$ rpki-client -vvf rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft File: XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft (raw, json) Hash identifier: Byb/9xij2s9OQDzITxfK2mEsb4QUhfeAtCZQ5n6XHDI= Subject key identifier: 5F:D5:0D:25:33:AF:BD:76:4C:4E:5D:3E:99:48:BB:48:2B:8B:0D:94 Authority key identifier: 5E:A1:A7:B8:02:E7:E7:EF:C7:7C:A1:A3:8E:52:F7:2A:CD:46:39:30 Certificate issuer: /CN=A919A998/serialNumber=5EA1A7B802E7E7EFC77CA1A38E52F72ACD463930 Certificate serial: 0DB8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqGnuALn5-_HfKGjjlL3Ks1GOTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft Manifest number: 0D7C Signing time: Tue 24 Mar 2026 17:52:07 +0000 Manifest this update: Tue 24 Mar 2026 17:52:06 +0000 Manifest next update: Tue 31 Mar 2026 17:52:06 +0000 Files and hashes: 1: XqGnuALn5-_HfKGjjlL3Ks1GOTA.crl (hash: CcMclIIM2F3FMZL4FrOv2a0znelKeLV2/B1RRV8ap1U=) 2: 65DCB430F25A11E9937D9D73C4F9AE02.roa (hash: QPmbfdGsqWZkIC2TmmDA+d/UeO6FqSYc32flQMZ3H+k=) 3: 653CF2F6F25A11E9937D9D73C4F9AE02.roa (hash: DcSbAXQAEFzo+aMwVJQyGPJY+2j/avyksp+4rQcX5Ms=) 4: 49ADA7183C6111F0BB3B1A85C4F9AE02.roa (hash: swrCPqokaD5gtVZiwh46FSPGf/pjIaVEfTgshjOCQ+A=) 5: 3BC4C576426D11EFAD9E7D10C4F9AE02.roa (hash: lSWyLiWx5JQuG+eztxmoGvsgjDFaH0ydZKTaI2SA5oE=) 6: 6EA46446646511EFA9435879C4F9AE02.roa (hash: Rm8WBz8x56PvMmTC5b3xeemfV4sCOqTUTfsfsAfIyMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.crl rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqGnuALn5-_HfKGjjlL3Ks1GOTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:52:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3512 (0xdb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A998, serialNumber=5EA1A7B802E7E7EFC77CA1A38E52F72ACD463930 Validity Not Before: Mar 24 17:52:06 2026 GMT Not After : Mar 31 17:52:06 2026 GMT Subject: CN=69c2cf46-110b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:41:91:b2:bc:3d:ad:6f:bf:4b:09:9d:9b:27: b0:89:8e:84:4a:6e:03:58:c0:44:d2:2f:01:15:b2: 6c:d0:4f:69:17:06:8c:a6:ad:d7:c9:ae:ec:e0:e0: a9:44:e1:24:a5:a5:9a:d4:c4:8e:bf:db:a5:40:17: 7f:4c:41:a9:c7:c8:97:be:da:ce:15:dd:8b:e9:c4: 4b:07:30:e5:38:06:60:39:36:28:0c:0f:47:e0:d1: fa:12:55:59:92:cc:b2:ef:9f:da:07:22:41:08:6d: fa:fe:db:58:9c:66:cf:4d:3a:89:c7:c3:ff:a5:58: 1a:08:08:41:ae:8f:68:2c:09:70:73:29:b7:34:1e: e8:5e:d9:53:a9:b0:3d:d4:f1:b6:bd:c2:c7:29:b1: e7:6f:17:0d:37:8f:95:45:cb:ad:cb:92:c2:4b:60: d4:b6:62:ba:de:da:e7:6f:07:a6:44:89:a6:12:d3: 82:bf:db:25:28:29:61:ef:1b:e0:c5:52:55:55:04: 42:49:93:0c:03:a8:e8:f6:1d:45:ad:bb:3c:05:d1: be:68:0b:90:59:13:0d:09:79:69:2c:01:14:bf:a6: 4f:18:51:6a:e4:12:c7:d4:15:63:ae:fa:3a:72:fe: cc:cf:5b:b3:64:dd:71:7b:8b:c4:f4:5a:b7:d9:9e: 57:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:D5:0D:25:33:AF:BD:76:4C:4E:5D:3E:99:48:BB:48:2B:8B:0D:94 X509v3 Authority Key Identifier: keyid:5E:A1:A7:B8:02:E7:E7:EF:C7:7C:A1:A3:8E:52:F7:2A:CD:46:39:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqGnuALn5-_HfKGjjlL3Ks1GOTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:6a:98:51:6c:ce:46:85:e7:b4:55:67:6a:88:49:93:4a:96: f5:1f:fa:db:22:89:42:1a:39:b5:27:3f:40:42:54:48:1e:4a: 8c:28:a2:e3:c8:70:08:87:34:ad:56:b2:33:a8:bf:04:24:f1: 6a:1d:82:8c:94:ee:86:fe:c8:a1:ab:66:30:21:ca:1e:13:2b: 3d:7c:03:52:00:cd:65:8c:70:d1:c9:01:64:a7:2a:7e:29:6f: ce:64:ee:dc:38:b9:57:da:98:58:77:9b:e7:dc:d7:dd:f6:5e: 27:0d:00:88:13:7e:a8:24:09:ab:eb:ef:81:d9:22:53:fb:f7: 6d:4b:24:b3:38:c4:f0:fb:cc:3c:5e:44:fe:f4:af:a2:7f:9e: 1b:74:aa:7f:f3:99:16:ce:af:29:33:51:ea:5f:d7:d1:a9:a7: 2a:41:36:7f:d5:9a:08:59:a8:96:2a:d7:cc:f4:04:54:8a:de: b5:7d:f3:0d:4d:72:15:4b:08:22:99:c1:82:b9:3e:3b:fd:cb: 46:8d:c4:78:fe:45:1f:6a:48:1a:61:3d:e4:de:65:b6:74:d6: 4f:f7:5f:8e:b3:73:5f:d2:47:ee:9f:28:0d:82:b5:01:c7:c1: 6c:d7:63:33:c7:be:e5:78:0d:46:1d:78:0a:8f:31:f6:15:75: b3:eb:79:e9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5OTgxMTAvBgNVBAUTKDVFQTFBN0I4MDJFN0U3RUZDNzdDQTFBMzhFNTJGNzJB Q0Q0NjM5MzAwHhcNMjYwMzI0MTc1MjA2WhcNMjYwMzMxMTc1MjA2WjAYMRYwFAYD VQQDEw02OWMyY2Y0Ni0xMTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEGRsrw9rW+/SwmdmyewiY6ESm4DWMBE0i8BFbJs0E9pFwaMpq3Xya7s4OCp ROEkpaWa1MSOv9ulQBd/TEGpx8iXvtrOFd2L6cRLBzDlOAZgOTYoDA9H4NH6ElVZ ksyy75/aByJBCG36/ttYnGbPTTqJx8P/pVgaCAhBro9oLAlwcym3NB7oXtlTqbA9 1PG2vcLHKbHnbxcNN4+VRcuty5LCS2DUtmK63trnbwemRImmEtOCv9slKClh7xvg xVJVVQRCSZMMA6jo9h1Frbs8BdG+aAuQWRMNCXlpLAEUv6ZPGFFq5BLH1BVjrvo6 cv7Mz1uzZN1xe4vE9Fq32Z5XEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF/VDSUz r712TE5dPplIu0griw2UMB8GA1UdIwQYMBaAFF6hp7gC5+fvx3yho45S9yrNRjkw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTk5OC9BQjM0RkJENEYy NTgxMUU5Qjc1RTNDNzBDNEY5QUUwMi9YcUdudUFMbjUtX0hmS0dqamxMM0tzMUdP VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxR251QUxuNS1fSGZLR2pqbEwzS3MxR09UQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTk5OC9BQjM0RkJENEYyNTgxMUU5Qjc1RTNDNzBDNEY5QUUwMi9YcUdudUFMbjUt X0hmS0dqamxMM0tzMUdPVEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvmqYUWzORoXntFVnaohJk0qW9R/62yKJQho5tSc/QEJUSB5KjCii48hwCIc0 rVayM6i/BCTxah2CjJTuhv7IoatmMCHKHhMrPXwDUgDNZYxw0ckBZKcqfilvzmTu 3Di5V9qYWHeb59zX3fZeJw0AiBN+qCQJq+vvgdkiU/v3bUskszjE8PvMPF5E/vSv on+eG3Sqf/OZFs6vKTNR6l/X0amnKkE2f9WaCFmolirXzPQEVIretX3zDU1yFUsI IpnBgrk+O/3LRo3EeP5FH2pIGmE95N5ltnTWT/dfjrNzX9JH7p8oDYK1AcfBbNdj M8e+5XgNRh14Co8x9hV1s+t56Q== -----END CERTIFICATE-----Generated at Thu Mar 26 15:04:35 2026 by rpki-client