$ rpki-client -vvf rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft File: XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft (raw, json) Hash identifier: PPdKFU1s70/GVa0zWwzNq1xjcRQRq1713HKDXf4n/7Y= Subject key identifier: 87:8F:55:B7:C3:EB:46:85:F8:78:A6:06:C0:C9:AF:0E:BB:B8:87:A5 Authority key identifier: 5E:C5:FB:33:4E:E5:2B:90:09:CB:92:3C:69:3B:D2:0F:04:78:A1:44 Certificate issuer: /CN=A918EF87/serialNumber=5EC5FB334EE52B9009CB923C693BD20F0478A144 Certificate serial: 9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XsX7M07lK5AJy5I8aTvSDwR4oUQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft Manifest number: 9C Signing time: Wed 25 Mar 2026 06:34:02 +0000 Manifest this update: Wed 25 Mar 2026 06:34:02 +0000 Manifest next update: Wed 01 Apr 2026 06:34:02 +0000 Files and hashes: 1: XsX7M07lK5AJy5I8aTvSDwR4oUQ.crl (hash: ixOPF3JhvxdQcUfyXX5b6pKpgmxGvsWpO4+uyJk19Jk=) 2: C053613E38B311F08DB63209C4F9AE02.roa (hash: XGziVhW7bV6WTpnAO5hHSMS6E/tbFN56AbeKUPYhFNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.crl rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XsX7M07lK5AJy5I8aTvSDwR4oUQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:34:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EF87, serialNumber=5EC5FB334EE52B9009CB923C693BD20F0478A144 Validity Not Before: Mar 25 06:34:02 2026 GMT Not After : Apr 1 06:34:02 2026 GMT Subject: CN=69c381da-0f2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6f:39:47:12:a4:d0:31:97:25:0d:fa:75:fb: d0:e9:69:3b:ec:d7:c7:3d:20:e3:21:d8:79:fc:d0: f2:26:0a:29:74:a3:92:51:b8:aa:e2:88:e4:5a:f6: d7:c8:a1:8f:6d:7a:cc:a3:0c:39:d3:d1:c6:26:cc: 7f:b9:1c:21:30:2b:14:cf:94:46:82:41:43:a9:4a: 6f:b7:0f:a3:0b:f5:4b:be:e3:84:4f:ec:1a:cb:e6: de:92:5f:f1:02:a4:14:93:f7:30:89:aa:33:bf:6b: 21:8a:42:26:7b:5b:82:e5:82:ed:db:08:1b:d7:3d: c1:a8:eb:7b:47:8b:35:a8:5e:5e:a5:93:ea:ac:b1: b7:66:16:0a:24:56:a0:dd:f2:83:c2:f5:c3:a0:da: 60:51:b7:de:81:7b:f8:86:2d:d1:8e:b4:e2:27:e5: 7a:bc:34:9b:eb:8f:c1:48:57:6b:84:47:0d:37:c2: ab:34:fb:e7:aa:47:ae:40:72:34:d9:be:c1:66:5b: c4:8d:b7:e2:b7:f7:dc:4a:b7:ae:40:dc:a0:ec:62: 52:cb:b8:5b:a6:5a:dd:8f:4f:ec:df:df:03:26:40: 04:13:63:2e:ae:ab:38:a4:20:6e:e4:cd:ee:43:63: 85:5b:7d:54:74:86:3b:bd:8e:33:88:c1:d6:4f:fb: f9:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:8F:55:B7:C3:EB:46:85:F8:78:A6:06:C0:C9:AF:0E:BB:B8:87:A5 X509v3 Authority Key Identifier: keyid:5E:C5:FB:33:4E:E5:2B:90:09:CB:92:3C:69:3B:D2:0F:04:78:A1:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XsX7M07lK5AJy5I8aTvSDwR4oUQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:88:2b:66:40:53:35:1e:81:fd:86:de:c1:a1:2f:b9:20:a9: 16:91:3a:3b:d8:cc:6b:f2:05:a6:7c:37:78:dd:c5:b8:e6:4d: 56:34:34:47:17:85:79:88:19:a9:ca:83:67:d0:b4:29:cb:e4: 52:55:cb:71:69:83:f8:65:c2:ab:0a:af:bc:08:e7:cb:0b:d7: af:fe:89:d7:10:11:b0:cd:34:c7:36:ef:5e:1d:34:4b:bf:a7: 7e:a6:69:01:00:bf:54:7f:7e:e1:e9:38:9d:54:54:ec:b5:1b: 69:0d:17:46:f6:35:4c:f3:50:d9:f9:c4:e5:37:b4:96:26:83: 0e:65:29:e5:5f:ce:c4:6a:14:bb:13:5a:1b:ac:84:6f:c1:54: 5d:ce:43:a2:70:9f:98:eb:8a:7f:6d:a1:f5:cd:ec:52:66:f1: 1e:81:10:a5:7a:ab:68:e4:17:b9:52:52:15:8f:3b:53:e8:ec: 70:97:f0:c4:a0:af:37:94:79:2c:0e:71:c9:4d:03:e8:c3:62: 58:ea:f8:3f:d6:b9:61:80:95:28:29:34:73:e4:6b:5c:9b:16: e3:06:7a:f4:c6:af:0a:44:c8:a0:c9:c4:31:4d:91:03:48:e3: 49:ed:84:7d:88:ba:75:4c:d5:01:f7:b5:15:e9:fa:cd:b2:4d: a2:64:d2:aa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVGODcxMTAvBgNVBAUTKDVFQzVGQjMzNEVFNTJCOTAwOUNCOTIzQzY5M0JEMjBG MDQ3OEExNDQwHhcNMjYwMzI1MDYzNDAyWhcNMjYwNDAxMDYzNDAyWjAYMRYwFAYD VQQDEw02OWMzODFkYS0wZjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvW85RxKk0DGXJQ36dfvQ6Wk77NfHPSDjIdh5/NDyJgopdKOSUbiq4ojkWvbX yKGPbXrMoww509HGJsx/uRwhMCsUz5RGgkFDqUpvtw+jC/VLvuOET+way+bekl/x AqQUk/cwiaozv2shikIme1uC5YLt2wgb1z3BqOt7R4s1qF5epZPqrLG3ZhYKJFag 3fKDwvXDoNpgUbfegXv4hi3RjrTiJ+V6vDSb64/BSFdrhEcNN8KrNPvnqkeuQHI0 2b7BZlvEjbfit/fcSreuQNyg7GJSy7hbplrdj0/s398DJkAEE2Murqs4pCBu5M3u Q2OFW31UdIY7vY4ziMHWT/v5tQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIePVbfD 60aF+HimBsDJrw67uIelMB8GA1UdIwQYMBaAFF7F+zNO5SuQCcuSPGk70g8EeKFE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUY4Ny8zNDAwODAyMjM4 QjMxMUYwOTE0MTgwODZDNEY5QUUwMi9Yc1g3TTA3bEs1QUp5NUk4YVR2U0R3UjRv VVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hzWDdNMDdsSzVBSnk1SThhVHZTRHdSNG9VUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUY4Ny8zNDAwODAyMjM4QjMxMUYwOTE0MTgwODZDNEY5QUUwMi9Yc1g3TTA3bEs1 QUp5NUk4YVR2U0R3UjRvVVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA1YgrZkBTNR6B/YbewaEvuSCpFpE6O9jMa/IFpnw3eN3FuOZNVjQ0RxeFeYgZ qcqDZ9C0KcvkUlXLcWmD+GXCqwqvvAjnywvXr/6J1xARsM00xzbvXh00S7+nfqZp AQC/VH9+4ek4nVRU7LUbaQ0XRvY1TPNQ2fnE5Te0liaDDmUp5V/OxGoUuxNaG6yE b8FUXc5DonCfmOuKf22h9c3sUmbxHoEQpXqraOQXuVJSFY87U+jscJfwxKCvN5R5 LA5xyU0D6MNiWOr4P9a5YYCVKCk0c+RrXJsW4wZ69MavCkTIoMnEMU2RA0jjSe2E fYi6dUzVAfe1Fen6zbJNomTSqg== -----END CERTIFICATE-----Generated at Thu Mar 26 14:12:55 2026 by rpki-client