$ rpki-client -vvf rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.mft File: xeslRrtzrOaT4ZqxB9g_JmYyzug.mft (raw, json) Hash identifier: EbSPVORaX6Wg8QgU+3LgigO9AbL+ky29qJhdP0K3mS8= Subject key identifier: A2:29:D2:5F:E9:2D:EE:B3:7C:A8:3D:B8:98:4C:35:C5:5A:35:D5:3C Authority key identifier: C5:EB:25:46:BB:73:AC:E6:93:E1:9A:B1:07:D8:3F:26:66:32:CE:E8 Certificate issuer: /CN=A9197A55/serialNumber=C5EB2546BB73ACE693E19AB107D83F266632CEE8 Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/xeslRrtzrOaT4ZqxB9g_JmYyzug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.mft Manifest number: 29 Signing time: Wed 25 Mar 2026 08:01:17 +0000 Manifest this update: Wed 25 Mar 2026 08:01:16 +0000 Manifest next update: Wed 01 Apr 2026 08:01:16 +0000 Files and hashes: 1: xeslRrtzrOaT4ZqxB9g_JmYyzug.crl (hash: mP+SXFg8U95RBeYg/YOQPOjrr6ovj0kHVmAwWxNOv5A=) 2: 21DB5BC4FAAA11F0A3B995435A6F56BC.roa (hash: LbeaZF1XRjLI75LU93fIN8JRsM753tbKTBrRQHfA4hk=) 3: 40E6AE74FAAA11F0BBD6BD435A6F56BC.roa (hash: rFUINwctLdCKpeYymZBC+HyAkWIaWkc+ZM7j+MzLgis=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.crl rsync://rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/xeslRrtzrOaT4ZqxB9g_JmYyzug.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 08:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197A55, serialNumber=C5EB2546BB73ACE693E19AB107D83F266632CEE8 Validity Not Before: Mar 25 08:01:16 2026 GMT Not After : Apr 1 08:01:16 2026 GMT Subject: CN=69c3964d-ea1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:09:87:30:6b:36:fe:92:af:36:23:60:21:48: 1b:72:8e:d9:b1:af:36:6a:c4:d4:89:45:0c:5d:67: a0:0e:26:60:7d:9b:2b:f8:ff:0b:4f:48:1f:0f:77: cb:f7:a5:2c:47:b3:68:4e:4f:85:ec:e9:b8:04:21: 89:94:b4:0f:e2:e9:f9:b2:e6:16:55:3e:30:a7:6e: 49:33:ae:34:c3:ea:24:34:22:f3:1b:20:54:e6:b5: 9d:0e:fe:8e:0a:b9:fb:8c:9b:0e:b7:32:6a:8c:4a: 89:aa:3f:4e:f7:11:d7:6b:6e:ff:ab:a0:64:b0:45: f9:30:cc:39:be:94:94:13:f3:58:43:95:c5:3e:27: 9f:7f:48:a4:fb:c4:3d:19:f6:6f:9c:e2:b2:56:4e: 1d:d2:f6:ea:07:b4:3c:a3:db:32:e8:26:6c:cb:68: b8:f4:33:e4:d9:61:42:a2:d1:dd:18:bc:50:8e:14: 52:5e:d6:1e:6d:98:6e:ca:68:e2:9d:0e:74:b7:5e: a9:49:35:49:d5:f4:da:98:fd:7f:a1:28:7b:94:9d: 94:12:62:3e:00:39:26:3e:0a:8d:55:51:b1:0a:89: f6:b4:89:82:52:e5:b4:36:cc:33:8c:99:26:d8:e1: bb:50:11:b5:c3:0b:ac:ed:68:03:2b:ce:2c:d2:18: 17:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:29:D2:5F:E9:2D:EE:B3:7C:A8:3D:B8:98:4C:35:C5:5A:35:D5:3C X509v3 Authority Key Identifier: keyid:C5:EB:25:46:BB:73:AC:E6:93:E1:9A:B1:07:D8:3F:26:66:32:CE:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/xeslRrtzrOaT4ZqxB9g_JmYyzug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:b3:79:d2:68:4c:8f:fc:2d:dc:4d:91:66:4b:02:5d:c4:4c: 7a:4d:6c:38:06:4f:82:c2:d2:7f:3e:70:c2:3d:7f:bb:66:ea: 16:bf:ae:e3:67:f4:3a:96:97:e0:a5:35:df:9e:5d:05:1a:87: 75:94:6c:85:7f:c6:47:51:5b:4d:ba:4e:04:75:59:48:f6:bd: 7a:c9:0f:04:7e:6a:fa:b3:9b:51:09:42:ba:7f:00:17:80:5a: 6f:a8:c0:b4:62:18:7a:b0:06:8b:ce:0f:b3:0e:7b:d0:a7:fa: 6d:60:87:fa:06:23:4b:0d:81:bd:2f:41:1c:bd:08:1e:ec:89: e6:70:d4:2b:90:a8:b0:5f:d4:b6:32:c2:54:af:31:64:55:cb: e7:e9:50:df:70:fc:46:fa:5c:22:e6:a0:59:4a:0c:38:93:16: 7a:e5:5b:fc:e6:1f:63:31:ad:b2:d6:14:1b:8d:ed:cc:37:20: d6:69:11:ca:60:39:f5:56:f9:57:14:85:6a:84:06:50:23:d8: 19:91:ee:2a:c8:17:54:db:24:de:d2:e3:23:d7:9a:66:0a:83: 59:6c:c7:24:9e:b6:ef:97:d7:79:64:59:e1:e8:17:fa:eb:13: 14:3d:09:80:73:e8:03:5a:58:4f:d9:d3:bd:67:2c:1e:2d:80: 06:7c:93:ef -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 N0E1NTExMC8GA1UEBRMoQzVFQjI1NDZCQjczQUNFNjkzRTE5QUIxMDdEODNGMjY2 NjMyQ0VFODAeFw0yNjAzMjUwODAxMTZaFw0yNjA0MDEwODAxMTZaMBgxFjAUBgNV BAMTDTY5YzM5NjRkLWVhMWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgCYcwazb+kq82I2AhSBtyjtmxrzZqxNSJRQxdZ6AOJmB9myv4/wtPSB8Pd8v3 pSxHs2hOT4Xs6bgEIYmUtA/i6fmy5hZVPjCnbkkzrjTD6iQ0IvMbIFTmtZ0O/o4K ufuMmw63MmqMSomqP073Eddrbv+roGSwRfkwzDm+lJQT81hDlcU+J59/SKT7xD0Z 9m+c4rJWTh3S9uoHtDyj2zLoJmzLaLj0M+TZYUKi0d0YvFCOFFJe1h5tmG7KaOKd DnS3XqlJNUnV9NqY/X+hKHuUnZQSYj4AOSY+Co1VUbEKifa0iYJS5bQ2zDOMmSbY 4btQEbXDC6ztaAMrzizSGBfxAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUoinSX+kt 7rN8qD24mEw1xVo11TwwHwYDVR0jBBgwFoAUxeslRrtzrOaT4ZqxB9g/JmYyzugw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3QTU1L0IzMkI1MDI4RjdB NTExRjA4N0U1MUYxNjU1NkY1NkJDL3hlc2xScnR6ck9hVDRacXhCOWdfSm1ZeXp1 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIveGVzbFJydHpyT2FUNFpxeEI5Z19KbVl5enVnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3 QTU1L0IzMkI1MDI4RjdBNTExRjA4N0U1MUYxNjU1NkY1NkJDL3hlc2xScnR6ck9h VDRacXhCOWdfSm1ZeXp1Zy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAks3nSaEyP/C3cTZFmSwJdxEx6TWw4Bk+CwtJ/PnDCPX+7ZuoWv67jZ/Q6lpfg pTXfnl0FGod1lGyFf8ZHUVtNuk4EdVlI9r16yQ8Efmr6s5tRCUK6fwAXgFpvqMC0 Yhh6sAaLzg+zDnvQp/ptYIf6BiNLDYG9L0EcvQge7InmcNQrkKiwX9S2MsJUrzFk Vcvn6VDfcPxG+lwi5qBZSgw4kxZ65Vv85h9jMa2y1hQbje3MNyDWaRHKYDn1VvlX FIVqhAZQI9gZke4qyBdU2yTe0uMj15pmCoNZbMcknrbvl9d5ZFnh6Bf66xMUPQmA c+gDWlhP2dO9ZyweLYAGfJPv -----END CERTIFICATE-----Generated at Thu Mar 26 18:32:23 2026 by rpki-client