$ rpki-client -vvf rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft File: XKzlv2VarPfLxicsXGl_N3oGzow.mft (raw, json) Hash identifier: xNU8G9J8kuLCocxVfBtwSbCPG1e90XLzwaDWbOxUjfI= Subject key identifier: 8B:01:0B:A3:C9:B5:16:DB:5D:59:11:AD:B6:66:5E:EE:B8:16:14:FD Authority key identifier: 5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C Certificate issuer: /CN=A917C9BF/serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Certificate serial: 0126 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft Manifest number: 0120 Signing time: Wed 25 Mar 2026 05:00:31 +0000 Manifest this update: Wed 25 Mar 2026 05:00:31 +0000 Manifest next update: Wed 01 Apr 2026 05:00:31 +0000 Files and hashes: 1: XKzlv2VarPfLxicsXGl_N3oGzow.crl (hash: f3cu2AYHdSAVQ2PO/UEyLP1a5BMVUO9ul0j7bfxhDWI=) 2: 15875DC27B5E11EFAB71253BC4F9AE02.roa (hash: zbGwECDik3OAcu543q9pzZB/RKrVhWGvUuUO/9+kdaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C9BF, serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Validity Not Before: Mar 25 05:00:31 2026 GMT Not After : Apr 1 05:00:31 2026 GMT Subject: CN=69c36bef-bfe9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ad:e0:96:c9:33:43:99:44:6d:6b:38:43:50: 36:f5:0d:fa:e6:93:8e:0b:1a:21:0d:fb:14:58:e1: fa:92:10:af:2b:4f:8a:6a:e4:48:9e:80:a6:d4:8a: 98:fd:00:1b:e8:36:ca:e5:4a:f2:75:ff:9e:b4:56: 4a:68:e9:8e:9c:8d:47:4c:21:5b:86:4c:13:a2:5e: 16:7a:9a:03:4c:63:b6:39:ba:67:c7:c8:db:6b:02: 7b:7d:1f:b5:1b:87:96:e4:50:34:4d:84:58:03:9a: cc:81:96:a9:fa:c8:7b:ce:d6:b4:ac:e1:c2:f4:b7: 07:fc:a7:5f:4b:96:c0:8a:58:8e:46:d8:ff:74:5d: 5d:66:9c:46:68:a5:58:5a:e8:10:4b:c7:9b:67:29: d3:72:8a:6f:85:8e:10:9d:a3:74:b6:4b:f2:93:b5: 25:8a:59:6c:ab:ad:e8:40:e3:c8:bc:d7:90:c5:76: 79:2d:65:dd:97:ff:1c:90:28:74:57:17:cd:fb:5a: 29:ea:a2:7b:cd:89:5c:6f:01:86:5d:d2:dd:7f:45: ff:fc:62:24:cd:79:9a:fa:7e:d7:bf:3f:2c:c8:91: 33:5b:84:48:b8:2a:8c:ca:ad:23:aa:b2:4d:9f:19: f3:5e:a6:da:b4:3f:08:ed:87:8b:a6:ec:f8:f6:69: 06:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:01:0B:A3:C9:B5:16:DB:5D:59:11:AD:B6:66:5E:EE:B8:16:14:FD X509v3 Authority Key Identifier: keyid:5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:18:1f:41:3a:e2:a5:b3:cc:d6:3a:ce:6b:43:38:4c:c5:cb: c8:61:6c:4c:d1:c3:9a:37:3a:c0:58:01:9e:d7:f4:59:2f:94: 65:ae:a8:83:25:59:62:ea:2a:84:c6:74:c9:59:a9:45:7c:12: b3:0e:dc:a4:ec:b1:35:93:90:dd:8a:9b:61:67:76:72:01:f3: 5c:79:e6:7b:89:b9:29:f0:f9:1e:5b:ae:c6:29:8e:8f:8e:de: 59:cb:3a:e9:80:b6:ff:45:6f:62:0e:36:2c:80:bd:8a:ad:57: c2:a8:7b:e4:45:fb:54:29:e9:8c:d7:3c:6e:4b:86:3a:ac:ad: 45:01:5c:c1:c4:cb:e3:cd:58:bf:5d:16:e7:26:33:36:40:c0: ff:2a:3b:26:56:04:48:fc:7d:6b:4e:22:17:7b:8f:a5:16:10: 25:ae:a8:20:cd:c1:ee:11:8f:a6:c0:f2:48:b5:a1:1d:81:ff: ff:be:a1:2a:d1:e0:7e:8f:10:27:87:a1:02:12:61:11:7e:94: 40:d6:2c:16:f8:12:00:f0:6a:2d:5b:4d:fb:a7:f2:4d:d5:0f: e8:34:03:ab:11:f1:8b:c3:ba:16:1d:82:17:fd:c8:75:ef:99: c1:b7:e4:e3:ef:f3:1a:1d:c6:80:bc:5d:75:52:5a:7a:70:67: 00:84:d8:a0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5QkYxMTAvBgNVBAUTKDVDQUNFNUJGNjU1QUFDRjdDQkM2MjcyQzVDNjk3RjM3 N0EwNkNFOEMwHhcNMjYwMzI1MDUwMDMxWhcNMjYwNDAxMDUwMDMxWjAYMRYwFAYD VQQDEw02OWMzNmJlZi1iZmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq63glskzQ5lEbWs4Q1A29Q365pOOCxohDfsUWOH6khCvK0+KauRInoCm1IqY /QAb6DbK5Urydf+etFZKaOmOnI1HTCFbhkwTol4WepoDTGO2Obpnx8jbawJ7fR+1 G4eW5FA0TYRYA5rMgZap+sh7zta0rOHC9LcH/KdfS5bAiliORtj/dF1dZpxGaKVY WugQS8ebZynTcopvhY4QnaN0tkvyk7Ulillsq63oQOPIvNeQxXZ5LWXdl/8ckCh0 VxfN+1op6qJ7zYlcbwGGXdLdf0X//GIkzXma+n7Xvz8syJEzW4RIuCqMyq0jqrJN nxnzXqbatD8I7YeLpuz49mkG4wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIsBC6PJ tRbbXVkRrbZmXu64FhT9MB8GA1UdIwQYMBaAFFys5b9lWqz3y8YnLFxpfzd6Bs6M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzlCRi9CRTFENEEzNDdC NEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQZkx4aWNzWEdsX04zb0d6 b3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLemx2MlZhclBmTHhpY3NYR2xfTjNvR3pvdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzlCRi9CRTFENEEzNDdCNEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQ Zkx4aWNzWEdsX04zb0d6b3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArBgfQTripbPM1jrOa0M4TMXLyGFsTNHDmjc6wFgBntf0WS+UZa6ogyVZYuoq hMZ0yVmpRXwSsw7cpOyxNZOQ3YqbYWd2cgHzXHnme4m5KfD5HluuximOj47eWcs6 6YC2/0VvYg42LIC9iq1Xwqh75EX7VCnpjNc8bkuGOqytRQFcwcTL481Yv10W5yYz NkDA/yo7JlYESPx9a04iF3uPpRYQJa6oIM3B7hGPpsDySLWhHYH//76hKtHgfo8Q J4ehAhJhEX6UQNYsFvgSAPBqLVtN+6fyTdUP6DQDqxHxi8O6Fh2CF/3Ide+Zwbfk 4+/zGh3GgLxddVJaenBnAITYoA== -----END CERTIFICATE-----Generated at Thu Mar 26 00:52:12 2026 by rpki-client