$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft File: tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft (raw, json) Hash identifier: rlvwlZQYQvOpSyksIw2xLMzuv3v7u4BX7vZq4HVhdrM= Subject key identifier: 98:28:8C:6D:45:FE:70:E0:37:14:0D:A1:7C:56:A9:CC:B4:90:46:57 Authority key identifier: B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C Certificate issuer: /CN=A9131711/serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Certificate serial: 019C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft Manifest number: 0193 Signing time: Wed 25 Mar 2026 03:42:02 +0000 Manifest this update: Wed 25 Mar 2026 03:42:02 +0000 Manifest next update: Wed 01 Apr 2026 03:42:02 +0000 Files and hashes: 1: tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl (hash: 5TMc3qrBqYV+mwwxDbYalyiUgXMTUUG2JP8JHCdkyKQ=) 2: B2B006BAE3E911EEB845B268C4F9AE02.roa (hash: xllDJ7wsryQrkSvX97smRm5LJiMbi7ECfICbiD0R3+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:42:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 412 (0x19c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711, serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Validity Not Before: Mar 25 03:42:02 2026 GMT Not After : Apr 1 03:42:02 2026 GMT Subject: CN=69c3598a-26d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:42:8e:48:dc:fe:05:d1:a9:4d:1e:45:90:14: ac:18:e2:a3:9f:5d:98:16:20:c5:2e:f5:4d:0f:e9: a8:fc:88:5a:91:d3:65:a1:60:e0:db:fa:1e:f6:a0: ff:20:03:8c:1c:ce:1f:a0:77:4d:54:ba:62:00:30: a7:60:c7:bf:c3:59:af:75:7b:e5:c7:32:8e:99:57: 4a:f2:51:94:d2:d0:73:83:cb:f4:65:85:d2:2a:a3: c6:1f:70:e6:a9:13:f2:9d:8d:4b:f7:b1:97:1d:05: f7:cf:c8:b6:65:68:7b:c6:ce:c3:59:bd:5f:8b:37: cb:9c:81:c1:41:9e:fa:56:a5:b1:57:f1:35:68:4c: cb:ab:73:24:ac:fc:63:b5:4a:4e:30:ac:f2:9f:33: 91:e0:fe:9f:95:e0:13:2d:48:12:96:9c:a2:2b:89: 5d:41:dd:80:93:79:32:b3:47:e4:b6:98:4d:80:72: 62:78:1a:8a:70:a7:53:37:b7:4b:b5:4e:37:1f:13: 97:19:7d:a9:ad:bb:b0:3d:88:e2:0c:1e:1f:69:4f: a5:1e:e4:aa:50:8d:fd:6b:76:f7:b0:89:5f:73:58: b7:7a:3f:32:71:c5:fd:04:2f:e0:c8:33:51:9b:2f: e3:f8:8c:79:db:5c:62:e8:ea:51:bb:41:73:97:06: 67:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:28:8C:6D:45:FE:70:E0:37:14:0D:A1:7C:56:A9:CC:B4:90:46:57 X509v3 Authority Key Identifier: keyid:B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:4e:64:90:8c:ef:c0:f0:8e:c6:58:eb:7d:07:35:ac:3d:28: 0b:1a:20:94:c2:fc:67:e3:73:75:de:4b:a7:c8:cb:00:df:20: d8:f4:47:25:39:de:09:e1:3c:22:5f:f3:a2:8d:67:ad:ac:64: 51:54:d6:06:83:25:d4:4f:dd:c4:b9:3f:03:21:50:39:57:34: df:81:42:f1:aa:f7:0a:77:e5:05:c1:49:e9:b1:08:d7:b3:c5: 7a:c3:d4:e0:e8:59:e1:f0:27:e2:a0:27:d8:36:91:5e:56:0d: 41:eb:1f:61:bc:ca:37:74:15:66:1e:0d:27:bb:4b:d3:da:d9: 7d:b4:61:7f:2b:ae:5c:91:8d:79:4b:f4:82:8b:1b:be:2f:fb: 4f:93:2c:0c:10:79:f0:62:75:04:f5:cc:6c:6a:30:e9:3f:a2: b5:d5:1e:50:1b:c0:da:39:65:95:4b:f2:5e:84:59:55:ec:5d: 34:f9:c6:c2:9e:75:43:4c:f7:ed:a5:b6:47:79:05:10:f1:4f: b9:46:e3:a4:31:f1:28:6e:00:db:0d:8b:18:bd:20:a0:dc:ef: 86:30:46:ac:7f:37:89:14:9c:95:18:57:1e:f4:c1:e8:bc:16: b7:f3:44:0d:b9:9a:b5:0e:a5:fe:88:cb:4c:ad:46:b2:3f:8d: 21:aa:58:88 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3MTExMTAvBgNVBAUTKEI1N0IyMDdGMEUxQzFCQTg3M0EwNzkzNTgyQzdBODEz NDA5ODY3NEMwHhcNMjYwMzI1MDM0MjAyWhcNMjYwNDAxMDM0MjAyWjAYMRYwFAYD VQQDEw02OWMzNTk4YS0yNmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEKOSNz+BdGpTR5FkBSsGOKjn12YFiDFLvVND+mo/IhakdNloWDg2/oe9qD/ IAOMHM4foHdNVLpiADCnYMe/w1mvdXvlxzKOmVdK8lGU0tBzg8v0ZYXSKqPGH3Dm qRPynY1L97GXHQX3z8i2ZWh7xs7DWb1fizfLnIHBQZ76VqWxV/E1aEzLq3MkrPxj tUpOMKzynzOR4P6fleATLUgSlpyiK4ldQd2Ak3kys0fktphNgHJieBqKcKdTN7dL tU43HxOXGX2prbuwPYjiDB4faU+lHuSqUI39a3b3sIlfc1i3ej8yccX9BC/gyDNR my/j+Ix521xi6OpRu0FzlwZnZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJgojG1F /nDgNxQNoXxWqcy0kEZXMB8GA1UdIwQYMBaAFLV7IH8OHBuoc6B5NYLHqBNAmGdM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTcxMS85RkREMkRBMEM5 OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2aHpvSGsxZ3Nlb0UwQ1la MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RYc2dmdzRjRzZoem9IazFnc2VvRTBDWVowdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTcxMS85RkREMkRBMEM5OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2 aHpvSGsxZ3Nlb0UwQ1laMHcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZ05kkIzvwPCOxljrfQc1rD0oCxoglML8Z+Nzdd5Lp8jLAN8g2PRHJTneCeE8 Il/zoo1nraxkUVTWBoMl1E/dxLk/AyFQOVc034FC8ar3CnflBcFJ6bEI17PFesPU 4OhZ4fAn4qAn2DaRXlYNQesfYbzKN3QVZh4NJ7tL09rZfbRhfyuuXJGNeUv0gosb vi/7T5MsDBB58GJ1BPXMbGow6T+itdUeUBvA2jlllUvyXoRZVexdNPnGwp51Q0z3 7aW2R3kFEPFPuUbjpDHxKG4A2w2LGL0goNzvhjBGrH83iRSclRhXHvTB6LwWt/NE DbmatQ6l/ojLTK1Gsj+NIapYiA== -----END CERTIFICATE-----Generated at Thu Mar 26 15:45:27 2026 by rpki-client