$ rpki-client -vvf rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft File: xDfVjxI6auBXxgjiFrtr_WWER2o.mft (raw, json) Hash identifier: 2knJI/gSzZCpcetDod6dN0FyqGD34darKI6okXqPTMc= Subject key identifier: A0:4F:8B:C8:FF:8F:8D:27:20:2A:7B:92:94:53:93:E1:44:D9:A1:11 Authority key identifier: C4:37:D5:8F:12:3A:6A:E0:57:C6:08:E2:16:BB:6B:FD:65:84:47:6A Certificate issuer: /CN=A9169903/serialNumber=C437D58F123A6AE057C608E216BB6BFD6584476A Certificate serial: 0649 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft Manifest number: 0642 Signing time: Mon 02 Mar 2026 03:01:44 +0000 Manifest this update: Mon 02 Mar 2026 03:01:43 +0000 Manifest next update: Mon 09 Mar 2026 03:01:43 +0000 Files and hashes: 1: xDfVjxI6auBXxgjiFrtr_WWER2o.crl (hash: O2xNUMSz8lbyAHRqtcxelMVsEA+fFAklihM3SBg+lqE=) 2: ED31D84EC81D11EBA4C0E321C4F9AE02.roa (hash: tx+Y/n+r9hRdlH/NzXABSvt/2qdhadoLP0Jf7gqVFNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.crl rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1609 (0x649) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169903, serialNumber=C437D58F123A6AE057C608E216BB6BFD6584476A Validity Not Before: Mar 2 03:01:43 2026 GMT Not After : Mar 9 03:01:43 2026 GMT Subject: CN=69a4fd98-df09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:51:64:80:8d:33:2c:a3:af:54:b0:6f:db:4c: 6d:7d:93:19:91:42:18:c3:62:49:27:89:81:7c:ae: 05:ce:1f:19:8a:5b:30:82:11:04:2f:aa:21:6d:f7: 9f:6b:89:23:3a:92:bb:75:72:3c:cb:36:0c:21:51: 69:55:25:38:b0:14:60:07:10:96:e9:c2:5c:58:5f: 21:10:9e:2f:cc:51:01:aa:32:8b:99:8d:ee:88:ac: 4c:91:97:80:2b:c3:cf:49:3c:77:d1:5a:3f:e9:7d: 28:ee:39:98:fe:07:8b:1c:13:bd:23:94:ce:9a:e9: b1:73:6e:9d:86:30:34:90:d1:78:89:89:aa:34:48: 20:86:be:60:94:53:0e:d5:c0:e6:a4:ce:11:0f:b7: a8:0a:3f:4e:6e:be:7f:9f:b8:92:61:7d:e5:fa:a7: 20:63:ed:39:24:ee:41:92:fb:e5:b6:a4:49:2c:c9: 79:b0:21:fd:2b:f7:3e:1d:ad:75:06:3a:33:c8:56: b3:08:18:cc:5a:f3:5e:60:6e:ab:18:fd:e8:ed:1b: 8f:92:61:60:54:6f:a3:6d:2e:c9:58:cc:01:f3:42: de:41:bb:d9:89:8e:df:e2:e8:b8:ee:d1:c3:9e:6a: c0:c8:c6:77:c5:4e:4f:cf:a7:ce:3c:5c:52:28:56: ce:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:4F:8B:C8:FF:8F:8D:27:20:2A:7B:92:94:53:93:E1:44:D9:A1:11 X509v3 Authority Key Identifier: keyid:C4:37:D5:8F:12:3A:6A:E0:57:C6:08:E2:16:BB:6B:FD:65:84:47:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDfVjxI6auBXxgjiFrtr_WWER2o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169903/EE6B7418C81811EB83CEEB4AC4F9AE02/xDfVjxI6auBXxgjiFrtr_WWER2o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:da:48:98:5a:ca:e9:16:07:50:97:41:bd:6b:47:8a:07:65: 42:9a:84:7a:e3:b1:3c:cc:35:6a:63:c2:31:85:a1:3a:82:fa: 80:77:22:48:2a:13:c5:aa:08:99:56:aa:e1:d0:8d:17:eb:fa: 8a:bc:59:f6:c3:bf:2a:9c:93:47:c9:1e:82:d7:80:2e:91:56: 96:8a:65:3d:ce:a9:73:da:8b:7d:1f:54:fa:b0:b1:35:29:df: 3c:0f:cc:1a:9c:6d:f0:45:7c:13:0a:f3:c4:25:13:db:d0:6d: ec:a5:ab:e0:51:02:68:03:8b:62:8b:a0:a1:79:f9:24:14:44: 3e:b0:91:c6:8a:bc:a0:79:78:0b:e1:ca:21:3f:7d:46:0d:91: 92:ec:33:7b:75:6d:2a:c4:f0:c7:17:14:3e:03:ab:b7:6f:68: 24:40:c8:01:a9:ab:b6:5a:5a:0a:17:f9:92:90:f6:e3:49:bb: 8f:c3:1f:b7:69:8c:2c:e4:2c:a0:64:9c:e4:e7:c4:ad:5c:4e: b1:6b:5d:9a:f0:30:43:72:46:a7:57:88:5a:63:7b:a5:de:61: b8:fe:e0:7f:14:b3:39:6d:42:54:e5:59:2f:11:f7:39:4d:6b: 5f:a6:62:62:3f:ca:9e:a1:6d:4c:06:c3:33:d9:cd:54:d2:d1: 1c:64:be:0c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk5MDMxMTAvBgNVBAUTKEM0MzdENThGMTIzQTZBRTA1N0M2MDhFMjE2QkI2QkZE NjU4NDQ3NkEwHhcNMjYwMzAyMDMwMTQzWhcNMjYwMzA5MDMwMTQzWjAYMRYwFAYD VQQDEw02OWE0ZmQ5OC1kZjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3FFkgI0zLKOvVLBv20xtfZMZkUIYw2JJJ4mBfK4Fzh8ZilswghEEL6ohbfef a4kjOpK7dXI8yzYMIVFpVSU4sBRgBxCW6cJcWF8hEJ4vzFEBqjKLmY3uiKxMkZeA K8PPSTx30Vo/6X0o7jmY/geLHBO9I5TOmumxc26dhjA0kNF4iYmqNEgghr5glFMO 1cDmpM4RD7eoCj9Obr5/n7iSYX3l+qcgY+05JO5BkvvltqRJLMl5sCH9K/c+Ha11 BjozyFazCBjMWvNeYG6rGP3o7RuPkmFgVG+jbS7JWMwB80LeQbvZiY7f4ui47tHD nmrAyMZ3xU5Pz6fOPFxSKFbO2QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKBPi8j/ j40nICp7kpRTk+FE2aERMB8GA1UdIwQYMBaAFMQ31Y8SOmrgV8YI4ha7a/1lhEdq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTkwMy9FRTZCNzQxOEM4 MTgxMUVCODNDRUVCNEFDNEY5QUUwMi94RGZWanhJNmF1Qlh4Z2ppRnJ0cl9XV0VS Mm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hEZlZqeEk2YXVCWHhnamlGcnRyX1dXRVIyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTkwMy9FRTZCNzQxOEM4MTgxMUVCODNDRUVCNEFDNEY5QUUwMi94RGZWanhJNmF1 Qlh4Z2ppRnJ0cl9XV0VSMm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiNpImFrK6RYHUJdBvWtHigdlQpqEeuOxPMw1amPCMYWhOoL6gHciSCoTxaoI mVaq4dCNF+v6irxZ9sO/KpyTR8kegteALpFWloplPc6pc9qLfR9U+rCxNSnfPA/M Gpxt8EV8EwrzxCUT29Bt7KWr4FECaAOLYougoXn5JBREPrCRxoq8oHl4C+HKIT99 Rg2Rkuwze3VtKsTwxxcUPgOrt29oJEDIAamrtlpaChf5kpD240m7j8Mft2mMLOQs oGSc5OfErVxOsWtdmvAwQ3JGp1eIWmN7pd5huP7gfxSzOW1CVOVZLxH3OU1rX6Zi Yj/KnqFtTAbDM9nNVNLRHGS+DA== -----END CERTIFICATE-----Generated at Mon Mar 2 20:02:17 2026 by rpki-client