$ rpki-client -vvf rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft File: xPfznmL0ydeMXhL9wVGuTjK8mkI.mft (raw, json) Hash identifier: vgWk1UK1Mw26GDkTYzaGxymdONOBQIL3qrva3UVcy8Y= Subject key identifier: E3:43:16:81:C3:93:84:26:A4:23:9D:77:39:D6:70:DE:81:4F:3A:BE Authority key identifier: C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 Certificate issuer: /CN=A914B29B/serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Certificate serial: 015E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft Manifest number: 0158 Signing time: Sun 01 Mar 2026 06:05:14 +0000 Manifest this update: Sun 01 Mar 2026 06:05:14 +0000 Manifest next update: Sun 08 Mar 2026 06:05:14 +0000 Files and hashes: 1: xPfznmL0ydeMXhL9wVGuTjK8mkI.crl (hash: oS0xXjhzNzxIy2Vuw6yV8ylVWXIG/PxfbA0Sgcm9ew0=) 2: 127604E20F8B11EF87FC5918C4F9AE02.roa (hash: Ur2f+2mtS8rG+Wi5lYOAmNS8a2RYYseSRQgStkLqo/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 06:05:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 350 (0x15e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B29B, serialNumber=C4F7F39E62F4C9D78C5E12FDC151AE4E32BC9A42 Validity Not Before: Mar 1 06:05:14 2026 GMT Not After : Mar 8 06:05:14 2026 GMT Subject: CN=69a3d71a-4d7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fe:83:d3:63:53:fe:3a:b7:23:bf:17:af:24: 81:17:7a:0d:70:c3:f4:3a:3a:39:7d:be:15:c9:62: 52:d2:16:22:81:52:c1:7b:ac:d4:27:96:71:43:83: 15:97:ef:e7:8f:e0:1d:cb:34:4d:5f:33:62:af:20: 83:db:aa:c7:f5:29:7e:4a:c4:81:8f:7f:cd:2c:0f: da:ce:b8:a6:f6:11:3d:99:36:69:45:1e:fe:13:61: aa:59:9a:bd:90:04:b7:61:d4:2a:9a:82:8f:8a:ae: 57:bd:69:e3:5f:b8:0c:9f:c4:26:94:3b:bb:5f:4e: 42:9c:0e:e1:14:8b:91:09:ed:1b:ea:46:3e:f6:3d: f6:db:15:a6:a0:90:06:82:cd:a9:1a:96:3d:ac:de: 5c:b8:29:68:9a:62:74:65:df:6a:0f:eb:a9:9f:8a: 0c:34:44:77:6d:fa:9c:c5:f7:22:bf:a9:98:7f:89: c9:41:c2:5c:34:d1:d6:01:d4:b2:51:07:8f:e3:30: 62:32:d2:ed:2c:af:94:95:9d:bf:a6:c4:a8:0b:8b: 88:f5:a9:b8:7c:a0:0d:c4:ed:82:1a:61:45:45:ca: b2:49:3e:08:a4:c7:cc:fd:c7:bb:c0:4c:b6:a5:b9: 08:92:00:54:e3:29:bd:cb:f4:02:e2:40:e9:64:f7: e9:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:43:16:81:C3:93:84:26:A4:23:9D:77:39:D6:70:DE:81:4F:3A:BE X509v3 Authority Key Identifier: keyid:C4:F7:F3:9E:62:F4:C9:D7:8C:5E:12:FD:C1:51:AE:4E:32:BC:9A:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPfznmL0ydeMXhL9wVGuTjK8mkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B29B/8A3E1D1A0F8211EF8266F05EC4F9AE02/xPfznmL0ydeMXhL9wVGuTjK8mkI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:a0:d4:fc:7f:00:4b:9d:5d:0b:68:e5:8e:62:f9:f1:7f:7a: e9:ee:0d:84:32:5e:38:fe:26:05:e8:48:c2:0e:19:64:24:1a: 8c:35:89:32:9f:1b:60:91:f4:a5:26:81:de:01:f3:52:e6:fa: da:b8:5f:08:0e:1a:2e:b9:d7:00:22:f1:4d:db:f1:f4:15:c7: f9:06:48:b5:1c:29:9a:96:7c:2b:4f:43:31:91:5f:83:e4:71: 2b:55:bd:07:e0:f0:16:43:4b:78:a3:6f:a5:4d:a7:55:80:68: fa:c5:f6:bb:6c:24:68:67:32:e5:67:a0:ba:e9:d1:a3:8b:88: 7f:48:1e:05:90:36:03:63:fa:a6:38:f6:0b:cb:33:e6:bc:ee: 75:60:44:4f:36:21:75:2c:6c:e4:27:e2:46:58:28:ce:7d:8d: 8c:ac:08:d8:46:4e:7a:01:86:38:2f:00:68:b6:37:93:16:04: e0:54:6a:e8:82:04:82:93:ef:a6:6e:8c:7e:87:ad:71:ad:e9: c6:52:7d:06:42:2f:3a:35:76:9f:7b:00:06:a3:c6:29:8d:b3: e6:d3:a5:7c:d5:8d:c9:b5:88:22:26:35:b3:92:65:91:dc:fd: f4:97:ab:de:7d:81:2b:0b:bc:b0:8e:39:1a:09:b9:4e:3e:40: 44:47:7c:38 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIyOUIxMTAvBgNVBAUTKEM0RjdGMzlFNjJGNEM5RDc4QzVFMTJGREMxNTFBRTRF MzJCQzlBNDIwHhcNMjYwMzAxMDYwNTE0WhcNMjYwMzA4MDYwNTE0WjAYMRYwFAYD VQQDEw02OWEzZDcxYS00ZDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuv6D02NT/jq3I78XrySBF3oNcMP0Ojo5fb4VyWJS0hYigVLBe6zUJ5ZxQ4MV l+/nj+AdyzRNXzNiryCD26rH9Sl+SsSBj3/NLA/azrim9hE9mTZpRR7+E2GqWZq9 kAS3YdQqmoKPiq5XvWnjX7gMn8QmlDu7X05CnA7hFIuRCe0b6kY+9j322xWmoJAG gs2pGpY9rN5cuClommJ0Zd9qD+upn4oMNER3bfqcxfciv6mYf4nJQcJcNNHWAdSy UQeP4zBiMtLtLK+UlZ2/psSoC4uI9am4fKANxO2CGmFFRcqyST4IpMfM/ce7wEy2 pbkIkgBU4ym9y/QC4kDpZPfpLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFONDFoHD k4QmpCOddznWcN6BTzq+MB8GA1UdIwQYMBaAFMT3855i9MnXjF4S/cFRrk4yvJpC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjI5Qi84QTNFMUQxQTBG ODIxMUVGODI2NkYwNUVDNEY5QUUwMi94UGZ6bm1MMHlkZU1YaEw5d1ZHdVRqSzht a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQZnpubUwweWRlTVhoTDl3Vkd1VGpLOG1rSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjI5Qi84QTNFMUQxQTBGODIxMUVGODI2NkYwNUVDNEY5QUUwMi94UGZ6bm1MMHlk ZU1YaEw5d1ZHdVRqSzhta0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQKDU/H8AS51dC2jljmL58X966e4NhDJeOP4mBehIwg4ZZCQajDWJMp8bYJH0 pSaB3gHzUub62rhfCA4aLrnXACLxTdvx9BXH+QZItRwpmpZ8K09DMZFfg+RxK1W9 B+DwFkNLeKNvpU2nVYBo+sX2u2wkaGcy5WeguunRo4uIf0geBZA2A2P6pjj2C8sz 5rzudWBETzYhdSxs5CfiRlgozn2NjKwI2EZOegGGOC8AaLY3kxYE4FRq6IIEgpPv pm6Mfoetca3pxlJ9BkIvOjV2n3sABqPGKY2z5tOlfNWNybWIIiY1s5Jlkdz99Jer 3n2BKwu8sI45Ggm5Tj5AREd8OA== -----END CERTIFICATE-----Generated at Sun Mar 1 23:04:38 2026 by rpki-client