$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft File: XSeFtU0WPtAepUGLz6NPG3RWtxM.mft (raw, json) Hash identifier: 7f6bObWI5Or4XEbiOFL9tr248nSONMcdiIUCAmM8og0= Subject key identifier: E1:EF:B3:79:9A:FB:8E:75:13:A0:94:73:8F:0B:35:32:69:0A:AC:A6 Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 053A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft Manifest number: 0519 Signing time: Thu 26 Mar 2026 23:24:58 +0000 Manifest this update: Thu 26 Mar 2026 23:24:57 +0000 Manifest next update: Thu 02 Apr 2026 23:24:57 +0000 Files and hashes: 1: XSeFtU0WPtAepUGLz6NPG3RWtxM.crl (hash: WF05xHm/knKLMRdmYfgxr9q8+SJNh16x18TDnfqXIvA=) 2: ACE844F047AA11ECA0F05026C4F9AE02.roa (hash: xF2IvoVXmAincHuvdv8xT2emt6/vG3hUCriU6a0X2F4=) 3: 6337963E4C3D11ECB5FF844FC4F9AE02.roa (hash: YlLnh1haCAguuDMWLHxz+klHykWczeyMGFHRpbzDxJg=) 4: 1F77EFA44C4011EC952D5A23C4F9AE02.roa (hash: TtIgh6p3MeT87i0AxcRjiCaJmw5Zn2R/2iZkAkCBffQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 23:24:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1338 (0x53a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5, serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: Mar 26 23:24:57 2026 GMT Not After : Apr 2 23:24:57 2026 GMT Subject: CN=69c5c04a-353f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8f:7b:b8:54:21:f1:4f:b0:dc:1e:4f:23:4e: e0:22:6e:e1:bc:c7:56:36:e1:73:11:53:47:0b:c7: 38:b3:f9:3b:97:89:04:28:be:b0:43:41:43:ae:a1: b5:a3:99:4b:6c:e7:12:1d:c1:33:1d:13:dc:b1:77: 26:6b:f9:3b:3f:49:b0:fe:80:e3:1e:88:9c:59:6a: 7a:a3:b3:40:cb:92:c2:96:fe:a4:ff:e9:6b:c5:db: ed:b1:da:67:e1:04:d4:25:5b:44:82:c2:ce:7b:14: 42:64:b7:f6:f7:b2:aa:4e:93:14:2b:bb:2c:35:17: 74:74:cf:b4:ca:03:b5:bf:56:4c:e7:fe:12:91:04: b3:56:d0:dd:a3:da:c0:81:bb:9b:76:2c:1c:60:5a: cd:e5:1c:0e:2a:a8:52:52:eb:3e:4e:82:8b:f4:76: 92:a3:7f:2a:d3:39:14:c2:93:2b:15:7c:e0:ed:0d: cc:51:b2:25:8c:ee:ea:45:dd:14:cd:35:50:f3:b5: 14:29:50:3b:c8:7b:9c:a0:d0:84:75:42:37:86:d7: dc:a9:20:09:7d:02:c0:7a:39:60:f2:b0:98:22:10: d0:c8:6b:de:c0:5c:76:67:c0:9e:28:78:ff:3a:45: d1:c5:62:ff:91:ab:cf:70:29:36:d1:63:69:3f:0a: 6f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:EF:B3:79:9A:FB:8E:75:13:A0:94:73:8F:0B:35:32:69:0A:AC:A6 X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:55:cc:a9:16:4a:03:f7:9f:0a:8e:e6:2d:d8:6a:3d:1a:8f: ac:c1:0d:75:71:07:92:5d:b9:3c:27:a4:2c:10:54:aa:8d:19: 26:c1:21:a1:cd:f1:3b:38:8d:65:7c:6b:c0:43:56:8f:cf:73: 75:7a:03:bd:cf:c5:44:eb:c2:2d:aa:b3:95:18:2a:cc:09:74: ce:d7:f5:67:9b:17:18:dc:d7:04:09:6a:92:4a:1a:94:66:fd: dc:5a:b7:17:44:a9:4d:c3:bd:44:e3:0e:fc:bd:8a:59:b9:aa: 1e:ec:40:ee:1b:7f:38:6a:e2:5e:84:81:50:c3:4e:9c:5b:de: 7e:eb:32:30:91:4f:1a:ca:a7:c6:7a:b8:98:48:53:58:04:c8: e5:8a:55:41:be:ca:59:2c:3f:2c:8f:f3:d7:2f:8b:f3:d6:a9: ba:7a:3b:d9:90:49:15:5e:47:43:72:dd:62:e6:b8:92:03:50: 3c:3b:74:e3:e9:68:79:fb:85:39:36:3a:80:d2:76:6b:fd:25: 31:10:76:93:e7:b2:18:47:6a:af:fa:84:d0:1d:b2:d6:cd:b8: 97:03:35:10:ca:3e:5b:a3:7b:ff:37:c2:3a:7a:a0:c2:01:e6: aa:02:04:d2:d4:aa:fd:0f:f1:6e:bf:43:11:06:1b:62:a0:fa: 53:70:47:0e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBTowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjYwMzI2MjMyNDU3WhcNMjYwNDAyMjMyNDU3WjAYMRYwFAYD VQQDEw02OWM1YzA0YS0zNTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAso97uFQh8U+w3B5PI07gIm7hvMdWNuFzEVNHC8c4s/k7l4kEKL6wQ0FDrqG1 o5lLbOcSHcEzHRPcsXcma/k7P0mw/oDjHoicWWp6o7NAy5LClv6k/+lrxdvtsdpn 4QTUJVtEgsLOexRCZLf297KqTpMUK7ssNRd0dM+0ygO1v1ZM5/4SkQSzVtDdo9rA gbubdiwcYFrN5RwOKqhSUus+ToKL9HaSo38q0zkUwpMrFXzg7Q3MUbIljO7qRd0U zTVQ87UUKVA7yHucoNCEdUI3htfcqSAJfQLAejlg8rCYIhDQyGvewFx2Z8CeKHj/ OkXRxWL/kavPcCk20WNpPwpvFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOHvs3ma +451E6CUc48LNTJpCqymMB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NDNS8yQUM0RDMzRTQ2QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0 QWVwVUdMejZOUEczUld0eE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuVXMqRZKA/efCo7mLdhqPRqPrMENdXEHkl25PCekLBBUqo0ZJsEhoc3xOziN ZXxrwENWj89zdXoDvc/FROvCLaqzlRgqzAl0ztf1Z5sXGNzXBAlqkkoalGb93Fq3 F0SpTcO9ROMO/L2KWbmqHuxA7ht/OGriXoSBUMNOnFvefusyMJFPGsqnxnq4mEhT WATI5YpVQb7KWSw/LI/z1y+L89apuno72ZBJFV5HQ3LdYua4kgNQPDt04+loefuF OTY6gNJ2a/0lMRB2k+eyGEdqr/qE0B2y1s24lwM1EMo+W6N7/zfCOnqgwgHmqgIE 0tSq/Q/xbr9DEQYbYqD6U3BHDg== -----END CERTIFICATE-----Generated at Sat Mar 28 10:41:56 2026 by rpki-client