$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft File: xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft (raw, json) Hash identifier: DYbfUj209XORhLRoinGkDlPhgmytQFIaBhtDWe+BKEw= Subject key identifier: 80:34:F4:45:98:BF:5F:57:B2:48:82:DE:84:2A:17:86:21:CA:7D:C3 Authority key identifier: C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E Certificate issuer: /CN=A9125C22/serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Certificate serial: 070B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft Manifest number: 0704 Signing time: Tue 24 Mar 2026 21:40:57 +0000 Manifest this update: Tue 24 Mar 2026 21:40:56 +0000 Manifest next update: Tue 31 Mar 2026 21:40:56 +0000 Files and hashes: 1: xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl (hash: Qwwkv21VNgZnAUif+9OXo6r4q+gQbPpmHsT61DJ4gKA=) 2: 485D694A454911EEB8718378C4F9AE02.roa (hash: Y8iJThI3UQs6h5LHq/2D1bpcHDn8+qLI7yAh/AJOyS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:40:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1803 (0x70b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22, serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Validity Not Before: Mar 24 21:40:56 2026 GMT Not After : Mar 31 21:40:56 2026 GMT Subject: CN=69c304e9-9bcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:00:2f:7e:c4:8a:3a:ef:59:19:64:fd:26:0e: 8e:e6:6f:8c:45:6c:b9:8b:2f:6c:2c:fc:82:43:f9: 6a:4a:42:22:ad:21:87:b5:1a:50:1f:e5:7e:84:97: 39:e0:e6:c6:2c:db:d4:0d:84:66:55:46:b8:09:e4: 44:dc:69:b3:10:d8:a9:14:15:55:13:b1:ca:11:fa: 3c:7e:fd:b7:ae:ee:e5:e3:59:51:e5:4a:33:47:ce: 4f:c2:34:32:ad:7e:47:68:3f:3f:cb:af:5f:d2:fe: 8f:58:6e:83:06:ae:80:af:dd:a9:a1:90:0e:3f:a8: bf:d9:c9:cf:33:b2:c8:51:a8:16:d2:f0:c5:8f:25: 19:16:39:b3:6c:8e:42:06:0c:ee:a5:fd:a6:5e:20: 5e:0a:ea:cb:66:39:1c:fc:71:ef:f6:95:6b:08:74: ff:a0:be:05:1b:43:cf:d1:94:35:29:1f:97:41:e2: 2c:9b:02:5f:f0:2f:d5:5e:3c:c8:46:a5:75:12:07: dd:b1:7d:19:1b:73:e6:03:de:48:9e:e2:f4:7e:57: dc:a6:70:d2:41:88:25:3d:91:bd:06:d1:fe:a4:66: 6d:0f:eb:b6:68:3d:23:4b:7a:ff:8c:d0:49:7e:5f: 78:c3:40:b3:13:d5:d3:80:20:9b:ea:2f:ac:f0:90: 1a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:34:F4:45:98:BF:5F:57:B2:48:82:DE:84:2A:17:86:21:CA:7D:C3 X509v3 Authority Key Identifier: keyid:C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:6d:59:cb:d5:45:e2:ff:38:ae:db:2b:00:ba:54:5a:91:56: d3:cb:53:85:36:19:7a:1e:71:ac:30:f8:ed:ec:68:48:29:0c: 21:d4:2d:a7:d2:1f:2f:21:92:b9:13:7b:57:cc:b3:4c:c1:04: 76:1a:43:e2:54:b1:dd:44:df:ab:8d:7f:e4:32:17:c3:d8:93: d5:40:a4:d8:75:87:b1:88:e2:67:d0:dc:52:8c:a3:a0:97:1f: cf:a1:f9:42:6d:41:fa:a9:50:bc:e2:2a:eb:73:b2:38:6a:9b: 63:8b:5f:d9:3a:d3:12:30:45:62:fc:f1:54:e9:4b:6c:2f:e6: 2d:db:6e:29:17:c6:00:aa:a7:40:53:d1:28:52:78:7b:41:1f: b7:e5:f5:34:89:ae:d5:66:9e:0a:11:0e:c5:28:28:2a:a5:5f: 1a:d4:49:78:9f:b9:e1:ff:66:bb:70:c0:42:49:f3:40:7f:03: 0f:89:11:ac:20:9a:5a:b1:7e:28:7a:67:6b:09:12:75:09:7e: bc:43:83:90:d9:7b:5e:ee:62:9a:92:c1:ea:d5:c8:4e:01:85: 42:7f:f7:b3:36:20:f4:44:dd:23:61:3a:f0:cb:ee:80:22:ab: 6d:73:92:47:f1:bc:b2:13:9a:e4:2d:21:fd:ab:fd:2c:4f:cc: 36:a2:31:46 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEM3MEI0RTA0N0NBQTczNzcyNEI4OUQ1ODREQjVDMEMx QTg1OEQyOEUwHhcNMjYwMzI0MjE0MDU2WhcNMjYwMzMxMjE0MDU2WjAYMRYwFAYD VQQDEw02OWMzMDRlOS05YmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwAvfsSKOu9ZGWT9Jg6O5m+MRWy5iy9sLPyCQ/lqSkIirSGHtRpQH+V+hJc5 4ObGLNvUDYRmVUa4CeRE3GmzENipFBVVE7HKEfo8fv23ru7l41lR5UozR85PwjQy rX5HaD8/y69f0v6PWG6DBq6Ar92poZAOP6i/2cnPM7LIUagW0vDFjyUZFjmzbI5C Bgzupf2mXiBeCurLZjkc/HHv9pVrCHT/oL4FG0PP0ZQ1KR+XQeIsmwJf8C/VXjzI RqV1EgfdsX0ZG3PmA95InuL0flfcpnDSQYglPZG9BtH+pGZtD+u2aD0jS3r/jNBJ fl94w0CzE9XTgCCb6i+s8JAaSwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIA09EWY v19XskiC3oQqF4Yhyn3DMB8GA1UdIwQYMBaAFMcLTgR8qnN3JLidWE21wMGoWNKO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi9GQUNDQkM1QzdG QUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMzY2t1SjFZVGJYQXdhaFkw bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h3dE9CSHlxYzNja3VKMVlUYlhBd2FoWTBvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi9GQUNDQkM1QzdGQUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMz Y2t1SjFZVGJYQXdhaFkwbzQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHW1Zy9VF4v84rtsrALpUWpFW08tThTYZeh5xrDD47exoSCkMIdQtp9IfLyGS uRN7V8yzTMEEdhpD4lSx3UTfq41/5DIXw9iT1UCk2HWHsYjiZ9DcUoyjoJcfz6H5 Qm1B+qlQvOIq63OyOGqbY4tf2TrTEjBFYvzxVOlLbC/mLdtuKRfGAKqnQFPRKFJ4 e0Eft+X1NImu1WaeChEOxSgoKqVfGtRJeJ+54f9mu3DAQknzQH8DD4kRrCCaWrF+ KHpnawkSdQl+vEODkNl7Xu5impLB6tXITgGFQn/3szYg9ETdI2E68MvugCKrbXOS R/G8shOa5C0h/av9LE/MNqIxRg== -----END CERTIFICATE-----Generated at Thu Mar 26 14:11:24 2026 by rpki-client