$ rpki-client -vvf rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft File: xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft (raw, json) Hash identifier: /gnZSLNGzim3uKKIjSZEoN//6UYLH0xPHGWWCojSPps= Subject key identifier: 52:04:E8:C1:72:9E:11:52:D7:46:95:AD:DF:6D:30:27:B1:EF:68:B3 Authority key identifier: C4:3D:19:C6:D3:97:11:2A:2A:FE:D4:66:61:22:FC:57:6B:47:88:6D Certificate issuer: /CN=A914CA5C/serialNumber=C43D19C6D397112A2AFED4666122FC576B47886D Certificate serial: 0427 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft Manifest number: 0418 Signing time: Sun 01 Mar 2026 01:14:27 +0000 Manifest this update: Sun 01 Mar 2026 01:14:26 +0000 Manifest next update: Sun 08 Mar 2026 01:14:26 +0000 Files and hashes: 1: xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl (hash: V9o6eMScUIaykGN+DDZZl3wp8k5grknxZI2NRM0e3LM=) 2: 892F26B4EEF411F0A51D99D83B6F56BC.roa (hash: jrvzvu2HttLsHNzjZYsWd8qIkjND9xDfEJO2bNSyg2w=) 3: 0663DADAEEF511F0AEB0B1D83B6F56BC.roa (hash: 7T0Y2/QuHAgII13KO6CuN5pvwsBXDuinAQW+Up6Wxuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 01:14:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1063 (0x427) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CA5C, serialNumber=C43D19C6D397112A2AFED4666122FC576B47886D Validity Not Before: Mar 1 01:14:26 2026 GMT Not After : Mar 8 01:14:26 2026 GMT Subject: CN=69a392f3-326a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e1:db:34:cf:ac:74:56:6f:4d:aa:f7:57:cc: a8:cd:62:bf:05:d2:69:e7:a0:d0:14:18:2a:81:97: 47:56:cc:d2:bf:19:7b:30:80:b4:bc:58:d8:3e:4f: 14:ce:7c:23:ae:a2:86:82:45:e4:9e:1f:73:5b:3b: ee:cb:ac:b3:67:51:4b:fc:f2:c7:61:a0:6f:f4:6e: be:7d:ac:62:f2:07:c7:94:45:c2:b2:23:85:80:db: 9b:a6:29:a0:59:92:a4:c0:33:15:cb:29:34:ea:a6: 93:2b:96:39:c9:41:49:c4:28:26:f6:2f:d1:b7:57: d4:58:d9:b4:16:33:a1:89:a4:1d:53:cf:65:13:e8: 28:7c:aa:fd:1e:8a:02:c3:a5:f1:48:e7:fe:09:b8: 7d:62:d6:51:3d:48:53:73:8c:af:2a:98:83:6d:33: a5:dd:8d:15:93:13:d7:7c:8c:12:0b:29:ba:8c:57: e6:ca:8f:fb:f2:b0:f9:f6:88:ed:f2:45:ea:b6:e3: 5c:3a:fa:57:da:b2:48:6b:2e:8a:87:fa:c7:21:a9: dd:e8:d3:b5:02:1f:e3:22:6d:e8:58:90:68:49:5d: e2:d8:ce:99:1c:61:48:6e:1d:51:58:bb:ea:e9:b2: 02:6b:cf:07:9d:65:84:90:98:e0:72:77:d4:1f:39: 23:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:04:E8:C1:72:9E:11:52:D7:46:95:AD:DF:6D:30:27:B1:EF:68:B3 X509v3 Authority Key Identifier: keyid:C4:3D:19:C6:D3:97:11:2A:2A:FE:D4:66:61:22:FC:57:6B:47:88:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:87:e8:40:aa:93:92:cc:dd:43:b7:97:8f:78:e5:26:51:b8: e6:54:90:45:59:1f:c1:96:4e:29:03:d6:6a:11:98:4e:58:e3: 84:89:67:28:d3:d0:3e:e6:37:aa:1d:ec:94:f4:31:b6:81:a5: 0f:c3:65:d1:63:50:7e:01:f6:b6:68:61:4b:fe:e8:b7:64:72: 29:fe:f3:32:fc:97:46:db:26:a3:f8:dd:48:9b:9e:42:a0:78: 24:28:88:7c:c4:78:99:3c:eb:3c:2e:b3:75:6b:6e:0e:e0:c5: 1b:06:bc:c7:26:03:1d:a3:55:bf:ad:f0:01:f0:4a:d3:7f:27: 93:a8:f2:2d:bb:77:6b:2e:d3:a5:e6:9b:8c:d9:a9:b1:40:cb: 66:bb:b7:e7:84:83:ca:a0:e1:8b:3d:b3:3c:35:1c:05:ac:d6: 6a:d1:51:68:f1:d2:bc:ab:27:f7:e4:5c:8c:97:b4:c4:ef:6b: a5:a8:e7:7f:d0:9f:56:8c:0e:11:79:09:8f:02:fd:93:77:cd: fa:87:f2:67:10:16:3a:97:17:68:c2:ac:2b:41:6b:f6:19:af: bd:52:19:d9:4d:b4:39:07:c4:0b:ac:21:50:0c:22:0c:95:1d: ed:46:d2:bf:1b:e4:6d:4b:1a:8c:16:a1:e5:bd:2d:f4:e8:65: ca:91:d1:86 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENBNUMxMTAvBgNVBAUTKEM0M0QxOUM2RDM5NzExMkEyQUZFRDQ2NjYxMjJGQzU3 NkI0Nzg4NkQwHhcNMjYwMzAxMDExNDI2WhcNMjYwMzA4MDExNDI2WjAYMRYwFAYD VQQDDA02OWEzOTJmMy0zMjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+HbNM+sdFZvTar3V8yozWK/BdJp56DQFBgqgZdHVszSvxl7MIC0vFjYPk8U znwjrqKGgkXknh9zWzvuy6yzZ1FL/PLHYaBv9G6+faxi8gfHlEXCsiOFgNubpimg WZKkwDMVyyk06qaTK5Y5yUFJxCgm9i/Rt1fUWNm0FjOhiaQdU89lE+gofKr9HooC w6XxSOf+Cbh9YtZRPUhTc4yvKpiDbTOl3Y0VkxPXfIwSCym6jFfmyo/78rD59ojt 8kXqtuNcOvpX2rJIay6Kh/rHIand6NO1Ah/jIm3oWJBoSV3i2M6ZHGFIbh1RWLvq 6bICa88HnWWEkJjgcnfUHzkjAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFIE6MFy nhFS10aVrd9tMCex72izMB8GA1UdIwQYMBaAFMQ9GcbTlxEqKv7UZmEi/FdrR4ht MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0E1Qy82NTEwRTMxMEE0 NTkxMUVDQTg3RkQ4MERDNEY5QUUwMi94RDBaeHRPWEVTb3FfdFJtWVNMOFYydEhp RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hEMFp4dE9YRVNvcV90Um1ZU0w4VjJ0SGlHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0E1Qy82NTEwRTMxMEE0NTkxMUVDQTg3RkQ4MERDNEY5QUUwMi94RDBaeHRPWEVT b3FfdFJtWVNMOFYydEhpRzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGofoQKqTkszdQ7eXj3jlJlG45lSQRVkfwZZOKQPWahGYTljjhIlnKNPQPuY3 qh3slPQxtoGlD8Nl0WNQfgH2tmhhS/7ot2RyKf7zMvyXRtsmo/jdSJueQqB4JCiI fMR4mTzrPC6zdWtuDuDFGwa8xyYDHaNVv63wAfBK038nk6jyLbt3ay7TpeabjNmp sUDLZru354SDyqDhiz2zPDUcBazWatFRaPHSvKsn9+RcjJe0xO9rpajnf9CfVowO EXkJjwL9k3fN+ofyZxAWOpcXaMKsK0Fr9hmvvVIZ2U20OQfEC6whUAwiDJUd7UbS vxvkbUsajBah5b0t9OhlypHRhg== -----END CERTIFICATE-----Generated at Mon Mar 2 03:26:55 2026 by rpki-client