$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft File: Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft (raw, json) Hash identifier: TpKn+c8I9WGmkynhoD/8kVmvhrCTHNawSOb9Lzaly4E= Subject key identifier: F7:D0:3B:2F:80:71:12:27:E4:8D:38:6B:B8:62:3B:5C:AD:4A:A4:4F Authority key identifier: 5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC Certificate issuer: /CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Certificate serial: 0448 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft Manifest number: 041E Signing time: Sun 01 Mar 2026 22:54:47 +0000 Manifest this update: Sun 01 Mar 2026 22:54:46 +0000 Manifest next update: Sun 08 Mar 2026 22:54:46 +0000 Files and hashes: 1: Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl (hash: dZOozNkdWD1FSRN6HmOjtMLhpWa1npR+RBv1A+Qn0Yg=) 2: 79C2D638E03811EFAC3C5652C4F9AE02.roa (hash: oLzDlxvC7RmBlqcpDSgyapqgQ6kOO2dJLdnd7qa5Eqc=) 3: 7AA94F3CE03811EFAC3C5652C4F9AE02.roa (hash: EdXgXcRJBqOObFBYGMxN8+lMDHnRZ6opfMWajoFKZos=) 4: 7B6F6276E03811EFAC3C5652C4F9AE02.roa (hash: kjc0z6a/iByXXDPlROnFDBd+xMGZZSJP82wayurFrj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:54:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1096 (0x448) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E8E, serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Validity Not Before: Mar 1 22:54:46 2026 GMT Not After : Mar 8 22:54:46 2026 GMT Subject: CN=69a4c3b7-3fec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:10:97:f2:91:0e:e5:e0:f9:86:48:b4:88:f1: f8:84:d6:96:5f:62:89:7f:90:2a:b4:48:3a:71:cf: 71:3b:31:c3:13:03:b9:40:c4:64:91:03:ef:bf:9c: fc:2f:9f:78:6e:fd:5c:a0:d7:db:7a:d8:cd:2f:aa: b5:f6:73:59:70:d0:a8:eb:a0:38:a7:46:97:5a:21: a4:21:c3:ba:6f:8b:cd:72:ec:0b:f7:8e:2d:09:df: 04:b8:ea:7b:77:4c:90:0f:01:4f:3b:29:0d:11:76: 2d:57:a8:58:de:f0:5f:a1:32:1b:e3:3b:33:23:88: d8:f8:5b:49:a7:9b:82:ce:c3:6e:eb:af:2f:2c:a1: 3f:a5:e1:c2:1f:80:c9:19:24:79:1b:05:8d:12:36: ec:bd:ba:31:25:95:87:c2:37:fb:88:86:c9:f5:e0: 52:7d:db:08:9f:e1:c0:49:7d:ea:bc:e4:ac:90:ef: 08:a4:0e:5d:72:96:83:3a:53:66:4d:d0:e5:af:40: 8d:0a:e9:a8:50:4e:11:8a:d2:d5:50:bc:c3:ca:24: 36:0d:c8:a5:69:4a:c3:5b:d1:d8:e9:42:5a:d4:d5: ad:af:67:88:a0:ed:10:5e:fc:28:8a:69:70:58:0d: 35:00:92:1c:3a:60:a4:6a:60:0c:89:63:0a:a1:a5: 68:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:D0:3B:2F:80:71:12:27:E4:8D:38:6B:B8:62:3B:5C:AD:4A:A4:4F X509v3 Authority Key Identifier: keyid:5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:5c:32:37:a3:bf:d8:74:9a:4c:60:1d:89:a5:75:6d:5d:fa: 6a:a4:61:1d:e3:26:bc:40:60:58:59:5c:93:92:f1:12:6e:b6: 31:4e:38:9d:08:1c:28:9d:3f:28:d1:75:48:2c:e0:84:da:c2: 3e:68:58:16:62:71:6b:89:59:1d:84:35:d3:2f:a0:26:04:1a: de:80:86:27:de:26:de:b8:48:9e:0f:a2:af:67:c6:4f:63:e6: 14:d4:51:9d:01:99:31:12:fa:a7:ea:93:4b:ca:7b:ab:0e:b5: 9f:73:18:0f:4c:65:10:21:56:0d:21:97:92:66:ba:28:f6:da: 7f:2b:1e:44:2b:f9:23:07:66:c9:86:14:53:de:cc:f4:9f:98: 84:c2:1d:69:43:3a:18:2b:e1:f8:bd:dc:87:a2:21:3e:3f:ad: 00:38:af:ae:92:65:2e:31:cb:81:61:c9:bd:35:d7:d5:ec:8d: 98:48:b5:35:a0:c9:ee:da:5d:ff:c6:64:b2:e3:72:c3:8d:a8: c0:2a:40:d7:95:c5:9b:d0:90:c0:b8:f7:71:5c:16:06:b3:1d: 04:30:0b:85:3c:f6:c2:3a:da:a5:df:81:0b:4e:1f:00:27:c4: 9e:f5:85:cb:92:29:7f:d9:17:06:30:01:04:f7:3b:ae:b7:15: a1:9b:d7:b8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFOEUxMTAvBgNVBAUTKDVGMkU1RTYyOTMyQkI1MEE4NUZGMkY5QTVGMzFCMkJB REQ1RjM0QUMwHhcNMjYwMzAxMjI1NDQ2WhcNMjYwMzA4MjI1NDQ2WjAYMRYwFAYD VQQDEw02OWE0YzNiNy0zZmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2xCX8pEO5eD5hki0iPH4hNaWX2KJf5AqtEg6cc9xOzHDEwO5QMRkkQPvv5z8 L594bv1coNfbetjNL6q19nNZcNCo66A4p0aXWiGkIcO6b4vNcuwL944tCd8EuOp7 d0yQDwFPOykNEXYtV6hY3vBfoTIb4zszI4jY+FtJp5uCzsNu668vLKE/peHCH4DJ GSR5GwWNEjbsvboxJZWHwjf7iIbJ9eBSfdsIn+HASX3qvOSskO8IpA5dcpaDOlNm TdDlr0CNCumoUE4RitLVULzDyiQ2DcilaUrDW9HY6UJa1NWtr2eIoO0QXvwoimlw WA01AJIcOmCkamAMiWMKoaVoIQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPfQOy+A cRIn5I04a7hiO1ytSqRPMB8GA1UdIwQYMBaAFF8uXmKTK7UKhf8vml8xsrrdXzSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEU4RS8wNEZCQjhGMEFF MEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRRcUZfeS1hWHpHeXV0MWZO S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5NWVZcE1ydFFxRl95LWFYekd5dXQxZk5Ldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEU4RS8wNEZCQjhGMEFFMEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRR cUZfeS1hWHpHeXV0MWZOS3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQVwyN6O/2HSaTGAdiaV1bV36aqRhHeMmvEBgWFlck5LxEm62MU44nQgcKJ0/ KNF1SCzghNrCPmhYFmJxa4lZHYQ10y+gJgQa3oCGJ94m3rhIng+ir2fGT2PmFNRR nQGZMRL6p+qTS8p7qw61n3MYD0xlECFWDSGXkma6KPbafyseRCv5IwdmyYYUU97M 9J+YhMIdaUM6GCvh+L3ch6IhPj+tADivrpJlLjHLgWHJvTXX1eyNmEi1NaDJ7tpd /8ZksuNyw42owCpA15XFm9CQwLj3cVwWBrMdBDALhTz2wjrapd+BC04fACfEnvWF y5Ipf9kXBjABBPc7rrcVoZvXuA== -----END CERTIFICATE-----Generated at Mon Mar 2 11:45:16 2026 by rpki-client