$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft File: Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft (raw, json) Hash identifier: RU2sjGW8eIZR7LAJp7oDj2xeTciC62bJU5TzpvHCSsc= Subject key identifier: DD:DF:20:D4:7F:6C:6B:0F:5F:2A:5D:5F:4F:79:8B:5B:3C:B5:6E:01 Authority key identifier: 5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC Certificate issuer: /CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Certificate serial: 0449 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft Manifest number: 041F Signing time: Mon 02 Mar 2026 10:56:57 +0000 Manifest this update: Mon 02 Mar 2026 10:56:56 +0000 Manifest next update: Mon 09 Mar 2026 10:56:56 +0000 Files and hashes: 1: Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl (hash: 0/WVNDGgZ+3y9+3cqchnKNnp+ZXKNCeVvZwHpYq7KUo=) 2: 7B6F6276E03811EFAC3C5652C4F9AE02.roa (hash: kjc0z6a/iByXXDPlROnFDBd+xMGZZSJP82wayurFrj0=) 3: 7AA94F3CE03811EFAC3C5652C4F9AE02.roa (hash: EdXgXcRJBqOObFBYGMxN8+lMDHnRZ6opfMWajoFKZos=) 4: 79C2D638E03811EFAC3C5652C4F9AE02.roa (hash: oLzDlxvC7RmBlqcpDSgyapqgQ6kOO2dJLdnd7qa5Eqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:55:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1097 (0x449) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E8E, serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Validity Not Before: Mar 2 10:56:56 2026 GMT Not After : Mar 9 10:56:56 2026 GMT Subject: CN=69a56cf9-1f4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ca:86:79:d3:0b:92:be:8d:0d:72:bd:fc:32: df:a6:88:38:29:10:92:09:07:48:9d:f5:1f:c5:a7: 13:bb:74:3d:ea:c3:87:5f:d8:40:03:0f:77:3e:72: a1:37:47:ee:6e:60:84:15:71:df:56:3d:6c:ac:98: 96:75:8f:4e:b0:4d:6a:ec:65:f3:34:2f:ba:d2:5b: dd:f8:34:fe:60:86:df:bc:3d:67:ff:8b:b9:7c:40: d5:3a:cf:16:b8:f7:d3:8f:ad:bf:22:19:1b:ea:8f: 24:a7:b5:d1:f0:b5:0b:85:eb:76:25:8e:ce:bc:66: 8d:4c:cc:90:d2:3f:3d:68:ed:7e:d1:be:dd:23:50: bf:90:16:e9:c3:5e:65:f0:9c:bc:ef:70:08:46:41: cc:fa:7b:bd:94:0f:ab:92:7a:d0:e8:b3:c3:34:1c: d9:fa:89:f5:0c:71:00:f8:35:03:55:f3:3e:ff:47: f5:64:7f:35:a9:ba:45:42:66:9e:bf:d3:1a:a7:42: 40:b6:cc:54:4a:83:a2:a9:57:c9:b9:e3:11:41:cc: 8c:89:2f:f2:da:51:59:4e:ec:df:35:64:83:5e:f7: 90:f3:7d:d5:7f:77:d3:44:0b:c7:9e:fd:6c:2a:0c: 29:f0:0d:b7:51:a0:bb:48:5f:f0:ae:69:ba:1c:70: 96:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:DF:20:D4:7F:6C:6B:0F:5F:2A:5D:5F:4F:79:8B:5B:3C:B5:6E:01 X509v3 Authority Key Identifier: keyid:5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:19:c6:cc:e7:a2:1c:fe:22:a8:61:4e:85:53:f5:2b:04:af: 23:09:54:38:6d:f4:40:c3:a0:74:0f:06:6c:d8:87:6b:22:12: 81:e0:c5:3b:5a:88:34:68:e8:6d:48:b8:55:e7:12:bf:2e:b2: 40:5a:3b:27:d6:26:fb:1e:17:9b:ea:84:3b:17:0f:61:20:e8: 23:39:de:da:6a:de:79:dd:c4:ca:9c:8d:2d:86:71:12:f5:10: f0:84:9b:0a:34:50:91:c7:e5:f3:09:57:48:ba:d9:a1:41:75: 84:1b:f6:73:5f:b4:9f:f5:99:6a:55:a3:c7:d7:ad:1b:a3:9d: 85:06:95:3d:de:51:4e:34:02:e4:79:db:b9:04:fb:15:37:ff: 69:be:d2:4f:d7:81:b4:6a:c9:e1:66:e1:40:b0:61:52:89:cb: 3f:43:22:5a:96:b9:29:b6:75:e6:9b:ba:1e:fd:fa:6c:48:54: e2:20:f1:e3:c6:ad:c9:16:65:53:cb:a2:c5:2e:c0:77:05:4c: 22:76:90:f3:26:33:17:ac:b3:60:80:3c:09:e2:90:02:83:45: d0:bd:a0:f4:51:4b:49:73:ed:06:44:b1:b9:db:92:86:1c:e4: 12:e5:df:c3:55:98:58:8f:6e:35:a6:22:7b:b9:1d:4a:76:0f: ee:47:99:73 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFOEUxMTAvBgNVBAUTKDVGMkU1RTYyOTMyQkI1MEE4NUZGMkY5QTVGMzFCMkJB REQ1RjM0QUMwHhcNMjYwMzAyMTA1NjU2WhcNMjYwMzA5MTA1NjU2WjAYMRYwFAYD VQQDEw02OWE1NmNmOS0xZjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMqGedMLkr6NDXK9/DLfpog4KRCSCQdInfUfxacTu3Q96sOHX9hAAw93PnKh N0fubmCEFXHfVj1srJiWdY9OsE1q7GXzNC+60lvd+DT+YIbfvD1n/4u5fEDVOs8W uPfTj62/Ihkb6o8kp7XR8LULhet2JY7OvGaNTMyQ0j89aO1+0b7dI1C/kBbpw15l 8Jy873AIRkHM+nu9lA+rknrQ6LPDNBzZ+on1DHEA+DUDVfM+/0f1ZH81qbpFQmae v9Map0JAtsxUSoOiqVfJueMRQcyMiS/y2lFZTuzfNWSDXveQ833Vf3fTRAvHnv1s Kgwp8A23UaC7SF/wrmm6HHCWzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN3fINR/ bGsPXypdX095i1s8tW4BMB8GA1UdIwQYMBaAFF8uXmKTK7UKhf8vml8xsrrdXzSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEU4RS8wNEZCQjhGMEFF MEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRRcUZfeS1hWHpHeXV0MWZO S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5NWVZcE1ydFFxRl95LWFYekd5dXQxZk5Ldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEU4RS8wNEZCQjhGMEFFMEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRR cUZfeS1hWHpHeXV0MWZOS3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYxnGzOeiHP4iqGFOhVP1KwSvIwlUOG30QMOgdA8GbNiHayISgeDFO1qINGjo bUi4VecSvy6yQFo7J9Ym+x4Xm+qEOxcPYSDoIzne2mreed3EypyNLYZxEvUQ8ISb CjRQkcfl8wlXSLrZoUF1hBv2c1+0n/WZalWjx9etG6OdhQaVPd5RTjQC5HnbuQT7 FTf/ab7ST9eBtGrJ4WbhQLBhUonLP0MiWpa5KbZ15pu6Hv36bEhU4iDx48atyRZl U8uixS7AdwVMInaQ8yYzF6yzYIA8CeKQAoNF0L2g9FFLSXPtBkSxuduShhzkEuXf w1WYWI9uNaYie7kdSnYP7keZcw== -----END CERTIFICATE-----Generated at Mon Mar 2 15:16:30 2026 by rpki-client