$ rpki-client -vvf rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft File: X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft (raw, json) Hash identifier: Oa1EB3AYd6LkXbAFNbM+NoGUa4tYBRHLa97rCraG2t4= Subject key identifier: DA:D0:92:D6:E9:12:46:43:F3:53:52:79:DE:83:BB:C2:DB:D7:B6:61 Authority key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 Certificate issuer: /CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Certificate serial: 0290 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft Manifest number: 0284 Signing time: Wed 25 Mar 2026 01:15:19 +0000 Manifest this update: Wed 25 Mar 2026 01:15:18 +0000 Manifest next update: Wed 01 Apr 2026 01:15:18 +0000 Files and hashes: 1: X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl (hash: tqs3UTu1lNliRlY+DSD1TJzIKR/wy5oPpFzqrh+8s3s=) 2: D1FCB742514711ED92E3885EC4F9AE02.roa (hash: mF+0oU+0n20Cgq5ko570coLg0lSVzI4jtUFqm1rkd8w=) 3: 5637146C507611EDB59D9E2EC4F9AE02.roa (hash: 18O7Lp0T09zqzj1uz2UvboEJEAG8f//RjAML5YNM31g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:15:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 656 (0x290) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156255, serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Validity Not Before: Mar 25 01:15:18 2026 GMT Not After : Apr 1 01:15:18 2026 GMT Subject: CN=69c33727-bb87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:aa:30:a7:a5:d0:ee:88:08:71:66:3a:a5:cb: 9d:79:f8:d1:66:88:f4:ef:f9:b4:11:37:ed:93:31: 57:59:82:9e:c4:a7:30:25:3d:45:0c:bc:67:8d:b8: 17:fb:68:25:7b:65:87:1b:e6:6a:e7:26:ff:f6:4a: 6b:ef:04:04:4f:e1:18:ef:df:07:a7:8a:76:6e:b1: f6:e7:98:f3:1a:b4:5a:0f:e8:e8:c6:6d:a3:5a:ac: 7d:d1:44:30:b2:f5:b6:61:4d:06:77:29:90:6f:83: 91:36:78:7b:33:c5:e0:34:93:85:4a:a0:86:a1:ed: c2:48:c8:08:cf:8e:42:a8:fa:cd:56:a3:31:ff:bc: 67:11:88:7f:e4:b3:87:8e:69:ce:22:0e:60:2e:e2: be:8f:65:53:eb:58:08:90:7c:d7:55:37:4a:ba:62: 07:b0:93:65:69:26:cc:b1:40:f9:46:9c:c6:57:f1: 2e:53:d7:fb:c6:61:51:64:a9:d4:92:21:75:c9:66: 8b:bf:e4:15:08:e0:ac:71:d7:30:8b:80:d6:86:75: 64:c0:e3:d1:4c:64:30:f5:a5:38:33:7c:47:30:2e: 80:fb:b5:6f:6e:b3:73:3a:3c:f7:eb:a2:f6:bc:40: ce:f6:cf:86:bb:06:db:71:6c:f6:39:51:86:c7:6a: ba:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:D0:92:D6:E9:12:46:43:F3:53:52:79:DE:83:BB:C2:DB:D7:B6:61 X509v3 Authority Key Identifier: keyid:5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:a3:5d:9f:fa:d1:a1:cb:5a:e6:ff:bb:f2:ed:ae:c3:d1:60: 82:d6:14:54:97:45:0f:59:1c:bd:97:a9:6a:37:4b:e2:30:4b: e8:af:8b:d0:8b:f6:f2:95:6c:d7:bf:31:3a:78:2b:81:d3:ae: 2e:69:87:f4:6d:00:35:64:49:03:0b:36:fd:a6:c8:ab:3a:4e: 5e:ad:e5:f5:44:e5:5a:99:ba:ea:fa:f7:b7:80:4e:ff:78:95: 59:44:9f:a4:c8:46:1e:3f:4d:15:29:01:87:85:48:55:77:4a: c3:10:85:23:9e:cc:8f:b4:7a:9d:e3:e6:80:74:31:25:5d:a5: 39:29:c2:d2:d0:08:a6:52:a4:7e:08:f5:cc:7f:3e:35:c4:1d: 47:c6:81:6c:07:ba:d1:52:89:bc:ad:0e:7e:37:d9:c1:b5:b8: ff:5a:58:8d:26:48:2d:14:e1:7f:f5:f6:9b:e4:e8:1c:f8:a7: 77:50:e3:b0:5c:56:ce:37:a7:72:5b:eb:ea:0d:5d:83:e9:ff: f3:e3:f5:a0:86:9e:f4:2e:6f:7e:4e:43:fd:cf:38:43:c5:fe: ab:b2:63:01:65:c3:da:48:0d:6d:e1:1e:4a:02:9b:c2:79:b3: 11:9a:0b:9e:eb:95:0d:06:c6:dd:36:44:35:fc:c9:de:46:e0: e0:0f:b5:bb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYyNTUxMTAvBgNVBAUTKDVGNkM4RkEzQTY1ODc0MDIzMUIyQzRCMTM0ODFCRTEx NTAwQURDNzYwHhcNMjYwMzI1MDExNTE4WhcNMjYwNDAxMDExNTE4WjAYMRYwFAYD VQQDEw02OWMzMzcyNy1iYjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6owp6XQ7ogIcWY6pcudefjRZoj07/m0ETftkzFXWYKexKcwJT1FDLxnjbgX +2gle2WHG+Zq5yb/9kpr7wQET+EY798Hp4p2brH255jzGrRaD+joxm2jWqx90UQw svW2YU0GdymQb4ORNnh7M8XgNJOFSqCGoe3CSMgIz45CqPrNVqMx/7xnEYh/5LOH jmnOIg5gLuK+j2VT61gIkHzXVTdKumIHsJNlaSbMsUD5RpzGV/EuU9f7xmFRZKnU kiF1yWaLv+QVCOCscdcwi4DWhnVkwOPRTGQw9aU4M3xHMC6A+7VvbrNzOjz366L2 vEDO9s+GuwbbcWz2OVGGx2q6fwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNrQktbp EkZD81NSed6Du8Lb17ZhMB8GA1UdIwQYMBaAFF9sj6OmWHQCMbLEsTSBvhFQCtx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjI1NS85MTYyMDg0QzUw NzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRBSXhzc1N4TklHLUVWQUsz SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gyeVBvNlpZZEFJeHNzU3hOSUctRVZBSzNIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjI1NS85MTYyMDg0QzUwNzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRB SXhzc1N4TklHLUVWQUszSFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHKNdn/rRocta5v+78u2uw9FggtYUVJdFD1kcvZepajdL4jBL6K+L0Iv28pVs 178xOngrgdOuLmmH9G0ANWRJAws2/abIqzpOXq3l9UTlWpm66vr3t4BO/3iVWUSf pMhGHj9NFSkBh4VIVXdKwxCFI57Mj7R6nePmgHQxJV2lOSnC0tAIplKkfgj1zH8+ NcQdR8aBbAe60VKJvK0OfjfZwbW4/1pYjSZILRThf/X2m+ToHPind1DjsFxWzjen clvr6g1dg+n/8+P1oIae9C5vfk5D/c84Q8X+q7JjAWXD2kgNbeEeSgKbwnmzEZoL nuuVDQbG3TZENfzJ3kbg4A+1uw== -----END CERTIFICATE-----Generated at Thu Mar 26 14:59:02 2026 by rpki-client