$ rpki-client -vvf rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft File: xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft (raw, json) Hash identifier: ZZRKziM48UTqRLmf35DqGAryBaO8SUTS1tt5FMj0938= Subject key identifier: CF:24:51:D2:60:6B:C6:CB:9E:2E:BE:FB:7E:B5:A3:37:22:5C:6B:88 Authority key identifier: C7:15:31:D2:5F:80:54:8F:5B:65:1F:86:49:32:5F:3C:8F:D8:59:39 Certificate issuer: /CN=A915786A/serialNumber=C71531D25F80548F5B651F8649325F3C8FD85939 Certificate serial: 0C8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft Manifest number: 0C7B Signing time: Tue 24 Mar 2026 18:24:24 +0000 Manifest this update: Tue 24 Mar 2026 18:24:23 +0000 Manifest next update: Tue 31 Mar 2026 18:24:23 +0000 Files and hashes: 1: xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl (hash: 9U5ht1pI84lr+BDf3iLbEUjVxGIUjX1QXLbbJ05Qs1E=) 2: FBFF89FC3AC611EEB790D485C4F9AE02.roa (hash: 6+5b1CfcZTuiHBvdAxqJb6CWPbZsPji1n33pmOP0SN8=) 3: 7A7B776A1F0E11EA92AA6824C4F9AE02.roa (hash: jEP65BxvqOk8vKVC/3/YzXiqk8d1hNdREg1GZzlOXko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 18:24:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3214 (0xc8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915786A, serialNumber=C71531D25F80548F5B651F8649325F3C8FD85939 Validity Not Before: Mar 24 18:24:23 2026 GMT Not After : Mar 31 18:24:23 2026 GMT Subject: CN=69c2d6d8-847e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3c:ba:5d:32:e9:50:08:a7:6d:60:56:17:5e: ab:af:64:26:56:1b:e3:32:2f:1b:29:06:2f:9b:64: b1:7b:47:b7:a5:53:c1:84:bb:c4:77:6b:4d:6b:be: 68:5b:f1:29:22:45:5a:6b:32:a1:a6:5d:44:81:3b: e7:08:98:76:98:8d:95:60:cc:5d:01:d6:d3:d8:fb: 59:1d:36:83:4b:e4:a7:76:99:f9:42:d6:99:f7:bc: 35:fa:af:9a:c3:e1:c9:4b:94:08:ed:0b:e2:d4:c1: ae:d7:fb:1f:b2:0f:cb:0a:48:da:78:15:f1:e8:89: 7d:1e:bf:d2:5f:26:24:59:32:63:58:02:52:5c:0c: ac:bd:75:75:1a:62:f8:8b:19:d0:26:ba:7c:76:18: 92:69:2c:b1:5b:b9:68:31:cb:2d:ba:f2:b4:da:1f: 86:03:2e:d5:fb:52:36:ad:48:cf:20:69:78:a0:e6: 08:b3:8a:05:50:ae:ba:ba:a8:a4:93:ae:ae:c9:4a: 0d:49:3f:0f:77:25:3e:15:ed:5c:f5:5f:f8:57:84: 14:34:1a:32:1b:73:19:ef:15:61:9f:dd:fe:ac:ca: 36:45:e8:50:cd:9e:ea:10:6c:a9:7a:c1:d1:e0:c0: 59:54:1e:7b:72:a9:cf:c4:e1:9f:1d:83:45:a3:96: 08:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:24:51:D2:60:6B:C6:CB:9E:2E:BE:FB:7E:B5:A3:37:22:5C:6B:88 X509v3 Authority Key Identifier: keyid:C7:15:31:D2:5F:80:54:8F:5B:65:1F:86:49:32:5F:3C:8F:D8:59:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:f4:3f:5d:21:40:1f:79:8d:1a:fb:18:a1:65:51:83:54:1b: 60:df:f8:4a:cf:90:95:a7:54:55:86:6a:c0:58:6b:44:8c:44: bd:1d:c3:a9:0d:65:f4:b5:87:12:9a:ba:43:46:f8:21:cb:46: 6d:ee:f7:03:1d:9c:56:19:79:3c:4a:a2:ab:55:44:a7:8b:ca: 4f:a2:cd:ca:72:22:15:49:b0:e3:ca:99:cb:e0:4a:39:43:f3: 4f:78:44:f4:3e:85:05:f5:fc:0b:50:8b:10:2b:1b:d6:f8:ae: 87:bc:2f:00:28:a3:3a:ec:13:1d:32:2e:05:e5:b9:6c:43:1b: 2b:a8:ce:71:03:49:28:08:a0:81:3a:63:8a:58:c0:ff:a2:c3: 72:97:2c:4c:14:fe:a0:e4:a4:59:95:c3:ce:ca:4e:bb:57:c4: e5:2b:c8:4e:18:84:73:4f:cf:de:fa:e7:78:ff:95:e1:80:49: 22:c6:ad:30:e1:28:d0:c9:d0:85:67:3b:c0:42:4f:eb:8d:27: 45:6e:ee:49:d4:59:99:43:2a:7e:73:ad:ff:a0:84:19:13:ec: 89:42:10:9b:55:eb:7a:a4:37:f1:d6:0f:c5:a7:f7:1f:c9:b3: 22:1f:66:3e:09:52:97:a4:d9:4a:d2:a2:12:5c:52:01:c2:b3: c4:4c:bc:4d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc4NkExMTAvBgNVBAUTKEM3MTUzMUQyNUY4MDU0OEY1QjY1MUY4NjQ5MzI1RjND OEZEODU5MzkwHhcNMjYwMzI0MTgyNDIzWhcNMjYwMzMxMTgyNDIzWjAYMRYwFAYD VQQDEw02OWMyZDZkOC04NDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDy6XTLpUAinbWBWF16rr2QmVhvjMi8bKQYvm2Sxe0e3pVPBhLvEd2tNa75o W/EpIkVaazKhpl1EgTvnCJh2mI2VYMxdAdbT2PtZHTaDS+Sndpn5QtaZ97w1+q+a w+HJS5QI7Qvi1MGu1/sfsg/LCkjaeBXx6Il9Hr/SXyYkWTJjWAJSXAysvXV1GmL4 ixnQJrp8dhiSaSyxW7loMcstuvK02h+GAy7V+1I2rUjPIGl4oOYIs4oFUK66uqik k66uyUoNST8PdyU+Fe1c9V/4V4QUNBoyG3MZ7xVhn93+rMo2RehQzZ7qEGypesHR 4MBZVB57cqnPxOGfHYNFo5YIwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM8kUdJg a8bLni6++361ozciXGuIMB8GA1UdIwQYMBaAFMcVMdJfgFSPW2UfhkkyXzyP2Fk5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Nzg2QS8xMjZERkM5NjFB NTUxMUVBODgwNDIyMTFDNEY5QUUwMi94eFV4MGwtQVZJOWJaUi1HU1RKZlBJX1lX VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h4VXgwbC1BVkk5YlpSLUdTVEpmUElfWVdUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Nzg2QS8xMjZERkM5NjFBNTUxMUVBODgwNDIyMTFDNEY5QUUwMi94eFV4MGwtQVZJ OWJaUi1HU1RKZlBJX1lXVGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApfQ/XSFAH3mNGvsYoWVRg1QbYN/4Ss+QladUVYZqwFhrRIxEvR3DqQ1l9LWH Epq6Q0b4IctGbe73Ax2cVhl5PEqiq1VEp4vKT6LNynIiFUmw48qZy+BKOUPzT3hE 9D6FBfX8C1CLECsb1viuh7wvACijOuwTHTIuBeW5bEMbK6jOcQNJKAiggTpjiljA /6LDcpcsTBT+oOSkWZXDzspOu1fE5SvIThiEc0/P3vrneP+V4YBJIsatMOEo0MnQ hWc7wEJP640nRW7uSdRZmUMqfnOt/6CEGRPsiUIQm1XreqQ38dYPxaf3H8mzIh9m PglSl6TZStKiElxSAcKzxEy8TQ== -----END CERTIFICATE-----Generated at Thu Mar 26 13:08:34 2026 by rpki-client