$ rpki-client -vvf rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft File: XctT6r5qkI7KhlLekkgHxQnFLTA.mft (raw, json) Hash identifier: MegCoEC3QhS/7Ti7+kDtccSRczXq+AfhnwotENEBo4s= Subject key identifier: BB:AB:6C:7B:F8:1D:A5:95:CA:FF:E4:3A:A6:91:62:32:8B:5E:63:E3 Authority key identifier: 5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 Certificate issuer: /CN=A918560D/serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Certificate serial: 0D8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft Manifest number: 0D7F Signing time: Tue 24 Mar 2026 17:49:30 +0000 Manifest this update: Tue 24 Mar 2026 17:49:30 +0000 Manifest next update: Tue 31 Mar 2026 17:49:30 +0000 Files and hashes: 1: XctT6r5qkI7KhlLekkgHxQnFLTA.crl (hash: LK1vNXQOr9JaF/QO/L6HTQ4PhYkZI0ZyxEQQhGPW6N8=) 2: 41A8E738045111EA9C7DF516C4F9AE02.roa (hash: g7Y2fTPIrRGmI+yyaq93Q8oA6ahVmpPa/2gUU/U5QQ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:49:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3467 (0xd8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918560D, serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Validity Not Before: Mar 24 17:49:30 2026 GMT Not After : Mar 31 17:49:30 2026 GMT Subject: CN=69c2ceaa-5aa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6a:c9:a0:21:64:3e:2d:31:db:16:1c:8d:1e: 60:00:09:d3:c1:02:79:ee:5b:a5:a8:86:95:02:d2: 8e:5d:f8:f6:89:92:31:b8:d6:b3:05:29:cb:56:88: 9f:3e:52:19:bf:a8:f1:d8:52:ad:08:e9:13:2a:02: 37:a7:5a:65:37:ef:5e:25:39:c5:3e:7c:e2:02:45: 08:9c:70:b0:0f:a9:94:d5:09:23:71:8c:4b:81:a7: 53:1c:7a:09:df:9e:0d:27:24:31:42:5d:22:d1:ee: 2a:6a:e4:b8:34:f3:c3:20:0d:16:44:25:b0:bc:75: 6f:65:20:15:4c:b4:21:be:79:08:86:b1:9e:31:2f: e5:af:56:c0:3c:00:18:74:bb:c4:93:49:61:1a:8f: 1f:61:2c:84:ba:26:28:40:66:22:df:ba:3c:10:64: 05:f1:f7:1a:56:b9:c8:0b:de:fa:01:c4:fe:a5:0f: d8:1a:b3:fc:6e:d9:3e:d1:e3:d6:5a:da:6c:33:1d: 87:3e:09:7e:1d:e8:a4:95:b8:a5:2a:7f:81:c0:14: b7:7c:ed:54:3a:48:7b:f1:17:aa:ee:c7:a1:5d:7d: 1a:8a:8e:7a:a7:ec:08:e7:2e:7e:fa:6f:91:fb:1f: 62:ce:0e:42:79:cd:31:3d:79:33:8b:a1:1b:4a:e0: 97:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:AB:6C:7B:F8:1D:A5:95:CA:FF:E4:3A:A6:91:62:32:8B:5E:63:E3 X509v3 Authority Key Identifier: keyid:5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:1f:74:1e:6d:5f:27:bd:45:c9:b6:72:e7:3d:35:0b:aa:6e: 64:8c:80:04:64:19:4b:8e:ad:8e:d1:c6:d2:9f:a6:76:3a:b9: af:72:86:60:04:5d:55:99:cf:3f:5f:45:dd:7d:1f:59:c4:8a: 33:60:04:0b:52:6c:60:0d:d2:65:e7:3d:4f:50:10:c9:cc:a5: a2:66:9c:cf:5e:f0:99:db:c2:de:3f:d5:24:11:3e:c0:e8:3a: 9b:6a:a9:a7:fb:25:38:b8:43:65:1b:39:af:d7:08:d3:c6:89: 18:04:dd:19:15:1d:1a:b8:60:9f:72:ce:c9:78:d3:ad:80:59: 26:c1:7f:77:4a:63:5f:c8:c1:df:62:19:27:32:f7:70:01:e4: 83:9d:9f:b7:13:00:73:9c:a9:19:14:dc:e0:c5:62:a4:84:9b: 48:b3:6a:33:3a:1c:3e:4e:87:e8:21:5b:17:e8:13:7d:d0:b3: 6f:e6:39:6a:fd:5a:a4:7b:29:86:e2:c5:19:65:39:6d:b6:e9: bd:34:d8:67:bc:b4:1d:f9:ae:db:8f:db:06:56:95:df:7c:3f: a2:22:17:1f:b4:fa:78:8a:b1:0a:22:73:ac:c3:f7:18:56:74: b6:90:0e:70:61:52:b6:51:71:ed:50:5e:7c:52:23:26:e4:27: 27:58:71:4c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2MEQxMTAvBgNVBAUTKDVEQ0I1M0VBQkU2QTkwOEVDQTg2NTJERTkyNDgwN0M1 MDlDNTJEMzAwHhcNMjYwMzI0MTc0OTMwWhcNMjYwMzMxMTc0OTMwWjAYMRYwFAYD VQQDEw02OWMyY2VhYS01YWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumrJoCFkPi0x2xYcjR5gAAnTwQJ57lulqIaVAtKOXfj2iZIxuNazBSnLVoif PlIZv6jx2FKtCOkTKgI3p1plN+9eJTnFPnziAkUInHCwD6mU1QkjcYxLgadTHHoJ 354NJyQxQl0i0e4qauS4NPPDIA0WRCWwvHVvZSAVTLQhvnkIhrGeMS/lr1bAPAAY dLvEk0lhGo8fYSyEuiYoQGYi37o8EGQF8fcaVrnIC976AcT+pQ/YGrP8btk+0ePW WtpsMx2HPgl+HeiklbilKn+BwBS3fO1UOkh78Req7sehXX0aio56p+wI5y5++m+R +x9izg5Cec0xPXkzi6EbSuCXuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLurbHv4 HaWVyv/kOqaRYjKLXmPjMB8GA1UdIwQYMBaAFF3LU+q+apCOyoZS3pJIB8UJxS0w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTYwRC9GNURDQTZENEU1 QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJN0tobExla2tnSHhRbkZM VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjdFQ2cjVxa0k3S2hsTGVra2dIeFFuRkxUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTYwRC9GNURDQTZENEU1QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJ N0tobExla2tnSHhRbkZMVEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVx90Hm1fJ71FybZy5z01C6puZIyABGQZS46tjtHG0p+mdjq5r3KGYARdVZnP P19F3X0fWcSKM2AEC1JsYA3SZec9T1AQycylomacz17wmdvC3j/VJBE+wOg6m2qp p/slOLhDZRs5r9cI08aJGATdGRUdGrhgn3LOyXjTrYBZJsF/d0pjX8jB32IZJzL3 cAHkg52ftxMAc5ypGRTc4MVipISbSLNqMzocPk6H6CFbF+gTfdCzb+Y5av1apHsp huLFGWU5bbbpvTTYZ7y0Hfmu24/bBlaV33w/oiIXH7T6eIqxCiJzrMP3GFZ0tpAO cGFStlFx7VBefFIjJuQnJ1hxTA== -----END CERTIFICATE-----Generated at Thu Mar 26 19:09:33 2026 by rpki-client