$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json) Hash identifier: vhjwuTGAQaWy5P6adS8Dfjk2HUfzUX4VH0QSS5l+5OE= Subject key identifier: D3:D7:12:76:25:48:F1:FE:84:1A:2A:92:68:DB:2C:ED:30:85:C9:17 Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: 0104 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft Manifest number: 0101 Signing time: Sun 01 Mar 2026 07:13:01 +0000 Manifest this update: Sun 01 Mar 2026 07:13:01 +0000 Manifest next update: Sun 08 Mar 2026 07:13:01 +0000 Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: eWSEuu7FWC+jbYvUl+sM3jMgHU4EGaM1apEuRq+SOKE=) 2: CB24F37C033711F0B76A8520C4F9AE02.roa (hash: 98s3ds+kGQSvl0ncwBjphBprg+/d5JhkpC63UpEc2Nk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:13:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Validity Not Before: Mar 1 07:13:01 2026 GMT Not After : Mar 8 07:13:01 2026 GMT Subject: CN=69a3e6fd-5197 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f9:6c:39:cc:53:d9:84:dd:35:0a:16:9e:94: de:70:e5:f7:0b:ef:39:13:e8:3e:c4:4f:19:6d:46: 29:a3:41:ad:e6:1f:08:6c:77:27:3b:68:e9:79:c1: 90:e1:4d:0c:eb:c1:04:91:87:e3:99:f0:9a:2f:21: 80:0e:39:bb:07:75:7a:0e:75:4b:0a:f0:45:e1:f4: ab:3d:0c:1f:44:e4:be:c1:6e:1f:bb:c7:e6:cc:d6: fa:e1:21:a7:30:58:e9:b7:cf:39:f9:69:27:a5:9d: 86:34:ed:6a:6f:a0:e1:fc:40:5a:00:59:38:d7:b7: 1d:76:bd:7b:e4:2a:d0:95:c7:84:09:dd:d1:71:ae: ef:b9:5a:f8:00:31:c4:2b:ea:a2:12:97:27:5f:ad: a7:56:59:7a:94:01:0a:f4:bb:e3:ff:1e:f8:d2:8f: 4e:86:22:e5:5d:a7:eb:92:ac:b9:5b:5c:c7:c1:25: 6c:20:3f:37:91:88:14:43:17:79:da:3c:10:7f:3a: 39:0a:7d:85:dd:5e:77:fd:77:33:6b:c5:9b:dc:ce: bc:cc:00:9e:ba:8a:1f:39:f9:0c:d7:76:b9:d2:eb: 8c:fe:99:a1:8f:c6:be:22:b2:54:89:be:ad:04:98: 72:5e:c5:12:47:f8:7e:6f:12:bf:ff:80:98:1a:de: a8:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:D7:12:76:25:48:F1:FE:84:1A:2A:92:68:DB:2C:ED:30:85:C9:17 X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:70:93:52:d9:bd:93:06:c0:8f:a8:e5:00:b9:54:ef:c7:00: 0f:a8:c4:b1:d9:23:60:64:0b:d0:a9:a1:ae:52:3c:15:cd:f4: 22:e9:e0:11:80:00:83:08:4b:77:ed:47:4b:75:49:90:8a:e9: 0b:55:68:ff:d7:16:a3:2b:c3:58:09:86:2b:31:f1:2e:cb:1b: 7e:2e:72:84:6e:f2:15:19:36:42:c6:c0:c5:2a:6e:a6:02:eb: 1f:9f:d6:a0:69:20:24:41:f3:25:10:0f:a5:a0:1c:57:64:e8: 8a:72:8b:c8:ce:ed:6b:33:0f:09:8f:53:9c:cd:32:cb:1e:b0: 6e:f6:c8:3f:97:eb:be:6e:3f:11:2f:50:30:91:8a:ee:6f:5a: 57:01:26:5b:7d:1a:55:7e:46:cf:1c:c5:33:d7:15:c7:ab:26: 72:13:bb:8e:60:1e:ba:c4:93:72:d4:19:26:35:ee:5d:53:f3: fc:a8:ed:a7:41:8a:3c:bc:70:84:b0:9c:75:28:e2:0e:eb:16: 35:c5:61:8b:a3:1a:45:84:8a:65:59:9c:84:21:ba:d1:76:3c: 7c:54:5e:ec:f2:77:99:f6:cf:9e:7f:77:a7:02:3a:84:b7:c0: 16:f8:12:60:8c:cc:87:8a:46:fc:c9:69:75:6d:68:88:00:d1: 9e:b7:ac:6d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI3ODcxMTAvBgNVBAUTKDVEOTQ2RDRGNDc5RDM3QkNFMTcwMENCMEJBREQ1MUEy QzNERjYyMEYwHhcNMjYwMzAxMDcxMzAxWhcNMjYwMzA4MDcxMzAxWjAYMRYwFAYD VQQDEw02OWEzZTZmZC01MTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPlsOcxT2YTdNQoWnpTecOX3C+85E+g+xE8ZbUYpo0Gt5h8IbHcnO2jpecGQ 4U0M68EEkYfjmfCaLyGADjm7B3V6DnVLCvBF4fSrPQwfROS+wW4fu8fmzNb64SGn MFjpt885+WknpZ2GNO1qb6Dh/EBaAFk417cddr175CrQlceECd3Rca7vuVr4ADHE K+qiEpcnX62nVll6lAEK9Lvj/x740o9OhiLlXafrkqy5W1zHwSVsID83kYgUQxd5 2jwQfzo5Cn2F3V53/Xcza8Wb3M68zACeuoofOfkM13a50uuM/pmhj8a+IrJUib6t BJhyXsUSR/h+bxK//4CYGt6ogwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNPXEnYl SPH+hBoqkmjbLO0whckXMB8GA1UdIwQYMBaAFF2UbU9HnTe84XAMsLrdUaLD32IP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mjc4Ny8yMjg2NTYyQThG NzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43emhjQXl3dXQxUm9zUGZZ ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZllnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mjc4Ny8yMjg2NTYyQThGNzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43 emhjQXl3dXQxUm9zUGZZZzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAN3CTUtm9kwbAj6jlALlU78cAD6jEsdkjYGQL0KmhrlI8Fc30IungEYAAgwhL d+1HS3VJkIrpC1Vo/9cWoyvDWAmGKzHxLssbfi5yhG7yFRk2QsbAxSpupgLrH5/W oGkgJEHzJRAPpaAcV2ToinKLyM7tazMPCY9TnM0yyx6wbvbIP5frvm4/ES9QMJGK 7m9aVwEmW30aVX5GzxzFM9cVx6smchO7jmAeusSTctQZJjXuXVPz/Kjtp0GKPLxw hLCcdSjiDusWNcVhi6MaRYSKZVmchCG60XY8fFRe7PJ3mfbPnn93pwI6hLfAFvgS YIzMh4pG/MlpdW1oiADRnresbQ== -----END CERTIFICATE-----Generated at Mon Mar 2 12:17:05 2026 by rpki-client