$ rpki-client -vvf rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft File: XrCY701WVcxmtq-Bw83kBi2ALzs.mft (raw, json) Hash identifier: ayEQ0yEH4i40kkKVAuRF+B+jM1aGUTQfGMzdO7f+w+M= Subject key identifier: 88:BC:2D:B8:E5:84:BB:F7:55:C0:05:B0:62:42:45:3D:09:CA:39:62 Authority key identifier: 5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B Certificate issuer: /CN=A919E3FB/serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B Certificate serial: 0569 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft Manifest number: 0561 Signing time: Tue 24 Mar 2026 23:03:02 +0000 Manifest this update: Tue 24 Mar 2026 23:03:01 +0000 Manifest next update: Tue 31 Mar 2026 23:03:01 +0000 Files and hashes: 1: XrCY701WVcxmtq-Bw83kBi2ALzs.crl (hash: 1ObcRl3lT7e5g4QarTBH0cBeFYmPWYjSyfWd2WlO15o=) 2: B4D8E692267111ECA0546981C4F9AE02.roa (hash: CMK57h7d3VJ8Y5Z6L2ancbIus6PT121u0oU6HX7o5tQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:03:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1385 (0x569) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E3FB, serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B Validity Not Before: Mar 24 23:03:01 2026 GMT Not After : Mar 31 23:03:01 2026 GMT Subject: CN=69c31826-2c46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:93:b3:00:12:fd:78:eb:68:6a:1a:79:cb:67: eb:7d:b3:5e:06:09:f3:5a:00:c8:ac:83:52:a0:c7: f4:9b:97:cc:09:cf:66:8c:cf:c7:a9:b4:95:a3:ef: bf:52:a8:4d:23:83:3f:ae:ea:d7:79:38:14:6c:54: a7:5d:40:f7:49:e9:d7:0e:cc:56:a6:60:d1:f0:98: 57:aa:58:60:c6:ef:8f:d0:6f:2f:ca:59:aa:59:27: 89:65:d7:29:47:4e:36:73:b7:d4:97:88:0d:c5:ff: 39:e0:c1:42:1a:2a:39:90:ca:cc:6d:fd:80:92:6d: be:c4:a2:39:74:37:c2:27:77:bd:f1:01:47:42:e7: ef:74:ab:e0:97:dd:4e:35:7e:ec:c7:17:70:4a:20: c5:80:47:19:8f:8f:23:f3:ca:d8:3d:8b:b0:d7:ca: f4:a8:3c:2b:3b:eb:36:b4:48:74:c6:d3:c3:28:35: ec:1d:a0:6b:f2:72:5b:33:59:d6:cc:e6:13:d4:72: 76:fd:e0:5a:00:1e:61:2e:04:c0:31:eb:7b:65:4b: 66:61:e8:85:cd:0f:ef:ca:39:59:e6:d7:ae:32:9c: 5a:8a:14:b4:63:3b:02:59:b0:81:69:49:cb:43:52: 70:5e:5e:63:c4:bd:e8:f6:92:65:ad:20:49:a7:88: cc:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:BC:2D:B8:E5:84:BB:F7:55:C0:05:B0:62:42:45:3D:09:CA:39:62 X509v3 Authority Key Identifier: keyid:5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:f4:ee:f5:24:34:e4:88:45:cc:66:ff:09:d6:f3:c9:68:80: f1:a5:8c:b5:8e:00:8d:fd:ec:24:66:ec:fb:28:6d:c8:8b:36: 03:6c:6b:79:ce:ad:d5:0b:25:51:12:81:42:32:1e:52:8c:d5: 39:ca:af:9c:ed:db:3c:9e:a0:85:d4:41:ff:78:b8:f1:2c:34: 36:c0:9c:62:c2:87:cd:af:3c:1e:b8:67:f5:f0:a9:15:d5:10: bb:92:a6:7f:a4:56:49:18:17:07:90:00:db:31:61:9b:cb:94: f2:fd:59:ac:23:a3:3d:c7:26:b8:11:7e:ba:6c:8e:65:67:74: 13:53:f4:4e:34:a8:a8:fd:77:d9:8d:a8:8c:0d:91:f6:b3:2f: 2c:19:dc:ce:19:85:5d:91:50:e1:0f:d6:1e:aa:6c:74:0b:40: 4d:67:cf:46:ca:76:96:6e:6a:38:0d:58:a1:f9:0b:4a:86:a1: 00:92:17:94:25:45:b7:80:f9:12:93:d4:99:6d:ca:07:fe:e5: 1c:42:a2:d2:0f:f9:1c:95:7e:34:68:b1:46:90:b2:35:fe:f6: 9d:97:6a:70:bd:59:87:0e:2e:cb:71:36:6f:75:2a:82:92:eb: 6b:64:70:5b:e4:4c:d9:21:5f:af:bd:ac:07:83:fb:b7:d8:d1: 74:eb:e2:24 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUzRkIxMTAvBgNVBAUTKDVFQjA5OEVGNEQ1NjU1Q0M2NkI2QUY4MUMzQ0RFNDA2 MkQ4MDJGM0IwHhcNMjYwMzI0MjMwMzAxWhcNMjYwMzMxMjMwMzAxWjAYMRYwFAYD VQQDEw02OWMzMTgyNi0yYzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0JOzABL9eOtoahp5y2frfbNeBgnzWgDIrINSoMf0m5fMCc9mjM/HqbSVo++/ UqhNI4M/rurXeTgUbFSnXUD3SenXDsxWpmDR8JhXqlhgxu+P0G8vylmqWSeJZdcp R042c7fUl4gNxf854MFCGio5kMrMbf2Akm2+xKI5dDfCJ3e98QFHQufvdKvgl91O NX7sxxdwSiDFgEcZj48j88rYPYuw18r0qDwrO+s2tEh0xtPDKDXsHaBr8nJbM1nW zOYT1HJ2/eBaAB5hLgTAMet7ZUtmYeiFzQ/vyjlZ5teuMpxaihS0YzsCWbCBaUnL Q1JwXl5jxL3o9pJlrSBJp4jMpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIi8Lbjl hLv3VcAFsGJCRT0JyjliMB8GA1UdIwQYMBaAFF6wmO9NVlXMZravgcPN5AYtgC87 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTNGQi9GREQ0NEMyMjI2 NkUxMUVDQUMwOTdDN0JDNEY5QUUwMi9YckNZNzAxV1ZjeG10cS1Cdzgza0JpMkFM enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hyQ1k3MDFXVmN4bXRxLUJ3ODNrQmkyQUx6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTNGQi9GREQ0NEMyMjI2NkUxMUVDQUMwOTdDN0JDNEY5QUUwMi9YckNZNzAxV1Zj eG10cS1Cdzgza0JpMkFMenMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcPTu9SQ05IhFzGb/CdbzyWiA8aWMtY4Ajf3sJGbs+yhtyIs2A2xrec6t1Qsl URKBQjIeUozVOcqvnO3bPJ6ghdRB/3i48Sw0NsCcYsKHza88Hrhn9fCpFdUQu5Km f6RWSRgXB5AA2zFhm8uU8v1ZrCOjPccmuBF+umyOZWd0E1P0TjSoqP132Y2ojA2R 9rMvLBnczhmFXZFQ4Q/WHqpsdAtATWfPRsp2lm5qOA1YofkLSoahAJIXlCVFt4D5 EpPUmW3KB/7lHEKi0g/5HJV+NGixRpCyNf72nZdqcL1Zhw4uy3E2b3UqgpLra2Rw W+RM2SFfr72sB4P7t9jRdOviJA== -----END CERTIFICATE-----Generated at Thu Mar 26 11:58:10 2026 by rpki-client