$ rpki-client -vvf rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft File: xCIPUDVWR7fICyzovHEmqsLiLTc.mft (raw, json) Hash identifier: NFoC5AFmYeZPHPii3X2UWtkckGURw7Cu4/4ng1B0cc8= Subject key identifier: E0:2C:E3:B2:2A:96:2F:72:72:3C:19:B6:30:9B:D5:C4:2F:9F:D2:8E Authority key identifier: C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 Certificate issuer: /CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Certificate serial: 355B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft Manifest number: 3533 Signing time: Mon 02 Mar 2026 02:57:06 +0000 Manifest this update: Mon 02 Mar 2026 02:57:05 +0000 Manifest next update: Mon 09 Mar 2026 02:57:05 +0000 Files and hashes: 1: xCIPUDVWR7fICyzovHEmqsLiLTc.crl (hash: V1rNeR74QkmEyK2J/9xlmM1q/6mWhYkGAUwGakA7i+8=) 2: 074A1CE2F1FD11F0BDA01C59486F56BC.roa (hash: PbRvsMPaciwk4aKrh1Gz2k+CLsuW70foiScaNfZvE3I=) 3: D7ABA864DFE611ED8872DE0EC4F9AE02.roa (hash: uTwgdWpEtjV1ALHAM8OqP3F4AfwGv1rbWW6ZiHZWVyg=) 4: 24C4305A7CD911EEB0B4C962C4F9AE02.roa (hash: x1jt7itPjnC6MQbNejsBQgbeqBxLH2bZYuNPNtNXfYM=) 5: 24D6C7C4F1FD11F0B766F66D486F56BC.roa (hash: x81djxirc4TZ7LBWsfaYDwm6dEqBh0TJcdGGB4pBfl8=) 6: 8C2774CA0F3511EF93020023C4F9AE02.roa (hash: kemAcHttVJ/67VTbPvla1uxc5lCQKg8ypYYWxu51V6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:57:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13659 (0x355b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D64D, serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Validity Not Before: Mar 2 02:57:05 2026 GMT Not After : Mar 9 02:57:05 2026 GMT Subject: CN=69a4fc82-e1a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:3e:a4:4b:9a:e4:61:d4:aa:ad:cc:9c:f4:9d: 34:07:71:fc:72:b9:8e:74:b2:f7:23:94:70:f7:03: 7b:9b:aa:39:bb:af:64:1b:fc:59:dd:20:9d:83:d9: 29:a1:28:f2:f0:57:5c:97:a7:43:84:7e:91:1b:59: 24:0a:fd:8e:c0:27:d9:1c:40:28:1d:98:a5:a3:cc: bf:b8:bc:3d:48:0b:06:ad:97:c0:89:63:51:c1:ad: 21:5d:75:24:51:4b:a3:34:9b:d3:eb:f6:91:07:d5: 12:58:73:b2:39:c8:ba:7a:07:9b:95:ac:47:23:dd: 77:a5:a8:a4:cf:b3:dc:06:a7:a6:71:8f:e0:0c:59: d2:ae:51:81:c5:57:da:15:76:d7:dd:0f:44:75:e8: 4a:4d:da:94:1e:96:c5:e6:1d:05:b4:16:c8:f5:11: 7a:1d:cd:b4:dd:5d:74:83:78:72:6c:1c:98:6d:d5: ee:32:16:fb:a9:92:09:f6:21:c7:fd:7b:02:50:92: 3f:e2:44:04:ab:5c:e0:cd:ef:2e:89:09:15:b2:f4: 6a:80:25:8e:d7:cd:90:aa:da:50:df:29:bd:fd:3d: 89:c8:9b:9e:91:11:f2:ea:ac:2a:3e:48:f2:54:f6: 76:ea:1e:9c:2e:64:6a:f8:93:e1:7d:04:99:5e:4d: bd:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:2C:E3:B2:2A:96:2F:72:72:3C:19:B6:30:9B:D5:C4:2F:9F:D2:8E X509v3 Authority Key Identifier: keyid:C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:32:1b:00:f4:a2:00:d9:c8:af:8c:d7:44:25:0a:42:f1:f6: 19:b3:b7:a9:4d:82:7d:2e:b9:ab:e9:cd:07:4d:5b:bb:3b:ae: 90:e9:84:66:b0:db:08:db:13:50:88:dc:ee:60:d8:fc:69:d6: 24:e0:ab:47:82:06:39:97:34:29:c0:73:57:87:16:10:f7:be: 9a:30:59:59:1b:f7:f9:f6:6b:28:ec:95:40:50:f9:2a:d4:66: 7c:45:21:6e:d3:bc:95:92:3f:99:a8:63:36:06:72:fb:fe:e0: ee:27:82:00:e0:f8:6d:dd:d8:8c:78:9c:09:8f:8f:17:dc:f0: ff:7c:36:b2:08:ac:2f:0f:3f:3f:76:4b:72:c9:8b:87:7b:21: 15:4e:05:35:18:18:f2:5e:65:c7:70:bb:0d:db:26:62:dd:d9: c0:c4:fe:07:96:c3:e5:12:b7:1c:2d:f8:31:31:64:46:c4:0c: 9e:80:2e:b8:b2:9e:e9:eb:1c:c0:d3:fc:d7:fa:ad:a2:66:ee: 4a:d8:b6:16:0c:0c:6c:7f:1a:28:6a:8d:73:b3:19:1d:48:29: 52:d0:69:e1:e8:a0:f8:c2:f7:f1:79:dc:94:59:99:d1:e2:5c: 5a:53:13:97:5c:b3:61:1c:c8:21:a2:ce:95:70:eb:2b:29:d3: 0c:da:76:9c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2NEQxMTAvBgNVBAUTKEM0MjIwRjUwMzU1NjQ3QjdDODBCMkNFOEJDNzEyNkFB QzJFMjJEMzcwHhcNMjYwMzAyMDI1NzA1WhcNMjYwMzA5MDI1NzA1WjAYMRYwFAYD VQQDEw02OWE0ZmM4Mi1lMWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1z6kS5rkYdSqrcyc9J00B3H8crmOdLL3I5Rw9wN7m6o5u69kG/xZ3SCdg9kp oSjy8Fdcl6dDhH6RG1kkCv2OwCfZHEAoHZilo8y/uLw9SAsGrZfAiWNRwa0hXXUk UUujNJvT6/aRB9USWHOyOci6egeblaxHI913paikz7PcBqemcY/gDFnSrlGBxVfa FXbX3Q9EdehKTdqUHpbF5h0FtBbI9RF6Hc203V10g3hybByYbdXuMhb7qZIJ9iHH /XsCUJI/4kQEq1zgze8uiQkVsvRqgCWO182QqtpQ3ym9/T2JyJuekRHy6qwqPkjy VPZ26h6cLmRq+JPhfQSZXk29hwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOAs47Iq li9ycjwZtjCb1cQvn9KOMB8GA1UdIwQYMBaAFMQiD1A1Vke3yAss6LxxJqrC4i03 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDY0RC9EOTMzM0ZFNDFE NkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3ZklDeXpvdkhFbXFzTGlM VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDSVBVRFZXUjdmSUN5em92SEVtcXNMaUxUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDY0RC9EOTMzM0ZFNDFENkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3 ZklDeXpvdkhFbXFzTGlMVGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwjIbAPSiANnIr4zXRCUKQvH2GbO3qU2CfS65q+nNB01buzuukOmEZrDbCNsT UIjc7mDY/GnWJOCrR4IGOZc0KcBzV4cWEPe+mjBZWRv3+fZrKOyVQFD5KtRmfEUh btO8lZI/mahjNgZy+/7g7ieCAOD4bd3YjHicCY+PF9zw/3w2sgisLw8/P3ZLcsmL h3shFU4FNRgY8l5lx3C7DdsmYt3ZwMT+B5bD5RK3HC34MTFkRsQMnoAuuLKe6esc wNP81/qtombuSti2FgwMbH8aKGqNc7MZHUgpUtBp4eig+ML38XnclFmZ0eJcWlMT l1yzYRzIIaLOlXDrKynTDNp2nA== -----END CERTIFICATE-----Generated at Mon Mar 2 09:57:04 2026 by rpki-client