$ rpki-client -vvf rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft File: XAq0JfK0I14cgVaDvWyOi3uAtyc.mft (raw, json) Hash identifier: bh425b5bBVkSzspkTJZ9zFLhjhQoTu8/jO+SEaJvfgM= Subject key identifier: CA:5E:E9:DC:23:02:49:A1:54:89:25:2F:93:13:7C:7E:A7:1B:6C:23 Authority key identifier: 5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 Certificate issuer: /CN=A917F8A9/serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Certificate serial: 0A16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft Manifest number: 09FD Signing time: Mon 02 Mar 2026 19:44:17 +0000 Manifest this update: Mon 02 Mar 2026 19:44:17 +0000 Manifest next update: Mon 09 Mar 2026 19:44:17 +0000 Files and hashes: 1: XAq0JfK0I14cgVaDvWyOi3uAtyc.crl (hash: HXuMJxytDGA12CjeX+AmNhQkAaE4R/ClTMr+wHnGtq0=) 2: 0774A2C894F211EAB30E7682C4F9AE02.roa (hash: l2tsnXDfo/hIktpCNOIO2/elh/NggYLVtKn+htr+20w=) 3: 83DC30E0D0DB11EA9336962FC4F9AE02.roa (hash: 6ZGy644lUjSn/iRWamVdu/Cx4lbrco/8//Ud8xr+hK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2582 (0xa16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F8A9, serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Validity Not Before: Mar 2 19:44:17 2026 GMT Not After : Mar 9 19:44:17 2026 GMT Subject: CN=69a5e891-6f15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:2e:dd:f5:41:f8:d3:6c:0a:8c:4e:6f:95:20: 51:06:f4:8e:40:01:a2:2d:d4:18:79:c5:bd:95:ed: f9:f3:5f:80:d9:79:1b:a5:18:ad:04:3a:dc:8a:04: 53:a8:d4:30:12:f0:e6:d1:99:20:d6:51:1a:9d:56: 99:37:fe:42:77:56:a0:84:2c:3b:25:8b:d6:8d:25: 93:a9:78:d5:ec:62:72:d2:5c:d5:3d:fe:3d:2d:83: 36:fe:50:95:9b:66:24:ae:37:46:31:48:75:e6:73: d1:31:ff:40:b0:7f:d4:17:77:37:e1:42:22:6d:6f: 0b:81:ee:14:4d:13:11:6a:7a:3b:ef:0c:7a:84:a1: ef:34:00:f3:07:9f:70:3e:6e:11:a8:b0:03:db:06: 20:43:cb:e3:f5:e1:ac:7c:05:6a:e8:91:10:b2:d7: 3f:03:81:a0:7a:dd:03:26:d1:4d:a1:7d:b9:83:88: 6a:27:4c:3b:19:f4:0a:90:b5:52:53:2b:88:20:5d: 5d:ca:38:d7:d6:96:a2:58:d8:96:29:e3:65:78:5a: 00:21:33:bc:aa:9a:6a:a6:7d:22:a1:fc:83:a5:9b: 0f:d2:7f:46:7a:6b:c4:b3:79:24:b2:fd:b4:c4:e9: 4b:f4:56:b6:e0:a2:00:46:35:7e:d1:82:20:af:ef: 3e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:5E:E9:DC:23:02:49:A1:54:89:25:2F:93:13:7C:7E:A7:1B:6C:23 X509v3 Authority Key Identifier: keyid:5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:ea:75:9a:c0:fc:57:95:40:b6:52:94:cc:4a:f2:e5:ad:60: 2e:78:78:49:a3:87:09:c9:03:1e:2f:5e:05:10:c0:c6:a2:d9: c4:ff:72:81:1d:ba:8f:70:0e:b5:57:eb:b4:48:73:26:b2:e1: 05:06:63:fa:b3:17:ec:7a:4a:d3:0c:7a:3a:47:05:c0:54:b2: 08:aa:ae:ca:56:76:e2:86:18:64:3a:a8:52:91:e4:68:fa:3c: 59:50:80:e4:ed:51:68:88:7b:3d:d2:83:95:ea:ed:65:83:f6: b4:45:04:7c:0b:f6:a3:4f:68:a6:1c:f7:a9:08:29:eb:b6:af: 54:ff:a7:72:e0:fc:ba:d1:45:f5:10:7a:f7:23:cc:a4:ba:bb: 1e:52:d2:1b:4a:a0:9f:a1:52:6f:7f:61:b6:7b:30:cb:36:b4: c0:2c:de:71:0b:36:ad:9c:c3:71:6b:8b:0a:13:d8:1d:dc:ce: 5c:47:f4:b7:0d:53:d8:95:5a:d4:c6:2d:77:83:ec:c7:6a:57: 80:39:82:da:32:e8:c1:c1:16:d6:31:1f:13:c6:2e:f1:68:28: 54:25:0e:d5:b8:b9:84:55:5d:4a:a0:d5:91:cc:13:6f:2e:90: 8a:f4:9e:a5:04:5c:28:9c:21:68:1c:85:26:ff:5c:db:56:45: 81:37:4a:18 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICChYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4QTkxMTAvBgNVBAUTKDVDMEFCNDI1RjJCNDIzNUUxQzgxNTY4M0JENkM4RThC N0I4MEI3MjcwHhcNMjYwMzAyMTk0NDE3WhcNMjYwMzA5MTk0NDE3WjAYMRYwFAYD VQQDEw02OWE1ZTg5MS02ZjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAii7d9UH402wKjE5vlSBRBvSOQAGiLdQYecW9le3581+A2XkbpRitBDrcigRT qNQwEvDm0Zkg1lEanVaZN/5Cd1aghCw7JYvWjSWTqXjV7GJy0lzVPf49LYM2/lCV m2YkrjdGMUh15nPRMf9AsH/UF3c34UIibW8Lge4UTRMRano77wx6hKHvNADzB59w Pm4RqLAD2wYgQ8vj9eGsfAVq6JEQstc/A4Gget0DJtFNoX25g4hqJ0w7GfQKkLVS UyuIIF1dyjjX1paiWNiWKeNleFoAITO8qppqpn0iofyDpZsP0n9GemvEs3kksv20 xOlL9Fa24KIARjV+0YIgr+8+CQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMpe6dwj AkmhVIklL5MTfH6nG2wjMB8GA1UdIwQYMBaAFFwKtCXytCNeHIFWg71sjot7gLcn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjhBOS8yQUEwNDMzMDk0 RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkxNGNnVmFEdld5T2kzdUF0 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBcTBKZkswSTE0Y2dWYUR2V3lPaTN1QXR5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjhBOS8yQUEwNDMzMDk0RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkx NGNnVmFEdld5T2kzdUF0eWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIOp1msD8V5VAtlKUzEry5a1gLnh4SaOHCckDHi9eBRDAxqLZxP9ygR26j3AO tVfrtEhzJrLhBQZj+rMX7HpK0wx6OkcFwFSyCKquylZ24oYYZDqoUpHkaPo8WVCA 5O1RaIh7PdKDlertZYP2tEUEfAv2o09ophz3qQgp67avVP+ncuD8utFF9RB69yPM pLq7HlLSG0qgn6FSb39htnswyza0wCzecQs2rZzDcWuLChPYHdzOXEf0tw1T2JVa 1MYtd4Psx2pXgDmC2jLowcEW1jEfE8Yu8WgoVCUO1bi5hFVdSqDVkcwTby6QivSe pQRcKJwhaByFJv9c21ZFgTdKGA== -----END CERTIFICATE-----Generated at Mon Mar 2 23:53:44 2026 by rpki-client