$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft File: Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft (raw, json) Hash identifier: V1syV06uHLjZuK/XSwaB4eDItI0Wgc2U2dvofbK3xIc= Subject key identifier: 62:93:30:8D:C9:5E:A1:98:45:0F:E7:5E:E8:76:A8:B8:83:17:EE:4D Authority key identifier: 5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC Certificate issuer: /CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Certificate serial: 045F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft Manifest number: 042C Signing time: Wed 25 Mar 2026 00:05:41 +0000 Manifest this update: Wed 25 Mar 2026 00:05:40 +0000 Manifest next update: Wed 01 Apr 2026 00:05:40 +0000 Files and hashes: 1: Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl (hash: xHP8pj9fALLIGy76OXzH6vur2GzZri66zngtdOPR2xY=) 2: 7AA94F3CE03811EFAC3C5652C4F9AE02.roa (hash: Xwopv44IWtrA47h99nFS1HcICRmL98rRNkBLnVkufOs=) 3: 79C2D638E03811EFAC3C5652C4F9AE02.roa (hash: htWOUsGCluqo+bDLkY52m9kGHamjAwjskMqRyVdOAVI=) 4: 7B6F6276E03811EFAC3C5652C4F9AE02.roa (hash: W4goqtPYzyLcCdBI7xc2Qn8MqCV+FsXgvw4MFdwTxhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1119 (0x45f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E8E, serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Validity Not Before: Mar 25 00:05:40 2026 GMT Not After : Apr 1 00:05:40 2026 GMT Subject: CN=69c326d5-c639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:06:b3:42:f2:ac:ad:86:ae:bd:10:b9:1f:a2: db:25:e9:34:8d:21:53:3d:f4:29:c1:91:ea:d4:c3: e5:3e:ee:e2:65:a0:ad:12:67:80:19:88:9e:c5:52: 23:f0:20:16:0e:ed:fd:d1:77:5d:0c:50:ae:c5:9c: 6f:7e:25:c9:90:19:d0:28:d0:fc:9f:6c:01:5c:30: 81:0d:85:db:93:18:5e:1b:e0:73:5c:e1:6d:61:3e: 3a:3f:bb:0a:b9:f8:70:cd:4d:8c:25:61:c6:12:65: 51:8a:83:b5:38:c0:c3:8c:d6:5f:86:ce:e8:24:e9: 03:46:48:3b:1a:5c:68:93:fd:49:87:c0:49:1d:b5: 95:e5:f8:e9:f6:fc:b7:f7:5e:17:58:66:1c:e2:94: cb:89:72:94:6a:a1:0f:2c:fc:39:eb:51:6e:4b:6c: 7b:bf:b6:0d:c6:04:c4:3a:ed:56:91:d2:42:58:8d: 2d:89:a8:69:12:6c:9a:bb:ea:e0:dd:95:a9:73:67: f6:94:4b:3e:1d:cc:7e:0a:7b:1f:57:cd:20:57:a7: d8:10:e2:48:2d:e7:4e:05:0e:ad:91:79:40:db:24: 49:79:19:f4:6d:29:8e:b8:08:06:b3:ad:1c:17:c5: c5:fd:db:77:36:f8:1a:9e:00:11:2e:91:93:ba:f2: 28:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:93:30:8D:C9:5E:A1:98:45:0F:E7:5E:E8:76:A8:B8:83:17:EE:4D X509v3 Authority Key Identifier: keyid:5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:b0:4a:79:a1:42:84:af:3a:bb:07:12:61:c1:38:4f:90:12: dd:49:f1:0d:7b:56:b1:07:7a:d5:5b:eb:b2:08:11:a6:90:15: 03:f9:6d:12:1f:8f:7e:1b:d6:0b:73:9b:4e:cb:81:ed:94:23: b1:2e:1c:e9:c9:d6:a4:cb:d0:47:a2:7f:b8:33:97:03:86:62: 08:46:ec:3f:9d:f2:8d:24:de:41:cd:f7:77:2f:be:8f:c5:a9: 57:19:e0:54:1e:c2:fb:b8:2b:93:47:e8:a1:da:d1:ff:1f:3f: 0a:99:8f:98:fa:32:4a:82:57:f6:58:73:2a:87:da:3d:e0:49: 65:cf:03:1a:32:ac:71:53:7a:e8:43:cc:5f:3d:f2:36:03:64: c0:e3:ce:b2:87:dd:95:9e:b7:1c:01:3b:38:0a:10:13:bc:ea: d9:1c:43:3e:59:a0:91:7d:31:cd:93:e5:8a:30:2f:bb:f1:cc: 12:3a:88:f0:70:f0:34:b7:c9:30:ce:de:5a:20:ee:2b:44:43: 6c:a7:c3:44:64:9e:f2:4b:4d:a6:af:ec:fa:2f:f6:24:8c:77: 08:fc:7c:aa:3c:8f:3d:91:e2:f9:64:24:62:ef:58:16:5a:cb: 80:37:7f:d3:c1:55:b6:56:e8:87:59:ae:93:6e:dd:e4:6c:b4: 37:87:6f:90 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFOEUxMTAvBgNVBAUTKDVGMkU1RTYyOTMyQkI1MEE4NUZGMkY5QTVGMzFCMkJB REQ1RjM0QUMwHhcNMjYwMzI1MDAwNTQwWhcNMjYwNDAxMDAwNTQwWjAYMRYwFAYD VQQDEw02OWMzMjZkNS1jNjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArwazQvKsrYauvRC5H6LbJek0jSFTPfQpwZHq1MPlPu7iZaCtEmeAGYiexVIj 8CAWDu390XddDFCuxZxvfiXJkBnQKND8n2wBXDCBDYXbkxheG+BzXOFtYT46P7sK ufhwzU2MJWHGEmVRioO1OMDDjNZfhs7oJOkDRkg7Glxok/1Jh8BJHbWV5fjp9vy3 914XWGYc4pTLiXKUaqEPLPw561FuS2x7v7YNxgTEOu1WkdJCWI0tiahpEmyau+rg 3ZWpc2f2lEs+Hcx+CnsfV80gV6fYEOJILedOBQ6tkXlA2yRJeRn0bSmOuAgGs60c F8XF/dt3NvgangARLpGTuvIoJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGKTMI3J XqGYRQ/nXuh2qLiDF+5NMB8GA1UdIwQYMBaAFF8uXmKTK7UKhf8vml8xsrrdXzSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEU4RS8wNEZCQjhGMEFF MEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRRcUZfeS1hWHpHeXV0MWZO S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5NWVZcE1ydFFxRl95LWFYekd5dXQxZk5Ldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEU4RS8wNEZCQjhGMEFFMEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRR cUZfeS1hWHpHeXV0MWZOS3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAnLBKeaFChK86uwcSYcE4T5AS3UnxDXtWsQd61VvrsggRppAVA/ltEh+PfhvW C3ObTsuB7ZQjsS4c6cnWpMvQR6J/uDOXA4ZiCEbsP53yjSTeQc33dy++j8WpVxng VB7C+7grk0foodrR/x8/CpmPmPoySoJX9lhzKofaPeBJZc8DGjKscVN66EPMXz3y NgNkwOPOsofdlZ63HAE7OAoQE7zq2RxDPlmgkX0xzZPlijAvu/HMEjqI8HDwNLfJ MM7eWiDuK0RDbKfDRGSe8ktNpq/s+i/2JIx3CPx8qjyPPZHi+WQkYu9YFlrLgDd/ 08FVtlboh1muk27d5Gy0N4dvkA== -----END CERTIFICATE-----Generated at Thu Mar 26 15:32:15 2026 by rpki-client