$ rpki-client -vvf rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft File: X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft (raw, json) Hash identifier: /kWJDEPxJCWLhDJje11u4uhtmMFjhjdqwnIinFhuEnI= Subject key identifier: DB:08:38:B2:02:47:FE:1C:07:9E:BD:8D:C0:52:B6:A6:7F:EA:CD:98 Authority key identifier: 5F:E0:4C:95:7A:6C:BC:54:0A:34:F4:53:D1:3E:3F:80:50:C8:F4:EE Certificate issuer: /CN=A918A51B/serialNumber=5FE04C957A6CBC540A34F453D13E3F8050C8F4EE Certificate serial: 024B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft Manifest number: 0242 Signing time: Sun 01 Mar 2026 03:10:36 +0000 Manifest this update: Sun 01 Mar 2026 03:10:35 +0000 Manifest next update: Sun 08 Mar 2026 03:10:35 +0000 Files and hashes: 1: X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl (hash: JqiAHD+ax0Pn3PKx4u3FjcpT8OqLbAQZ+Plba9it0rM=) 2: 6A9D79ECD6E311EE94842842C4F9AE02.roa (hash: lxKtarKsATY2wiXkVbh3EFTMWa9NQc/B8XJ8gCOAwlc=) 3: 6B9615FCD6E311EE94842842C4F9AE02.roa (hash: okvmN+fO8yeb8sv3bijRR7qzwb2TLJ+EV1o8F+ji/G8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 03:10:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 587 (0x24b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A51B, serialNumber=5FE04C957A6CBC540A34F453D13E3F8050C8F4EE Validity Not Before: Mar 1 03:10:35 2026 GMT Not After : Mar 8 03:10:35 2026 GMT Subject: CN=69a3ae2c-771e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4e:e1:8f:60:d9:5b:5b:c8:96:4b:58:49:5c: c5:83:7b:e3:d8:fb:f6:8a:42:9d:bd:09:d5:db:99: ef:27:1d:0b:d1:e4:7e:e5:32:bc:4d:72:c9:57:b9: 7b:b3:ab:72:59:ee:07:c7:c1:9d:0d:e3:c4:1f:f9: ba:44:bb:19:7d:59:95:50:eb:46:4b:cc:44:1f:80: 7c:a0:42:84:21:71:e4:33:b6:a4:29:04:4f:1d:3b: 50:5b:10:b1:ac:da:77:55:76:0b:90:2d:7c:93:08: 61:3f:bd:13:5f:ba:35:dc:e4:b2:e6:d1:60:eb:0a: 64:f8:cd:af:03:53:a7:7e:f9:c3:f2:04:d2:f0:28: 81:c5:01:a6:5e:44:ae:c9:d4:5f:71:4e:22:08:88: 37:f3:f0:49:5a:1d:4f:71:f8:6d:d6:8d:27:3e:58: ff:9f:0a:aa:5b:1a:7b:74:8d:16:8a:e2:bd:35:02: ad:85:3d:2e:0f:af:ad:76:0b:08:bc:16:df:45:6d: 7e:74:91:87:13:71:e6:d4:09:8f:a1:cc:5a:a7:62: cf:aa:9c:b2:9b:16:23:a6:a0:d4:ab:26:22:d4:3c: 43:02:ef:a4:b1:09:d2:db:5d:fc:f0:3e:0a:4e:3c: 93:ec:7e:2e:53:e3:2c:2f:3b:7d:63:08:f8:4b:d3: 62:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:08:38:B2:02:47:FE:1C:07:9E:BD:8D:C0:52:B6:A6:7F:EA:CD:98 X509v3 Authority Key Identifier: keyid:5F:E0:4C:95:7A:6C:BC:54:0A:34:F4:53:D1:3E:3F:80:50:C8:F4:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:ff:8d:99:84:b1:2f:3f:22:96:15:44:74:b3:d8:66:fa:4b: f3:96:9e:a6:f0:0c:75:4d:a7:45:09:ec:79:89:42:65:c4:d1: 09:77:c3:f2:e3:91:fb:bd:85:31:91:01:69:38:64:89:cd:80: 7e:7a:36:64:71:43:56:ad:1a:b9:63:7b:6d:f3:27:13:22:8d: 11:af:3b:f7:a1:af:a3:16:dc:15:63:88:f6:43:a3:b2:9b:b2: f5:2f:01:96:d2:d8:fb:5c:d8:64:89:b7:67:89:4f:af:91:d7: 54:3e:a7:c9:e2:a4:bc:08:94:f9:84:6d:18:ae:1e:08:aa:7b: 95:f4:cc:ab:da:9b:7f:0a:0d:98:a6:6f:bd:81:ce:51:b5:b0: 14:28:43:22:59:b0:bc:1c:11:1a:ee:02:f8:b2:b9:cb:81:20: 6f:37:5d:03:f9:36:0a:c6:55:89:89:03:eb:09:c4:8d:47:ea: 55:a7:69:40:4c:a0:62:3b:ba:1d:e9:f6:56:30:fd:3a:9a:3d: 1d:93:9a:a3:1b:b0:35:d5:f6:7d:5d:f5:33:80:dc:0d:6c:7e: fb:39:52:3d:75:58:8a:06:c7:cc:e8:e0:c3:45:f7:ba:6b:3c: 16:42:92:78:e1:99:8f:6f:35:da:c2:f5:5d:07:69:d7:79:69: 66:6e:d4:e7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE1MUIxMTAvBgNVBAUTKDVGRTA0Qzk1N0E2Q0JDNTQwQTM0RjQ1M0QxM0UzRjgw NTBDOEY0RUUwHhcNMjYwMzAxMDMxMDM1WhcNMjYwMzA4MDMxMDM1WjAYMRYwFAYD VQQDDA02OWEzYWUyYy03NzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtU7hj2DZW1vIlktYSVzFg3vj2Pv2ikKdvQnV25nvJx0L0eR+5TK8TXLJV7l7 s6tyWe4Hx8GdDePEH/m6RLsZfVmVUOtGS8xEH4B8oEKEIXHkM7akKQRPHTtQWxCx rNp3VXYLkC18kwhhP70TX7o13OSy5tFg6wpk+M2vA1OnfvnD8gTS8CiBxQGmXkSu ydRfcU4iCIg38/BJWh1Pcfht1o0nPlj/nwqqWxp7dI0WiuK9NQKthT0uD6+tdgsI vBbfRW1+dJGHE3Hm1AmPocxap2LPqpyymxYjpqDUqyYi1DxDAu+ksQnS21388D4K TjyT7H4uU+MsLzt9Ywj4S9NiZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNsIOLIC R/4cB569jcBStqZ/6s2YMB8GA1UdIwQYMBaAFF/gTJV6bLxUCjT0U9E+P4BQyPTu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTUxQi8wMENBOThGMkEx QTUxMUVEOTEyMzIyNTRDNEY5QUUwMi9YLUJNbFhwc3ZGUUtOUFJUMFQ0X2dGREk5 TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtQk1sWHBzdkZRS05QUlQwVDRfZ0ZESTlPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTUxQi8wMENBOThGMkExQTUxMUVEOTEyMzIyNTRDNEY5QUUwMi9YLUJNbFhwc3ZG UUtOUFJUMFQ0X2dGREk5TzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxf+NmYSxLz8ilhVEdLPYZvpL85aepvAMdU2nRQnseYlCZcTRCXfD8uOR+72F MZEBaThkic2Afno2ZHFDVq0auWN7bfMnEyKNEa8796GvoxbcFWOI9kOjspuy9S8B ltLY+1zYZIm3Z4lPr5HXVD6nyeKkvAiU+YRtGK4eCKp7lfTMq9qbfwoNmKZvvYHO UbWwFChDIlmwvBwRGu4C+LK5y4EgbzddA/k2CsZViYkD6wnEjUfqVadpQEygYju6 Hen2VjD9Opo9HZOaoxuwNdX2fV31M4DcDWx++zlSPXVYigbHzOjgw0X3ums8FkKS eOGZj2812sL1XQdp13lpZm7U5w== -----END CERTIFICATE-----Generated at Sun Mar 1 22:28:19 2026 by rpki-client