$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json) Hash identifier: iLPQyXLfGOH7iQVutvDFI1I3OtS98fjYbzL4ra32rxY= Subject key identifier: A2:B9:E9:0C:8F:42:52:31:97:75:22:9B:C9:23:77:22:13:8F:47:86 Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: 0118 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft Manifest number: 010F Signing time: Wed 25 Mar 2026 05:11:40 +0000 Manifest this update: Wed 25 Mar 2026 05:11:40 +0000 Manifest next update: Wed 01 Apr 2026 05:11:40 +0000 Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: AdXjGTScFA80d+VMZj2e/cpAD5Ii0TEf7epI+hM3BhA=) 2: CB24F37C033711F0B76A8520C4F9AE02.roa (hash: XEgsmSONdO5QmyZ+W6pwM4gqDm2Ruw04W/Sgse84F1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:11:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 280 (0x118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Validity Not Before: Mar 25 05:11:40 2026 GMT Not After : Apr 1 05:11:40 2026 GMT Subject: CN=69c36e8c-0c3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2c:4c:dc:aa:7b:9b:cb:4c:ca:77:87:07:ec: 2d:ab:a8:b8:9e:24:0c:df:f7:3f:5f:6b:75:f7:a1: f5:60:0d:90:60:b3:0f:6c:c5:be:2a:cf:b6:2e:93: 3f:93:d5:c6:2f:b3:ac:86:25:f3:d9:c8:c4:13:20: 25:c6:ff:37:d5:05:db:3d:fb:a7:34:a5:26:8b:96: b7:91:46:8e:27:fa:fe:10:13:58:ab:d7:6d:79:ca: 3d:c6:70:69:b8:a5:e6:1d:3b:00:61:5c:4d:bf:a2: 69:4c:26:d9:ec:39:5d:4e:bf:e4:98:09:c5:0a:70: 48:42:1d:9a:39:fa:e0:aa:28:f2:77:1d:ef:be:11: 68:8f:e1:9f:d3:8d:ff:45:f4:c6:76:33:c2:0b:0a: 41:cc:2b:f3:ec:20:d5:1b:a1:74:95:9d:48:a4:64: fc:35:65:e7:0d:a4:1a:28:73:73:7b:d3:20:a7:bc: f2:ad:41:bf:98:a7:fc:e8:60:26:99:cd:8d:a2:d6: 45:ef:3c:4a:08:df:01:1a:a6:3d:0e:10:64:69:f9: 56:b5:ae:a6:27:f7:df:c6:74:a7:c6:19:38:88:52: 52:8b:45:b9:2c:89:c5:a8:b7:ec:ba:a8:b7:1d:f1: 1a:71:9b:e0:33:8d:aa:e4:72:35:eb:1b:3c:7d:a7: 07:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:B9:E9:0C:8F:42:52:31:97:75:22:9B:C9:23:77:22:13:8F:47:86 X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:19:4e:16:09:1a:23:3d:9c:21:7f:de:0b:a2:66:90:62:86: 2e:eb:ee:84:9f:bd:01:6c:47:d7:8d:69:b7:9a:fb:ef:e2:4f: ac:4d:34:36:ea:39:09:56:dc:44:72:aa:29:5e:cd:b2:24:e9: 7d:a2:14:f4:bc:13:76:20:73:e2:9e:c4:b5:19:89:e9:e5:47: 0b:4a:ce:dc:94:a6:ce:e7:f0:21:bc:f9:b3:f1:36:81:38:89: 1b:21:72:fa:10:85:f6:88:fc:e4:d0:67:79:97:17:fb:e6:87: 46:4e:f1:8d:f0:88:4e:c3:4a:ac:cb:d9:1a:b4:88:07:77:14: 1a:ed:91:b9:85:1b:90:e3:a9:55:9b:31:ca:93:24:a5:b5:cb: 72:48:59:82:42:18:3d:8f:55:05:af:ef:9f:f9:f4:50:dd:4f: 5a:58:d2:e2:88:fb:ed:9b:1f:51:34:d1:cf:c8:e0:fc:89:c1: 97:cc:de:27:72:68:0a:f7:66:f9:3e:12:83:57:75:2a:d8:64: 01:f0:bf:d6:4a:1d:86:eb:8b:1a:b4:f8:b3:6f:42:0e:ec:4b: b2:70:41:43:e6:bd:b9:be:8d:d7:44:0a:6a:38:33:75:50:de: dc:88:d5:06:71:44:6d:81:a3:9a:af:f8:cf:c3:3b:72:80:47: 77:d7:9e:c8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICARgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI3ODcxMTAvBgNVBAUTKDVEOTQ2RDRGNDc5RDM3QkNFMTcwMENCMEJBREQ1MUEy QzNERjYyMEYwHhcNMjYwMzI1MDUxMTQwWhcNMjYwNDAxMDUxMTQwWjAYMRYwFAYD VQQDEw02OWMzNmU4Yy0wYzNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1yxM3Kp7m8tMyneHB+wtq6i4niQM3/c/X2t196H1YA2QYLMPbMW+Ks+2LpM/ k9XGL7OshiXz2cjEEyAlxv831QXbPfunNKUmi5a3kUaOJ/r+EBNYq9dteco9xnBp uKXmHTsAYVxNv6JpTCbZ7DldTr/kmAnFCnBIQh2aOfrgqijydx3vvhFoj+Gf043/ RfTGdjPCCwpBzCvz7CDVG6F0lZ1IpGT8NWXnDaQaKHNze9Mgp7zyrUG/mKf86GAm mc2NotZF7zxKCN8BGqY9DhBkaflWta6mJ/ffxnSnxhk4iFJSi0W5LInFqLfsuqi3 HfEacZvgM42q5HI16xs8facHTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKK56QyP QlIxl3Uim8kjdyITj0eGMB8GA1UdIwQYMBaAFF2UbU9HnTe84XAMsLrdUaLD32IP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mjc4Ny8yMjg2NTYyQThG NzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43emhjQXl3dXQxUm9zUGZZ ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZllnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mjc4Ny8yMjg2NTYyQThGNzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43 emhjQXl3dXQxUm9zUGZZZzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfhlOFgkaIz2cIX/eC6JmkGKGLuvuhJ+9AWxH141pt5r77+JPrE00Nuo5CVbc RHKqKV7NsiTpfaIU9LwTdiBz4p7EtRmJ6eVHC0rO3JSmzufwIbz5s/E2gTiJGyFy +hCF9oj85NBneZcX++aHRk7xjfCITsNKrMvZGrSIB3cUGu2RuYUbkOOpVZsxypMk pbXLckhZgkIYPY9VBa/vn/n0UN1PWljS4oj77ZsfUTTRz8jg/InBl8zeJ3JoCvdm +T4Sg1d1KthkAfC/1kodhuuLGrT4s29CDuxLsnBBQ+a9ub6N10QKajgzdVDe3IjV BnFEbYGjmq/4z8M7coBHd9eeyA== -----END CERTIFICATE-----Generated at Thu Mar 26 18:24:36 2026 by rpki-client