$ rpki-client -vvf rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft File: -xaxnfv3ymrECmtqNT94V4kX4P0.mft (raw, json) Hash identifier: mFdetviCYIqrAcvnnhbUphLEe3cNe9qwJ0/qXR81IB4= Subject key identifier: F4:ED:8A:AC:18:2B:E9:7C:67:B7:28:61:DF:DC:34:91:8B:51:ED:43 Authority key identifier: FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD Certificate issuer: /CN=A9146CB4/serialNumber=FB16B19DFBF7CA6AC40A6B6A353F78578917E0FD Certificate serial: 021A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft Manifest number: 0214 Signing time: Wed 25 Mar 2026 02:16:23 +0000 Manifest this update: Wed 25 Mar 2026 02:16:23 +0000 Manifest next update: Wed 01 Apr 2026 02:16:23 +0000 Files and hashes: 1: -xaxnfv3ymrECmtqNT94V4kX4P0.crl (hash: JK+9YT1O3ZRWW0HfxsRoKgeuRC9borEILLB5MXBieQY=) 2: DFC662EC415B11EE9E83852AC4F9AE02.roa (hash: R5a6QMcMMM3E0jCOFVWDRS9Q/1dJvX8y7TpUdy+NpOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.crl rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:16:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 538 (0x21a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146CB4, serialNumber=FB16B19DFBF7CA6AC40A6B6A353F78578917E0FD Validity Not Before: Mar 25 02:16:23 2026 GMT Not After : Apr 1 02:16:23 2026 GMT Subject: CN=69c34577-3090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a5:75:52:7c:6f:21:11:57:df:7d:28:1e:3c: a9:12:6d:86:60:af:ac:9b:40:dc:3d:28:10:0a:a9: c8:4d:22:1c:74:84:ee:06:78:86:66:36:68:11:2d: f1:1e:dd:b0:43:df:6f:85:da:53:0d:62:61:0f:26: c8:10:08:7f:fe:26:06:1e:fd:be:e8:e8:ff:ea:65: 4a:d4:a8:52:d1:6c:89:e9:c4:c0:da:58:84:8f:78: cc:91:09:c3:8e:67:09:b4:70:f4:1d:32:31:d9:29: 74:1d:5c:d3:b9:e4:2a:97:be:66:8e:f8:85:1c:eb: 76:30:7f:77:b3:df:f2:b3:ab:fa:e4:6d:25:9e:26: 2e:7d:cb:13:a8:94:f2:bd:d7:7b:62:08:d0:55:b4: b3:43:f9:19:f2:ca:22:14:4b:07:80:1c:5e:95:ea: fd:3a:fb:6d:96:c1:ca:f6:61:6c:07:36:4c:85:bb: d2:11:e6:22:bc:2e:65:7b:41:f2:2e:10:87:b8:c3: ab:0c:26:c5:a2:a2:80:88:48:45:6a:39:60:9a:21: 55:c3:7e:b1:0b:5e:49:53:23:4a:f3:2e:ed:b9:a5: 3b:e5:59:17:7d:15:16:ac:0e:3b:d8:b4:77:47:6d: 8a:d9:9c:87:fb:75:13:8b:ec:a1:3b:92:69:fe:e7: 46:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:ED:8A:AC:18:2B:E9:7C:67:B7:28:61:DF:DC:34:91:8B:51:ED:43 X509v3 Authority Key Identifier: keyid:FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:f1:dd:d5:5a:1e:6a:f5:ca:b4:a4:5e:0c:1b:14:9e:40:be: 83:44:b9:4a:08:dc:02:f2:a6:74:41:6b:e8:fe:c2:c7:50:5f: f4:0b:9c:70:20:fe:b0:9a:cb:dd:24:ff:5f:5a:36:bb:2c:43: 66:7b:d4:c6:39:93:ba:46:38:6c:0d:d0:2f:e9:da:4d:d7:84: 1b:d3:9b:10:fa:d9:89:16:b1:a8:de:36:cb:48:4d:9f:94:3d: 90:68:01:fe:b5:c3:cc:16:3d:75:8c:a2:b1:04:c2:fe:bc:23: 79:60:c1:97:51:55:6c:6e:d1:35:62:a7:dd:67:59:b3:5f:4e: e1:09:e7:41:c7:cc:a8:23:e6:76:da:fe:ea:30:e5:06:f8:18: 9b:d1:8c:c1:6e:bd:6b:6d:91:5f:74:14:cb:87:ec:50:32:dc: 67:29:02:6e:5a:55:e9:4e:62:23:64:33:60:92:c2:75:d9:b5: 97:f8:74:24:3f:9a:88:09:bc:8f:48:c0:fb:05:f9:13:03:b0: f5:c5:d6:76:78:86:f2:53:da:c5:b9:ef:e5:f5:5e:4e:ba:2c: 9f:00:b2:c2:68:5b:3e:1d:3a:bc:4d:04:ab:1b:5a:97:24:f6: 2b:11:bf:fc:b4:d9:4a:a5:5b:fb:85:ef:c9:21:ea:3b:60:64: 29:37:72:26 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZDQjQxMTAvBgNVBAUTKEZCMTZCMTlERkJGN0NBNkFDNDBBNkI2QTM1M0Y3ODU3 ODkxN0UwRkQwHhcNMjYwMzI1MDIxNjIzWhcNMjYwNDAxMDIxNjIzWjAYMRYwFAYD VQQDEw02OWMzNDU3Ny0zMDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0aV1UnxvIRFX330oHjypEm2GYK+sm0DcPSgQCqnITSIcdITuBniGZjZoES3x Ht2wQ99vhdpTDWJhDybIEAh//iYGHv2+6Oj/6mVK1KhS0WyJ6cTA2liEj3jMkQnD jmcJtHD0HTIx2Sl0HVzTueQql75mjviFHOt2MH93s9/ys6v65G0lniYufcsTqJTy vdd7YgjQVbSzQ/kZ8soiFEsHgBxeler9OvttlsHK9mFsBzZMhbvSEeYivC5le0Hy LhCHuMOrDCbFoqKAiEhFajlgmiFVw36xC15JUyNK8y7tuaU75VkXfRUWrA472LR3 R22K2ZyH+3UTi+yhO5Jp/udG4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPTtiqwY K+l8Z7coYd/cNJGLUe1DMB8GA1UdIwQYMBaAFPsWsZ3798pqxAprajU/eFeJF+D9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkNCNC8yQTg0RDFEOEZE QzgxMUVEOTcyRURCMUVDNEY5QUUwMi8teGF4bmZ2M3ltckVDbXRxTlQ5NFY0a1g0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14YXhuZnYzeW1yRUNtdHFOVDk0VjRrWDRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkNCNC8yQTg0RDFEOEZEQzgxMUVEOTcyRURCMUVDNEY5QUUwMi8teGF4bmZ2M3lt ckVDbXRxTlQ5NFY0a1g0UDAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOPHd1VoeavXKtKReDBsUnkC+g0S5SgjcAvKmdEFr6P7Cx1Bf9AuccCD+sJrL 3ST/X1o2uyxDZnvUxjmTukY4bA3QL+naTdeEG9ObEPrZiRaxqN42y0hNn5Q9kGgB /rXDzBY9dYyisQTC/rwjeWDBl1FVbG7RNWKn3WdZs19O4QnnQcfMqCPmdtr+6jDl BvgYm9GMwW69a22RX3QUy4fsUDLcZykCblpV6U5iI2QzYJLCddm1l/h0JD+aiAm8 j0jA+wX5EwOw9cXWdniG8lPaxbnv5fVeTrosnwCywmhbPh06vE0EqxtalyT2KxG/ /LTZSqVb+4XvySHqO2BkKTdyJg== -----END CERTIFICATE-----Generated at Thu Mar 26 14:25:59 2026 by rpki-client