$ rpki-client -vvf rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft File: xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft (raw, json) Hash identifier: RXdXU4hQqXdiLuedbmTQndEj7JBIwTj/aBfnWDJ+oYk= Subject key identifier: C7:7C:47:B5:F8:CE:2D:F5:C6:9D:40:6D:C5:FE:82:5D:56:E4:3D:B9 Authority key identifier: C4:3D:19:C6:D3:97:11:2A:2A:FE:D4:66:61:22:FC:57:6B:47:88:6D Certificate issuer: /CN=A914CA5C/serialNumber=C43D19C6D397112A2AFED4666122FC576B47886D Certificate serial: 042B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft Manifest number: 041A Signing time: Mon 02 Mar 2026 00:32:06 +0000 Manifest this update: Mon 02 Mar 2026 00:32:04 +0000 Manifest next update: Mon 09 Mar 2026 00:32:04 +0000 Files and hashes: 1: xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl (hash: KbiJtNOf6J9SWIWADBezvO9J9YDfAmdqgHxjzAjGxc4=) 2: 892F26B4EEF411F0A51D99D83B6F56BC.roa (hash: j2S/9hhdR71OoPWxIwP3TFKjgMgXC3Tmdl7QnGCMX8E=) 3: 0663DADAEEF511F0AEB0B1D83B6F56BC.roa (hash: q5IvURlRSZM1tbSnIUK7mrAYKjf2ufDxWX6LFHw5WEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1067 (0x42b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CA5C, serialNumber=C43D19C6D397112A2AFED4666122FC576B47886D Validity Not Before: Mar 2 00:32:04 2026 GMT Not After : Mar 9 00:32:04 2026 GMT Subject: CN=69a4da86-1964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:94:fe:9b:1a:75:bf:d9:0a:4e:d7:a5:3c:16: 63:19:3c:b2:7f:59:7a:a7:ae:d9:0d:a3:f9:b1:00: e0:74:1d:a2:ce:96:dc:bf:75:ca:f5:77:9a:3d:07: 35:4d:09:d7:88:83:b2:ab:40:6c:a4:eb:a7:30:2e: d2:e1:dc:f9:04:48:8f:29:a8:89:00:50:c6:cc:2e: ab:17:11:77:50:4d:d9:f9:14:a8:59:8a:51:cb:57: 81:ce:de:1a:d1:d7:7c:9f:5f:fc:58:36:cf:a7:24: 66:04:20:4c:08:50:3d:9f:45:f9:f5:5b:e0:9d:ad: 6e:14:1d:1b:66:17:d2:18:69:72:95:c1:8a:83:cd: 12:44:5b:51:57:4a:47:63:da:06:1e:00:7e:55:75: f8:71:dd:35:f9:9f:bc:1a:c6:93:f7:f2:cc:5a:7b: 2c:01:ba:22:b1:42:01:ca:b8:62:85:d2:60:54:0d: 88:09:93:86:4c:a5:32:a0:6c:9f:0e:c3:3b:ac:a8: 02:28:58:c7:a5:cd:31:5b:5c:12:d8:cf:07:f1:91: 65:95:5e:2d:b4:45:ea:d7:d9:65:b0:14:8d:14:7f: 09:cd:f9:cb:6e:2c:28:37:18:be:6e:17:11:d8:42: 4f:3c:71:24:e9:a0:55:cc:e6:5a:59:7e:13:98:a2: ae:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:7C:47:B5:F8:CE:2D:F5:C6:9D:40:6D:C5:FE:82:5D:56:E4:3D:B9 X509v3 Authority Key Identifier: keyid:C4:3D:19:C6:D3:97:11:2A:2A:FE:D4:66:61:22:FC:57:6B:47:88:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:af:f1:6a:3d:5d:58:75:85:69:4b:84:3e:a4:f8:d0:18:2b: 5f:56:8e:0a:e8:d0:18:6f:51:3b:95:30:b3:97:f1:7d:95:f6: cd:d5:9e:22:a0:c0:62:3f:d3:a4:c6:fb:ca:e7:0e:c5:e0:53: 59:1b:c3:1a:08:2c:09:7d:03:88:0b:5f:b8:81:fb:54:c7:55: 1d:b9:51:e7:2f:e7:06:0f:b1:d0:b9:e0:0c:68:57:ea:bc:23: 0b:da:e2:41:7b:78:c1:2b:8e:6e:e7:66:bf:d6:47:38:04:a5: 18:9b:94:92:df:50:fe:48:46:a0:d1:80:e8:13:e8:fe:59:1e: 9c:9a:02:4c:ea:fb:0a:9d:54:3b:b5:22:9d:4b:52:01:20:ef: 41:56:93:00:ce:d7:b8:92:ea:75:c6:58:55:3f:60:fe:9d:45: c3:37:16:e2:42:0a:3c:5a:6b:a8:ef:c6:c2:72:87:4c:55:0b: bd:0e:a0:4b:4f:ba:4c:df:c6:cb:83:bc:bf:bb:4c:7c:15:08: 42:2b:da:6e:26:cd:54:1a:a9:88:8b:fe:5b:b2:98:46:1e:fb: d5:e0:76:ee:65:99:65:12:14:5c:65:d9:7f:71:f3:bd:cf:47: 2c:7a:4f:19:2b:f3:7c:2c:28:e6:b2:a7:79:77:5f:44:30:82: cb:91:37:3b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENBNUMxMTAvBgNVBAUTKEM0M0QxOUM2RDM5NzExMkEyQUZFRDQ2NjYxMjJGQzU3 NkI0Nzg4NkQwHhcNMjYwMzAyMDAzMjA0WhcNMjYwMzA5MDAzMjA0WjAYMRYwFAYD VQQDEw02OWE0ZGE4Ni0xOTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn5T+mxp1v9kKTtelPBZjGTyyf1l6p67ZDaP5sQDgdB2izpbcv3XK9XeaPQc1 TQnXiIOyq0BspOunMC7S4dz5BEiPKaiJAFDGzC6rFxF3UE3Z+RSoWYpRy1eBzt4a 0dd8n1/8WDbPpyRmBCBMCFA9n0X59Vvgna1uFB0bZhfSGGlylcGKg80SRFtRV0pH Y9oGHgB+VXX4cd01+Z+8GsaT9/LMWnssAboisUIByrhihdJgVA2ICZOGTKUyoGyf DsM7rKgCKFjHpc0xW1wS2M8H8ZFllV4ttEXq19llsBSNFH8JzfnLbiwoNxi+bhcR 2EJPPHEk6aBVzOZaWX4TmKKuDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMd8R7X4 zi31xp1AbcX+gl1W5D25MB8GA1UdIwQYMBaAFMQ9GcbTlxEqKv7UZmEi/FdrR4ht MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0E1Qy82NTEwRTMxMEE0 NTkxMUVDQTg3RkQ4MERDNEY5QUUwMi94RDBaeHRPWEVTb3FfdFJtWVNMOFYydEhp RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hEMFp4dE9YRVNvcV90Um1ZU0w4VjJ0SGlHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0E1Qy82NTEwRTMxMEE0NTkxMUVDQTg3RkQ4MERDNEY5QUUwMi94RDBaeHRPWEVT b3FfdFJtWVNMOFYydEhpRzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfq/xaj1dWHWFaUuEPqT40BgrX1aOCujQGG9RO5Uws5fxfZX2zdWeIqDAYj/T pMb7yucOxeBTWRvDGggsCX0DiAtfuIH7VMdVHblR5y/nBg+x0LngDGhX6rwjC9ri QXt4wSuObudmv9ZHOASlGJuUkt9Q/khGoNGA6BPo/lkenJoCTOr7Cp1UO7UinUtS ASDvQVaTAM7XuJLqdcZYVT9g/p1FwzcW4kIKPFprqO/GwnKHTFULvQ6gS0+6TN/G y4O8v7tMfBUIQivabibNVBqpiIv+W7KYRh771eB27mWZZRIUXGXZf3Hzvc9HLHpP GSvzfCwo5rKneXdfRDCCy5E3Ow== -----END CERTIFICATE-----Generated at Mon Mar 2 12:37:07 2026 by rpki-client