$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft File: XfVm12I2fCjH8_ElYbRxa4yhuWY.mft (raw, json) Hash identifier: s22/tLJnptK3TXdVOzciI6HqDDEjylNrLBx/6O3Zt7g= Subject key identifier: 85:E5:AF:E8:65:E9:26:35:55:E9:CA:0D:C3:05:A1:78:70:25:1B:C5 Authority key identifier: 5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 Certificate issuer: /CN=A9133B47/serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft Manifest number: 0153 Signing time: Sun 01 Mar 2026 06:05:42 +0000 Manifest this update: Sun 01 Mar 2026 06:05:42 +0000 Manifest next update: Sun 08 Mar 2026 06:05:42 +0000 Files and hashes: 1: XfVm12I2fCjH8_ElYbRxa4yhuWY.crl (hash: RghN8sC2VGtuU+P3V4VYxu9kbwBlOww8mCUw3uMgsrs=) 2: 23B1A0120FA511EFB28F5235C4F9AE02.roa (hash: 1j2rFTty2/H954Iwvk/ZWmtqptjhE7lYs+ZEPtYw42E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:05:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B47, serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Validity Not Before: Mar 1 06:05:42 2026 GMT Not After : Mar 8 06:05:42 2026 GMT Subject: CN=69a3d736-bc7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fe:17:be:22:e7:10:0f:d0:41:6a:18:a7:e2: ce:b5:c5:f4:c0:0e:dc:f7:33:d1:94:99:59:ba:81: 61:ef:3e:25:10:13:a1:91:57:75:6f:3b:77:aa:53: f3:bd:33:0b:27:df:bd:68:99:86:c7:92:87:14:6c: 43:a0:f8:51:9a:81:99:8c:60:56:0f:a7:c8:86:29: c4:ec:9c:71:10:26:8e:5a:bc:30:eb:c3:ef:1f:13: 6c:79:b1:61:3f:be:c9:67:a6:6d:4f:b5:70:cb:70: f5:46:f1:98:ad:98:8a:c3:82:63:e5:b8:93:8e:d9: 18:15:99:d4:d9:d5:60:5e:30:96:51:bc:bd:38:29: fd:3c:67:05:df:6e:ee:c6:5d:0b:bd:7e:e4:9e:b1: 08:29:d6:03:0b:d7:2a:d0:b1:87:c1:75:16:9f:63: 47:bf:45:11:e4:e9:71:42:68:a4:27:6b:c0:e8:06: b2:b0:97:de:31:0b:fd:4e:d0:17:09:6c:39:ab:7f: 57:88:ac:98:25:c6:de:4c:c7:f5:01:40:f6:93:79: f7:bd:59:c7:7c:19:03:60:af:13:9d:40:56:b0:9d: 0e:49:d3:bd:81:eb:62:63:10:46:9c:22:22:0b:cd: ec:72:f2:dc:63:ce:67:cf:2e:31:34:c6:bd:40:20: 83:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:E5:AF:E8:65:E9:26:35:55:E9:CA:0D:C3:05:A1:78:70:25:1B:C5 X509v3 Authority Key Identifier: keyid:5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:83:33:84:0d:b9:7d:2a:a0:07:e0:4f:0e:e7:4b:1d:6e:5d: 23:03:2b:ea:12:69:31:30:3f:eb:9a:8f:b1:16:ae:20:b7:f4: 62:18:49:15:8c:ea:f1:de:0f:c0:ac:8f:da:19:f3:5c:9e:e3: 7a:ce:40:08:cd:6a:41:44:bc:b5:b8:d4:9e:a7:46:00:53:bc: 32:d3:94:9e:30:8d:6f:c5:11:70:03:79:36:99:95:98:06:44: 68:8e:47:a9:43:6d:f3:dd:1c:16:82:62:91:bb:98:cd:4a:7a: 1b:6d:d3:ba:8b:74:40:ba:89:b8:af:d0:12:37:a5:ea:c0:54: 89:97:98:20:a7:83:32:73:22:8b:46:55:bb:ca:8e:70:47:ff: ef:a1:06:af:ef:95:29:b2:71:8b:2b:2f:67:25:0a:c6:3a:98: ec:f7:72:56:f1:fa:e2:c8:69:44:65:1a:b6:97:7d:63:01:55: ba:1e:a9:8b:66:e1:28:dc:21:7a:1b:47:b8:31:c6:03:99:de: 39:23:af:d3:ec:fb:c6:14:63:fe:f3:ed:e4:e6:90:61:cb:70: bf:a4:6d:ff:6e:c1:fe:d8:27:7b:3b:82:94:ba:a6:54:64:ae: 95:49:44:16:30:b8:f9:77:50:f4:2d:a9:f0:92:19:3f:74:27: 2d:9c:c3:6a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCNDcxMTAvBgNVBAUTKDVERjU2NkQ3NjIzNjdDMjhDN0YzRjEyNTYxQjQ3MTZC OENBMUI5NjYwHhcNMjYwMzAxMDYwNTQyWhcNMjYwMzA4MDYwNTQyWjAYMRYwFAYD VQQDEw02OWEzZDczNi1iYzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtP4XviLnEA/QQWoYp+LOtcX0wA7c9zPRlJlZuoFh7z4lEBOhkVd1bzt3qlPz vTMLJ9+9aJmGx5KHFGxDoPhRmoGZjGBWD6fIhinE7JxxECaOWrww68PvHxNsebFh P77JZ6ZtT7Vwy3D1RvGYrZiKw4Jj5biTjtkYFZnU2dVgXjCWUby9OCn9PGcF327u xl0LvX7knrEIKdYDC9cq0LGHwXUWn2NHv0UR5OlxQmikJ2vA6AaysJfeMQv9TtAX CWw5q39XiKyYJcbeTMf1AUD2k3n3vVnHfBkDYK8TnUBWsJ0OSdO9getiYxBGnCIi C83scvLcY85nzy4xNMa9QCCDoQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIXlr+hl 6SY1VenKDcMFoXhwJRvFMB8GA1UdIwQYMBaAFF31ZtdiNnwox/PxJWG0cWuMoblm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0I0Ny84NzFCOTI5NDBG QTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZDakg4X0VsWWJSeGE0eWh1 V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmVm0xMkkyZkNqSDhfRWxZYlJ4YTR5aHVXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0I0Ny84NzFCOTI5NDBGQTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZD akg4X0VsWWJSeGE0eWh1V1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAm4MzhA25fSqgB+BPDudLHW5dIwMr6hJpMTA/65qPsRauILf0YhhJFYzq8d4P wKyP2hnzXJ7jes5ACM1qQUS8tbjUnqdGAFO8MtOUnjCNb8URcAN5NpmVmAZEaI5H qUNt890cFoJikbuYzUp6G23Tuot0QLqJuK/QEjel6sBUiZeYIKeDMnMii0ZVu8qO cEf/76EGr++VKbJxiysvZyUKxjqY7PdyVvH64shpRGUatpd9YwFVuh6pi2bhKNwh ehtHuDHGA5neOSOv0+z7xhRj/vPt5OaQYctwv6Rt/27B/tgnezuClLqmVGSulUlE FjC4+XdQ9C2p8JIZP3QnLZzDag== -----END CERTIFICATE-----Generated at Mon Mar 2 14:42:22 2026 by rpki-client