$ rpki-client -vvf rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft File: XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft (raw, json) Hash identifier: CnFCXcZF6ywNb5XE5JvSViYkdcBfh2JSYx8isgpGs3A= Subject key identifier: 1A:CB:3F:BA:8C:78:13:22:24:2F:CC:64:7B:D6:F2:C3:6D:EA:71:42 Authority key identifier: 5D:B7:5B:2D:F9:4D:04:47:4A:6E:5E:2D:4B:78:CC:08:4B:FC:2A:6C Certificate issuer: /CN=A912698E/serialNumber=5DB75B2DF94D04474A6E5E2D4B78CC084BFC2A6C Certificate serial: B0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XbdbLflNBEdKbl4tS3jMCEv8Kmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft Manifest number: AC Signing time: Tue 24 Mar 2026 17:29:02 +0000 Manifest this update: Tue 24 Mar 2026 17:29:01 +0000 Manifest next update: Tue 31 Mar 2026 17:29:01 +0000 Files and hashes: 1: XbdbLflNBEdKbl4tS3jMCEv8Kmw.crl (hash: l/rAF7wHNpjcn3M7iokA2njWzBPZNVW4A+qYY6vDsi4=) 2: 87087F00267E11F09183092AC4F9AE02.roa (hash: ZrHF5584bIbw0rUT6cH6d1iQqKS+jq5enJN7gFGvxy4=) 3: D5271A183ADB11F0BC52A042C4F9AE02.roa (hash: KM3zcDRIYT9oq/Wkhlh7FP99EJLA5sWO1MorkCKVVvE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.crl rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XbdbLflNBEdKbl4tS3jMCEv8Kmw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:29:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912698E, serialNumber=5DB75B2DF94D04474A6E5E2D4B78CC084BFC2A6C Validity Not Before: Mar 24 17:29:01 2026 GMT Not After : Mar 31 17:29:01 2026 GMT Subject: CN=69c2c9de-1aff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5c:a1:df:7a:dd:c5:9e:d8:3c:61:e2:08:07: 39:42:04:f3:f4:a2:42:3d:09:d0:53:ca:8f:20:27: 0b:58:e9:89:5c:f8:3f:d1:84:d1:f7:e3:2e:80:dc: 5e:94:19:6d:7f:aa:cf:69:b9:16:7c:78:bc:2a:9a: a0:7b:53:a9:2d:eb:ea:a5:a4:65:d6:8a:1d:e3:22: 38:84:e2:37:e5:e4:15:7c:5a:ff:9f:30:15:42:29: e4:34:0f:31:8c:74:6b:b7:12:19:25:cf:0c:bf:11: d6:12:1a:a7:2f:d2:d5:2f:9b:9b:86:84:5f:db:98: 29:66:33:18:ab:e6:4f:d3:e9:69:85:f7:a9:84:e7: d5:60:ef:61:2a:fa:1c:1e:52:43:d2:48:f7:8e:4c: 8e:f4:40:c1:cd:71:e3:1b:03:06:87:ee:f6:d6:26: 58:a2:b2:7f:82:da:98:5b:11:69:77:2a:37:5e:b9: 22:23:28:27:59:34:55:dd:76:36:27:5f:c5:57:7a: e0:d4:c6:cc:27:8a:13:07:2a:c9:3f:84:a6:7a:2b: 96:8c:47:03:0a:84:35:53:ea:57:13:15:54:d6:90: ee:00:0d:c4:81:f8:30:b0:72:a0:c2:11:1d:6b:6b: 96:07:97:9c:42:18:52:85:3e:4c:d9:fd:0b:f8:06: a4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:CB:3F:BA:8C:78:13:22:24:2F:CC:64:7B:D6:F2:C3:6D:EA:71:42 X509v3 Authority Key Identifier: keyid:5D:B7:5B:2D:F9:4D:04:47:4A:6E:5E:2D:4B:78:CC:08:4B:FC:2A:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XbdbLflNBEdKbl4tS3jMCEv8Kmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:f8:59:c5:37:70:48:8b:9a:7f:d6:51:d4:e4:b6:fe:f8:b9: 8a:58:5d:21:a0:15:5b:20:a4:29:85:24:81:61:b1:e5:1f:0b: 70:6c:e5:bb:4a:06:7a:9c:bd:1e:df:fd:d5:e6:2f:1f:a4:34: 47:10:51:89:23:a5:8b:92:5b:c7:b4:85:ec:2f:99:fe:3a:8c: c0:d1:ac:44:42:e1:23:9f:6e:0b:b5:4b:72:97:2e:da:0a:2f: be:d5:58:74:06:e4:0f:14:54:f0:a0:06:a7:8d:51:1b:7d:f5: 35:fb:66:5a:cd:fa:99:53:5b:7c:53:fb:b3:d7:d9:36:42:c2: a1:5e:23:80:7b:99:60:a8:60:bd:db:d7:09:47:42:4a:fb:e7: b7:82:d3:d5:17:9f:0f:36:15:f0:21:9c:1e:27:9e:dd:5a:67: 01:bd:e3:62:e7:35:63:59:08:d7:b8:04:67:bb:76:d7:c5:8a: 58:cb:ea:ca:ac:37:ad:03:42:93:6f:77:2f:7b:65:79:20:81: 1b:74:91:26:cf:e1:dd:a9:61:23:47:08:f0:4f:7c:03:56:7f: f4:82:84:e3:16:78:19:3b:d8:ea:b6:f4:da:53:89:de:38:10: d0:d8:f1:2b:a9:63:cb:5a:99:f8:6d:e6:f0:10:78:d7:5a:17: 15:60:1e:95 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjY5OEUxMTAvBgNVBAUTKDVEQjc1QjJERjk0RDA0NDc0QTZFNUUyRDRCNzhDQzA4 NEJGQzJBNkMwHhcNMjYwMzI0MTcyOTAxWhcNMjYwMzMxMTcyOTAxWjAYMRYwFAYD VQQDEw02OWMyYzlkZS0xYWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVyh33rdxZ7YPGHiCAc5QgTz9KJCPQnQU8qPICcLWOmJXPg/0YTR9+MugNxe lBltf6rPabkWfHi8Kpqge1OpLevqpaRl1ood4yI4hOI35eQVfFr/nzAVQinkNA8x jHRrtxIZJc8MvxHWEhqnL9LVL5ubhoRf25gpZjMYq+ZP0+lphfephOfVYO9hKvoc HlJD0kj3jkyO9EDBzXHjGwMGh+721iZYorJ/gtqYWxFpdyo3XrkiIygnWTRV3XY2 J1/FV3rg1MbMJ4oTByrJP4SmeiuWjEcDCoQ1U+pXExVU1pDuAA3EgfgwsHKgwhEd a2uWB5ecQhhShT5M2f0L+AakdwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBrLP7qM eBMiJC/MZHvW8sNt6nFCMB8GA1UdIwQYMBaAFF23Wy35TQRHSm5eLUt4zAhL/Cps MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjk4RS8wOTVGNkM4QzI2 N0MxMUYwOTY3N0Y4MEJDNEY5QUUwMi9YYmRiTGZsTkJFZEtibDR0UzNqTUNFdjhL bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hiZGJMZmxOQkVkS2JsNHRTM2pNQ0V2OEttdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Njk4RS8wOTVGNkM4QzI2N0MxMUYwOTY3N0Y4MEJDNEY5QUUwMi9YYmRiTGZsTkJF ZEtibDR0UzNqTUNFdjhLbXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlvhZxTdwSIuaf9ZR1OS2/vi5ilhdIaAVWyCkKYUkgWGx5R8LcGzlu0oGepy9 Ht/91eYvH6Q0RxBRiSOli5Jbx7SF7C+Z/jqMwNGsRELhI59uC7VLcpcu2govvtVY dAbkDxRU8KAGp41RG331NftmWs36mVNbfFP7s9fZNkLCoV4jgHuZYKhgvdvXCUdC Svvnt4LT1RefDzYV8CGcHiee3VpnAb3jYuc1Y1kI17gEZ7t218WKWMvqyqw3rQNC k293L3tleSCBG3SRJs/h3alhI0cI8E98A1Z/9IKE4xZ4GTvY6rb02lOJ3jgQ0Njx K6ljy1qZ+G3m8BB411oXFWAelQ== -----END CERTIFICATE-----Generated at Thu Mar 26 19:03:16 2026 by rpki-client