$ rpki-client -vvf rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft File: xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft (raw, json) Hash identifier: MhsjpX1OUupafFCBFCPqVzy7a84GQSRu++2gE4Pi114= Subject key identifier: F6:54:6D:51:16:2E:C8:3B:C1:EE:A7:16:71:1B:AA:65:88:42:DE:EC Authority key identifier: C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 Certificate issuer: /CN=A912D1D5/serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Certificate serial: 023A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft Manifest number: 022F Signing time: Mon 02 Mar 2026 00:23:04 +0000 Manifest this update: Mon 02 Mar 2026 00:23:03 +0000 Manifest next update: Mon 09 Mar 2026 00:23:03 +0000 Files and hashes: 1: xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl (hash: 1EanzDYUEVSsRW73eLQfUzg2YUFF6zatjbiIohJFqP8=) 2: 19E19DA0E5CE11EDB697BC74C4F9AE02.roa (hash: o4MIbjV7bEKRdqQSG3TgsvtbWH+YQ+ah1raxjNrzdVA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:22:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 570 (0x23a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D1D5, serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Validity Not Before: Mar 2 00:23:03 2026 GMT Not After : Mar 9 00:23:03 2026 GMT Subject: CN=69a4d868-d4ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c9:93:e9:5f:77:0d:57:53:fd:76:88:fa:b3: 88:fd:71:35:52:d6:4d:53:9c:a9:30:d0:7f:a1:d2: 4d:0a:90:d1:61:55:68:e6:ae:e5:7b:07:9d:f0:66: ef:54:9b:8b:97:e2:7f:33:0e:b4:36:6e:a4:16:b7: 01:cf:4a:62:ce:01:93:4c:28:88:9e:49:d1:97:26: 4d:27:89:8a:e4:d6:30:b9:b4:92:82:4a:52:69:14: 8d:83:28:6c:9b:27:a0:e9:c4:ba:b4:33:0e:d5:ae: ea:53:36:a5:39:83:ad:4a:d0:f4:08:b4:04:80:14: bd:a9:25:9a:24:2f:68:13:cb:8c:1d:db:d3:d7:85: 86:32:20:d1:4d:5b:00:34:f0:58:af:26:50:9d:65: 60:8e:61:c2:13:f2:68:50:1e:39:1a:19:a8:95:ea: 8c:18:cd:0a:34:b6:61:e8:ae:2f:a4:b7:7f:15:7e: 92:05:91:ed:29:e7:2b:04:72:4f:c5:86:45:32:64: 05:f8:81:48:ae:3e:78:90:3f:c6:df:f2:23:2b:9b: f7:79:9a:3d:c5:b9:d0:e2:2d:39:1f:86:73:30:b6: 51:8e:89:ea:0e:75:1e:71:17:f1:13:1a:0b:db:d6: 31:16:dd:41:6d:5e:a5:b6:17:26:fc:b8:bb:c0:3d: d3:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:54:6D:51:16:2E:C8:3B:C1:EE:A7:16:71:1B:AA:65:88:42:DE:EC X509v3 Authority Key Identifier: keyid:C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:1d:ab:3b:4a:0e:53:d0:4f:a9:83:5f:29:47:e5:ee:dc:56: f7:f0:d2:6c:a1:bc:e6:4a:08:5a:81:fd:d8:ba:c2:3f:7b:8e: 6e:f0:f8:5e:c4:26:3f:bf:6f:ad:73:3c:51:09:63:1b:14:71: 6c:68:a2:58:8c:7f:71:f6:bf:e1:67:c8:03:d5:0f:0f:32:d1: 38:dc:01:c0:ef:28:27:51:6e:a9:f1:3c:e6:30:84:6c:5a:4b: ca:81:cd:0d:57:f0:57:3a:0d:63:46:32:2b:e6:98:91:30:13: 5f:ff:f0:50:37:e2:f1:08:e9:b8:8c:70:dc:48:6b:49:da:79: 90:a9:aa:74:ee:e0:1c:d5:cd:42:c2:d9:f3:58:55:79:9e:0f: f0:15:b6:dd:ee:f9:04:5a:65:14:f1:1b:19:4a:cf:6f:ba:68: 8f:fa:71:c2:61:56:30:eb:d5:71:6b:37:57:7e:09:a8:ff:fb: f6:d9:7d:82:3a:b3:3f:8f:1f:d7:5a:f9:8e:31:a3:50:cd:e3: ec:e7:a8:51:79:60:f8:a1:f2:6e:ba:48:3c:7c:42:bc:1b:63: 7d:89:35:09:6b:0a:12:15:7c:39:7b:c7:2f:c3:4e:dc:d5:65: dc:5f:2a:be:b7:fd:c9:20:b1:93:02:d0:40:22:52:20:aa:38: ad:e9:41:38 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQxRDUxMTAvBgNVBAUTKEM1NDUyNUU5NzA1QkQ2OUQ2MTQyNERCRUU3QjA0OTNG NUZENkYwQTQwHhcNMjYwMzAyMDAyMzAzWhcNMjYwMzA5MDAyMzAzWjAYMRYwFAYD VQQDEw02OWE0ZDg2OC1kNGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycmT6V93DVdT/XaI+rOI/XE1UtZNU5ypMNB/odJNCpDRYVVo5q7lewed8Gbv VJuLl+J/Mw60Nm6kFrcBz0pizgGTTCiInknRlyZNJ4mK5NYwubSSgkpSaRSNgyhs myeg6cS6tDMO1a7qUzalOYOtStD0CLQEgBS9qSWaJC9oE8uMHdvT14WGMiDRTVsA NPBYryZQnWVgjmHCE/JoUB45GhmoleqMGM0KNLZh6K4vpLd/FX6SBZHtKecrBHJP xYZFMmQF+IFIrj54kD/G3/IjK5v3eZo9xbnQ4i05H4ZzMLZRjonqDnUecRfxExoL 29YxFt1BbV6lthcm/Li7wD3TPQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPZUbVEW Lsg7we6nFnEbqmWIQt7sMB8GA1UdIwQYMBaAFMVFJelwW9adYUJNvuewST9f1vCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDFENS8zNDMzNjFFRUND OEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFwMWhRazItNTdCSlAxX1c4 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hVVWw2WEJiMXAxaFFrMi01N0JKUDFfVzhLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDFENS8zNDMzNjFFRUNDOEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFw MWhRazItNTdCSlAxX1c4S1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMB2rO0oOU9BPqYNfKUfl7txW9/DSbKG85koIWoH92LrCP3uObvD4XsQmP79v rXM8UQljGxRxbGiiWIx/cfa/4WfIA9UPDzLRONwBwO8oJ1FuqfE85jCEbFpLyoHN DVfwVzoNY0YyK+aYkTATX//wUDfi8QjpuIxw3EhrSdp5kKmqdO7gHNXNQsLZ81hV eZ4P8BW23e75BFplFPEbGUrPb7poj/pxwmFWMOvVcWs3V34JqP/79tl9gjqzP48f 11r5jjGjUM3j7OeoUXlg+KHybrpIPHxCvBtjfYk1CWsKEhV8OXvHL8NO3NVl3F8q vrf9ySCxkwLQQCJSIKo4relBOA== -----END CERTIFICATE-----Generated at Mon Mar 2 17:26:58 2026 by rpki-client