$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft File: XSeFtU0WPtAepUGLz6NPG3RWtxM.mft (raw, json) Hash identifier: P3iDcgkV17JepPfoa4daQZYKN2Pl2wLnmTlNJAtHZ1w= Subject key identifier: 5D:64:16:77:1C:2D:83:0F:8D:3A:74:FA:A1:8D:4E:E0:7B:CD:F4:97 Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 0525 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft Manifest number: 050A Signing time: Sun 01 Mar 2026 00:17:09 +0000 Manifest this update: Sun 01 Mar 2026 00:17:09 +0000 Manifest next update: Sun 08 Mar 2026 00:17:09 +0000 Files and hashes: 1: XSeFtU0WPtAepUGLz6NPG3RWtxM.crl (hash: MIcqvE5baItJnn1Ykhn5MISjYSpv2kAwpkhl9yELG5M=) 2: ACE844F047AA11ECA0F05026C4F9AE02.roa (hash: rDIISPx2Jw6kCtly/sr/saYDXZ1Vwq2i5nDputMMqM0=) 3: 1F77EFA44C4011EC952D5A23C4F9AE02.roa (hash: 8xg5MTXXpBnfX0/pQTijWkIRf1MFFgkaGBEoo218ZXc=) 4: 6337963E4C3D11ECB5FF844FC4F9AE02.roa (hash: aTXEi1LzXTl0g2LyujQDHdlXFvir0+qlzsPxrUIKoNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 00:17:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1317 (0x525) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5, serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: Mar 1 00:17:09 2026 GMT Not After : Mar 8 00:17:09 2026 GMT Subject: CN=69a38585-5790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ac:a4:19:81:78:b7:be:75:d6:18:fa:45:4f: c8:84:32:ea:99:44:a6:3e:ac:24:e3:8c:94:bd:64: 3b:40:c4:78:76:f9:88:1b:c8:5d:ea:20:0c:95:0b: 06:d6:59:63:13:b2:fe:70:9f:23:64:06:05:4e:e6: b8:85:b6:ab:a5:ea:61:db:b8:ec:b4:db:c0:a6:65: f4:2c:d6:f9:5a:51:97:a8:0c:e1:d2:04:43:64:b8: 5f:8f:8c:c1:e8:fc:c2:64:1d:22:33:ab:f9:ba:88: d3:26:40:ee:42:e6:b5:9e:91:ea:30:e9:76:25:d5: 0f:e0:ff:33:4e:89:c8:1f:fc:39:99:9e:54:ea:cc: aa:d9:3f:12:e3:5b:c5:a3:06:aa:4e:6a:36:16:ab: 79:96:6a:ac:27:0d:c2:77:fd:56:63:69:e3:da:92: a3:26:eb:6e:53:59:25:9d:ab:ad:90:a9:85:41:a2: 51:18:45:8a:ed:d8:20:bb:fc:8d:db:97:2c:42:53: 77:f4:e0:56:4e:bc:50:68:78:6d:82:7f:81:6b:6c: 03:69:f7:73:3a:3e:6a:ad:7d:bb:4c:6d:6a:dc:ff: 65:45:91:e5:d4:92:12:9c:c2:df:77:0c:2f:cb:09: 3b:41:86:b2:b8:33:c9:47:a2:a2:1a:cb:aa:12:20: 59:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:64:16:77:1C:2D:83:0F:8D:3A:74:FA:A1:8D:4E:E0:7B:CD:F4:97 X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:71:06:b3:4b:68:0a:fc:2c:e2:f5:c6:66:e3:d1:f5:31:d3: db:c9:8c:42:77:cb:d5:45:8c:23:ad:ac:8d:13:30:ae:c1:88: d9:35:a7:99:2e:02:be:d3:a4:a5:24:4e:13:ed:07:3b:d5:de: bf:fe:22:a4:e3:47:9d:25:b2:11:23:51:68:d6:0d:44:58:01: 92:0e:a0:2d:1d:c7:67:11:42:75:aa:1f:4a:cc:7e:ab:61:f6: 40:93:92:c4:3d:d3:03:b6:76:a3:49:4d:9f:97:02:98:b7:2c: 3e:64:29:d6:9b:35:0f:4a:d1:f2:1f:e6:96:b1:e4:f9:e3:1f: 68:cd:1a:0f:6b:5b:69:e5:75:3b:ff:5b:20:fb:78:b1:77:ea: 44:b7:ad:16:d0:95:c0:50:25:36:c1:08:0e:82:bc:aa:a0:b7: aa:e8:9a:82:fd:14:56:f9:58:07:3d:20:ee:55:1f:8f:e7:89: 60:ca:c3:d0:35:b5:30:6f:3e:9d:bd:b9:e1:1a:72:ef:24:b2: fe:61:f6:96:00:c6:85:90:a4:0a:d0:ea:d2:b5:f9:21:fc:c0: 18:d8:c8:e7:17:57:b3:90:84:6e:53:b2:cb:18:0f:e0:2e:77: ae:a6:74:11:13:d7:96:4c:d0:5d:0c:c2:fd:17:97:d3:b9:e7: 5d:38:bf:f6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjYwMzAxMDAxNzA5WhcNMjYwMzA4MDAxNzA5WjAYMRYwFAYD VQQDDA02OWEzODU4NS01NzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApaykGYF4t7511hj6RU/IhDLqmUSmPqwk44yUvWQ7QMR4dvmIG8hd6iAMlQsG 1lljE7L+cJ8jZAYFTua4hbarpeph27jstNvApmX0LNb5WlGXqAzh0gRDZLhfj4zB 6PzCZB0iM6v5uojTJkDuQua1npHqMOl2JdUP4P8zTonIH/w5mZ5U6syq2T8S41vF owaqTmo2Fqt5lmqsJw3Cd/1WY2nj2pKjJutuU1klnautkKmFQaJRGEWK7dggu/yN 25csQlN39OBWTrxQaHhtgn+Ba2wDafdzOj5qrX27TG1q3P9lRZHl1JISnMLfdwwv ywk7QYayuDPJR6KiGsuqEiBZEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF1kFncc LYMPjTp0+qGNTuB7zfSXMB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NDNS8yQUM0RDMzRTQ2QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0 QWVwVUdMejZOUEczUld0eE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAr3EGs0toCvws4vXGZuPR9THT28mMQnfL1UWMI62sjRMwrsGI2TWnmS4CvtOk pSROE+0HO9Xev/4ipONHnSWyESNRaNYNRFgBkg6gLR3HZxFCdaofSsx+q2H2QJOS xD3TA7Z2o0lNn5cCmLcsPmQp1ps1D0rR8h/mlrHk+eMfaM0aD2tbaeV1O/9bIPt4 sXfqRLetFtCVwFAlNsEIDoK8qqC3quiagv0UVvlYBz0g7lUfj+eJYMrD0DW1MG8+ nb254Rpy7ySy/mH2lgDGhZCkCtDq0rX5IfzAGNjI5xdXs5CEblOyyxgP4C53rqZ0 ERPXlkzQXQzC/ReX07nnXTi/9g== -----END CERTIFICATE-----Generated at Sun Mar 1 22:33:46 2026 by rpki-client