$ rpki-client -vvf rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft File: XLKYvBpwUBeAXFYfCQoNR5UOar0.mft (raw, json) Hash identifier: rmJztc+6VhMvn0UO1Sl1NV02kvLIU7Y8pI1IQ3tPLZc= Subject key identifier: 6F:67:04:21:A2:03:9A:56:18:00:7A:0F:29:5A:2F:04:0C:4E:27:6D Authority key identifier: 5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD Certificate issuer: /CN=A912BFC5/serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Certificate serial: 25A1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft Manifest number: 25A1 Signing time: Thu 26 Mar 2026 14:16:33 +0000 Manifest this update: Thu 26 Mar 2026 14:16:33 +0000 Manifest next update: Thu 02 Apr 2026 14:16:33 +0000 Files and hashes: 1: XLKYvBpwUBeAXFYfCQoNR5UOar0.crl (hash: 8q5EGAMexImDHwZgKe8XbU82GTNOZ9fiQhsX1gcZE4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:16:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9633 (0x25a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BFC5, serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Validity Not Before: Mar 26 14:16:33 2026 GMT Not After : Apr 2 14:16:33 2026 GMT Subject: CN=69c53fc1-901e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4c:42:18:e1:fe:e3:22:de:98:3c:73:89:e4: 6b:b6:ca:4c:9e:c1:55:02:28:17:15:03:0e:39:13: 51:bd:2e:23:15:d2:41:2a:bc:d7:e9:f0:20:8d:b6: 1e:76:78:ac:19:fd:79:ac:e8:52:74:be:28:e3:a8: d7:2b:68:55:ae:33:66:88:51:96:c6:00:19:c0:c1: dd:0d:6a:85:7c:26:20:76:c4:00:89:9c:75:11:cd: 26:78:6f:d5:02:ed:45:b6:f0:4b:af:1d:37:57:1b: b2:48:4c:84:6f:05:38:f6:8b:ed:d1:a2:c9:ed:69: 77:59:3b:31:5d:d8:3f:76:39:9b:cb:07:f0:f0:3d: 5a:89:4c:94:c0:be:16:52:c1:e2:f2:24:09:78:1e: af:ba:32:5b:1d:a2:77:5d:fa:19:06:9e:49:7e:d2: 23:f7:c3:a3:e2:fd:a4:50:1e:ad:d5:cf:59:85:9a: 5a:50:49:f7:9a:49:84:e6:e1:47:a3:c5:01:a2:59: f1:82:8b:59:6e:33:de:6d:f5:2b:e0:03:69:3c:ea: 5d:fd:a8:9c:99:be:06:5b:29:d4:37:53:a3:74:b0: 0d:0b:0d:d1:20:ba:35:3a:52:76:c6:db:6e:83:12: de:ed:25:33:b9:6c:51:c6:ab:98:d9:3e:31:75:d9: 3c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:67:04:21:A2:03:9A:56:18:00:7A:0F:29:5A:2F:04:0C:4E:27:6D X509v3 Authority Key Identifier: keyid:5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:f8:ab:58:06:4c:14:d7:59:a4:02:c0:48:b5:64:d7:d5:95: e9:58:34:a4:b8:11:04:a7:fb:28:2d:c3:55:7a:71:bd:ad:fc: 6d:48:24:5f:77:0f:88:49:21:6c:4b:1d:98:3a:ed:d5:ac:2c: 62:4f:97:cd:1f:6b:88:16:7f:37:87:76:74:63:ef:39:32:2e: ac:f0:56:1a:f3:bb:70:7e:96:9f:cc:00:8f:da:d0:0b:a1:21: eb:f2:c8:a2:13:0b:0d:3b:5a:48:9b:3d:31:2c:10:b6:fa:7f: 90:a2:10:1a:35:e1:06:a3:5c:d5:53:7f:d5:1f:94:4c:5a:4f: fe:e3:f2:62:f5:55:6a:db:09:43:6e:3a:f4:bc:ca:62:a4:f3: db:41:09:86:61:2c:91:80:3c:ca:37:b8:93:8c:da:51:c5:32: 05:22:a3:25:ac:6a:b7:b0:05:25:00:21:31:8f:be:ee:74:97: b5:3e:f4:14:4f:48:22:39:87:0f:dc:fd:b2:08:03:2b:6d:b8: a6:75:54:0c:7c:3b:56:f8:df:d4:fc:91:72:9f:ba:e6:11:43: d8:28:78:be:46:95:bf:8d:a3:41:dd:a3:f8:ad:cb:a7:bd:c8: ab:17:44:62:2b:fc:bd:f7:e1:ee:cd:a1:fe:10:10:83:9b:ac: c8:8c:9a:98 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJGQzUxMTAvBgNVBAUTKDVDQjI5OEJDMUE3MDUwMTc4MDVDNTYxRjA5MEEwRDQ3 OTUwRTZBQkQwHhcNMjYwMzI2MTQxNjMzWhcNMjYwNDAyMTQxNjMzWjAYMRYwFAYD VQQDEw02OWM1M2ZjMS05MDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyExCGOH+4yLemDxzieRrtspMnsFVAigXFQMOORNRvS4jFdJBKrzX6fAgjbYe dnisGf15rOhSdL4o46jXK2hVrjNmiFGWxgAZwMHdDWqFfCYgdsQAiZx1Ec0meG/V Au1FtvBLrx03VxuySEyEbwU49ovt0aLJ7Wl3WTsxXdg/djmbywfw8D1aiUyUwL4W UsHi8iQJeB6vujJbHaJ3XfoZBp5JftIj98Oj4v2kUB6t1c9ZhZpaUEn3mkmE5uFH o8UBolnxgotZbjPebfUr4ANpPOpd/aicmb4GWynUN1OjdLANCw3RILo1OlJ2xttu gxLe7SUzuWxRxquY2T4xddk8yQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG9nBCGi A5pWGAB6DylaLwQMTidtMB8GA1UdIwQYMBaAFFyymLwacFAXgFxWHwkKDUeVDmq9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkZDNS8zRjM0MjAzRTI5 MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VCZUFYRllmQ1FvTlI1VU9h cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hMS1l2QnB3VUJlQVhGWWZDUW9OUjVVT2FyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkZDNS8zRjM0MjAzRTI5MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VC ZUFYRllmQ1FvTlI1VU9hcjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACPirWAZMFNdZpALASLVk19WV6Vg0pLgRBKf7KC3DVXpxva38bUgkX3cPiEkh bEsdmDrt1awsYk+XzR9riBZ/N4d2dGPvOTIurPBWGvO7cH6Wn8wAj9rQC6Eh6/LI ohMLDTtaSJs9MSwQtvp/kKIQGjXhBqNc1VN/1R+UTFpP/uPyYvVVatsJQ2469LzK YqTz20EJhmEskYA8yje4k4zaUcUyBSKjJaxqt7AFJQAhMY++7nSXtT70FE9IIjmH D9z9sggDK224pnVUDHw7Vvjf1PyRcp+65hFD2Ch4vkaVv42jQd2j+K3Lp73IqxdE Yiv8vffh7s2h/hAQg5usyIyamA== -----END CERTIFICATE-----Generated at Thu Mar 26 22:09:06 2026 by rpki-client