$ rpki-client -vvf rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft File: X2mHOU7ukmatexkjRBv29RNP-VA.mft (raw, json) Hash identifier: I4UI35n41s3RGWmkL1GN53p1IXebVbuvPaAWrIcaJiQ= Subject key identifier: FB:43:44:87:4F:BA:6F:4A:4B:BF:35:82:80:C8:FE:07:29:5D:5C:0F Authority key identifier: 5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 Certificate issuer: /CN=A9147241/serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Certificate serial: 088D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft Manifest number: 0882 Signing time: Tue 24 Mar 2026 20:22:37 +0000 Manifest this update: Tue 24 Mar 2026 20:22:37 +0000 Manifest next update: Tue 31 Mar 2026 20:22:37 +0000 Files and hashes: 1: X2mHOU7ukmatexkjRBv29RNP-VA.crl (hash: ioLZSDxJXLnkr9+J5/QYX+ZPt/Req/6Lu7/eWh3OPAY=) 2: F69648C2ECF211EABBFDDD24C4F9AE02.roa (hash: cf4yHcoutqovI1dQvoBzonoaRmnFgyfFyjHSp2dFK4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2189 (0x88d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147241, serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Validity Not Before: Mar 24 20:22:37 2026 GMT Not After : Mar 31 20:22:37 2026 GMT Subject: CN=69c2f28d-589b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4d:f6:96:22:06:ef:b9:97:95:46:88:d2:50: ad:a4:2e:a8:80:e0:67:7b:3d:4b:98:3c:3f:51:7f: 4a:63:b4:46:f0:79:8f:a6:a7:60:a5:3c:db:13:e4: 31:c7:38:0a:8a:dd:a6:6b:66:21:86:89:3b:27:ba: 5f:be:c8:f0:c7:97:14:c6:52:c0:28:e3:d3:52:e0: 7e:62:9d:b6:28:9d:1d:9d:44:c3:33:d1:b4:16:10: a3:a5:b9:75:dc:d1:fc:b6:01:67:1c:95:45:53:34: 1d:79:d6:ae:ca:af:a1:27:7e:82:e2:1e:f0:ea:28: 55:66:ab:9b:23:92:75:3a:cf:16:e1:b6:b2:03:e4: ca:02:8f:dd:35:e3:9b:bc:74:2a:4e:07:31:9b:16: e4:12:d1:ab:64:f2:d0:23:7f:d9:9a:03:9e:2d:ca: 9a:00:4d:5c:47:e6:90:d0:2f:c6:f3:8d:a3:14:ae: 30:68:fc:07:8a:ca:96:fb:df:a2:1b:1c:e9:4d:c7: f3:16:0e:c8:ed:ed:48:36:ac:84:5e:f7:6a:17:59: 08:87:62:ae:69:6e:3c:28:50:67:83:3f:66:79:34: 5b:ff:85:ba:e4:c9:ba:d0:d5:89:5e:c7:f3:94:95: c2:ed:00:34:83:8e:85:7a:14:5c:18:a9:a3:da:a4: f9:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:43:44:87:4F:BA:6F:4A:4B:BF:35:82:80:C8:FE:07:29:5D:5C:0F X509v3 Authority Key Identifier: keyid:5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:77:c9:e4:20:b0:25:fe:df:a5:89:00:73:4d:6b:46:a0:09: b4:e0:52:df:67:ab:c7:1a:72:4b:73:96:9b:52:ec:9a:a5:59: c4:18:29:98:71:b5:03:a1:23:f1:9b:19:9b:b6:0e:75:ef:21: 1b:3f:05:3a:5f:17:73:a2:2a:97:aa:0d:ed:70:3b:cc:f9:d4: 23:28:bc:ab:41:6d:e3:ae:3e:29:9c:2a:24:e8:df:0d:16:3e: 10:9d:51:5c:78:33:21:28:70:81:f3:f4:ca:e8:79:d0:63:49: 1d:e9:49:de:8c:77:1b:5c:77:8a:ee:2b:b6:46:13:34:71:df: 35:24:be:a1:24:44:63:36:d8:60:0f:32:4d:9b:27:b3:f8:8f: fd:44:69:a4:88:09:3d:03:e1:27:54:f5:31:f5:68:75:38:39: 57:ef:44:d4:38:38:47:d5:79:a4:9e:f6:57:b2:5c:e2:72:4e: ff:99:77:24:0a:53:8b:62:ed:a2:c2:2d:7b:a9:77:e9:6f:7c: aa:7b:91:86:8b:cb:3b:36:ef:18:d6:fc:09:a6:50:54:4e:54: 39:73:79:2a:9d:c9:e0:08:31:0e:cb:2e:5a:0f:15:37:03:ca: e9:43:71:1e:70:aa:5d:23:6a:61:32:2f:b6:e4:27:0c:63:e6: 57:27:92:f0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcyNDExMTAvBgNVBAUTKDVGNjk4NzM5NEVFRTkyNjZBRDdCMTkyMzQ0MUJGNkY1 MTM0RkY5NTAwHhcNMjYwMzI0MjAyMjM3WhcNMjYwMzMxMjAyMjM3WjAYMRYwFAYD VQQDEw02OWMyZjI4ZC01ODliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs032liIG77mXlUaI0lCtpC6ogOBnez1LmDw/UX9KY7RG8HmPpqdgpTzbE+Qx xzgKit2ma2Yhhok7J7pfvsjwx5cUxlLAKOPTUuB+Yp22KJ0dnUTDM9G0FhCjpbl1 3NH8tgFnHJVFUzQdedauyq+hJ36C4h7w6ihVZqubI5J1Os8W4bayA+TKAo/dNeOb vHQqTgcxmxbkEtGrZPLQI3/ZmgOeLcqaAE1cR+aQ0C/G842jFK4waPwHisqW+9+i GxzpTcfzFg7I7e1INqyEXvdqF1kIh2KuaW48KFBngz9meTRb/4W65Mm60NWJXsfz lJXC7QA0g46FehRcGKmj2qT5mwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPtDRIdP um9KS781goDI/gcpXVwPMB8GA1UdIwQYMBaAFF9phzlO7pJmrXsZI0Qb9vUTT/lQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzI0MS82MkJCNUM3NEVD RjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWttYXRleGtqUkJ2MjlSTlAt VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gybUhPVTd1a21hdGV4a2pSQnYyOVJOUC1WQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzI0MS82MkJCNUM3NEVDRjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWtt YXRleGtqUkJ2MjlSTlAtVkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZnfJ5CCwJf7fpYkAc01rRqAJtOBS32erxxpyS3OWm1LsmqVZxBgpmHG1A6Ej 8ZsZm7YOde8hGz8FOl8Xc6Iql6oN7XA7zPnUIyi8q0Ft464+KZwqJOjfDRY+EJ1R XHgzIShwgfP0yuh50GNJHelJ3ox3G1x3iu4rtkYTNHHfNSS+oSREYzbYYA8yTZsn s/iP/URppIgJPQPhJ1T1MfVodTg5V+9E1Dg4R9V5pJ72V7Jc4nJO/5l3JApTi2Lt osIte6l36W98qnuRhovLOzbvGNb8CaZQVE5UOXN5Kp3J4AgxDssuWg8VNwPK6UNx HnCqXSNqYTIvtuQnDGPmVyeS8A== -----END CERTIFICATE-----Generated at Thu Mar 26 13:04:45 2026 by rpki-client