$ rpki-client -vvf rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft File: xw3ieKt3JtKco6jAJAeqW64S7Ao.mft (raw, json) Hash identifier: sTfv7+xRtttclO0iO1A5i47gz06cEFPDrcxVkpCWnUI= Subject key identifier: 1C:25:42:9B:D9:F3:F1:65:BB:64:2B:6A:36:47:20:2C:B5:A0:29:12 Authority key identifier: C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A Certificate issuer: /CN=A918D323/serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Certificate serial: 0176 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft Manifest number: 016A Signing time: Wed 25 Mar 2026 04:08:46 +0000 Manifest this update: Wed 25 Mar 2026 04:08:45 +0000 Manifest next update: Wed 01 Apr 2026 04:08:45 +0000 Files and hashes: 1: xw3ieKt3JtKco6jAJAeqW64S7Ao.crl (hash: WW4TKfugWAwGJBFmh14vNavfsHuqIU0V4o+9fun35Fc=) 2: CC166DAC0A0811EFBE7E465EC4F9AE02.roa (hash: 6+bY61LdDlam0PC7GuKMwEXRvre/3cSdh3l+aLkv2pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 374 (0x176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D323, serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Validity Not Before: Mar 25 04:08:45 2026 GMT Not After : Apr 1 04:08:45 2026 GMT Subject: CN=69c35fce-206d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e4:d6:29:cf:76:e7:ed:d2:d9:a4:2f:68:a1: 6e:3f:11:35:3e:ed:35:6e:d1:8f:c1:c6:94:40:be: 5c:aa:dc:59:a2:f1:66:8d:e6:c0:01:f1:3e:d0:24: f5:3b:27:44:b7:c3:a3:8a:e9:0c:27:88:74:4c:10: b6:b8:ab:b5:1a:3e:2b:23:43:b0:0a:6f:1e:ff:f7: b1:f2:6b:56:ad:7c:e1:46:8d:5d:26:34:8c:ff:6b: 0a:c9:d4:63:c0:78:43:f3:a8:83:df:9c:ce:8c:60: 36:13:41:60:26:d4:42:f7:36:17:52:89:af:9f:e0: fa:78:f5:b7:e3:6f:30:e4:33:5f:2d:1d:96:31:06: c1:48:98:9f:a6:ef:0b:0e:69:e5:83:93:a7:14:7a: 13:3f:6c:b9:76:d0:8a:b3:08:17:9b:91:bd:2f:d1: e3:7a:f8:86:d4:94:ad:8c:47:37:55:e9:7d:c4:fa: 72:6a:69:c9:cb:f6:24:a6:c7:22:0c:a1:d1:c8:df: c4:d8:65:e5:05:b9:c6:e9:76:b8:b0:4a:16:4c:51: 54:ec:f0:db:d1:41:e9:27:5f:b1:d2:7c:4b:2b:bf: a8:5e:0f:97:d9:ce:f1:ef:12:27:c4:6b:d3:57:7d: 6a:b0:fb:54:da:9e:da:a2:c2:6b:28:48:52:19:64: 77:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:25:42:9B:D9:F3:F1:65:BB:64:2B:6A:36:47:20:2C:B5:A0:29:12 X509v3 Authority Key Identifier: keyid:C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:b3:6b:43:de:16:56:e7:31:fe:da:bf:b9:ce:8e:64:a6:21: 33:14:7c:1e:9a:06:2c:15:e8:b1:7d:3f:7b:7b:d7:a4:59:9f: 87:ec:95:dd:6b:f9:c9:a7:10:ff:ba:86:f5:69:7e:18:9c:84: 65:12:db:1c:9f:c8:15:f2:93:29:a5:55:3f:92:8b:23:c1:bb: 01:21:45:df:e2:fa:82:33:dd:1a:2d:4d:20:81:43:0e:a7:a9: c2:23:a9:61:44:4d:fe:b4:65:e1:11:88:cf:92:19:db:14:c9: 7b:c7:3e:39:7c:15:fe:9b:c0:2a:5b:2e:ff:e9:d6:ad:1e:42: 8c:ec:95:71:f4:64:b7:af:5b:2e:f6:b8:4e:4b:6c:3a:23:55: 7b:1b:96:4f:34:0f:5d:dd:49:fb:8a:57:c1:47:85:71:ee:7a: cc:a8:ba:1e:57:3d:91:f0:6e:f6:3d:38:4e:73:55:27:48:12: 42:20:98:a4:20:1d:e2:96:5f:b8:5f:a7:db:fc:38:63:50:74: 3f:cf:7e:c2:26:0a:fc:68:ab:21:d0:a2:ea:f5:35:80:5f:6d: 0f:87:f1:c2:1a:21:aa:e6:db:1e:56:98:81:41:1d:e2:04:60: 35:e0:54:30:b2:88:a1:e1:a2:77:1e:11:41:53:f9:41:0a:92: e8:06:f0:51 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQzMjMxMTAvBgNVBAUTKEM3MERFMjc4QUI3NzI2RDI5Q0EzQThDMDI0MDdBQTVC QUUxMkVDMEEwHhcNMjYwMzI1MDQwODQ1WhcNMjYwNDAxMDQwODQ1WjAYMRYwFAYD VQQDEw02OWMzNWZjZS0yMDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAquTWKc925+3S2aQvaKFuPxE1Pu01btGPwcaUQL5cqtxZovFmjebAAfE+0CT1 OydEt8OjiukMJ4h0TBC2uKu1Gj4rI0OwCm8e//ex8mtWrXzhRo1dJjSM/2sKydRj wHhD86iD35zOjGA2E0FgJtRC9zYXUomvn+D6ePW3428w5DNfLR2WMQbBSJifpu8L Dmnlg5OnFHoTP2y5dtCKswgXm5G9L9HjeviG1JStjEc3Vel9xPpyamnJy/Ykpsci DKHRyN/E2GXlBbnG6Xa4sEoWTFFU7PDb0UHpJ1+x0nxLK7+oXg+X2c7x7xInxGvT V31qsPtU2p7aosJrKEhSGWR3kQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBwlQpvZ 8/Flu2QrajZHICy1oCkSMB8GA1UdIwQYMBaAFMcN4nirdybSnKOowCQHqluuEuwK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDMyMy8yMjBBMUZEODA5 RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi94dzNpZUt0M0p0S2NvNmpBSkFlcVc2NFM3 QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3M2llS3QzSnRLY282akFKQWVxVzY0UzdBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDMyMy8yMjBBMUZEODA5RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi94dzNpZUt0M0p0 S2NvNmpBSkFlcVc2NFM3QW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwLNrQ94WVucx/tq/uc6OZKYhMxR8HpoGLBXosX0/e3vXpFmfh+yV3Wv5yacQ /7qG9Wl+GJyEZRLbHJ/IFfKTKaVVP5KLI8G7ASFF3+L6gjPdGi1NIIFDDqepwiOp YURN/rRl4RGIz5IZ2xTJe8c+OXwV/pvAKlsu/+nWrR5CjOyVcfRkt69bLva4Tkts OiNVexuWTzQPXd1J+4pXwUeFce56zKi6Hlc9kfBu9j04TnNVJ0gSQiCYpCAd4pZf uF+n2/w4Y1B0P89+wiYK/GirIdCi6vU1gF9tD4fxwhohqubbHlaYgUEd4gRgNeBU MLKIoeGidx4RQVP5QQqS6AbwUQ== -----END CERTIFICATE-----Generated at Thu Mar 26 19:31:14 2026 by rpki-client