$ rpki-client -vvf rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft File: x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft (raw, json) Hash identifier: FsblH7XWBmVhtKZEDIqoCT3+fJ8OEB6TLqLtUG2oVUM= Subject key identifier: 86:5B:67:08:B4:48:EA:4A:B5:B5:DF:C5:E3:E5:38:3E:CE:51:BB:C2 Authority key identifier: C7:9B:BE:AA:66:24:1E:EC:F0:1C:30:33:5D:B1:8E:F2:B3:F5:60:26 Certificate issuer: /CN=A9158131/serialNumber=C79BBEAA66241EECF01C30335DB18EF2B3F56026 Certificate serial: 0B9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft Manifest number: 0B8B Signing time: Sat 28 Feb 2026 19:22:51 +0000 Manifest this update: Sat 28 Feb 2026 19:22:51 +0000 Manifest next update: Sat 07 Mar 2026 19:22:51 +0000 Files and hashes: 1: x5u-qmYkHuzwHDAzXbGO8rP1YCY.crl (hash: O10h2GZCHSaoC2bBRRH3weBBCOW/xYywdBLOBre+Jig=) 2: 2E4BBE4EB4B511EF8A24821EC4F9AE02.roa (hash: +YYg5jcS99lfynPlhAhxkr4lADd5koWQrubtajtUn1M=) 3: 0F29204CB4B511EF86D6381EC4F9AE02.roa (hash: DPGURiy/ga59xiLR42DrUhd2krbJVgQk+C5+WjMHgzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.crl rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 19:22:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2975 (0xb9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158131, serialNumber=C79BBEAA66241EECF01C30335DB18EF2B3F56026 Validity Not Before: Feb 28 19:22:51 2026 GMT Not After : Mar 7 19:22:51 2026 GMT Subject: CN=69a3408b-082c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:fb:50:51:b3:d0:19:cc:8a:91:d5:84:af:c4: b3:f7:b0:f3:6a:46:fc:13:a9:f5:97:e2:fa:4a:bc: 1a:01:36:63:4b:a6:0c:1f:2e:63:52:29:55:61:fa: ce:70:97:c0:82:ad:e5:ed:24:bf:f5:c0:3c:7f:98: e5:6b:8f:e0:06:3c:7f:b4:9e:30:fd:3e:88:db:83: 52:f6:be:27:aa:b0:d8:bf:91:e3:a1:d1:5e:89:1f: d2:51:c9:90:b0:69:b2:c6:6b:74:32:e1:04:29:b7: 78:2a:8c:65:f0:6a:b7:55:6b:48:0d:ee:29:f7:04: 6a:63:90:4a:43:25:0e:35:05:a9:bc:cd:2c:89:b5: 61:9b:b9:36:5b:46:83:c3:4d:6a:98:82:62:16:d3: 2c:e1:2d:77:2d:67:a2:cf:8e:7d:5e:9c:db:f2:dd: d0:fd:5c:2a:4f:0d:54:f0:0b:c9:37:ac:60:4f:d9: 3d:c8:8d:7b:e1:c7:cf:17:e0:41:b1:8c:89:bb:51: 38:ac:e4:a4:1b:4e:ae:61:26:67:3c:bf:e8:3c:16: 10:a5:61:ef:e8:70:29:1e:64:22:f9:45:f0:eb:45: c7:9a:df:54:12:3a:51:d2:ef:8d:40:23:17:5b:b8: 75:3e:30:69:20:33:1d:42:ee:b3:a5:05:c8:23:d7: f7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:5B:67:08:B4:48:EA:4A:B5:B5:DF:C5:E3:E5:38:3E:CE:51:BB:C2 X509v3 Authority Key Identifier: keyid:C7:9B:BE:AA:66:24:1E:EC:F0:1C:30:33:5D:B1:8E:F2:B3:F5:60:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:31:fb:9f:f5:72:d6:c3:f6:78:3b:c7:7a:31:fe:54:ec:ee: d1:2d:be:24:0d:95:67:20:79:b3:6e:2b:71:5b:48:5f:f9:a2: b0:c7:50:73:57:42:1b:79:4d:55:e1:34:f3:20:87:1f:d4:13: 87:56:72:5d:65:a5:ff:76:3f:7c:c5:b8:70:24:7f:f2:fe:9e: 79:68:9b:76:ed:51:b1:28:6a:d3:3c:48:0f:0c:a0:35:5a:75: 37:ad:fe:7b:2a:40:5c:ae:b4:dc:68:cc:7c:0b:8d:96:0c:4a: 13:c9:6a:ed:b3:e5:63:25:72:84:e2:78:63:60:70:11:06:0a: 09:64:c0:77:0e:05:6a:9e:e7:ed:bd:35:ed:bf:1a:d0:7e:8e: ba:0c:ea:86:d1:43:c5:30:b8:4d:57:1c:83:14:d4:c5:e9:7c: 9d:67:15:dc:02:73:db:08:6c:80:84:2a:59:d4:3a:61:01:b0: 67:3b:1f:07:b7:6e:34:51:f6:6a:ae:07:e6:71:5a:de:a3:c3: 69:00:90:70:a8:ae:94:36:42:38:b6:82:89:ee:f3:f9:a5:58: 1a:cd:a3:a0:ae:3d:4d:a1:93:5b:34:1f:9f:b2:0d:c4:a3:58: bb:3f:08:87:11:de:67:84:8c:79:19:d4:86:28:70:c5:21:dd: 99:33:79:03 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC58wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgxMzExMTAvBgNVBAUTKEM3OUJCRUFBNjYyNDFFRUNGMDFDMzAzMzVEQjE4RUYy QjNGNTYwMjYwHhcNMjYwMjI4MTkyMjUxWhcNMjYwMzA3MTkyMjUxWjAYMRYwFAYD VQQDDA02OWEzNDA4Yi0wODJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5PtQUbPQGcyKkdWEr8Sz97Dzakb8E6n1l+L6SrwaATZjS6YMHy5jUilVYfrO cJfAgq3l7SS/9cA8f5jla4/gBjx/tJ4w/T6I24NS9r4nqrDYv5HjodFeiR/SUcmQ sGmyxmt0MuEEKbd4Koxl8Gq3VWtIDe4p9wRqY5BKQyUONQWpvM0sibVhm7k2W0aD w01qmIJiFtMs4S13LWeiz459Xpzb8t3Q/VwqTw1U8AvJN6xgT9k9yI174cfPF+BB sYyJu1E4rOSkG06uYSZnPL/oPBYQpWHv6HApHmQi+UXw60XHmt9UEjpR0u+NQCMX W7h1PjBpIDMdQu6zpQXII9f3wwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIZbZwi0 SOpKtbXfxePlOD7OUbvCMB8GA1UdIwQYMBaAFMebvqpmJB7s8BwwM12xjvKz9WAm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODEzMS85ODJBQjZFNjQ4 QjExMUVBOTZBMDZDN0VDNEY5QUUwMi94NXUtcW1Za0h1endIREF6WGJHTzhyUDFZ Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1dS1xbVlrSHV6d0hEQXpYYkdPOHJQMVlDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODEzMS85ODJBQjZFNjQ4QjExMUVBOTZBMDZDN0VDNEY5QUUwMi94NXUtcW1Za0h1 endIREF6WGJHTzhyUDFZQ1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiDH7n/Vy1sP2eDvHejH+VOzu0S2+JA2VZyB5s24rcVtIX/misMdQc1dCG3lN VeE08yCHH9QTh1ZyXWWl/3Y/fMW4cCR/8v6eeWibdu1RsShq0zxIDwygNVp1N63+ eypAXK603GjMfAuNlgxKE8lq7bPlYyVyhOJ4Y2BwEQYKCWTAdw4Fap7n7b017b8a 0H6OugzqhtFDxTC4TVccgxTUxel8nWcV3AJz2whsgIQqWdQ6YQGwZzsfB7duNFH2 aq4H5nFa3qPDaQCQcKiulDZCOLaCie7z+aVYGs2joK49TaGTWzQfn7INxKNYuz8I hxHeZ4SMeRnUhihwxSHdmTN5Aw== -----END CERTIFICATE-----Generated at Mon Mar 2 01:17:53 2026 by rpki-client