$ rpki-client -vvf rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.mft File: X-MMr29aMskZ0zWqlNDnMzzQVDU.mft (raw, json) Hash identifier: pPhrOStAjkJcpeSrjGHvkk3w0nJ6k7+anOBjMNY9BeA= Subject key identifier: E0:5A:A2:9B:86:C1:A0:6D:1B:0D:F2:21:02:AD:55:D3:DD:49:37:FA Authority key identifier: 5F:E3:0C:AF:6F:5A:32:C9:19:D3:35:AA:94:D0:E7:33:3C:D0:54:35 Certificate issuer: /CN=A911E403/serialNumber=5FE30CAF6F5A32C919D335AA94D0E7333CD05435 Certificate serial: 088A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-MMr29aMskZ0zWqlNDnMzzQVDU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.mft Manifest number: 0872 Signing time: Tue 24 Mar 2026 20:29:58 +0000 Manifest this update: Tue 24 Mar 2026 20:29:58 +0000 Manifest next update: Tue 31 Mar 2026 20:29:58 +0000 Files and hashes: 1: X-MMr29aMskZ0zWqlNDnMzzQVDU.crl (hash: zZNK0b4THvaJkdS+JmvQRxvQPxYwCy+kSsxwYHdrthc=) 2: FE02E774CFFD11EC8CFDFF68C4F9AE02.roa (hash: 4+lHA5+XA6q3WA0a7feDPb9rgvNk8uk4zcP3rt42nhM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.crl rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-MMr29aMskZ0zWqlNDnMzzQVDU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2186 (0x88a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E403, serialNumber=5FE30CAF6F5A32C919D335AA94D0E7333CD05435 Validity Not Before: Mar 24 20:29:58 2026 GMT Not After : Mar 31 20:29:58 2026 GMT Subject: CN=69c2f446-6b54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bd:50:a5:05:55:c6:71:51:0f:0d:f9:e4:a8: d7:42:97:b6:7c:e7:3e:d2:74:85:f3:0e:db:5e:26: 7e:ed:1e:d7:63:bb:3f:a0:d7:4a:ee:ce:fc:e7:33: 12:4f:cc:69:11:35:3b:db:06:cf:71:18:45:03:a6: 6a:ec:7c:5c:27:d4:a3:64:0a:bd:62:f9:e3:8e:72: d3:52:07:39:d9:0e:14:22:77:b2:11:c1:f1:31:a7: 31:a4:d7:4f:38:08:5d:25:f6:0b:76:ad:cd:19:f8: 06:67:47:a8:d6:01:71:49:84:97:de:9a:80:63:da: 3b:ac:c7:66:88:63:6d:72:f4:fc:1a:c6:83:58:2a: 8d:d3:db:7d:01:3b:bd:f7:53:c8:12:11:2f:41:3f: 7e:68:f4:92:ce:f1:97:a0:c6:7b:5a:0f:fd:4c:ef: 2a:32:8b:cb:39:ef:57:c0:03:31:39:c8:33:02:18: f1:34:3c:b9:cb:52:86:1f:28:e0:ea:65:1f:a2:ed: d5:19:15:01:b1:bf:2e:bc:d8:39:c6:9d:c8:74:55: 99:9f:57:7c:11:89:d4:21:56:dc:38:82:a2:84:15: 27:98:6f:f9:3a:72:22:59:02:da:d9:96:34:4d:66: 4a:de:9b:de:45:c5:67:16:07:08:cb:68:a4:3e:b9: 8a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:5A:A2:9B:86:C1:A0:6D:1B:0D:F2:21:02:AD:55:D3:DD:49:37:FA X509v3 Authority Key Identifier: keyid:5F:E3:0C:AF:6F:5A:32:C9:19:D3:35:AA:94:D0:E7:33:3C:D0:54:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-MMr29aMskZ0zWqlNDnMzzQVDU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:9f:6e:0b:f8:bb:98:06:46:ae:47:14:e7:64:95:1d:ac:8e: f1:6e:8b:1e:ca:62:d1:20:45:9e:65:7e:f5:37:93:60:2c:e0: ca:7c:85:c0:ed:da:b7:89:ad:1b:9f:b4:a5:b4:83:23:d4:48: 8a:5a:c1:3a:37:cf:1e:2a:92:de:a8:a6:47:95:cc:62:32:9f: 85:c9:e0:6e:6e:3d:86:a0:6f:73:5c:a9:78:60:fa:bc:ed:ae: 4c:f0:2a:9c:2a:52:ae:42:4a:af:bc:ba:6c:ff:3e:c4:81:10: 28:8f:07:0a:7c:38:65:51:30:33:53:b0:75:09:b5:7f:21:bd: 08:23:c6:9b:30:7b:a3:bf:1b:a2:0c:b0:c9:67:b5:e5:ed:d3: 1a:70:98:1f:a2:b7:65:92:aa:81:7c:de:11:e5:91:dd:53:aa: 67:fb:0b:50:55:4c:e3:f6:0e:77:38:c5:a8:d7:0c:0a:bb:26: 57:3a:ba:9c:dd:79:92:04:58:97:e7:c1:21:2b:ef:10:fa:55: 29:96:15:c0:e2:41:70:5a:59:0e:b6:a7:1e:ca:07:69:f8:8a: 0b:e6:c4:07:b6:c6:fc:f5:2b:4d:5e:61:aa:b0:2f:b9:d2:6e: e3:d8:40:21:64:f7:b3:87:1a:90:b0:59:10:a7:62:a8:cc:cf: 1e:cb:da:39 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU0MDMxMTAvBgNVBAUTKDVGRTMwQ0FGNkY1QTMyQzkxOUQzMzVBQTk0RDBFNzMz M0NEMDU0MzUwHhcNMjYwMzI0MjAyOTU4WhcNMjYwMzMxMjAyOTU4WjAYMRYwFAYD VQQDEw02OWMyZjQ0Ni02YjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtr1QpQVVxnFRDw355KjXQpe2fOc+0nSF8w7bXiZ+7R7XY7s/oNdK7s785zMS T8xpETU72wbPcRhFA6Zq7HxcJ9SjZAq9YvnjjnLTUgc52Q4UIneyEcHxMacxpNdP OAhdJfYLdq3NGfgGZ0eo1gFxSYSX3pqAY9o7rMdmiGNtcvT8GsaDWCqN09t9ATu9 91PIEhEvQT9+aPSSzvGXoMZ7Wg/9TO8qMovLOe9XwAMxOcgzAhjxNDy5y1KGHyjg 6mUfou3VGRUBsb8uvNg5xp3IdFWZn1d8EYnUIVbcOIKihBUnmG/5OnIiWQLa2ZY0 TWZK3pveRcVnFgcIy2ikPrmKMwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOBaopuG waBtGw3yIQKtVdPdSTf6MB8GA1UdIwQYMBaAFF/jDK9vWjLJGdM1qpTQ5zM80FQ1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTQwMy9BMUNDRUNGRUY4 QkIxMUVBODdCMURFNkJDNEY5QUUwMi9YLU1NcjI5YU1za1oweldxbE5Ebk16elFW RFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtTU1yMjlhTXNrWjB6V3FsTkRuTXp6UVZEVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTQwMy9BMUNDRUNGRUY4QkIxMUVBODdCMURFNkJDNEY5QUUwMi9YLU1NcjI5YU1z a1oweldxbE5Ebk16elFWRFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGJ9uC/i7mAZGrkcU52SVHayO8W6LHspi0SBFnmV+9TeTYCzgynyFwO3at4mt G5+0pbSDI9RIilrBOjfPHiqS3qimR5XMYjKfhcngbm49hqBvc1ypeGD6vO2uTPAq nCpSrkJKr7y6bP8+xIEQKI8HCnw4ZVEwM1OwdQm1fyG9CCPGmzB7o78bogywyWe1 5e3TGnCYH6K3ZZKqgXzeEeWR3VOqZ/sLUFVM4/YOdzjFqNcMCrsmVzq6nN15kgRY l+fBISvvEPpVKZYVwOJBcFpZDranHsoHafiKC+bEB7bG/PUrTV5hqrAvudJu49hA IWT3s4cakLBZEKdiqMzPHsvaOQ== -----END CERTIFICATE-----Generated at Thu Mar 26 20:43:02 2026 by rpki-client