$ rpki-client -vvf rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft File: -XyNrMJ-n8zTOuuFNQsmpIFfELc.mft (raw, json) Hash identifier: iYkNhOwt3fgeWhtw/jgiscP+HE5GaqSyLRBNN4FIFGg= Subject key identifier: 1D:F3:89:91:30:69:C3:33:A0:64:C6:82:07:13:14:71:6B:C3:53:6F Authority key identifier: F9:7C:8D:AC:C2:7E:9F:CC:D3:3A:EB:85:35:0B:26:A4:81:5F:10:B7 Certificate issuer: /CN=A9196BD8/serialNumber=F97C8DACC27E9FCCD33AEB85350B26A4815F10B7 Certificate serial: 23ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft Manifest number: 23CD Signing time: Mon 02 Mar 2026 01:15:44 +0000 Manifest this update: Mon 02 Mar 2026 01:15:42 +0000 Manifest next update: Mon 09 Mar 2026 01:15:42 +0000 Files and hashes: 1: -XyNrMJ-n8zTOuuFNQsmpIFfELc.crl (hash: SXSpsHs/lS4rm7yjTQ29n8CC0vY8hblIWG2nd3jf87g=) 2: A768E6B6FB0811ED860A5143C4F9AE02.roa (hash: aqWngdjtRLqUSkhygiAXUU1YJGxW+DXL13gbX9vTVWo=) 3: C73BE8A654F311E7AC64ED3AC4F9AE02.roa (hash: X4uS0rI/nqhGkS7n3+3yxAC8v3e2kcE3Z3BQmxfknoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.crl rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9197 (0x23ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196BD8, serialNumber=F97C8DACC27E9FCCD33AEB85350B26A4815F10B7 Validity Not Before: Mar 2 01:15:42 2026 GMT Not After : Mar 9 01:15:42 2026 GMT Subject: CN=69a4e4c0-b745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:09:d7:28:42:e0:69:76:ef:dc:91:5e:30:73: 15:1a:1e:62:3d:0a:fa:3f:d6:7f:93:20:08:9f:29: d3:c2:1b:cc:f8:c3:8f:85:ae:26:3c:04:81:07:5e: 2f:fe:7e:90:21:11:1f:ba:14:84:61:74:09:95:50: d2:51:f1:ac:b8:da:27:8e:4d:b4:15:aa:e2:ac:60: 2a:db:d1:b6:11:a4:67:62:38:20:b4:50:6b:10:e8: a6:c9:8d:77:3a:09:67:84:56:09:3f:f0:d0:7e:d4: 9a:a7:a2:27:1a:df:70:44:7c:ba:8c:3c:e2:56:40: 40:fb:88:ba:e5:1d:c4:9e:ae:75:35:df:60:e9:87: 48:29:c9:00:b4:db:36:c5:c9:af:d3:ed:94:55:ae: 34:ac:9a:97:91:c5:85:69:22:39:22:1c:ae:88:07: 2f:ab:75:08:47:f5:96:a7:21:ee:0e:7b:10:61:ac: 4a:81:5d:14:f4:b7:b2:42:47:c4:97:0e:a7:d3:ff: f5:9c:70:db:43:d5:c8:09:24:b1:0b:33:e3:e9:10: 50:2c:f9:a8:a5:28:8d:9c:4f:ef:1b:c6:de:5b:35: 77:c3:8c:4f:24:0c:94:67:e3:92:f5:7b:04:c0:57: 87:79:d2:da:88:be:c3:1b:5b:11:2c:e7:e9:b0:dd: 50:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:F3:89:91:30:69:C3:33:A0:64:C6:82:07:13:14:71:6B:C3:53:6F X509v3 Authority Key Identifier: keyid:F9:7C:8D:AC:C2:7E:9F:CC:D3:3A:EB:85:35:0B:26:A4:81:5F:10:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:ee:7a:75:3c:cb:a1:6e:82:61:f0:47:61:b7:a8:99:10:03: 92:17:c0:bc:08:b8:91:ce:dd:5a:48:75:95:ae:f2:06:03:32: fc:95:de:4d:44:1e:5b:b7:de:1e:91:df:31:df:1e:09:f5:fc: 4e:71:8c:31:a8:08:66:71:19:48:12:c0:0f:55:5b:2c:e7:0d: 58:2e:1e:48:68:87:e6:50:1f:33:50:7d:68:df:84:65:bc:13: 04:76:3d:b0:80:7a:16:98:e5:d8:d0:83:f0:b4:cc:e8:5f:5e: 06:92:4f:f5:f5:d8:a5:e5:07:dd:20:a9:9b:c0:43:0d:ed:18: 2a:87:b6:8d:1c:4c:e5:64:3d:24:4a:7d:a8:97:6e:06:f8:d9: a6:54:35:90:b2:c5:97:61:be:ae:81:a3:32:31:6f:73:1b:5b: bd:ac:0c:bb:d7:34:51:95:04:89:ef:49:c4:b9:a2:67:8c:66: f0:fa:cb:96:5a:53:bd:c5:34:17:40:b1:bf:b5:2c:79:a5:01: 2c:c3:0e:48:d2:4d:01:a3:85:b2:80:5f:5e:79:09:30:a2:2f: 44:1b:25:a1:30:95:86:cb:ba:bf:b8:2d:a0:13:fa:3a:f8:d1: 33:21:1e:9b:a4:1d:a4:1b:e9:a1:2e:df:0c:2f:fc:2f:3f:88: e4:6e:0c:4a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICI+0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZCRDgxMTAvBgNVBAUTKEY5N0M4REFDQzI3RTlGQ0NEMzNBRUI4NTM1MEIyNkE0 ODE1RjEwQjcwHhcNMjYwMzAyMDExNTQyWhcNMjYwMzA5MDExNTQyWjAYMRYwFAYD VQQDEw02OWE0ZTRjMC1iNzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAnXKELgaXbv3JFeMHMVGh5iPQr6P9Z/kyAInynTwhvM+MOPha4mPASBB14v /n6QIREfuhSEYXQJlVDSUfGsuNonjk20FarirGAq29G2EaRnYjggtFBrEOimyY13 OglnhFYJP/DQftSap6InGt9wRHy6jDziVkBA+4i65R3Enq51Nd9g6YdIKckAtNs2 xcmv0+2UVa40rJqXkcWFaSI5IhyuiAcvq3UIR/WWpyHuDnsQYaxKgV0U9LeyQkfE lw6n0//1nHDbQ9XICSSxCzPj6RBQLPmopSiNnE/vG8beWzV3w4xPJAyUZ+OS9XsE wFeHedLaiL7DG1sRLOfpsN1QWwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB3ziZEw acMzoGTGggcTFHFrw1NvMB8GA1UdIwQYMBaAFPl8jazCfp/M0zrrhTULJqSBXxC3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkJEOC9DNTgzRDIzMjg3 QTIxMUU1OUU1MUYyNTFDNEY5QUUwMi8tWHlOck1KLW44elRPdXVGTlFzbXBJRmZF TGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YeU5yTUotbjh6VE91dUZOUXNtcElGZkVMYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkJEOC9DNTgzRDIzMjg3QTIxMUU1OUU1MUYyNTFDNEY5QUUwMi8tWHlOck1KLW44 elRPdXVGTlFzbXBJRmZFTGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAr+56dTzLoW6CYfBHYbeomRADkhfAvAi4kc7dWkh1la7yBgMy/JXeTUQeW7fe HpHfMd8eCfX8TnGMMagIZnEZSBLAD1VbLOcNWC4eSGiH5lAfM1B9aN+EZbwTBHY9 sIB6Fpjl2NCD8LTM6F9eBpJP9fXYpeUH3SCpm8BDDe0YKoe2jRxM5WQ9JEp9qJdu BvjZplQ1kLLFl2G+roGjMjFvcxtbvawMu9c0UZUEie9JxLmiZ4xm8PrLllpTvcU0 F0Cxv7UseaUBLMMOSNJNAaOFsoBfXnkJMKIvRBsloTCVhsu6v7gtoBP6OvjRMyEe m6QdpBvpoS7fDC/8Lz+I5G4MSg== -----END CERTIFICATE-----Generated at Mon Mar 2 11:23:16 2026 by rpki-client