$ rpki-client -vvf rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft File: pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft (raw, json) Hash identifier: CDrVyJ4gxCgav8PVBU6+TQqiaMSvQGzCjUqiAArhSYw= Subject key identifier: AA:55:A0:87:8C:AB:2E:78:1B:4D:61:C9:FE:30:6C:2F:2A:2A:86:95 Authority key identifier: A5:70:F3:70:D5:4E:D0:24:54:C5:7F:83:EE:C3:E4:F4:4A:7A:8B:76 Certificate issuer: /CN=A9199DF5/serialNumber=A570F370D54ED02454C57F83EEC3E4F44A7A8B76 Certificate serial: 03B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft Manifest number: 03AE Signing time: Fri 27 Mar 2026 00:29:05 +0000 Manifest this update: Fri 27 Mar 2026 00:29:05 +0000 Manifest next update: Fri 03 Apr 2026 00:29:05 +0000 Files and hashes: 1: pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.crl (hash: EVDgvGktK/jqcwNkOhFboIKeSWBazTEk6CwTjC/Eavs=) 2: B6EB7E8ED14511EC89527642C4F9AE02.roa (hash: 4C5vaV8XTy4jKNN6jrtdqFgnURjoJYHwa1sm4fkGiqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.crl rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 00:29:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 949 (0x3b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199DF5, serialNumber=A570F370D54ED02454C57F83EEC3E4F44A7A8B76 Validity Not Before: Mar 27 00:29:05 2026 GMT Not After : Apr 3 00:29:05 2026 GMT Subject: CN=69c5cf51-9a82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b5:52:7e:06:a6:4d:71:10:47:3e:76:93:6e: e1:72:96:1e:94:16:ad:e7:97:a2:f0:c9:da:13:e4: 4e:cb:78:3e:cc:fc:73:78:b8:b3:6a:56:ab:98:3a: 6e:1a:f1:eb:58:fe:50:45:e1:38:89:0f:2d:80:5c: 16:93:77:ad:24:08:6b:46:84:c4:2c:b6:ef:99:b3: 97:68:72:ec:d7:85:85:dc:97:b5:a1:1c:11:65:58: 67:08:77:8b:7d:89:e9:b8:94:c2:da:8a:ab:86:b5: 5b:8d:af:f7:db:d6:f7:08:53:fd:3d:87:b0:a8:d0: b7:b8:bb:e4:2d:0d:9e:b4:7e:8c:1e:4c:3f:fe:18: a2:85:d0:99:ec:b1:66:12:8e:99:9f:9e:e7:b6:cc: 95:fa:be:f6:52:0c:2c:2c:fc:80:b1:1a:84:89:e3: f3:56:a5:c0:21:53:a4:f7:28:1e:50:30:32:e0:5f: 06:ee:29:83:05:65:d9:cd:39:6b:a4:d0:f2:1a:26: 3a:29:fe:05:a0:57:0c:5b:7d:d2:5c:32:de:f2:06: be:dc:c1:59:f4:b5:1e:e1:80:ea:d1:52:23:37:b9: 1e:f1:44:4d:aa:b2:db:7c:16:29:22:6e:e2:a3:7c: 65:07:fd:91:b8:45:6b:69:3e:d9:b6:8b:bf:a0:3f: 57:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:55:A0:87:8C:AB:2E:78:1B:4D:61:C9:FE:30:6C:2F:2A:2A:86:95 X509v3 Authority Key Identifier: keyid:A5:70:F3:70:D5:4E:D0:24:54:C5:7F:83:EE:C3:E4:F4:4A:7A:8B:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:fc:55:72:1f:f9:31:47:7c:92:7c:ee:6a:af:10:a3:96:08: 06:d5:31:03:56:2d:3c:1c:3b:b7:48:11:8c:7a:d3:c6:de:88: d6:5f:66:56:bd:a3:53:29:49:88:2a:3e:b8:e2:38:c2:23:8a: c8:3c:b3:34:89:f8:83:99:b1:3b:91:90:cc:a5:0e:9a:91:29: f1:f6:f5:8d:2f:8b:3e:99:04:dd:ec:3f:8f:ec:c0:30:34:2b: ee:a1:91:49:d9:6e:c5:93:a7:73:40:51:8f:4e:71:e4:79:87: f2:1f:f4:16:c1:d8:49:b7:ba:2c:7f:1e:6e:4d:bd:a4:c9:91: 04:7f:3b:40:03:0b:2b:7b:01:bb:89:d2:b7:97:6b:c2:2b:df: 0f:49:ef:e4:59:90:8c:ff:c6:4d:82:27:a0:ae:92:8e:7f:be: 21:42:5f:a7:eb:c6:d2:a6:6e:70:a1:28:26:48:27:ad:38:45: 7a:67:d5:7b:27:e8:d1:1a:bf:71:a6:57:46:bc:bb:37:3b:a7: d7:95:5f:f3:cd:cf:96:b3:12:50:ae:14:ce:7b:39:f2:41:8e: 3d:b4:aa:d6:60:69:b5:4e:cd:8b:37:3a:e6:41:e1:f5:ad:52: 3c:81:d5:3f:57:cb:be:a1:17:8d:09:7a:18:80:26:a3:fd:29: e1:8b:7e:16 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlERjUxMTAvBgNVBAUTKEE1NzBGMzcwRDU0RUQwMjQ1NEM1N0Y4M0VFQzNFNEY0 NEE3QThCNzYwHhcNMjYwMzI3MDAyOTA1WhcNMjYwNDAzMDAyOTA1WjAYMRYwFAYD VQQDEw02OWM1Y2Y1MS05YTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7VSfgamTXEQRz52k27hcpYelBat55ei8MnaE+ROy3g+zPxzeLizalarmDpu GvHrWP5QReE4iQ8tgFwWk3etJAhrRoTELLbvmbOXaHLs14WF3Je1oRwRZVhnCHeL fYnpuJTC2oqrhrVbja/329b3CFP9PYewqNC3uLvkLQ2etH6MHkw//hiihdCZ7LFm Eo6Zn57ntsyV+r72UgwsLPyAsRqEiePzVqXAIVOk9ygeUDAy4F8G7imDBWXZzTlr pNDyGiY6Kf4FoFcMW33SXDLe8ga+3MFZ9LUe4YDq0VIjN7ke8URNqrLbfBYpIm7i o3xlB/2RuEVraT7Ztou/oD9XAQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKpVoIeM qy54G01hyf4wbC8qKoaVMB8GA1UdIwQYMBaAFKVw83DVTtAkVMV/g+7D5PRKeot2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OURGNS9DMjQwQjc5NEQx NDExMUVDQTU1Mzg0M0FDNEY5QUUwMi9wWER6Y05WTzBDUlV4WC1EN3NQazlFcDZp M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BYRHpjTlZPMENSVXhYLUQ3c1BrOUVwNmkzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OURGNS9DMjQwQjc5NEQxNDExMUVDQTU1Mzg0M0FDNEY5QUUwMi9wWER6Y05WTzBD UlV4WC1EN3NQazlFcDZpM1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbvxVch/5MUd8knzuaq8Qo5YIBtUxA1YtPBw7t0gRjHrTxt6I1l9mVr2jUylJ iCo+uOI4wiOKyDyzNIn4g5mxO5GQzKUOmpEp8fb1jS+LPpkE3ew/j+zAMDQr7qGR SdluxZOnc0BRj05x5HmH8h/0FsHYSbe6LH8ebk29pMmRBH87QAMLK3sBu4nSt5dr wivfD0nv5FmQjP/GTYInoK6Sjn++IUJfp+vG0qZucKEoJkgnrThFemfVeyfo0Rq/ caZXRry7Nzun15Vf883PlrMSUK4Uzns58kGOPbSq1mBptU7Nizc65kHh9a1SPIHV P1fLvqEXjQl6GIAmo/0p4Yt+Fg== -----END CERTIFICATE-----Generated at Sat Mar 28 10:43:44 2026 by rpki-client