$ rpki-client -vvf rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft File: XLKYvBpwUBeAXFYfCQoNR5UOar0.mft (raw, json) Hash identifier: dHTHL6pae4HuEp9bTV3CeBbKOWeSJxNixmNuLtMEWeA= Subject key identifier: 7F:BD:99:BC:E5:64:F5:8F:7D:DB:88:4F:AE:F5:C9:F4:BE:BE:3E:74 Authority key identifier: 5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD Certificate issuer: /CN=A912BFC5/serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Certificate serial: 2594 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft Manifest number: 2594 Signing time: Sun 01 Mar 2026 23:53:10 +0000 Manifest this update: Sun 01 Mar 2026 23:53:09 +0000 Manifest next update: Sun 08 Mar 2026 23:53:09 +0000 Files and hashes: 1: XLKYvBpwUBeAXFYfCQoNR5UOar0.crl (hash: QZ1/mdcSGU0zTTVJYRJfPNz5nKLz5+bGUWQwAYnNVOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:53:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9620 (0x2594) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BFC5, serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Validity Not Before: Mar 1 23:53:09 2026 GMT Not After : Mar 8 23:53:09 2026 GMT Subject: CN=69a4d166-ac9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7a:0e:c0:80:fe:cc:bb:fb:d4:00:a6:f8:d7: 09:d4:cd:c1:c1:27:dd:f0:9a:3d:a1:c2:85:3d:7f: 6c:c4:96:fd:e0:12:98:3c:fc:6a:50:ef:93:2d:a9: 74:d4:19:c9:72:17:9e:e3:45:a4:07:f4:7e:a7:5b: 75:b4:6d:cf:f7:30:1d:f2:16:8c:b6:6a:fc:7a:1a: 92:b6:62:8f:58:01:6c:48:20:dd:f6:06:74:9a:c0: eb:bc:b7:c9:ac:89:e6:d2:08:e9:f5:c9:69:56:f7: 07:50:cb:66:a5:ed:3d:ed:52:d4:ae:22:cc:5f:cf: 69:d5:58:f2:4f:6f:66:8c:07:d4:98:16:5f:91:d5: 9d:ae:0e:b1:44:c7:84:96:1d:65:36:fb:f5:8f:bc: fb:7f:47:22:55:54:f5:dd:fb:b2:61:63:f7:c2:3b: 7e:27:45:c7:5b:4b:c6:7d:14:6d:4a:b4:b3:73:47: 0d:f7:d3:dc:de:69:d9:75:df:9a:be:0f:63:fd:63: 6f:33:e2:78:e7:7c:ea:d1:b1:81:41:40:a5:9d:f5: 61:ac:05:5a:11:e4:20:2a:d7:99:e0:bb:12:e7:b7: fe:ff:64:34:aa:ea:7c:f8:54:fd:ae:00:17:04:d9: c1:d9:72:06:c3:93:05:8f:a3:d9:a3:90:c6:a5:5b: 84:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:BD:99:BC:E5:64:F5:8F:7D:DB:88:4F:AE:F5:C9:F4:BE:BE:3E:74 X509v3 Authority Key Identifier: keyid:5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:11:2b:2b:90:75:fe:48:75:86:f1:e1:d9:d4:6c:d0:32:3d: b8:af:e9:99:25:08:c8:c5:b9:f8:a8:a3:ac:e0:15:37:b5:bc: 30:51:c8:12:d0:b9:ee:68:2f:f6:88:f2:1b:f0:5a:0c:2f:df: 99:5f:57:7a:81:1c:5c:13:8b:58:56:94:9f:80:61:89:34:85: 32:5f:43:fe:20:12:36:99:42:b5:cb:f4:3b:9b:30:bf:11:c2: 78:9a:87:47:bd:ca:47:32:75:c4:80:d3:d9:7f:97:b9:e3:ef: 42:ad:8b:12:94:5b:dd:e9:46:43:21:37:c7:d5:e6:c8:87:60: 0e:71:66:d6:65:5d:3a:e5:c4:4e:1e:27:90:dc:07:6c:c1:c7: 35:fd:b0:fd:03:a0:d7:9d:ef:42:7c:da:35:1e:5e:df:fb:32: 07:55:32:f8:49:e6:34:25:85:bb:65:ac:5b:1d:2b:39:f7:6e: 3b:76:00:2c:f2:3b:b7:48:ac:ed:0b:41:4d:59:74:c5:1d:2b: e7:c3:67:32:bd:75:36:b3:b2:f9:85:32:6a:46:31:55:fd:a0: 03:15:81:d9:65:35:dc:fa:6a:5e:2d:18:5b:4d:a5:12:9a:cd: 5d:b0:56:85:0d:12:25:f2:a2:19:81:dd:7c:05:da:a6:03:ee: ad:34:de:4a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJGQzUxMTAvBgNVBAUTKDVDQjI5OEJDMUE3MDUwMTc4MDVDNTYxRjA5MEEwRDQ3 OTUwRTZBQkQwHhcNMjYwMzAxMjM1MzA5WhcNMjYwMzA4MjM1MzA5WjAYMRYwFAYD VQQDEw02OWE0ZDE2Ni1hYzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3oOwID+zLv71ACm+NcJ1M3BwSfd8Jo9ocKFPX9sxJb94BKYPPxqUO+TLal0 1BnJchee40WkB/R+p1t1tG3P9zAd8haMtmr8ehqStmKPWAFsSCDd9gZ0msDrvLfJ rInm0gjp9clpVvcHUMtmpe097VLUriLMX89p1VjyT29mjAfUmBZfkdWdrg6xRMeE lh1lNvv1j7z7f0ciVVT13fuyYWP3wjt+J0XHW0vGfRRtSrSzc0cN99Pc3mnZdd+a vg9j/WNvM+J453zq0bGBQUClnfVhrAVaEeQgKteZ4LsS57f+/2Q0qup8+FT9rgAX BNnB2XIGw5MFj6PZo5DGpVuEqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFH+9mbzl ZPWPfduIT671yfS+vj50MB8GA1UdIwQYMBaAFFyymLwacFAXgFxWHwkKDUeVDmq9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkZDNS8zRjM0MjAzRTI5 MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VCZUFYRllmQ1FvTlI1VU9h cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hMS1l2QnB3VUJlQVhGWWZDUW9OUjVVT2FyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkZDNS8zRjM0MjAzRTI5MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VC ZUFYRllmQ1FvTlI1VU9hcjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAChErK5B1/kh1hvHh2dRs0DI9uK/pmSUIyMW5+KijrOAVN7W8MFHIEtC57mgv 9ojyG/BaDC/fmV9XeoEcXBOLWFaUn4BhiTSFMl9D/iASNplCtcv0O5swvxHCeJqH R73KRzJ1xIDT2X+XuePvQq2LEpRb3elGQyE3x9XmyIdgDnFm1mVdOuXETh4nkNwH bMHHNf2w/QOg153vQnzaNR5e3/syB1Uy+EnmNCWFu2WsWx0rOfduO3YALPI7t0is 7QtBTVl0xR0r58NnMr11NrOy+YUyakYxVf2gAxWB2WU13PpqXi0YW02lEprNXbBW hQ0SJfKiGYHdfAXapgPurTTeSg== -----END CERTIFICATE-----Generated at Mon Mar 2 12:00:33 2026 by rpki-client