$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft File: xG1ZE_bCUMau4vMnRTXOhmKVufo.mft (raw, json) Hash identifier: OjkHKzPWFhTAtLxuHUdgslVZj0hBX+5klG/y8WUkJjY= Subject key identifier: BD:6F:74:83:58:02:A9:60:11:57:5A:2B:2E:F4:1D:17:6C:C9:4A:77 Authority key identifier: C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA Certificate issuer: /CN=A9148B83/serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Certificate serial: 0700 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft Manifest number: 06EF Signing time: Tue 24 Mar 2026 21:48:52 +0000 Manifest this update: Tue 24 Mar 2026 21:48:52 +0000 Manifest next update: Tue 31 Mar 2026 21:48:52 +0000 Files and hashes: 1: xG1ZE_bCUMau4vMnRTXOhmKVufo.crl (hash: bYgHLNm7TVulSWCvdKFgYexChX3l0MObUgDjPV4TOEM=) 2: 65FE79B8885D11EB81454E41C4F9AE02.roa (hash: nPFuvMawG4xx+gCcX5sOjIYDGXFIgyL0vbMikWZz2Nc=) 3: 009E969E885C11EB88A7723DC4F9AE02.roa (hash: mZPmB2gMHhMYq9+9YsdLGZPVF9Xjisj7wRrJK9Yzmx4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:48:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1792 (0x700) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B83, serialNumber=C46D5913F6C250C6AEE2F3274535CE866295B9FA Validity Not Before: Mar 24 21:48:52 2026 GMT Not After : Mar 31 21:48:52 2026 GMT Subject: CN=69c306c4-7e0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:35:49:46:71:02:f8:75:d9:9c:9c:d3:6e:42: 78:42:f5:cc:77:58:a9:9d:5a:a7:dd:07:5d:ca:fe: bb:2c:db:5b:ba:61:2d:6d:f9:10:a7:3a:a0:81:49: 0a:ef:57:35:32:8d:2b:b9:97:2a:1a:62:7f:72:64: fc:1e:bb:c3:2d:af:76:ce:f2:aa:d4:48:af:38:c6: f3:b0:6e:06:4b:46:99:18:2f:30:17:f0:28:8a:20: fd:40:f4:7f:a9:90:ba:31:85:c7:d6:ea:85:73:09: d6:34:5d:70:b8:54:e1:ea:70:0d:c8:dd:21:7f:44: 1e:a9:6c:8e:23:e8:a4:48:a1:04:8b:59:66:1f:f4: 34:64:fb:d5:df:e8:0c:81:74:26:bb:a6:5a:a3:c6: 19:2a:0a:bf:3b:88:23:0b:fd:aa:4c:23:e0:8f:48: 8f:12:6e:e6:07:61:02:0e:d0:4c:89:0a:b3:2f:23: 16:d6:17:ab:33:75:45:4d:d1:52:7b:54:ba:f9:e5: 29:67:0e:a9:0a:5c:4d:88:e8:92:ba:7f:f6:e8:ed: 01:1d:0d:f3:ea:73:90:05:25:33:00:9a:2a:07:c9: f4:46:53:e2:c4:9e:07:f2:87:e2:4a:28:da:c4:99: e7:41:fb:75:08:ae:d9:29:a4:c9:de:02:ef:71:25: 98:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:6F:74:83:58:02:A9:60:11:57:5A:2B:2E:F4:1D:17:6C:C9:4A:77 X509v3 Authority Key Identifier: keyid:C4:6D:59:13:F6:C2:50:C6:AE:E2:F3:27:45:35:CE:86:62:95:B9:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xG1ZE_bCUMau4vMnRTXOhmKVufo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B83/77AA414687E111EBB501CB25C4F9AE02/xG1ZE_bCUMau4vMnRTXOhmKVufo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:63:84:51:a2:cb:65:d9:c7:be:38:73:78:c6:23:f8:75:bc: b3:a5:03:40:2e:33:97:29:6a:4d:3d:9c:fb:95:34:df:d6:87: bd:3e:cc:5f:5e:e4:4c:32:b9:56:61:45:2d:6a:2c:99:b4:36: 65:bc:5d:0f:fc:3f:cd:86:c9:60:62:57:f7:3a:10:77:c7:da: 02:3f:6e:1c:22:c4:9a:f4:89:32:53:54:3e:92:1a:c2:42:97: 78:9a:8c:9d:89:44:03:d8:1e:4d:cb:0c:49:a7:dd:e8:d9:4e: e4:01:68:85:8e:4d:0a:df:66:a9:ef:f3:b7:bb:fc:25:a1:36: c5:0a:8d:75:e4:22:0d:a7:59:67:a5:ad:a1:68:01:79:4d:4f: b6:eb:13:0a:68:a4:ff:30:f3:73:d7:2c:58:c2:0d:26:00:57: 12:0d:34:3a:6a:da:8f:ba:71:ac:94:70:0f:23:4a:02:35:fb: a8:16:b0:65:92:81:82:c6:eb:d4:50:61:45:f6:be:45:c6:2c: 19:d7:3b:8a:ad:19:ed:96:66:28:95:42:6e:49:74:7a:1e:35: 33:64:3e:43:6b:7b:a3:12:55:c3:57:c1:5a:49:3a:e5:e0:97: 68:4c:ff:f6:d0:99:e2:81:c1:13:72:0c:38:19:57:c8:bb:b0: ff:23:33:c8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCODMxMTAvBgNVBAUTKEM0NkQ1OTEzRjZDMjUwQzZBRUUyRjMyNzQ1MzVDRTg2 NjI5NUI5RkEwHhcNMjYwMzI0MjE0ODUyWhcNMjYwMzMxMjE0ODUyWjAYMRYwFAYD VQQDEw02OWMzMDZjNC03ZTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDVJRnEC+HXZnJzTbkJ4QvXMd1ipnVqn3Qddyv67LNtbumEtbfkQpzqggUkK 71c1Mo0ruZcqGmJ/cmT8HrvDLa92zvKq1EivOMbzsG4GS0aZGC8wF/AoiiD9QPR/ qZC6MYXH1uqFcwnWNF1wuFTh6nANyN0hf0QeqWyOI+ikSKEEi1lmH/Q0ZPvV3+gM gXQmu6Zao8YZKgq/O4gjC/2qTCPgj0iPEm7mB2ECDtBMiQqzLyMW1herM3VFTdFS e1S6+eUpZw6pClxNiOiSun/26O0BHQ3z6nOQBSUzAJoqB8n0RlPixJ4H8ofiSija xJnnQft1CK7ZKaTJ3gLvcSWY/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL1vdINY AqlgEVdaKy70HRdsyUp3MB8GA1UdIwQYMBaAFMRtWRP2wlDGruLzJ0U1zoZilbn6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEI4My83N0FBNDE0Njg3 RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VNYXU0dk1uUlRYT2htS1Z1 Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHMVpFX2JDVU1hdTR2TW5SVFhPaG1LVnVmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEI4My83N0FBNDE0Njg3RTExMUVCQjUwMUNCMjVDNEY5QUUwMi94RzFaRV9iQ1VN YXU0dk1uUlRYT2htS1Z1Zm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFmOEUaLLZdnHvjhzeMYj+HW8s6UDQC4zlylqTT2c+5U039aHvT7MX17kTDK5 VmFFLWosmbQ2ZbxdD/w/zYbJYGJX9zoQd8faAj9uHCLEmvSJMlNUPpIawkKXeJqM nYlEA9geTcsMSafd6NlO5AFohY5NCt9mqe/zt7v8JaE2xQqNdeQiDadZZ6WtoWgB eU1PtusTCmik/zDzc9csWMINJgBXEg00Omraj7pxrJRwDyNKAjX7qBawZZKBgsbr 1FBhRfa+RcYsGdc7iq0Z7ZZmKJVCbkl0eh41M2Q+Q2t7oxJVw1fBWkk65eCXaEz/ 9tCZ4oHBE3IMOBlXyLuw/yMzyA== -----END CERTIFICATE-----Generated at Thu Mar 26 16:57:15 2026 by rpki-client