$ rpki-client -vvf rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft File: XKzlv2VarPfLxicsXGl_N3oGzow.mft (raw, json) Hash identifier: TAY8uVfaXg923qSwN0Ee8OEUdmUrRNUDNr9CS0rA3w0= Subject key identifier: C4:6B:5C:63:04:DF:D4:55:C8:06:EB:45:8E:BD:9A:BF:CA:AA:5C:1B Authority key identifier: 5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C Certificate issuer: /CN=A917C9BF/serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft Manifest number: 0114 Signing time: Sun 01 Mar 2026 07:00:41 +0000 Manifest this update: Sun 01 Mar 2026 07:00:40 +0000 Manifest next update: Sun 08 Mar 2026 07:00:40 +0000 Files and hashes: 1: XKzlv2VarPfLxicsXGl_N3oGzow.crl (hash: Jssd2rdMUAQMCzAOm/O+GTtgxzrR9T9ClYNrACK7E5o=) 2: 15875DC27B5E11EFAB71253BC4F9AE02.roa (hash: zbGwECDik3OAcu543q9pzZB/RKrVhWGvUuUO/9+kdaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C9BF, serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Validity Not Before: Mar 1 07:00:40 2026 GMT Not After : Mar 8 07:00:40 2026 GMT Subject: CN=69a3e418-605c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:a6:dd:e0:f1:b7:00:9d:11:4e:9d:03:07:73: bf:3d:9e:a3:17:83:11:b8:3f:15:76:f7:21:72:64: 04:87:d4:a9:16:22:80:8b:57:7e:66:8b:75:c2:20: 21:5c:8a:67:61:6b:38:df:13:b7:fc:59:ec:6d:9d: 14:f1:dc:66:64:d0:49:ba:c0:4a:79:03:bc:b1:0b: cb:d4:1c:e2:92:40:69:4a:82:b8:6b:ad:f9:e5:32: 1f:52:d9:3e:e7:0d:bb:ab:4b:72:5d:80:cc:b2:a9: 12:ea:f4:ef:91:4c:12:83:74:7a:41:3c:bb:fc:41: 31:b2:af:6f:3c:0e:97:49:01:d7:c7:e6:36:d5:e5: 68:5a:9c:21:e9:f4:37:ff:59:0c:a9:39:09:8f:7d: 12:03:bf:23:21:0e:b4:a3:b4:3b:a6:f4:4e:24:6c: 04:f7:cb:7c:d6:fa:d8:5d:e5:55:f0:74:8a:bc:a6: 6f:6d:15:41:02:c7:78:f0:b5:47:d9:47:8e:41:e8: 3a:25:de:52:ee:6b:00:dc:e2:8f:05:68:85:7b:36: 10:2e:84:1f:dd:f1:9a:7b:ea:fa:83:8d:b5:ba:d4: a0:45:35:c2:07:b9:02:ae:2d:99:85:57:83:a7:eb: d2:0b:e1:28:b2:69:ee:ad:00:62:47:68:30:17:d5: 94:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:6B:5C:63:04:DF:D4:55:C8:06:EB:45:8E:BD:9A:BF:CA:AA:5C:1B X509v3 Authority Key Identifier: keyid:5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:95:d2:96:60:8c:60:da:c1:63:b1:83:04:05:e5:80:b3:d9: e3:c3:51:91:3b:b6:5a:28:72:89:15:f9:7f:b1:b6:da:2b:62: 59:27:cd:15:a2:61:50:a0:10:99:31:90:cb:a5:c8:29:f7:18: 45:42:4c:99:5f:9b:48:c3:45:8a:10:1e:76:a3:61:67:e3:de: af:4a:91:60:93:8d:11:05:3b:a2:26:7d:e2:65:df:88:6d:02: c5:a5:22:01:c8:41:84:19:b1:b0:3e:c0:1d:7c:c1:60:62:91: 98:f7:ec:d5:46:25:a2:ce:96:1b:84:d4:7c:ee:25:5b:5e:84: 86:ff:50:a2:40:19:88:45:66:f5:a3:0f:18:d9:a2:f8:36:a8: 82:6a:5d:d4:1d:d3:83:58:e6:c7:93:af:26:ea:a5:7d:cb:79: b3:39:73:47:2f:50:c1:4f:03:03:bb:db:da:09:aa:2f:52:59: 29:13:ae:1e:11:4e:3c:f0:0d:b3:e9:c0:dd:6f:8b:55:a5:eb: 6c:16:fe:dc:83:b7:87:86:02:4c:f8:4c:40:f1:31:56:d4:c5: 53:b0:6b:e9:8a:74:7c:81:c1:1d:2a:89:e5:87:56:81:a9:34: b1:fd:e6:65:91:0e:79:1d:58:4e:3d:de:b3:c4:64:98:0a:a0: 3a:c1:a7:94 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5QkYxMTAvBgNVBAUTKDVDQUNFNUJGNjU1QUFDRjdDQkM2MjcyQzVDNjk3RjM3 N0EwNkNFOEMwHhcNMjYwMzAxMDcwMDQwWhcNMjYwMzA4MDcwMDQwWjAYMRYwFAYD VQQDEw02OWEzZTQxOC02MDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6abd4PG3AJ0RTp0DB3O/PZ6jF4MRuD8VdvchcmQEh9SpFiKAi1d+Zot1wiAh XIpnYWs43xO3/FnsbZ0U8dxmZNBJusBKeQO8sQvL1BzikkBpSoK4a6355TIfUtk+ 5w27q0tyXYDMsqkS6vTvkUwSg3R6QTy7/EExsq9vPA6XSQHXx+Y21eVoWpwh6fQ3 /1kMqTkJj30SA78jIQ60o7Q7pvROJGwE98t81vrYXeVV8HSKvKZvbRVBAsd48LVH 2UeOQeg6Jd5S7msA3OKPBWiFezYQLoQf3fGae+r6g421utSgRTXCB7kCri2ZhVeD p+vSC+EosmnurQBiR2gwF9WUeQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMRrXGME 39RVyAbrRY69mr/KqlwbMB8GA1UdIwQYMBaAFFys5b9lWqz3y8YnLFxpfzd6Bs6M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzlCRi9CRTFENEEzNDdC NEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQZkx4aWNzWEdsX04zb0d6 b3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLemx2MlZhclBmTHhpY3NYR2xfTjNvR3pvdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzlCRi9CRTFENEEzNDdCNEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQ Zkx4aWNzWEdsX04zb0d6b3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlpXSlmCMYNrBY7GDBAXlgLPZ48NRkTu2WihyiRX5f7G22itiWSfNFaJhUKAQ mTGQy6XIKfcYRUJMmV+bSMNFihAedqNhZ+Per0qRYJONEQU7oiZ94mXfiG0CxaUi AchBhBmxsD7AHXzBYGKRmPfs1UYlos6WG4TUfO4lW16Ehv9QokAZiEVm9aMPGNmi +Daogmpd1B3Tg1jmx5OvJuqlfct5szlzRy9QwU8DA7vb2gmqL1JZKROuHhFOPPAN s+nA3W+LVaXrbBb+3IO3h4YCTPhMQPExVtTFU7Br6Yp0fIHBHSqJ5YdWgak0sf3m ZZEOeR1YTj3es8RkmAqgOsGnlA== -----END CERTIFICATE-----Generated at Mon Mar 2 00:37:43 2026 by rpki-client