$ rpki-client -vvf rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft File: X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft (raw, json) Hash identifier: VrNrys/EQy20Mf0kzweScAQ/Mko8Bc1Nztoqp2EoS3g= Subject key identifier: 23:78:BE:46:8B:C0:7E:63:0E:00:14:B4:0C:8B:CB:47:4A:F1:9C:A3 Authority key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 Certificate issuer: /CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Certificate serial: 0284 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft Manifest number: 0278 Signing time: Sun 01 Mar 2026 23:54:26 +0000 Manifest this update: Sun 01 Mar 2026 23:54:24 +0000 Manifest next update: Sun 08 Mar 2026 23:54:24 +0000 Files and hashes: 1: X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl (hash: NSPxItuqXJVdbf4MTBT0YyCR2mamev4B17ZVjJHG2sk=) 2: 5637146C507611EDB59D9E2EC4F9AE02.roa (hash: 18O7Lp0T09zqzj1uz2UvboEJEAG8f//RjAML5YNM31g=) 3: D1FCB742514711ED92E3885EC4F9AE02.roa (hash: mF+0oU+0n20Cgq5ko570coLg0lSVzI4jtUFqm1rkd8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:54:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 644 (0x284) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156255, serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Validity Not Before: Mar 1 23:54:24 2026 GMT Not After : Mar 8 23:54:24 2026 GMT Subject: CN=69a4d1b2-2133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8f:e7:6a:72:0b:97:61:a6:55:5c:63:01:af: 6f:4a:49:24:ad:0c:5c:d5:65:54:3a:16:16:07:6c: 5d:b9:81:71:ed:84:ef:4e:41:33:57:de:76:f1:8f: 75:6e:f6:7e:7f:74:6d:03:45:b9:31:ca:35:6d:f3: f5:db:e4:64:f4:0f:0a:ad:32:71:aa:a3:00:f5:b2: 83:13:81:eb:fa:4f:6f:f1:fa:9b:3d:e3:b6:f2:de: 99:08:af:24:6d:22:7d:d6:77:a3:5a:a4:98:71:d4: 44:c2:61:f8:d5:4a:5c:2b:15:95:11:b3:21:b9:ac: 1a:e4:b6:60:33:d9:12:f4:0d:50:a8:91:07:64:81: 53:35:9d:b0:90:3c:c2:88:31:3b:5b:18:3a:5b:47: 54:1f:cc:ce:12:30:ef:d8:4e:0d:38:1c:8a:9a:40: 65:c7:7c:e0:f6:26:ba:0b:56:82:68:3a:29:8e:a5: 6b:cc:2c:16:0a:eb:70:a7:16:1d:38:a8:ee:bf:d7: 1d:46:20:e2:33:31:f5:e2:7d:0d:c2:49:d9:21:75: 80:89:3a:25:9a:a4:86:7b:34:ff:56:4c:02:9b:c9: a5:a0:8c:07:70:27:19:fc:d7:f1:27:2e:36:55:f2: f1:25:42:34:ed:99:8e:fe:e9:d9:7e:e0:3a:dd:09: 2e:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:78:BE:46:8B:C0:7E:63:0E:00:14:B4:0C:8B:CB:47:4A:F1:9C:A3 X509v3 Authority Key Identifier: keyid:5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:52:f0:7d:3e:86:60:07:ab:9d:53:ce:8a:18:00:8b:78:93: 9f:a2:0f:40:13:cb:07:8c:d6:2b:56:99:a7:44:70:05:3a:81: f1:b2:a1:22:d4:1c:45:d7:c6:ea:cb:de:c8:a7:6c:5c:02:6e: d0:fa:f2:d6:ce:3d:a7:17:91:a5:bc:9e:e3:fa:10:88:f5:ee: 98:2f:3d:60:94:a8:d2:d7:25:54:62:9e:f5:fc:9d:3a:1d:25: 79:ed:9a:c5:1f:cf:d6:d3:08:98:82:7f:73:4c:49:04:60:46: 51:5e:91:31:c5:f5:2d:a0:48:df:92:5c:40:81:95:11:3d:49: 47:0d:88:a3:b8:b5:45:78:80:97:7c:8f:f5:1b:fc:43:27:4e: 7a:9a:65:7b:1d:34:be:e7:e2:24:76:cb:ea:9a:34:63:5f:d4: 3b:10:be:10:eb:c1:38:92:28:51:cd:e0:dc:55:84:7a:02:3c: 5d:6f:7b:15:a5:08:b4:e0:63:60:da:8b:19:10:4a:32:7d:d3: 64:d3:d2:e4:15:58:18:97:ea:e6:9e:c8:a8:19:a4:e9:ad:45: 31:b0:3d:48:5f:98:7b:11:f6:4f:17:ef:47:73:88:d8:8e:3b: a3:05:22:8b:11:03:24:e9:64:90:45:06:d8:2d:ce:1f:29:08: 1b:4f:27:19 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYyNTUxMTAvBgNVBAUTKDVGNkM4RkEzQTY1ODc0MDIzMUIyQzRCMTM0ODFCRTEx NTAwQURDNzYwHhcNMjYwMzAxMjM1NDI0WhcNMjYwMzA4MjM1NDI0WjAYMRYwFAYD VQQDEw02OWE0ZDFiMi0yMTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqo/nanILl2GmVVxjAa9vSkkkrQxc1WVUOhYWB2xduYFx7YTvTkEzV9528Y91 bvZ+f3RtA0W5Mco1bfP12+Rk9A8KrTJxqqMA9bKDE4Hr+k9v8fqbPeO28t6ZCK8k bSJ91nejWqSYcdREwmH41UpcKxWVEbMhuawa5LZgM9kS9A1QqJEHZIFTNZ2wkDzC iDE7Wxg6W0dUH8zOEjDv2E4NOByKmkBlx3zg9ia6C1aCaDopjqVrzCwWCutwpxYd OKjuv9cdRiDiMzH14n0NwknZIXWAiTolmqSGezT/VkwCm8mloIwHcCcZ/NfxJy42 VfLxJUI07ZmO/unZfuA63QkuEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCN4vkaL wH5jDgAUtAyLy0dK8ZyjMB8GA1UdIwQYMBaAFF9sj6OmWHQCMbLEsTSBvhFQCtx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjI1NS85MTYyMDg0QzUw NzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRBSXhzc1N4TklHLUVWQUsz SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gyeVBvNlpZZEFJeHNzU3hOSUctRVZBSzNIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjI1NS85MTYyMDg0QzUwNzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRB SXhzc1N4TklHLUVWQUszSFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANlLwfT6GYAernVPOihgAi3iTn6IPQBPLB4zWK1aZp0RwBTqB8bKhItQcRdfG 6sveyKdsXAJu0Pry1s49pxeRpbye4/oQiPXumC89YJSo0tclVGKe9fydOh0lee2a xR/P1tMImIJ/c0xJBGBGUV6RMcX1LaBI35JcQIGVET1JRw2Io7i1RXiAl3yP9Rv8 QydOepplex00vufiJHbL6po0Y1/UOxC+EOvBOJIoUc3g3FWEegI8XW97FaUItOBj YNqLGRBKMn3TZNPS5BVYGJfq5p7IqBmk6a1FMbA9SF+YexH2TxfvR3OI2I47owUi ixEDJOlkkEUG2C3OHykIG08nGQ== -----END CERTIFICATE-----Generated at Mon Mar 2 06:06:34 2026 by rpki-client