$ rpki-client -vvf rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft File: XQ11AElW7cyrm4QnGnNA5jhV_4o.mft (raw, json) Hash identifier: ZzRrFz9sf9EwBziYfuHeZqIzHQ8MlAFZmnN630LODok= Subject key identifier: D4:67:42:A6:45:00:86:8D:73:B7:BE:DD:BB:A7:52:E4:62:5D:13:AB Authority key identifier: 5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A Certificate issuer: /CN=A912BC39/serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Certificate serial: 07BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft Manifest number: 07AB Signing time: Tue 24 Mar 2026 21:12:54 +0000 Manifest this update: Tue 24 Mar 2026 21:12:54 +0000 Manifest next update: Tue 31 Mar 2026 21:12:54 +0000 Files and hashes: 1: XQ11AElW7cyrm4QnGnNA5jhV_4o.crl (hash: h+XdJHe6V0vcXutRIjwqxnrKI5p9KW8N1X9it7gVOpY=) 2: 688EAE1E8A1911EC94921D85C4F9AE02.roa (hash: PSZyKZNLeC+ynTVNPefbaajpAUQPkgVzephvNIxcZqc=) 3: 8EBA772E3F2B11EB87759716C4F9AE02.roa (hash: rRI5YNBN8BFJj5LVMQ9i0QefTh7uLQfpdIvxJ+hQ5Wc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:12:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1981 (0x7bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BC39, serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Validity Not Before: Mar 24 21:12:54 2026 GMT Not After : Mar 31 21:12:54 2026 GMT Subject: CN=69c2fe56-b34b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:29:5c:da:23:c3:7c:62:e1:d0:d5:cb:a2:f8: 5e:13:f5:1b:20:a1:a4:ed:e0:29:ec:ce:e1:9b:5c: 49:2a:17:02:e5:b0:74:f6:56:dc:41:6e:2a:38:69: 06:ff:3a:ae:bc:6e:38:3c:24:81:a0:77:ef:a3:b4: 9f:06:4f:99:b4:73:9d:df:09:4f:74:93:d7:41:b7: 3a:f2:af:fd:93:51:f8:69:dc:08:7c:8d:b7:9a:c3: 1f:2d:fb:6e:85:9a:41:23:c6:45:28:3f:48:73:8e: bf:41:3e:a3:0c:e9:42:99:28:b0:d1:2f:fa:eb:0d: 43:86:04:ca:05:72:b0:66:27:5e:8c:27:68:6c:0c: 4c:a0:2f:38:e5:71:9f:66:71:15:f5:66:f4:9e:fc: b7:0e:07:01:b2:10:7d:40:96:f3:4c:f1:ca:63:80: f5:af:65:2c:34:dd:8b:4f:76:f5:69:89:fb:fa:81: ff:13:ee:b7:6f:2b:82:59:b4:f2:92:71:69:03:f4: 5a:aa:41:e1:3d:7a:64:ee:b9:8f:5f:f8:8f:ad:b0: 9e:ae:55:a5:e9:8f:d5:a6:74:c6:df:02:40:75:fe: f0:6a:19:81:f0:9e:2a:a0:1f:ae:58:fb:93:ff:42: 89:24:a2:68:12:07:e8:6b:54:6b:d2:96:05:1c:aa: bc:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:67:42:A6:45:00:86:8D:73:B7:BE:DD:BB:A7:52:E4:62:5D:13:AB X509v3 Authority Key Identifier: keyid:5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:ce:92:87:fa:85:22:ff:f4:f0:e1:12:ad:36:53:7a:80:88: f1:11:a0:cc:24:c1:96:42:57:b4:12:84:a4:65:05:32:5c:49: 8f:0b:cf:29:15:07:f7:c7:94:37:aa:0d:cb:42:26:e8:ac:71: 70:03:8f:ec:66:d5:af:df:9e:6d:30:3f:96:3d:e5:37:4d:12: 34:42:45:73:2f:60:84:9f:be:b9:73:c1:b5:8c:bb:f7:ef:4d: 6b:4b:7d:17:47:3a:51:60:2a:fb:05:74:73:65:5b:f0:e1:de: fc:a8:9a:19:53:e7:37:5f:fa:0c:2e:73:4a:2e:73:45:85:9e: 06:88:dc:38:71:b5:5a:f7:88:88:f3:16:9f:68:76:b1:a2:c5: 64:2a:5d:5e:41:0b:d5:b9:ea:fa:03:fb:e7:7c:ca:a6:5b:bb: 7c:62:67:4f:96:20:39:72:27:34:db:fb:99:38:a3:8a:eb:2d: 5b:91:87:21:a2:7b:7a:fa:5f:8f:7e:fc:8a:8e:3a:25:f0:0d: 10:16:f7:33:00:47:77:97:34:0e:c1:1e:89:2b:b4:51:c4:d5: ca:22:9b:d6:14:b1:a8:24:02:8a:6a:db:66:54:18:f6:fc:c0: 0a:5c:0d:51:7b:d4:7e:98:ed:94:01:66:6b:db:8f:6b:a6:92: 0f:fe:d7:ec -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB70wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJDMzkxMTAvBgNVBAUTKDVEMEQ3NTAwNDk1NkVEQ0NBQjlCODQyNzFBNzM0MEU2 Mzg1NUZGOEEwHhcNMjYwMzI0MjExMjU0WhcNMjYwMzMxMjExMjU0WjAYMRYwFAYD VQQDEw02OWMyZmU1Ni1iMzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuilc2iPDfGLh0NXLovheE/UbIKGk7eAp7M7hm1xJKhcC5bB09lbcQW4qOGkG /zquvG44PCSBoHfvo7SfBk+ZtHOd3wlPdJPXQbc68q/9k1H4adwIfI23msMfLftu hZpBI8ZFKD9Ic46/QT6jDOlCmSiw0S/66w1DhgTKBXKwZidejCdobAxMoC845XGf ZnEV9Wb0nvy3DgcBshB9QJbzTPHKY4D1r2UsNN2LT3b1aYn7+oH/E+63byuCWbTy knFpA/RaqkHhPXpk7rmPX/iPrbCerlWl6Y/VpnTG3wJAdf7wahmB8J4qoB+uWPuT /0KJJKJoEgfoa1Rr0pYFHKq8GwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNRnQqZF AIaNc7e+3bunUuRiXROrMB8GA1UdIwQYMBaAFF0NdQBJVu3Mq5uEJxpzQOY4Vf+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkMzOS9CMzdCMTU4RTNG MjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdjeXJtNFFuR25OQTVqaFZf NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hRMTFBRWxXN2N5cm00UW5Hbk5BNWpoVl80by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkMzOS9CMzdCMTU4RTNGMjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdj eXJtNFFuR25OQTVqaFZfNG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACc6Sh/qFIv/08OESrTZTeoCI8RGgzCTBlkJXtBKEpGUFMlxJjwvPKRUH98eU N6oNy0Im6KxxcAOP7GbVr9+ebTA/lj3lN00SNEJFcy9ghJ++uXPBtYy79+9Na0t9 F0c6UWAq+wV0c2Vb8OHe/KiaGVPnN1/6DC5zSi5zRYWeBojcOHG1WveIiPMWn2h2 saLFZCpdXkEL1bnq+gP753zKplu7fGJnT5YgOXInNNv7mTijiustW5GHIaJ7evpf j378io46JfANEBb3MwBHd5c0DsEeiSu0UcTVyiKb1hSxqCQCimrbZlQY9vzAClwN UXvUfpjtlAFma9uPa6aSD/7X7A== -----END CERTIFICATE-----Generated at Thu Mar 26 22:31:43 2026 by rpki-client