$ rpki-client -vvf rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft File: xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft (raw, json) Hash identifier: 9ao/+D9TjOg8pPQEPYW/MUBo+YO3MKQ+7NwtXtorDo8= Subject key identifier: D1:0D:9A:EF:9B:95:B3:B4:CB:AA:51:67:B8:DC:D5:8D:EF:32:C0:A7 Authority key identifier: C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 Certificate issuer: /CN=A912D1D5/serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Certificate serial: 0246 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft Manifest number: 023B Signing time: Wed 25 Mar 2026 02:00:20 +0000 Manifest this update: Wed 25 Mar 2026 02:00:19 +0000 Manifest next update: Wed 01 Apr 2026 02:00:19 +0000 Files and hashes: 1: xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl (hash: s6ip1Yla0Su2/D7i4hyvnL8+WiV1oJeetxVdY8iYrSY=) 2: 19E19DA0E5CE11EDB697BC74C4F9AE02.roa (hash: o4MIbjV7bEKRdqQSG3TgsvtbWH+YQ+ah1raxjNrzdVA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 582 (0x246) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D1D5, serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Validity Not Before: Mar 25 02:00:19 2026 GMT Not After : Apr 1 02:00:19 2026 GMT Subject: CN=69c341b4-43f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:77:c8:0b:d6:55:66:33:61:af:63:d7:93:cb: 53:4a:68:31:6b:05:a3:7d:ce:70:36:2a:04:26:53: 94:cf:b9:e7:c7:7a:85:f6:8c:23:2b:32:b8:4b:8f: 7e:61:f4:6a:70:79:2e:90:9c:ae:c3:89:6a:7e:b5: 56:8b:67:aa:07:e4:78:ba:a5:b7:a7:b2:35:20:d1: ef:6f:62:a3:60:a8:e8:82:ff:c3:53:d8:e4:b8:08: 9e:d8:12:17:4c:2e:ba:77:71:5d:19:8b:06:5b:0b: 97:d7:85:90:f1:06:aa:39:b2:6a:6b:60:0d:9d:f3: c6:4f:03:0b:4a:ca:1d:5b:12:cd:c5:78:a8:b5:90: c5:95:a6:3e:91:64:95:48:2b:fa:5d:13:3b:6e:5c: ed:07:7d:41:5d:2d:6e:a7:a4:c4:e5:c0:b7:37:cd: d2:af:79:15:f9:c0:2b:7e:31:f3:43:00:1f:65:9a: 4e:c5:32:ec:b6:a4:05:a3:31:04:8f:9c:bc:aa:cc: e8:73:35:ce:4c:08:40:c4:86:bc:4b:cd:bd:cf:38: c1:7b:7c:7a:5e:04:00:30:18:fc:63:d9:af:a3:30: 5a:e5:e4:a5:53:48:f7:c0:41:b6:87:c0:30:f6:b9: 5b:8e:97:5d:7f:98:09:d7:48:af:9f:a2:75:8e:00: e0:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:0D:9A:EF:9B:95:B3:B4:CB:AA:51:67:B8:DC:D5:8D:EF:32:C0:A7 X509v3 Authority Key Identifier: keyid:C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:bd:dd:4a:70:1a:1a:ed:7e:71:56:d9:1a:cd:9f:46:ee:37: 5b:16:4a:f5:27:a0:a0:a2:00:5f:5d:e1:95:99:82:28:3f:a7: f9:12:9e:07:07:5f:63:49:06:37:f5:26:08:98:52:7d:72:38: 12:8e:e0:0c:c1:c4:ff:2f:b2:3c:52:d8:5f:ce:9d:02:f5:f2: bf:61:42:87:06:a3:f4:df:75:d5:de:5d:2f:f3:ef:66:a7:7b: cb:36:67:dd:df:c4:b5:ea:53:77:41:86:cb:b3:71:a4:0f:22: 5f:e4:6c:fa:5c:4c:3d:12:6d:18:47:6c:72:fd:64:6a:72:63: 7d:85:ee:00:96:20:76:7b:2f:2e:31:a1:0f:bd:76:31:4d:41: 38:b2:50:fa:b7:ca:98:5f:9f:3b:2b:ce:38:89:17:68:bf:1e: 00:d8:6d:7d:02:8d:77:6a:42:2f:db:26:59:d6:55:80:86:84: 9e:1f:3f:34:bd:bc:01:7a:28:1b:1f:86:e0:f3:53:d6:b8:e4: ad:ed:a9:85:f0:69:db:c7:c1:9e:ee:07:84:fc:16:cf:c2:c1: 22:15:f1:3e:9b:05:5c:59:6f:33:1f:48:a4:c2:72:4c:7a:c5: 88:00:59:ef:9f:7e:38:2c:93:a4:e5:59:a0:df:03:d8:d3:b0: 94:93:43:a8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQxRDUxMTAvBgNVBAUTKEM1NDUyNUU5NzA1QkQ2OUQ2MTQyNERCRUU3QjA0OTNG NUZENkYwQTQwHhcNMjYwMzI1MDIwMDE5WhcNMjYwNDAxMDIwMDE5WjAYMRYwFAYD VQQDEw02OWMzNDFiNC00M2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHfIC9ZVZjNhr2PXk8tTSmgxawWjfc5wNioEJlOUz7nnx3qF9owjKzK4S49+ YfRqcHkukJyuw4lqfrVWi2eqB+R4uqW3p7I1INHvb2KjYKjogv/DU9jkuAie2BIX TC66d3FdGYsGWwuX14WQ8QaqObJqa2ANnfPGTwMLSsodWxLNxXiotZDFlaY+kWSV SCv6XRM7blztB31BXS1up6TE5cC3N83Sr3kV+cArfjHzQwAfZZpOxTLstqQFozEE j5y8qszoczXOTAhAxIa8S829zzjBe3x6XgQAMBj8Y9mvozBa5eSlU0j3wEG2h8Aw 9rlbjpddf5gJ10ivn6J1jgDgRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNENmu+b lbO0y6pRZ7jc1Y3vMsCnMB8GA1UdIwQYMBaAFMVFJelwW9adYUJNvuewST9f1vCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDFENS8zNDMzNjFFRUND OEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFwMWhRazItNTdCSlAxX1c4 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hVVWw2WEJiMXAxaFFrMi01N0JKUDFfVzhLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDFENS8zNDMzNjFFRUNDOEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFw MWhRazItNTdCSlAxX1c4S1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASr3dSnAaGu1+cVbZGs2fRu43WxZK9SegoKIAX13hlZmCKD+n+RKeBwdfY0kG N/UmCJhSfXI4Eo7gDMHE/y+yPFLYX86dAvXyv2FChwaj9N911d5dL/PvZqd7yzZn 3d/EtepTd0GGy7NxpA8iX+Rs+lxMPRJtGEdscv1kanJjfYXuAJYgdnsvLjGhD712 MU1BOLJQ+rfKmF+fOyvOOIkXaL8eANhtfQKNd2pCL9smWdZVgIaEnh8/NL28AXoo Gx+G4PNT1rjkre2phfBp28fBnu4HhPwWz8LBIhXxPpsFXFlvMx9IpMJyTHrFiABZ 759+OCyTpOVZoN8D2NOwlJNDqA== -----END CERTIFICATE-----Generated at Thu Mar 26 16:10:06 2026 by rpki-client