$ rpki-client -vvf rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft File: xNdQnlMs4vbky06OXDwia6MVTm8.mft (raw, json) Hash identifier: TG0SfbuIdwEVdcKC3WYHjycGg0v3AhnSW9hBTwFZuKk= Subject key identifier: 59:A5:93:B6:BD:D1:25:99:13:B4:FC:61:72:F7:95:55:AB:BA:03:B6 Authority key identifier: C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F Certificate issuer: /CN=A912AF0B/serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Certificate serial: 1140 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft Manifest number: 111F Signing time: Tue 24 Mar 2026 17:08:38 +0000 Manifest this update: Tue 24 Mar 2026 17:08:38 +0000 Manifest next update: Tue 31 Mar 2026 17:08:38 +0000 Files and hashes: 1: xNdQnlMs4vbky06OXDwia6MVTm8.crl (hash: 8X0gf6jxg8qvU5aMZykk6o3zpy7C404uMZ7aoBtNWWo=) 2: 1803FFC65E5F11EBBE37FA4CC4F9AE02.roa (hash: dYx5rg+ikh6rVRuWFPmqQgmz1ejCnGZL23u6GCNg5Bw=) 3: 21151EF0A8C411EC8F560C42C4F9AE02.roa (hash: iceccqvc3kg29socz/RRWvyJpHDglBn90E6v9vB2qCg=) 4: 9FC6F664BE2A11EFA17DA82CC4F9AE02.roa (hash: ssMQ43fjcNDdMMcxP4Zyw/zUAL+E/8FkY3VJGMomUwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:08:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4416 (0x1140) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AF0B, serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Validity Not Before: Mar 24 17:08:38 2026 GMT Not After : Mar 31 17:08:38 2026 GMT Subject: CN=69c2c516-bc58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b3:c9:b3:a3:f7:88:76:07:97:9f:85:53:e1: 84:a0:ca:2a:2b:69:cc:72:84:0d:fd:fe:b1:9b:e1: 37:56:e3:17:3b:b4:13:b5:d7:f4:e9:b3:5b:d5:b1: fb:b6:37:3b:04:1e:13:35:bd:5a:98:b5:ec:1c:02: 8b:2d:1d:d3:78:1a:37:d9:e7:07:4d:de:ed:1d:0d: c2:3e:31:8e:ec:25:7b:4b:49:38:0d:ed:1d:0a:b8: b9:7c:96:6e:09:16:2c:41:6f:b9:aa:b7:05:c0:72: 1c:1e:22:fd:e5:30:89:7a:c9:8e:0e:34:be:d5:4f: 3a:49:82:7d:ce:44:74:da:b3:b0:5c:41:82:b0:1c: df:8b:ef:90:c3:23:a9:c1:bb:45:ee:a7:cc:ce:d0: 6c:71:20:4f:98:8b:6c:68:c3:05:3b:ae:0b:a5:0d: 25:15:6d:c2:d9:7c:4d:c1:f5:72:35:ba:4a:38:47: 4c:b2:21:cc:d9:bc:1c:2b:fb:2a:89:62:31:f2:98: 29:62:47:ba:4d:7a:c5:f6:23:9d:75:dc:37:64:c4: 45:45:6b:4e:d3:71:e2:9c:0e:a2:86:69:ae:ad:4a: 44:7a:d3:f8:92:ce:72:cc:a7:73:c4:73:35:bf:09: 74:ad:17:cf:37:c2:10:4c:c5:3b:45:2f:46:a3:71: c7:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:A5:93:B6:BD:D1:25:99:13:B4:FC:61:72:F7:95:55:AB:BA:03:B6 X509v3 Authority Key Identifier: keyid:C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:6c:64:2d:b1:46:78:a1:d0:a2:79:2c:76:0b:36:43:94:ec: 33:a8:e1:35:92:b1:33:3e:ac:b8:13:24:e5:3c:c9:26:04:26: bf:cb:af:f9:7e:9a:35:26:3c:ed:b6:61:0b:5a:9d:51:8d:41: bd:f5:e1:eb:64:ac:0c:f5:f6:c2:62:f9:dd:28:f0:31:df:28: fc:7f:cc:8d:c2:62:4c:85:0b:9d:e6:0f:e7:25:43:53:18:62: 28:a9:ab:42:52:22:2b:d1:54:e7:a7:32:31:86:23:4e:61:04: 93:1d:2e:d1:fc:d6:d8:61:7f:3b:79:3c:94:02:e1:03:cb:15: dd:00:0a:96:fa:53:96:92:b6:57:5d:ae:bc:fd:d8:21:eb:50: 5f:c7:41:ae:77:19:76:66:41:85:96:7b:d4:8c:06:12:0c:66: 3c:53:24:72:51:54:20:ad:24:fc:de:39:be:f0:68:d9:3e:ee: d5:c1:c3:65:71:d6:d7:d8:03:4e:1f:42:29:b1:98:92:7e:37: 92:eb:2a:8a:22:22:60:25:44:dc:6d:c5:c6:42:72:f2:ae:18: 3f:69:59:1e:ba:fe:f1:0b:70:31:8f:03:13:cb:a6:5e:7b:cf: 51:75:c0:f0:46:a6:61:15:62:83:d9:fc:d8:ae:63:c6:c6:b4: 22:1e:f1:95 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFGMEIxMTAvBgNVBAUTKEM0RDc1MDlFNTMyQ0UyRjZFNENCNEU4RTVDM0MyMjZC QTMxNTRFNkYwHhcNMjYwMzI0MTcwODM4WhcNMjYwMzMxMTcwODM4WjAYMRYwFAYD VQQDEw02OWMyYzUxNi1iYzU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4LPJs6P3iHYHl5+FU+GEoMoqK2nMcoQN/f6xm+E3VuMXO7QTtdf06bNb1bH7 tjc7BB4TNb1amLXsHAKLLR3TeBo32ecHTd7tHQ3CPjGO7CV7S0k4De0dCri5fJZu CRYsQW+5qrcFwHIcHiL95TCJesmODjS+1U86SYJ9zkR02rOwXEGCsBzfi++QwyOp wbtF7qfMztBscSBPmItsaMMFO64LpQ0lFW3C2XxNwfVyNbpKOEdMsiHM2bwcK/sq iWIx8pgpYke6TXrF9iOdddw3ZMRFRWtO03HinA6ihmmurUpEetP4ks5yzKdzxHM1 vwl0rRfPN8IQTMU7RS9Go3HH+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFmlk7a9 0SWZE7T8YXL3lVWrugO2MB8GA1UdIwQYMBaAFMTXUJ5TLOL25MtOjlw8ImujFU5v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUYwQi9CNTk0MTlEMjMy RUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2Ymt5MDZPWER3aWE2TVZU bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOZFFubE1zNHZia3kwNk9YRHdpYTZNVlRtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUYwQi9CNTk0MTlEMjMyRUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2 Ymt5MDZPWER3aWE2TVZUbTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGGxkLbFGeKHQonksdgs2Q5TsM6jhNZKxMz6suBMk5TzJJgQmv8uv+X6aNSY8 7bZhC1qdUY1BvfXh62SsDPX2wmL53SjwMd8o/H/MjcJiTIULneYP5yVDUxhiKKmr QlIiK9FU56cyMYYjTmEEkx0u0fzW2GF/O3k8lALhA8sV3QAKlvpTlpK2V12uvP3Y IetQX8dBrncZdmZBhZZ71IwGEgxmPFMkclFUIK0k/N45vvBo2T7u1cHDZXHW19gD Th9CKbGYkn43kusqiiIiYCVE3G3FxkJy8q4YP2lZHrr+8QtwMY8DE8umXnvPUXXA 8EamYRVig9n82K5jxsa0Ih7xlQ== -----END CERTIFICATE-----Generated at Thu Mar 26 15:41:23 2026 by rpki-client