzw4fWY sL65pShfnYqJLdoZWLDLnF+6Rjul39/lXBuqI1CIor26329QIVPSaOmuvD8iHKfR uREy0CvjoEGT1F2bnR8qv5kWRzDjxyDd7+D0/N5CgCvrpQDDSyZXv6CjAErzY5PI A48XbbbbShXNR/bdgcM08Psx7g== -----END CERTIFICATE-----Generated at Sun Mar 1 23:57:57 2026 by rpki-client