$ rpki-client -vvf rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft File: XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft (raw, json) Hash identifier: B6tJBuH4EFQqjASJ2EB5U1COreH2VeVcjVsXPGJxf5A= Subject key identifier: D2:44:9F:7F:46:6D:A8:67:04:65:2C:23:72:FE:A0:1F:67:74:C5:06 Authority key identifier: 5E:84:25:16:65:70:4C:DD:DF:2F:3F:9B:E8:2E:31:FF:B0:74:A5:8E Certificate issuer: /CN=A9127EAD/serialNumber=5E84251665704CDDDF2F3F9BE82E31FFB074A58E Certificate serial: 088D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft Manifest number: 0884 Signing time: Tue 24 Mar 2026 20:21:37 +0000 Manifest this update: Tue 24 Mar 2026 20:21:37 +0000 Manifest next update: Tue 31 Mar 2026 20:21:37 +0000 Files and hashes: 1: XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl (hash: fh6FeTyB9/mLhWpC3dniip3Iar80kP70CdrsNZkpCmM=) 2: 6CAC2064EA2211EA9C2F064AC4F9AE02.roa (hash: HgX4tCn4FMdl0R/ylo4Q2his11f507x0EEUUjL+i3vA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:21:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2189 (0x88d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127EAD, serialNumber=5E84251665704CDDDF2F3F9BE82E31FFB074A58E Validity Not Before: Mar 24 20:21:37 2026 GMT Not After : Mar 31 20:21:37 2026 GMT Subject: CN=69c2f251-cabd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:da:0b:db:a7:d4:a2:40:21:63:6c:31:84:cb: cd:2f:c2:e0:0e:95:42:f4:df:e2:f4:03:52:35:5f: fb:4a:d3:82:9c:7b:f8:63:32:ae:1e:af:07:d0:d3: 91:8a:d1:e5:fc:30:3e:e9:e0:5b:2d:bb:a8:3c:fa: b8:00:46:1f:91:d5:dd:59:cb:50:4e:05:4e:57:6c: 99:4d:f3:2b:70:00:89:eb:7c:d1:83:92:ff:e1:84: 91:08:5a:d1:37:7d:98:3e:68:a0:df:a0:34:6a:81: 12:42:0f:83:a3:08:d1:12:75:2f:3e:60:da:9b:b7: 6e:ee:db:11:b0:5d:bb:ec:f7:6e:f8:9f:24:a0:93: 47:28:43:27:44:76:9e:83:8f:da:8f:8d:e6:49:67: ba:5b:69:59:75:6f:e4:6f:56:c5:b0:1a:ce:c7:a2: 54:bb:80:29:ee:cd:67:14:34:e3:82:95:0e:39:d7: 9c:d9:50:7c:e1:cf:63:0a:4c:47:71:90:ec:02:59: 7e:ca:26:1a:3a:ad:c7:b7:ab:fc:d1:92:ca:48:c7: d7:f0:0b:14:27:b9:d0:7c:8c:d6:86:74:d3:78:a4: 65:f5:03:27:b1:bd:32:c0:17:f6:ff:9c:86:84:56: f6:85:11:d3:87:44:66:e4:83:eb:d1:47:cb:a3:9b: 3a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:44:9F:7F:46:6D:A8:67:04:65:2C:23:72:FE:A0:1F:67:74:C5:06 X509v3 Authority Key Identifier: keyid:5E:84:25:16:65:70:4C:DD:DF:2F:3F:9B:E8:2E:31:FF:B0:74:A5:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:0a:fd:12:7c:04:f1:db:81:64:ab:66:08:39:6e:aa:ea:d4: 7c:1e:06:64:97:5c:aa:f4:f1:56:73:88:d6:67:1a:c6:aa:e0: d7:a2:5b:93:c6:13:42:4b:5c:fa:38:52:6c:ad:c5:d2:7b:7b: fc:9c:9e:96:c8:cb:9f:93:86:7e:1e:e5:fd:0f:fb:99:41:23: 65:02:aa:77:72:a5:74:d2:57:f0:b4:95:ce:00:66:a8:7d:fa: 08:ad:7b:89:c5:a8:3f:6d:96:b3:65:c7:37:52:2d:af:79:0f: c4:62:87:47:87:37:18:b7:83:58:ae:0f:81:0f:77:73:c3:15: c4:2d:1c:eb:e1:7c:b0:9b:f3:4e:cc:99:89:64:3c:a1:8b:9f: 3b:b6:07:9d:22:32:dc:a6:b0:eb:d4:da:e2:90:97:be:48:8a: e4:f7:5f:38:df:49:cb:01:be:fd:0a:f1:dc:ec:2e:dc:95:df: 80:0f:8f:ef:75:c1:af:be:70:01:da:7a:dc:77:5b:17:4b:1a: f1:60:58:44:d1:60:a5:cd:57:d4:c6:97:88:8c:d2:87:21:ca: 27:32:48:03:4e:2e:44:41:d2:a5:c2:48:92:db:92:86:45:44: bd:b8:1a:92:d4:38:de:d8:52:3c:00:09:78:c9:c8:3c:ee:4a: 14:28:bc:b4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdFQUQxMTAvBgNVBAUTKDVFODQyNTE2NjU3MDRDRERERjJGM0Y5QkU4MkUzMUZG QjA3NEE1OEUwHhcNMjYwMzI0MjAyMTM3WhcNMjYwMzMxMjAyMTM3WjAYMRYwFAYD VQQDEw02OWMyZjI1MS1jYWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNoL26fUokAhY2wxhMvNL8LgDpVC9N/i9ANSNV/7StOCnHv4YzKuHq8H0NOR itHl/DA+6eBbLbuoPPq4AEYfkdXdWctQTgVOV2yZTfMrcACJ63zRg5L/4YSRCFrR N32YPmig36A0aoESQg+DowjREnUvPmDam7du7tsRsF277Pdu+J8koJNHKEMnRHae g4/aj43mSWe6W2lZdW/kb1bFsBrOx6JUu4Ap7s1nFDTjgpUOOdec2VB84c9jCkxH cZDsAll+yiYaOq3Ht6v80ZLKSMfX8AsUJ7nQfIzWhnTTeKRl9QMnsb0ywBf2/5yG hFb2hRHTh0Rm5IPr0UfLo5s6iwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNJEn39G bahnBGUsI3L+oB9ndMUGMB8GA1UdIwQYMBaAFF6EJRZlcEzd3y8/m+guMf+wdKWO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0VBRC9FOUI3MDY2NkVB MjAxMUVBOUNCRkFENDhDNEY5QUUwMi9Yb1FsRm1Wd1ROM2ZMei1iNkM0eF83QjBw WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvUWxGbVZ3VE4zZkx6LWI2QzR4XzdCMHBZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0VBRC9FOUI3MDY2NkVBMjAxMUVBOUNCRkFENDhDNEY5QUUwMi9Yb1FsRm1Wd1RO M2ZMei1iNkM0eF83QjBwWTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAegr9EnwE8duBZKtmCDluqurUfB4GZJdcqvTxVnOI1mcaxqrg16Jbk8YTQktc +jhSbK3F0nt7/JyelsjLn5OGfh7l/Q/7mUEjZQKqd3KldNJX8LSVzgBmqH36CK17 icWoP22Ws2XHN1Itr3kPxGKHR4c3GLeDWK4PgQ93c8MVxC0c6+F8sJvzTsyZiWQ8 oYufO7YHnSIy3Kaw69Ta4pCXvkiK5PdfON9JywG+/Qrx3Owu3JXfgA+P73XBr75w Adp63HdbF0sa8WBYRNFgpc1X1MaXiIzShyHKJzJIA04uREHSpcJIktuShkVEvbga ktQ43thSPAAJeMnIPO5KFCi8tA== -----END CERTIFICATE-----Generated at Thu Mar 26 06:23:10 2026 by rpki-client