$ rpki-client -vvf rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft File: cXGYzRpGea2dRS7h2wLQASpDdOw.mft (raw, json) Hash identifier: NDQ72qP63WmDhcaEYAYaS3ycJppDS+1MRwMhO2q/Z8s= Subject key identifier: C6:64:A3:AA:9A:98:CF:E1:AF:5A:5A:08:0B:F1:99:81:A1:8A:B2:3F Authority key identifier: 71:71:98:CD:1A:46:79:AD:9D:45:2E:E1:DB:02:D0:01:2A:43:74:EC Certificate issuer: /CN=A9169F49/serialNumber=717198CD1A4679AD9D452EE1DB02D0012A4374EC Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft Manifest number: C5 Signing time: Wed 25 Mar 2026 06:03:42 +0000 Manifest this update: Wed 25 Mar 2026 06:03:41 +0000 Manifest next update: Wed 01 Apr 2026 06:03:41 +0000 Files and hashes: 1: cXGYzRpGea2dRS7h2wLQASpDdOw.crl (hash: SemTtG/mtKAYVeTm8EJwIArrGom+wKs+AmHsqsqFaQ4=) 2: 2B42D1D8F9B611EFB3AB154BC4F9AE02.roa (hash: EILeiHdgRS5T+00CqE1QLUGZWDX5PLvwuDPP5GaU2OM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.crl rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169F49, serialNumber=717198CD1A4679AD9D452EE1DB02D0012A4374EC Validity Not Before: Mar 25 06:03:41 2026 GMT Not After : Apr 1 06:03:41 2026 GMT Subject: CN=69c37abd-10f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:79:77:b4:08:26:ed:f9:36:cd:59:48:90:b8: dc:74:b8:ae:23:44:44:54:fa:24:e4:3e:89:e1:bb: bc:e9:f1:e6:eb:21:57:87:47:29:95:b5:5e:30:e8: 12:3d:ef:44:07:bd:86:c1:5b:7b:02:be:dc:21:60: 14:83:52:84:13:8e:e4:07:84:53:5d:06:1e:0e:46: a8:c9:c6:5c:58:b3:ba:df:94:00:64:d4:57:3e:ca: fc:9e:e8:d7:31:2b:48:cb:87:81:f6:60:5e:15:de: f8:77:7f:ec:40:44:c9:9a:b8:b8:b4:bb:08:c5:fb: 07:73:c4:10:f2:28:76:e9:19:85:1f:60:bb:bc:ce: 28:89:03:b3:7a:db:08:9c:30:c5:32:c6:ad:6e:1b: 32:a1:2d:1f:ff:28:d3:db:17:db:c8:f7:9d:91:d5: 9e:0f:14:3e:37:cf:ba:f6:81:b0:b6:37:06:b2:75: a8:ff:4a:67:c4:f4:62:23:cc:83:25:d1:70:41:80: c5:cd:cc:c3:f9:6e:ca:9a:c6:2b:c2:7e:8f:45:3b: c0:e6:8c:44:57:1e:4d:85:eb:0f:0d:1e:df:ec:ff: c3:5c:a2:54:c3:0a:98:05:db:71:86:49:07:a8:ea: 97:ff:a3:c6:3e:dd:97:95:a6:c7:f3:a7:9d:eb:ce: fb:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:64:A3:AA:9A:98:CF:E1:AF:5A:5A:08:0B:F1:99:81:A1:8A:B2:3F X509v3 Authority Key Identifier: keyid:71:71:98:CD:1A:46:79:AD:9D:45:2E:E1:DB:02:D0:01:2A:43:74:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:f2:ee:2e:2a:bf:90:15:5a:f0:d1:17:dc:bb:d6:49:e1:0e: 2e:cb:a5:5f:af:c9:49:51:56:84:2e:c7:aa:fb:9a:2e:44:05: d3:f3:8e:11:4c:c5:19:64:c0:0f:00:dd:f5:58:c5:7d:73:c3: d5:20:2b:5b:d8:4f:ce:ca:fc:2b:2e:00:44:9c:e9:eb:56:0a: c7:e5:bf:28:2f:38:32:b5:36:d4:32:e1:57:78:46:ac:f7:4d: 73:84:0b:ab:9a:46:6b:55:6d:bb:e7:7d:d5:a5:c8:30:25:e5: 4c:45:80:c5:d6:ff:2e:47:30:74:9e:47:d2:c2:0d:59:78:05: dc:3a:68:0b:12:6c:37:ca:68:4e:ae:ac:e6:61:53:16:7a:fd: 25:2e:4a:92:e7:5f:3a:14:9a:e9:98:3d:7f:07:38:dd:35:f5: bb:bd:2b:65:2b:0c:c3:6a:cb:61:a6:f4:5a:52:e3:da:f5:9f: 10:3f:b6:5d:e6:bd:3e:ec:7d:03:aa:8a:5c:fc:0d:bc:da:b1: 17:3c:fe:f0:cb:0e:d1:44:6e:86:45:fb:d3:a7:58:56:82:a3: 87:ff:94:6c:e8:6e:ea:40:af:8c:d6:1a:ef:f1:bb:12:aa:79: 35:ed:7f:c7:78:2b:5f:f9:0f:61:58:d9:43:a9:6b:9a:05:56: 80:7c:49:ff -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlGNDkxMTAvBgNVBAUTKDcxNzE5OENEMUE0Njc5QUQ5RDQ1MkVFMURCMDJEMDAx MkE0Mzc0RUMwHhcNMjYwMzI1MDYwMzQxWhcNMjYwNDAxMDYwMzQxWjAYMRYwFAYD VQQDEw02OWMzN2FiZC0xMGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHl3tAgm7fk2zVlIkLjcdLiuI0REVPok5D6J4bu86fHm6yFXh0cplbVeMOgS Pe9EB72GwVt7Ar7cIWAUg1KEE47kB4RTXQYeDkaoycZcWLO635QAZNRXPsr8nujX MStIy4eB9mBeFd74d3/sQETJmri4tLsIxfsHc8QQ8ih26RmFH2C7vM4oiQOzetsI nDDFMsatbhsyoS0f/yjT2xfbyPedkdWeDxQ+N8+69oGwtjcGsnWo/0pnxPRiI8yD JdFwQYDFzczD+W7KmsYrwn6PRTvA5oxEVx5NhesPDR7f7P/DXKJUwwqYBdtxhkkH qOqX/6PGPt2XlabH86ed6877qQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMZko6qa mM/hr1paCAvxmYGhirI/MB8GA1UdIwQYMBaAFHFxmM0aRnmtnUUu4dsC0AEqQ3Ts MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUY0OS9CMkM1RkI5QUY5 QjUxMUVGQTVENzNDNDdDNEY5QUUwMi9jWEdZelJwR2VhMmRSUzdoMndMUUFTcERk T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NYR1l6UnBHZWEyZFJTN2gyd0xRQVNwRGRPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUY0OS9CMkM1RkI5QUY5QjUxMUVGQTVENzNDNDdDNEY5QUUwMi9jWEdZelJwR2Vh MmRSUzdoMndMUUFTcERkT3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAovLuLiq/kBVa8NEX3LvWSeEOLsulX6/JSVFWhC7HqvuaLkQF0/OOEUzFGWTA DwDd9VjFfXPD1SArW9hPzsr8Ky4ARJzp61YKx+W/KC84MrU21DLhV3hGrPdNc4QL q5pGa1Vtu+d91aXIMCXlTEWAxdb/LkcwdJ5H0sINWXgF3DpoCxJsN8poTq6s5mFT Fnr9JS5KkudfOhSa6Zg9fwc43TX1u70rZSsMw2rLYab0WlLj2vWfED+2Xea9Pux9 A6qKXPwNvNqxFzz+8MsO0URuhkX706dYVoKjh/+UbOhu6kCvjNYa7/G7Eqp5Ne1/ x3grX/kPYVjZQ6lrmgVWgHxJ/w== -----END CERTIFICATE-----Generated at Thu Mar 26 05:14:48 2026 by rpki-client