$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft File: XfVm12I2fCjH8_ElYbRxa4yhuWY.mft (raw, json) Hash identifier: m72SHpU7aO/wqMUAtCIX/co3rGWl3Oy5MTKMFMtyaJ0= Subject key identifier: 25:4C:BF:6D:72:08:98:A4:59:31:6A:C8:3B:93:8E:BA:5E:3E:F6:98 Authority key identifier: 5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 Certificate issuer: /CN=A9133B47/serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Certificate serial: 016A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft Manifest number: 0161 Signing time: Wed 25 Mar 2026 04:10:55 +0000 Manifest this update: Wed 25 Mar 2026 04:10:54 +0000 Manifest next update: Wed 01 Apr 2026 04:10:54 +0000 Files and hashes: 1: XfVm12I2fCjH8_ElYbRxa4yhuWY.crl (hash: ZcdGYLCrA9gtHETDVWsSDISmQp15Z08KGcRXfhfBCDs=) 2: 23B1A0120FA511EFB28F5235C4F9AE02.roa (hash: U8i0qlU1iG7iGGOct1cXwPlwr4Q9fN1z2Du4FOYXcDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:10:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 362 (0x16a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B47, serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Validity Not Before: Mar 25 04:10:54 2026 GMT Not After : Apr 1 04:10:54 2026 GMT Subject: CN=69c3604f-3dd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7f:0a:e7:cb:c6:cd:c9:47:e7:2a:3f:3c:8b: a7:67:ed:8f:9f:35:91:19:52:c3:55:97:0b:0d:de: 80:5a:60:8e:0b:97:fd:a9:4d:14:03:f8:49:11:ec: 40:7d:63:ed:35:5a:ec:6c:c8:6f:c4:bd:a8:b6:a3: 6a:7a:f4:21:84:a1:69:f2:20:48:83:d7:34:95:3e: ce:cc:52:98:5c:bd:17:ae:a7:ef:8b:9c:d8:f6:46: 34:63:56:27:6f:35:c5:7c:79:44:0b:35:d7:76:04: 13:26:b2:c0:c1:e0:87:2f:45:f7:57:17:d7:1e:87: 8a:41:49:49:2e:95:6a:a4:6e:3b:37:0b:8c:ef:7c: 0b:b9:49:f9:ea:cb:d2:f4:f9:37:dc:e2:1f:8d:44: 84:05:c4:17:3b:eb:fa:26:4d:5b:ea:1a:42:d7:6e: 2b:66:65:32:6d:c1:5a:a1:b0:b1:9c:42:3f:4d:88: 82:96:87:e4:27:d3:f5:0c:66:fb:10:b8:97:57:30: a7:2d:a7:be:34:27:53:b8:94:7d:47:18:ea:82:93: f7:5d:30:4d:60:70:ce:8d:e1:5e:5e:ea:75:62:2c: a0:b7:02:96:3b:12:d1:91:cc:f9:a5:58:89:0a:1e: 3e:b4:95:35:e9:68:c7:e5:0e:45:36:9c:97:6d:a2: c3:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:4C:BF:6D:72:08:98:A4:59:31:6A:C8:3B:93:8E:BA:5E:3E:F6:98 X509v3 Authority Key Identifier: keyid:5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:56:ca:17:f3:88:e1:43:b0:05:c3:2e:0b:37:cd:0a:5c:b9: e9:ba:5d:6d:06:57:f0:13:b7:8d:01:b3:eb:84:6e:69:f8:27: 92:e9:7a:ab:89:37:42:24:9d:5d:93:8e:f0:85:e4:c0:10:e9: e6:ee:9d:40:02:3b:86:77:c3:44:ab:9c:13:94:c1:ba:76:dd: 0c:d8:e1:c6:2d:14:50:a3:d1:4f:b6:a6:81:55:a7:8e:f0:49: 88:a3:f3:8a:56:c0:81:b8:21:77:c9:93:2a:16:a8:3f:01:54: 4f:9d:47:cf:95:53:d7:7a:de:bc:ec:cb:93:29:a2:5b:e4:c6: 3d:10:8b:65:ed:1e:e3:16:73:cd:c2:13:41:1a:b9:95:24:04: 0d:c4:91:71:79:c7:d4:74:e1:2f:6e:65:54:94:b3:87:da:d2: 04:1c:9a:6b:98:0c:11:56:1f:75:91:b0:b7:97:33:c9:31:24: 86:82:fb:3f:b9:d4:f2:70:5c:cf:c5:01:15:1d:36:41:ed:89: a5:06:cf:2d:f1:f7:de:23:8d:19:5b:77:bc:82:45:9b:cb:9c: 5c:b9:1a:af:34:32:5f:92:1e:44:3d:b6:48:87:14:87:2a:c2: 84:65:97:6b:7e:ae:05:03:aa:18:43:af:64:c8:a9:02:79:94: 17:f0:d3:18 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCNDcxMTAvBgNVBAUTKDVERjU2NkQ3NjIzNjdDMjhDN0YzRjEyNTYxQjQ3MTZC OENBMUI5NjYwHhcNMjYwMzI1MDQxMDU0WhcNMjYwNDAxMDQxMDU0WjAYMRYwFAYD VQQDEw02OWMzNjA0Zi0zZGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwH8K58vGzclH5yo/PIunZ+2PnzWRGVLDVZcLDd6AWmCOC5f9qU0UA/hJEexA fWPtNVrsbMhvxL2otqNqevQhhKFp8iBIg9c0lT7OzFKYXL0Xrqfvi5zY9kY0Y1Yn bzXFfHlECzXXdgQTJrLAweCHL0X3VxfXHoeKQUlJLpVqpG47NwuM73wLuUn56svS 9Pk33OIfjUSEBcQXO+v6Jk1b6hpC124rZmUybcFaobCxnEI/TYiClofkJ9P1DGb7 ELiXVzCnLae+NCdTuJR9RxjqgpP3XTBNYHDOjeFeXup1YiygtwKWOxLRkcz5pViJ Ch4+tJU16WjH5Q5FNpyXbaLDbQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCVMv21y CJikWTFqyDuTjrpePvaYMB8GA1UdIwQYMBaAFF31ZtdiNnwox/PxJWG0cWuMoblm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0I0Ny84NzFCOTI5NDBG QTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZDakg4X0VsWWJSeGE0eWh1 V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmVm0xMkkyZkNqSDhfRWxZYlJ4YTR5aHVXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0I0Ny84NzFCOTI5NDBGQTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZD akg4X0VsWWJSeGE0eWh1V1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjlbKF/OI4UOwBcMuCzfNCly56bpdbQZX8BO3jQGz64Ruafgnkul6q4k3QiSd XZOO8IXkwBDp5u6dQAI7hnfDRKucE5TBunbdDNjhxi0UUKPRT7amgVWnjvBJiKPz ilbAgbghd8mTKhaoPwFUT51Hz5VT13revOzLkymiW+TGPRCLZe0e4xZzzcITQRq5 lSQEDcSRcXnH1HThL25lVJSzh9rSBByaa5gMEVYfdZGwt5czyTEkhoL7P7nU8nBc z8UBFR02Qe2JpQbPLfH33iONGVt3vIJFm8ucXLkarzQyX5IeRD22SIcUhyrChGWX a36uBQOqGEOvZMipAnmUF/DTGA== -----END CERTIFICATE-----Generated at Thu Mar 26 16:28:02 2026 by rpki-client