$ rpki-client -vvf rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft File: XLz7z59AY6eYAiqPHiafvf6jb_g.mft (raw, json) Hash identifier: DsAC9Lq32zAz3eWFnqcelU9SbPKbTuCf0HLNdzqv5xo= Subject key identifier: 39:E8:05:32:6A:83:6A:B0:EF:92:99:93:EE:57:F8:F3:02:4D:24:F1 Authority key identifier: 5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 Certificate issuer: /CN=A917F4F2/serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Certificate serial: 0387 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft Manifest number: 0382 Signing time: Wed 25 Mar 2026 00:28:08 +0000 Manifest this update: Wed 25 Mar 2026 00:28:08 +0000 Manifest next update: Wed 01 Apr 2026 00:28:08 +0000 Files and hashes: 1: XLz7z59AY6eYAiqPHiafvf6jb_g.crl (hash: fO+hCcPpd4cyZA5EYt/IINcFxaVBUYNZUINBgdeBhIs=) 2: CA455C5CE0B311ECBC9BEA63C4F9AE02.roa (hash: sOH/2aZPjUSz0+vCYyAKkajRj0VfjNfhE/C/qw+lG4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:28:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 903 (0x387) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F4F2, serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Validity Not Before: Mar 25 00:28:08 2026 GMT Not After : Apr 1 00:28:08 2026 GMT Subject: CN=69c32c18-f147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:28:51:19:2f:ab:2e:d8:3f:f0:c6:d2:d5:30: 05:f0:67:11:14:b9:a0:c2:d9:8c:f9:e4:21:15:f9: 6b:3f:6d:28:1b:51:e8:40:ef:a0:06:49:f9:6b:d1: 75:e3:fc:a1:19:cb:6e:18:c3:9e:a0:1a:5a:0a:bd: 69:f4:65:e9:db:a4:27:21:f6:66:4c:33:8e:6a:c8: 21:bf:3c:39:15:86:01:f3:50:8e:20:cb:36:c3:f3: 10:bc:bc:83:82:0a:b5:1d:62:55:12:1e:2d:c2:02: 27:e4:87:76:04:02:ad:f3:9c:23:e5:91:04:bb:9c: 16:ae:91:07:bd:f5:30:52:80:3a:ca:0c:a5:7b:b1: 7a:94:ff:bf:53:b5:23:6c:04:f3:5b:c4:75:fa:16: 95:36:ee:6b:1b:48:bb:70:57:4e:ed:32:ed:6e:bc: d2:14:d3:48:40:14:2f:04:c6:1f:fd:4f:2c:75:d4: a2:17:98:5a:98:ce:ea:3d:fd:59:c0:38:28:d6:11: 53:c1:e5:93:82:78:5d:29:6f:44:df:f3:b1:bd:12: 27:4f:97:1f:9d:36:1e:95:95:c9:de:16:3c:6c:9e: 84:91:5e:5d:b0:70:99:a7:bd:08:89:75:12:6e:08: 67:ab:0c:f3:8f:0e:d0:0b:93:ed:90:c3:08:2b:89: c9:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:E8:05:32:6A:83:6A:B0:EF:92:99:93:EE:57:F8:F3:02:4D:24:F1 X509v3 Authority Key Identifier: keyid:5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:55:48:0e:18:c2:ae:12:df:dd:71:62:30:6d:57:b1:f5:46: 6f:c3:19:25:0a:12:54:15:ec:6c:36:9e:c9:81:91:cb:bc:09: 46:74:8f:72:eb:2b:3c:c1:e0:18:32:92:4c:30:73:d4:ca:59: e3:fb:f4:8b:eb:5f:bc:9a:f2:d8:a5:09:c4:9d:f6:46:fb:d9: b0:f4:d2:31:2b:d5:bb:a3:6c:eb:f0:81:f8:99:80:6b:c5:8e: 67:1c:b7:f5:a8:5e:39:5f:91:34:d2:f2:bd:9a:a4:07:59:bf: cc:85:e8:f8:19:05:51:eb:06:53:0e:7d:f9:a8:68:ae:32:46: d8:cb:9e:ec:c2:b1:2a:b6:d2:52:2b:19:02:2a:1a:c4:51:b0: fd:1b:ca:44:dd:69:55:b7:35:86:98:89:a6:e4:7a:e7:68:c1: 3b:37:ae:6d:b5:8f:fe:3f:02:3a:13:58:5c:a2:ae:5d:6f:cc: 55:42:2f:03:97:c2:98:ed:d6:65:fc:5e:6e:74:a9:18:78:f6: 93:15:d5:22:69:37:1a:a8:33:13:a8:d3:7c:fe:1a:94:94:7b: f3:ba:5c:b8:28:ce:c5:f5:a3:dd:8a:e2:32:cf:a9:61:c9:22: c2:11:b0:d3:9d:7a:99:5f:de:b2:ad:ee:3d:20:09:9d:1a:f7: 30:a6:c3:e5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y0RjIxMTAvBgNVBAUTKDVDQkNGQkNGOUY0MDYzQTc5ODAyMkE4RjFFMjY5RkJE RkVBMzZGRjgwHhcNMjYwMzI1MDAyODA4WhcNMjYwNDAxMDAyODA4WjAYMRYwFAYD VQQDEw02OWMzMmMxOC1mMTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwChRGS+rLtg/8MbS1TAF8GcRFLmgwtmM+eQhFflrP20oG1HoQO+gBkn5a9F1 4/yhGctuGMOeoBpaCr1p9GXp26QnIfZmTDOOasghvzw5FYYB81COIMs2w/MQvLyD ggq1HWJVEh4twgIn5Id2BAKt85wj5ZEEu5wWrpEHvfUwUoA6ygyle7F6lP+/U7Uj bATzW8R1+haVNu5rG0i7cFdO7TLtbrzSFNNIQBQvBMYf/U8sddSiF5hamM7qPf1Z wDgo1hFTweWTgnhdKW9E3/OxvRInT5cfnTYelZXJ3hY8bJ6EkV5dsHCZp70IiXUS bghnqwzzjw7QC5PtkMMIK4nJEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDnoBTJq g2qw75KZk+5X+PMCTSTxMB8GA1UdIwQYMBaAFFy8+8+fQGOnmAIqjx4mn73+o2/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjRGMi8zNEQ1NTQzMkUw QUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2ZVlBaXFQSGlhZnZmNmpi X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hMejd6NTlBWTZlWUFpcVBIaWFmdmY2amJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjRGMi8zNEQ1NTQzMkUwQUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2 ZVlBaXFQSGlhZnZmNmpiX2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADVVIDhjCrhLf3XFiMG1XsfVGb8MZJQoSVBXsbDaeyYGRy7wJRnSPcusrPMHg GDKSTDBz1MpZ4/v0i+tfvJry2KUJxJ32RvvZsPTSMSvVu6Ns6/CB+JmAa8WOZxy3 9aheOV+RNNLyvZqkB1m/zIXo+BkFUesGUw59+ahorjJG2Mue7MKxKrbSUisZAioa xFGw/RvKRN1pVbc1hpiJpuR652jBOzeubbWP/j8COhNYXKKuXW/MVUIvA5fCmO3W ZfxebnSpGHj2kxXVImk3GqgzE6jTfP4alJR787pcuCjOxfWj3YriMs+pYckiwhGw 0516mV/esq3uPSAJnRr3MKbD5Q== -----END CERTIFICATE-----Generated at Thu Mar 26 08:48:50 2026 by rpki-client