$ rpki-client -vvf rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.mft File: xeslRrtzrOaT4ZqxB9g_JmYyzug.mft (raw, json) Hash identifier: kHraOWpoqYr0vEzIU14941N8axTZvdt8FM+caEmPgn0= Subject key identifier: AE:E7:79:84:1A:E5:33:46:E3:D8:45:D9:9A:29:0A:FF:DA:3F:93:48 Authority key identifier: C5:EB:25:46:BB:73:AC:E6:93:E1:9A:B1:07:D8:3F:26:66:32:CE:E8 Certificate issuer: /CN=A9197A55/serialNumber=C5EB2546BB73ACE693E19AB107D83F266632CEE8 Certificate serial: 25 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/xeslRrtzrOaT4ZqxB9g_JmYyzug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.mft Manifest number: 1D Signing time: Sun 01 Mar 2026 10:28:29 +0000 Manifest this update: Sun 01 Mar 2026 10:28:29 +0000 Manifest next update: Sun 08 Mar 2026 10:28:29 +0000 Files and hashes: 1: xeslRrtzrOaT4ZqxB9g_JmYyzug.crl (hash: mz5HZ3xAJNKvbimihh6pEfLZd9CKkhKo5ynq580eE+s=) 2: 40E6AE74FAAA11F0BBD6BD435A6F56BC.roa (hash: rFUINwctLdCKpeYymZBC+HyAkWIaWkc+ZM7j+MzLgis=) 3: 21DB5BC4FAAA11F0A3B995435A6F56BC.roa (hash: LbeaZF1XRjLI75LU93fIN8JRsM753tbKTBrRQHfA4hk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.crl rsync://rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/xeslRrtzrOaT4ZqxB9g_JmYyzug.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:28:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197A55, serialNumber=C5EB2546BB73ACE693E19AB107D83F266632CEE8 Validity Not Before: Mar 1 10:28:29 2026 GMT Not After : Mar 8 10:28:29 2026 GMT Subject: CN=69a414cd-7965 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:25:5c:20:02:b6:d2:35:e3:37:e4:96:4c:57: b7:c2:55:cd:72:c3:60:60:ba:23:26:40:d6:63:aa: eb:44:f0:24:dc:3b:60:31:2c:25:72:62:bb:ad:1b: 8d:72:f4:09:ab:49:58:0a:fa:47:37:ea:55:7d:bc: 86:b4:22:25:d6:45:18:65:52:03:9a:aa:f5:43:83: d6:f6:74:d3:a1:37:38:02:d3:69:8d:be:1a:c6:fb: 01:01:74:cd:5c:60:40:9b:b3:37:8e:f9:d5:74:40: b3:d0:07:ee:61:24:5d:3c:89:d2:ce:bb:4b:5c:cb: d2:d2:29:5e:94:68:ca:57:38:38:1c:50:f8:34:0b: 47:d6:68:41:ad:05:ab:a9:c1:2f:79:6c:0f:1f:9b: 9f:b2:33:2d:4a:0d:a0:a5:77:e3:d5:b4:56:b5:5c: cc:16:18:27:48:84:fb:ee:06:3f:65:60:01:aa:85: 89:a3:e9:f7:0c:26:45:e6:dd:57:b6:57:4e:d2:65: 5b:41:50:3f:97:a5:4c:d7:f0:47:61:a1:63:d4:b7: a0:e4:58:9f:b3:fd:d1:22:99:8a:7a:13:f0:28:63: 58:64:5d:93:da:f8:24:95:54:ee:23:2d:99:09:6c: ed:61:0c:12:8f:a5:bd:7b:ba:6e:f6:8e:59:fd:4b: b4:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:E7:79:84:1A:E5:33:46:E3:D8:45:D9:9A:29:0A:FF:DA:3F:93:48 X509v3 Authority Key Identifier: keyid:C5:EB:25:46:BB:73:AC:E6:93:E1:9A:B1:07:D8:3F:26:66:32:CE:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/xeslRrtzrOaT4ZqxB9g_JmYyzug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:e0:0a:9f:86:97:10:65:cd:e0:8e:1b:98:fc:75:de:37:e6: d9:c0:19:ed:63:83:4e:da:ba:a6:c1:3b:bd:81:76:10:e2:ca: 4a:fd:aa:ab:cc:d5:28:7b:69:96:e4:5c:54:6c:8e:36:a4:e2: 32:89:70:1c:85:f3:22:6e:f9:ca:3f:e4:15:96:cc:5a:22:0c: d8:af:2a:5e:f2:65:04:4c:58:0b:83:cb:7d:f3:c5:56:49:30: d1:c3:35:16:a1:1c:0e:df:d2:6a:a2:88:71:ba:9a:84:3e:fd: 1b:d9:36:a6:5d:46:97:8a:60:0c:de:ea:e0:c7:cd:d1:83:d2: cf:37:8f:e8:cb:05:4a:48:9f:c4:76:eb:26:42:45:28:82:a3: 57:98:a5:a7:48:ae:6a:e3:d6:87:fa:85:7d:4b:c2:86:dc:5e: b9:13:7c:61:2c:d8:dd:77:da:2b:a2:c8:b5:d1:be:e3:a7:e1: b6:48:42:56:ba:4a:94:6f:89:76:9d:83:b8:51:c9:d4:5b:0b: d8:5c:d9:5a:69:62:22:0c:99:4d:e0:94:7c:16:49:b5:b5:b1: aa:a6:de:e3:d9:a4:6d:d1:dd:6b:91:10:3f:13:33:5c:6a:52: 11:6c:62:76:d1:7a:af:df:b4:35:fe:f3:52:d5:3e:52:88:c4: 5d:d5:be:c9 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 N0E1NTExMC8GA1UEBRMoQzVFQjI1NDZCQjczQUNFNjkzRTE5QUIxMDdEODNGMjY2 NjMyQ0VFODAeFw0yNjAzMDExMDI4MjlaFw0yNjAzMDgxMDI4MjlaMBgxFjAUBgNV BAMTDTY5YTQxNGNkLTc5NjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9JVwgArbSNeM35JZMV7fCVc1yw2BguiMmQNZjqutE8CTcO2AxLCVyYrutG41y 9AmrSVgK+kc36lV9vIa0IiXWRRhlUgOaqvVDg9b2dNOhNzgC02mNvhrG+wEBdM1c YECbszeO+dV0QLPQB+5hJF08idLOu0tcy9LSKV6UaMpXODgcUPg0C0fWaEGtBaup wS95bA8fm5+yMy1KDaCld+PVtFa1XMwWGCdIhPvuBj9lYAGqhYmj6fcMJkXm3Ve2 V07SZVtBUD+XpUzX8EdhoWPUt6DkWJ+z/dEimYp6E/AoY1hkXZPa+CSVVO4jLZkJ bO1hDBKPpb17um72jln9S7TLAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUrud5hBrl M0bj2EXZmikK/9o/k0gwHwYDVR0jBBgwFoAUxeslRrtzrOaT4ZqxB9g/JmYyzugw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3QTU1L0IzMkI1MDI4RjdB NTExRjA4N0U1MUYxNjU1NkY1NkJDL3hlc2xScnR6ck9hVDRacXhCOWdfSm1ZeXp1 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIveGVzbFJydHpyT2FUNFpxeEI5Z19KbVl5enVnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3 QTU1L0IzMkI1MDI4RjdBNTExRjA4N0U1MUYxNjU1NkY1NkJDL3hlc2xScnR6ck9h VDRacXhCOWdfSm1ZeXp1Zy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAf4AqfhpcQZc3gjhuY/HXeN+bZwBntY4NO2rqmwTu9gXYQ4spK/aqrzNUoe2mW 5FxUbI42pOIyiXAchfMibvnKP+QVlsxaIgzYrype8mUETFgLg8t988VWSTDRwzUW oRwO39JqoohxupqEPv0b2TamXUaXimAM3urgx83Rg9LPN4/oywVKSJ/EdusmQkUo gqNXmKWnSK5q49aH+oV9S8KG3F65E3xhLNjdd9orosi10b7jp+G2SEJWukqUb4l2 nYO4UcnUWwvYXNlaaWIiDJlN4JR8Fkm1tbGqpt7j2aRt0d1rkRA/EzNcalIRbGJ2 0Xqv37Q1/vNS1T5SiMRd1b7J -----END CERTIFICATE-----Generated at Mon Mar 2 11:42:05 2026 by rpki-client