$ rpki-client -vvf rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.mft File: X48BYbesuyVfE88IG2ZTYZtOLAI.mft (raw, json) Hash identifier: QpiUOvNd3Ymb8ebYS1NCobBSgrIsgbN1N1l+xcjS+MQ= Subject key identifier: 07:86:32:91:FC:B7:64:9D:37:96:AE:1A:86:A5:6A:F8:55:AE:47:D2 Authority key identifier: 5F:8F:01:61:B7:AC:BB:25:5F:13:CF:08:1B:66:53:61:9B:4E:2C:02 Certificate issuer: /CN=A9149A0D/serialNumber=5F8F0161B7ACBB255F13CF081B6653619B4E2C02 Certificate serial: 0851 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.mft Manifest number: 084C Signing time: Sat 28 Feb 2026 21:08:59 +0000 Manifest this update: Sat 28 Feb 2026 21:08:59 +0000 Manifest next update: Sat 07 Mar 2026 21:08:59 +0000 Files and hashes: 1: X48BYbesuyVfE88IG2ZTYZtOLAI.crl (hash: vg2paGGX3IPyPHGY7E+o8XLwlQLBy57MmWMfriQPqKQ=) 2: 799C6AD8149711EFB0CB9E0AC4F9AE02.roa (hash: cOp5sUcoYEnEztztO+T500DyxL7CYS0HiI+xdZhUUyI=) 3: 137DD3E8E60C11F0A18B1E57676F56BC.roa (hash: TkstHBbXAtYjtjEwdXsQtgVEHyFPfD0MrlIZkoP77Xk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.crl rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 21:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2129 (0x851) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149A0D, serialNumber=5F8F0161B7ACBB255F13CF081B6653619B4E2C02 Validity Not Before: Feb 28 21:08:59 2026 GMT Not After : Mar 7 21:08:59 2026 GMT Subject: CN=69a3596b-c0c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:da:5e:a6:e8:55:28:16:db:c6:6f:6f:a6:48: 27:4b:fb:95:16:83:e6:49:46:ca:0a:fb:43:d0:88: 9e:cc:b7:bf:96:79:44:a2:99:31:a7:04:2d:ae:5d: 6e:e1:74:3b:2b:ac:0b:5f:64:ff:fb:e3:ee:d1:52: 3f:dd:ab:ba:1d:2c:5a:d4:31:0a:27:45:8d:41:92: 13:ee:ec:ea:da:c6:f6:1b:10:08:dc:79:57:93:0d: a7:e2:77:0e:48:75:e6:9e:ec:7e:90:7c:d0:33:00: 34:58:05:16:8c:d0:f9:84:1b:b2:77:d6:ba:e7:68: 6d:f7:97:d9:75:cc:e1:f2:0d:38:e3:db:df:2d:8d: bd:b2:49:46:78:6a:f3:3a:ee:5e:c3:d0:b8:ea:c9: 53:46:e1:f2:a5:3e:c1:89:04:27:18:ef:2e:70:3c: 09:4d:3b:a6:d4:52:e3:fc:9e:e7:35:70:e1:f6:12: 3f:3d:8a:d3:ba:18:86:39:df:b3:aa:82:72:9d:14: 41:c7:aa:b5:57:93:40:68:da:51:93:5b:21:e5:22: 65:5a:29:ff:56:04:79:57:38:59:14:3c:6b:9d:0f: 66:87:62:fc:f6:f8:16:b4:80:69:78:67:56:f9:2a: f0:99:16:0b:56:40:7f:f1:e8:cf:52:aa:e2:c0:34: a1:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:86:32:91:FC:B7:64:9D:37:96:AE:1A:86:A5:6A:F8:55:AE:47:D2 X509v3 Authority Key Identifier: keyid:5F:8F:01:61:B7:AC:BB:25:5F:13:CF:08:1B:66:53:61:9B:4E:2C:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:cf:96:91:57:e7:73:c2:d7:5e:60:32:db:2f:6b:bd:3c:c9: c6:b3:92:19:94:9a:8c:53:e0:30:13:4e:64:2f:83:13:07:98: 9d:93:7c:ee:cb:94:a4:3e:10:a1:a5:57:fc:46:5d:ed:16:3c: ae:a0:25:a6:86:21:1c:6b:fd:13:60:e7:04:e3:65:ae:fc:b9: a7:4f:f5:c5:43:59:da:bb:12:9c:ef:73:cb:a7:78:27:9d:68: 28:50:e2:0a:2f:5f:e3:ee:4b:26:65:9f:e0:dc:c0:4d:7a:10: bf:3b:fc:29:f7:44:51:1e:d1:54:00:66:ce:fa:b1:1a:c0:0c: b8:d7:08:60:20:60:21:70:55:8f:04:31:2e:d5:d8:a4:0a:9c: 46:dd:61:db:3d:cd:67:87:05:4c:8a:5d:27:e9:ab:c4:57:5f: fe:24:01:a6:53:12:ac:d2:e7:be:2a:38:0f:a6:d9:ea:08:d5: 99:0e:e2:28:87:48:ac:7d:82:da:b6:d7:24:b8:b9:a7:fd:48: 66:12:6b:55:e0:fc:aa:88:60:84:e5:ba:5e:62:19:94:c2:87: ce:c2:87:1f:71:8b:5d:c2:c2:53:50:6b:b3:91:12:78:6d:63: d4:86:0a:75:7d:98:b7:5b:c3:5e:94:15:aa:b9:c5:e2:b2:90: d8:3b:5e:2c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlBMEQxMTAvBgNVBAUTKDVGOEYwMTYxQjdBQ0JCMjU1RjEzQ0YwODFCNjY1MzYx OUI0RTJDMDIwHhcNMjYwMjI4MjEwODU5WhcNMjYwMzA3MjEwODU5WjAYMRYwFAYD VQQDDA02OWEzNTk2Yi1jMGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2NpepuhVKBbbxm9vpkgnS/uVFoPmSUbKCvtD0IiezLe/lnlEopkxpwQtrl1u 4XQ7K6wLX2T/++Pu0VI/3au6HSxa1DEKJ0WNQZIT7uzq2sb2GxAI3HlXkw2n4ncO SHXmnux+kHzQMwA0WAUWjND5hBuyd9a652ht95fZdczh8g0449vfLY29sklGeGrz Ou5ew9C46slTRuHypT7BiQQnGO8ucDwJTTum1FLj/J7nNXDh9hI/PYrTuhiGOd+z qoJynRRBx6q1V5NAaNpRk1sh5SJlWin/VgR5VzhZFDxrnQ9mh2L89vgWtIBpeGdW +SrwmRYLVkB/8ejPUqriwDShbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAeGMpH8 t2SdN5auGoalavhVrkfSMB8GA1UdIwQYMBaAFF+PAWG3rLslXxPPCBtmU2GbTiwC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUEwRC8wRkI3OTE2NEZC MTUxMUVBQjAxMUVDNkVDNEY5QUUwMi9YNDhCWWJlc3V5VmZFODhJRzJaVFladE9M QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0OEJZYmVzdXlWZkU4OElHMlpUWVp0T0xBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUEwRC8wRkI3OTE2NEZCMTUxMUVBQjAxMUVDNkVDNEY5QUUwMi9YNDhCWWJlc3V5 VmZFODhJRzJaVFladE9MQUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAX8+WkVfnc8LXXmAy2y9rvTzJxrOSGZSajFPgMBNOZC+DEweYnZN87suUpD4Q oaVX/EZd7RY8rqAlpoYhHGv9E2DnBONlrvy5p0/1xUNZ2rsSnO9zy6d4J51oKFDi Ci9f4+5LJmWf4NzATXoQvzv8KfdEUR7RVABmzvqxGsAMuNcIYCBgIXBVjwQxLtXY pAqcRt1h2z3NZ4cFTIpdJ+mrxFdf/iQBplMSrNLnvio4D6bZ6gjVmQ7iKIdIrH2C 2rbXJLi5p/1IZhJrVeD8qohghOW6XmIZlMKHzsKHH3GLXcLCU1Brs5ESeG1j1IYK dX2Yt1vDXpQVqrnF4rKQ2DteLA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:38:42 2026 by rpki-client