$ rpki-client -vvf rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft File: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft (raw, json) Hash identifier: qYBfumthVbluinw1FLH19RdKHUwG5bmNv7eV017H+Zc= Subject key identifier: 43:EC:8A:9A:D3:C9:6E:16:34:25:AE:6E:06:47:9B:C0:8B:3B:81:A1 Authority key identifier: 5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 Certificate issuer: /CN=A918B0B9/serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Certificate serial: 0A42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft Manifest number: 0A28 Signing time: Tue 24 Mar 2026 19:34:49 +0000 Manifest this update: Tue 24 Mar 2026 19:34:49 +0000 Manifest next update: Tue 31 Mar 2026 19:34:49 +0000 Files and hashes: 1: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl (hash: HIV4XPMVHnbK3KehK/l9Dg9fJ8DI2Eb6ChkpzXYtvJk=) 2: BED54F1A9B1611EA939F5A3FC4F9AE02.roa (hash: onxrfn2R6ig2K9q93zM3JJGyF8TFo8y2BhAaG52JL84=) 3: 52F955A89B1511EA9BEFA53BC4F9AE02.roa (hash: mNeRqaSY4bVJ7ErHkgjVt3OEqspS9nVqduSxSH22Fmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:34:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2626 (0xa42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B0B9, serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Validity Not Before: Mar 24 19:34:49 2026 GMT Not After : Mar 31 19:34:49 2026 GMT Subject: CN=69c2e759-9f8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:34:30:85:51:61:21:f7:e2:51:a5:d5:bd:37: ee:d2:74:0b:db:e9:a0:66:29:2d:48:1a:9a:11:c2: 3a:a3:11:e4:9f:24:aa:51:c4:57:71:21:58:2b:40: d9:73:05:c7:a9:15:40:50:dd:c6:5f:bc:c1:28:65: 12:a9:ac:c7:2c:39:04:0e:e7:ca:b2:0c:ac:08:f9: 86:e8:91:52:2e:36:1b:10:d1:2c:56:19:4c:9a:34: 2c:88:36:85:b8:39:ab:37:1b:ca:b8:2c:4c:a1:0a: 52:bc:55:91:bf:9f:16:f0:59:fa:10:19:2e:3b:fd: 76:cb:17:c6:48:60:4f:fa:5a:19:7c:f9:f6:39:29: 47:a0:92:86:50:16:c3:21:06:a3:41:b5:5e:8e:9e: ee:0b:cc:ef:e3:84:86:6e:fc:d5:9a:56:65:00:43: 0b:c0:d6:5c:e3:14:6e:ba:d8:0a:2d:25:f3:23:8c: a5:51:ab:2d:8b:5d:51:77:69:3a:bd:a3:4b:9e:ed: c6:96:5d:b0:fc:12:43:86:cf:30:fe:de:a2:65:8d: 78:8e:e9:92:e5:be:b5:ce:f0:f5:c1:8c:35:c4:e5: 83:48:95:aa:ae:c9:71:d5:b0:ac:df:ef:03:d8:64: 84:48:0f:b0:b9:dd:da:c5:da:08:fa:53:37:5d:35: c2:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:EC:8A:9A:D3:C9:6E:16:34:25:AE:6E:06:47:9B:C0:8B:3B:81:A1 X509v3 Authority Key Identifier: keyid:5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:44:26:43:c8:3f:61:d4:6a:ad:f9:53:8f:5b:fd:30:92:df: 50:5a:e8:f2:c2:c5:57:56:1e:18:f4:e0:58:45:c2:db:be:e4: 58:c6:17:d2:49:0b:09:b9:75:15:b1:57:30:7e:07:29:8a:90: a8:74:6e:12:c3:84:42:7a:2b:15:ee:b7:f2:e4:6d:4d:61:75: ed:51:58:6c:6a:ff:d7:7e:a9:9d:7f:de:a6:21:78:62:c9:08: 12:07:b1:0c:ea:ab:66:8b:f5:4d:1f:c2:5e:4b:69:a3:1d:86: 93:7d:31:10:7d:12:86:8b:9d:54:a1:a3:1b:ba:77:46:76:eb: e2:20:6a:2a:3b:4f:a1:0e:57:b9:56:6f:44:7e:81:6e:37:79: 18:70:f7:5a:43:9b:e2:2f:bd:1a:71:1a:d1:df:0c:09:11:28: 7d:f8:55:39:3e:35:d1:6a:4d:54:23:70:5a:f1:b0:26:e4:01: 94:c4:8a:a0:f6:75:b9:ee:b6:6d:62:e3:84:8f:71:16:7d:de: db:02:0d:39:eb:05:9b:c1:22:32:65:ba:a9:64:39:53:eb:47: 77:80:39:5f:81:71:4e:d9:7e:d2:cb:19:af:6f:0d:30:66:2c: 73:e8:c4:22:e3:1b:36:74:e9:ac:19:e1:0b:bd:f9:2e:60:97: dd:33:af:b4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIwQjkxMTAvBgNVBAUTKDVDNUE0RkFFNEFGMDFGRkRDOTI3NTM1NUNDQkFCOEM4 MTAxODlGNTQwHhcNMjYwMzI0MTkzNDQ5WhcNMjYwMzMxMTkzNDQ5WjAYMRYwFAYD VQQDEw02OWMyZTc1OS05ZjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2zQwhVFhIffiUaXVvTfu0nQL2+mgZiktSBqaEcI6oxHknySqUcRXcSFYK0DZ cwXHqRVAUN3GX7zBKGUSqazHLDkEDufKsgysCPmG6JFSLjYbENEsVhlMmjQsiDaF uDmrNxvKuCxMoQpSvFWRv58W8Fn6EBkuO/12yxfGSGBP+loZfPn2OSlHoJKGUBbD IQajQbVejp7uC8zv44SGbvzVmlZlAEMLwNZc4xRuutgKLSXzI4ylUasti11Rd2k6 vaNLnu3Gll2w/BJDhs8w/t6iZY14jumS5b61zvD1wYw1xOWDSJWqrslx1bCs3+8D 2GSESA+wud3axdoI+lM3XTXCVQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEPsiprT yW4WNCWubgZHm8CLO4GhMB8GA1UdIwQYMBaAFFxaT65K8B/9ySdTVcy6uMgQGJ9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjBCOS85Q0JGM0Q5MDhG QTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hfM0pKMU5WekxxNHlCQVlu MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hGcFBya3J3SF8zSkoxTlZ6THE0eUJBWW4xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjBCOS85Q0JGM0Q5MDhGQTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hf M0pKMU5WekxxNHlCQVluMVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaUQmQ8g/YdRqrflTj1v9MJLfUFro8sLFV1YeGPTgWEXC277kWMYX0kkLCbl1 FbFXMH4HKYqQqHRuEsOEQnorFe638uRtTWF17VFYbGr/136pnX/epiF4YskIEgex DOqrZov1TR/CXktpox2Gk30xEH0ShoudVKGjG7p3Rnbr4iBqKjtPoQ5XuVZvRH6B bjd5GHD3WkOb4i+9GnEa0d8MCREoffhVOT410WpNVCNwWvGwJuQBlMSKoPZ1ue62 bWLjhI9xFn3e2wINOesFm8EiMmW6qWQ5U+tHd4A5X4FxTtl+0ssZr28NMGYsc+jE IuMbNnTprBnhC735LmCX3TOvtA== -----END CERTIFICATE-----Generated at Thu Mar 26 13:35:23 2026 by rpki-client