$ rpki-client -vvf rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft File: 4XcstdOWUnbPTpjTdmtjDX4_gXg.mft (raw, json) Hash identifier: +sObTT7kH4oQTZ6XD0AUnHFzge09uh6//ERNeARjiis= Subject key identifier: 5B:08:58:74:A6:EA:DF:1A:21:E5:45:C4:73:56:93:C6:F1:62:DB:3B Authority key identifier: E1:77:2C:B5:D3:96:52:76:CF:4E:98:D3:76:6B:63:0D:7E:3F:81:78 Certificate issuer: /CN=A9175027/serialNumber=E1772CB5D3965276CF4E98D3766B630D7E3F8178 Certificate serial: 082D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XcstdOWUnbPTpjTdmtjDX4_gXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft Manifest number: 0809 Signing time: Tue 24 Mar 2026 20:59:10 +0000 Manifest this update: Tue 24 Mar 2026 20:59:10 +0000 Manifest next update: Tue 31 Mar 2026 20:59:10 +0000 Files and hashes: 1: 4XcstdOWUnbPTpjTdmtjDX4_gXg.crl (hash: 9zb+pSBsoRc94IiFqf1mG3slSP6rrEllQRp18p9xB2Y=) 2: 12DBAD3CDAFF11ECA67DA10BC4F9AE02.roa (hash: 9WkU0MG65lqjQrS/cbUMSYyvQ66+hlJyNvzSbxcBRt0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.crl rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XcstdOWUnbPTpjTdmtjDX4_gXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:59:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2093 (0x82d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175027, serialNumber=E1772CB5D3965276CF4E98D3766B630D7E3F8178 Validity Not Before: Mar 24 20:59:10 2026 GMT Not After : Mar 31 20:59:10 2026 GMT Subject: CN=69c2fb1e-5558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:2a:53:44:bb:79:95:d1:a5:4e:12:c5:4f:23: b3:09:64:bc:86:e9:20:45:6f:1b:6a:09:11:d4:78: ee:cd:ae:4b:6a:4d:2b:7f:9b:81:66:8d:cd:84:8c: 8b:37:ee:9b:47:cc:89:98:c2:72:c0:e9:13:32:41: 2c:21:de:56:26:52:e8:79:3f:e0:06:f9:90:99:79: 88:c4:f5:57:9c:3a:0e:86:cb:c2:3f:c5:6f:82:b4: ff:8e:c8:b9:1c:14:55:11:3a:79:ff:fd:27:f5:1f: 5c:e3:c1:04:75:52:bb:05:5a:a7:bb:f1:90:5f:e1: 8b:03:23:6c:59:07:a0:18:d0:fc:f2:63:f4:d9:8e: e7:2f:3a:46:ce:4e:77:e0:c6:4d:45:0d:9f:f5:31: 19:fb:a2:d4:d4:33:f9:3e:bc:b1:ed:1e:ac:2c:3b: ee:f7:44:85:90:f9:17:41:65:16:30:b5:94:b5:df: 1e:68:25:72:ab:57:99:60:6e:6a:9b:54:b7:02:e2: 86:a0:94:b4:fb:21:4d:14:a1:b3:e6:1b:1b:c2:0a: 6d:af:d4:a2:5c:f8:b5:a3:53:34:8c:e2:3a:b4:7f: af:b1:bd:9c:7a:ae:43:56:44:09:e0:4a:4a:4f:f8: 37:46:16:ae:3a:18:63:e0:12:77:61:8a:f6:62:6b: 30:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:08:58:74:A6:EA:DF:1A:21:E5:45:C4:73:56:93:C6:F1:62:DB:3B X509v3 Authority Key Identifier: keyid:E1:77:2C:B5:D3:96:52:76:CF:4E:98:D3:76:6B:63:0D:7E:3F:81:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XcstdOWUnbPTpjTdmtjDX4_gXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175027/2505CEDC256811EBAC2CAC5AC4F9AE02/4XcstdOWUnbPTpjTdmtjDX4_gXg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:0e:21:36:c5:4d:c5:36:f3:be:ff:a3:28:b8:f2:2d:ad:ff: 05:c7:47:0e:68:2b:65:43:5c:81:0d:04:d6:49:8b:ea:0c:b8: f2:9a:02:20:cb:6b:32:5f:02:89:a6:be:d5:0d:59:c8:8b:38: 00:49:30:ef:c0:7e:5e:48:66:2a:c0:3e:87:08:03:28:35:6f: 37:d2:03:0f:7e:f2:8b:4c:78:4e:56:91:a3:ef:6f:7d:c4:07: cc:a2:1b:2f:c5:57:07:95:66:b3:ab:d6:94:b9:ea:da:0d:da: 3d:dd:10:47:14:62:a5:90:3d:02:7c:ed:d4:b9:c3:3f:b1:3b: 36:08:cf:f7:16:8c:4d:f0:c4:0b:be:b4:71:91:12:1b:c7:1f: 31:41:f1:0c:57:63:fe:09:f9:e1:c5:3c:57:c4:6b:ee:b8:82: 8f:fe:d7:7d:80:75:c8:c7:a7:ca:79:54:87:b2:b1:7c:11:9e: d2:02:2a:29:2b:89:5a:f8:a5:a8:00:18:48:9b:2d:e5:a1:28: 20:24:de:63:61:9d:9f:6a:d0:c9:22:2a:c9:75:81:52:70:cd: cf:3b:da:f0:a3:bc:f9:43:f1:7f:f4:0d:18:d3:d7:25:68:bb: 15:2d:a6:97:b8:82:b2:4a:e3:87:1d:0a:1d:a9:90:70:62:e3: 18:fd:b9:35 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUwMjcxMTAvBgNVBAUTKEUxNzcyQ0I1RDM5NjUyNzZDRjRFOThEMzc2NkI2MzBE N0UzRjgxNzgwHhcNMjYwMzI0MjA1OTEwWhcNMjYwMzMxMjA1OTEwWjAYMRYwFAYD VQQDEw02OWMyZmIxZS01NTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmCpTRLt5ldGlThLFTyOzCWS8hukgRW8bagkR1Hjuza5Lak0rf5uBZo3NhIyL N+6bR8yJmMJywOkTMkEsId5WJlLoeT/gBvmQmXmIxPVXnDoOhsvCP8VvgrT/jsi5 HBRVETp5//0n9R9c48EEdVK7BVqnu/GQX+GLAyNsWQegGND88mP02Y7nLzpGzk53 4MZNRQ2f9TEZ+6LU1DP5Pryx7R6sLDvu90SFkPkXQWUWMLWUtd8eaCVyq1eZYG5q m1S3AuKGoJS0+yFNFKGz5hsbwgptr9SiXPi1o1M0jOI6tH+vsb2ceq5DVkQJ4EpK T/g3RhauOhhj4BJ3YYr2Ymsw/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFsIWHSm 6t8aIeVFxHNWk8bxYts7MB8GA1UdIwQYMBaAFOF3LLXTllJ2z06Y03ZrYw1+P4F4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTAyNy8yNTA1Q0VEQzI1 NjgxMUVCQUMyQ0FDNUFDNEY5QUUwMi80WGNzdGRPV1VuYlBUcGpUZG10akRYNF9n WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYY3N0ZE9XVW5iUFRwalRkbXRqRFg0X2dYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTAyNy8yNTA1Q0VEQzI1NjgxMUVCQUMyQ0FDNUFDNEY5QUUwMi80WGNzdGRPV1Vu YlBUcGpUZG10akRYNF9nWGcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsA4hNsVNxTbzvv+jKLjyLa3/BcdHDmgrZUNcgQ0E1kmL6gy48poCIMtrMl8C iaa+1Q1ZyIs4AEkw78B+XkhmKsA+hwgDKDVvN9IDD37yi0x4TlaRo+9vfcQHzKIb L8VXB5Vms6vWlLnq2g3aPd0QRxRipZA9Anzt1LnDP7E7NgjP9xaMTfDEC760cZES G8cfMUHxDFdj/gn54cU8V8Rr7riCj/7XfYB1yMenynlUh7KxfBGe0gIqKSuJWvil qAAYSJst5aEoICTeY2Gdn2rQySIqyXWBUnDNzzva8KO8+UPxf/QNGNPXJWi7FS2m l7iCskrjhx0KHamQcGLjGP25NQ== -----END CERTIFICATE-----Generated at Thu Mar 26 12:34:54 2026 by rpki-client