$ rpki-client -vvf rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft File: Xtho2ocq-NaWpcGp-ngp9lJzynk.mft (raw, json) Hash identifier: VxNn64lnFWEiZa/wihuuYs1mPYUuibTJD+anGRV1BzM= Subject key identifier: 7C:16:17:F9:C4:44:C6:5A:EA:CE:28:F7:FA:F9:DC:56:5E:C9:93:36 Authority key identifier: 5E:D8:68:DA:87:2A:F8:D6:96:A5:C1:A9:FA:78:29:F6:52:73:CA:79 Certificate issuer: /CN=A9119B43/serialNumber=5ED868DA872AF8D696A5C1A9FA7829F65273CA79 Certificate serial: 0514 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft Manifest number: 0509 Signing time: Tue 24 Mar 2026 23:20:28 +0000 Manifest this update: Tue 24 Mar 2026 23:20:27 +0000 Manifest next update: Tue 31 Mar 2026 23:20:27 +0000 Files and hashes: 1: Xtho2ocq-NaWpcGp-ngp9lJzynk.crl (hash: a/q9CSzl6RNFJH7Z5YtaGbScWMAEJMs5okYOMGBCeAE=) 2: 6C27C19E4BFA11ECA6797F6DC4F9AE02.roa (hash: d542I90WWDGGQbicaXbMdjG+yHM90agVdnOM5BcvIy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.crl rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:20:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1300 (0x514) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119B43, serialNumber=5ED868DA872AF8D696A5C1A9FA7829F65273CA79 Validity Not Before: Mar 24 23:20:27 2026 GMT Not After : Mar 31 23:20:27 2026 GMT Subject: CN=69c31c3c-d449 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:dc:81:bb:b7:7c:cd:88:84:1b:a2:b6:53:57: cf:06:7e:c7:4c:3e:fd:3f:fc:08:63:3e:f5:d8:1e: e3:fe:7a:1d:1a:cd:f8:d4:5e:ae:b4:84:ef:96:a9: 78:cb:15:1f:17:98:13:20:a9:93:df:bc:b7:0b:75: 94:d0:96:c2:e6:cb:ac:f1:78:b2:20:ce:48:63:11: dc:01:f7:e4:37:95:14:5a:d1:88:5e:85:0e:47:c1: 33:73:47:1e:20:56:f8:7b:25:e5:b3:82:57:a9:dc: db:ef:e3:79:f1:58:e3:33:89:4d:6f:c7:5f:d8:f5: 0f:a4:39:27:c7:0b:e2:fb:eb:06:23:4a:9f:ad:88: cd:25:02:fc:96:84:9f:87:74:b9:b8:50:64:70:f5: 79:b3:fa:3c:bb:f1:ef:19:57:62:73:73:b4:49:5e: 86:42:63:32:7c:59:93:68:ef:b5:10:10:08:1a:af: 68:f8:c0:8c:47:f6:e7:47:c5:8d:47:82:18:cf:92: d8:d3:f7:a9:2a:83:94:dd:82:c2:c6:ec:c1:23:ef: 43:46:de:e8:71:d0:c2:77:3a:31:03:8b:66:55:f3: fe:82:cf:40:8f:9e:b4:c0:3d:bb:1d:fe:8e:1c:fe: 53:a5:78:e3:7c:c5:25:8b:e4:70:5d:fb:ef:ce:06: f3:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:16:17:F9:C4:44:C6:5A:EA:CE:28:F7:FA:F9:DC:56:5E:C9:93:36 X509v3 Authority Key Identifier: keyid:5E:D8:68:DA:87:2A:F8:D6:96:A5:C1:A9:FA:78:29:F6:52:73:CA:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:30:d1:0f:fd:f6:b3:14:8c:cf:4a:d6:db:6b:e0:d2:b0:da: c5:04:cd:39:9b:41:33:a6:8d:42:7d:54:62:b0:65:49:13:33: ca:46:6d:88:e7:b9:6f:1a:17:51:c8:27:07:f8:c9:4f:13:03: ae:b7:6a:f8:c5:ec:eb:40:e1:25:c7:40:c1:47:54:66:8c:ac: 9d:c3:09:bc:75:a5:ca:64:87:69:1c:60:61:72:ed:45:1a:ea: 2d:48:db:4a:46:d9:bb:8e:39:db:c4:99:6b:f4:65:b5:0f:3c: 4a:a6:82:25:b0:e6:f9:7d:41:6d:48:ef:ea:e3:6e:b7:f8:d9: f3:bd:f8:79:18:b7:9a:9d:27:8b:c5:90:63:99:f5:d3:57:60: a4:d1:88:a9:d6:04:26:4f:43:ef:0b:7a:6f:f3:8f:a6:68:88: 11:8e:63:57:c5:86:64:cf:f3:c1:7a:4f:49:e0:6f:97:bc:52: 33:9a:e1:5a:0c:29:37:21:c3:31:50:8e:73:39:7e:4d:17:7d: 87:ea:48:2c:62:b1:88:9d:bf:69:4e:3b:e6:37:64:12:63:91: d7:a9:1a:f9:d4:48:f7:b5:e3:98:83:b6:c4:a7:4e:ee:20:d0: 84:79:be:cc:a3:5f:ec:bd:84:af:e5:33:3c:f4:e4:59:6a:d2: f1:17:27:d5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlCNDMxMTAvBgNVBAUTKDVFRDg2OERBODcyQUY4RDY5NkE1QzFBOUZBNzgyOUY2 NTI3M0NBNzkwHhcNMjYwMzI0MjMyMDI3WhcNMjYwMzMxMjMyMDI3WjAYMRYwFAYD VQQDEw02OWMzMWMzYy1kNDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNyBu7d8zYiEG6K2U1fPBn7HTD79P/wIYz712B7j/nodGs341F6utITvlql4 yxUfF5gTIKmT37y3C3WU0JbC5sus8XiyIM5IYxHcAffkN5UUWtGIXoUOR8Ezc0ce IFb4eyXls4JXqdzb7+N58VjjM4lNb8df2PUPpDknxwvi++sGI0qfrYjNJQL8loSf h3S5uFBkcPV5s/o8u/HvGVdic3O0SV6GQmMyfFmTaO+1EBAIGq9o+MCMR/bnR8WN R4IYz5LY0/epKoOU3YLCxuzBI+9DRt7ocdDCdzoxA4tmVfP+gs9Aj560wD27Hf6O HP5TpXjjfMUli+RwXfvvzgbzkwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHwWF/nE RMZa6s4o9/r53FZeyZM2MB8GA1UdIwQYMBaAFF7YaNqHKvjWlqXBqfp4KfZSc8p5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUI0My9FNUI4Mzk4MjRC M0ExMUVDOTkyRTgxNTBDNEY5QUUwMi9YdGhvMm9jcS1OYVdwY0dwLW5ncDlsSnp5 bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h0aG8yb2NxLU5hV3BjR3AtbmdwOWxKenluay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUI0My9FNUI4Mzk4MjRCM0ExMUVDOTkyRTgxNTBDNEY5QUUwMi9YdGhvMm9jcS1O YVdwY0dwLW5ncDlsSnp5bmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhjDRD/32sxSMz0rW22vg0rDaxQTNOZtBM6aNQn1UYrBlSRMzykZtiOe5bxoX UcgnB/jJTxMDrrdq+MXs60DhJcdAwUdUZoysncMJvHWlymSHaRxgYXLtRRrqLUjb SkbZu44528SZa/RltQ88SqaCJbDm+X1BbUjv6uNut/jZ8734eRi3mp0ni8WQY5n1 01dgpNGIqdYEJk9D7wt6b/OPpmiIEY5jV8WGZM/zwXpPSeBvl7xSM5rhWgwpNyHD MVCOczl+TRd9h+pILGKxiJ2/aU475jdkEmOR16ka+dRI97XjmIO2xKdO7iDQhHm+ zKNf7L2Er+UzPPTkWWrS8Rcn1Q== -----END CERTIFICATE-----Generated at Thu Mar 26 16:26:38 2026 by rpki-client