$ rpki-client -vvf rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft File: XUofz1MBwCdZyE7qVZFeJcFxpz8.mft (raw, json) Hash identifier: B6VwcltJgUf0G/WAzlJcuX41Mgze7iV4wMdUg9Lovsg= Subject key identifier: B1:67:42:A2:9D:E2:3E:E7:82:AF:D8:C5:C2:F8:A3:41:F7:55:42:3E Authority key identifier: 5D:4A:1F:CF:53:01:C0:27:59:C8:4E:EA:55:91:5E:25:C1:71:A7:3F Certificate issuer: /CN=A91194E9/serialNumber=5D4A1FCF5301C02759C84EEA55915E25C171A73F Certificate serial: 033B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft Manifest number: 0333 Signing time: Fri 17 Apr 2026 00:57:32 +0000 Manifest this update: Fri 17 Apr 2026 00:57:32 +0000 Manifest next update: Fri 24 Apr 2026 00:57:32 +0000 Files and hashes: 1: XUofz1MBwCdZyE7qVZFeJcFxpz8.crl (hash: 95KcCa5oMAQF0plYt7L8iQiZ7HFwlWfGtoxarG9uh90=) 2: 388802BC067711EDA1DEB529C4F9AE02.roa (hash: ZLrpjaK1+7gnd1piN93H0vUz3/K0I8ARXc+tRTMhSrw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.crl rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:57:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 827 (0x33b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91194E9, serialNumber=5D4A1FCF5301C02759C84EEA55915E25C171A73F Validity Not Before: Apr 17 00:57:32 2026 GMT Not After : Apr 24 00:57:32 2026 GMT Subject: CN=69e1857c-5d28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:8f:95:56:57:c4:fe:a2:1b:a7:16:74:57:a3: ad:52:e8:27:26:68:8f:66:b0:df:2f:ce:07:83:ca: c3:2e:c4:31:b0:8a:cc:cd:f3:b8:83:ab:e0:96:88: 1c:7c:d2:95:55:7d:04:3a:0c:a3:2d:a4:84:e7:a4: 2c:de:5b:60:4b:3d:08:a3:88:cb:37:97:65:e5:25: 0e:17:2e:58:d9:41:68:ff:f4:71:42:48:ac:d6:7d: 61:80:bc:66:46:95:de:f5:67:92:05:22:b1:c4:d2: 1e:1d:42:c5:ef:d8:e1:40:ce:9f:a8:97:f0:a1:5c: b4:a3:12:1c:c2:15:4f:e2:0b:dc:eb:6d:c7:6b:c7: 7f:2e:75:c4:07:ee:3e:96:7f:c1:9c:98:34:49:ac: 05:e3:45:6c:7b:e1:f7:32:d8:d4:34:98:78:34:c1: 9b:6d:b2:b8:3c:b2:21:f3:99:7c:3d:b8:11:00:4d: a6:a8:dc:3c:84:30:bd:6d:d5:db:90:37:4f:fb:44: b7:b4:4a:10:a1:15:01:02:e6:3e:48:56:f0:39:70: d0:42:9b:fe:a3:12:4b:59:99:ca:8a:0a:10:35:00: 13:3a:f9:3f:73:16:43:38:bb:89:04:48:c3:e0:c9: 7e:e5:d0:9f:d1:0c:a6:ef:19:28:84:32:0e:40:c2: db:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:67:42:A2:9D:E2:3E:E7:82:AF:D8:C5:C2:F8:A3:41:F7:55:42:3E X509v3 Authority Key Identifier: keyid:5D:4A:1F:CF:53:01:C0:27:59:C8:4E:EA:55:91:5E:25:C1:71:A7:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:d8:3b:a6:bf:cd:d4:e0:a5:a1:82:a7:59:cd:7e:23:d3:26: 2a:b6:78:c2:c7:d4:b0:a5:58:a9:42:19:7f:bf:3f:70:48:02: d0:2d:35:55:56:2a:8c:15:15:24:f0:85:e4:5b:ed:65:dc:7a: 52:d2:77:38:60:e5:34:93:db:b7:f1:c7:36:99:52:39:da:80: 74:10:be:aa:8d:16:43:7d:7d:69:64:11:b3:4b:bc:ba:53:f9: c6:a3:38:47:29:b3:94:d8:f2:7f:55:fb:a0:7a:47:00:41:e2: 19:5c:66:5c:f3:53:1b:28:1e:e8:ac:41:bf:78:e5:39:10:49: c3:db:cd:4f:66:81:e9:cc:e0:6a:67:d2:36:c5:1a:22:57:75: c3:c2:fd:fa:d3:89:ca:3d:d3:7e:68:7f:4c:1e:50:bb:a6:ff: d7:8e:73:23:38:16:4c:c0:5c:2e:f4:f4:82:e8:4e:90:97:3f: b8:ef:85:b9:dd:60:96:0b:fc:2f:cd:fa:2c:b1:53:00:86:f4: 53:88:15:8f:04:e6:f9:e1:8c:38:69:a8:30:1e:85:c3:d2:3f: 21:5d:d9:18:96:b6:d6:12:7d:01:e8:c6:3f:f9:9e:ae:58:96: e5:aa:1d:de:16:75:0b:64:6f:9d:99:8a:d2:77:f5:37:e1:f7: 61:49:bd:a8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk0RTkxMTAvBgNVBAUTKDVENEExRkNGNTMwMUMwMjc1OUM4NEVFQTU1OTE1RTI1 QzE3MUE3M0YwHhcNMjYwNDE3MDA1NzMyWhcNMjYwNDI0MDA1NzMyWjAYMRYwFAYD VQQDEw02OWUxODU3Yy01ZDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnI+VVlfE/qIbpxZ0V6OtUugnJmiPZrDfL84Hg8rDLsQxsIrMzfO4g6vglogc fNKVVX0EOgyjLaSE56Qs3ltgSz0Io4jLN5dl5SUOFy5Y2UFo//RxQkis1n1hgLxm RpXe9WeSBSKxxNIeHULF79jhQM6fqJfwoVy0oxIcwhVP4gvc623Ha8d/LnXEB+4+ ln/BnJg0SawF40Vse+H3MtjUNJh4NMGbbbK4PLIh85l8PbgRAE2mqNw8hDC9bdXb kDdP+0S3tEoQoRUBAuY+SFbwOXDQQpv+oxJLWZnKigoQNQATOvk/cxZDOLuJBEjD 4Ml+5dCf0Qym7xkohDIOQMLbiwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLFnQqKd 4j7ngq/YxcL4o0H3VUI+MB8GA1UdIwQYMBaAFF1KH89TAcAnWchO6lWRXiXBcac/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTRFOS9DNUQ1RTRDQTA2 NzQxMUVEQjFEMjlBMjhDNEY5QUUwMi9YVW9mejFNQndDZFp5RTdxVlpGZUpjRnhw ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVb2Z6MU1Cd0NkWnlFN3FWWkZlSmNGeHB6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTRFOS9DNUQ1RTRDQTA2NzQxMUVEQjFEMjlBMjhDNEY5QUUwMi9YVW9mejFNQndD ZFp5RTdxVlpGZUpjRnhwejgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHtg7pr/N1OCloYKnWc1+I9MmKrZ4wsfUsKVYqUIZf78/cEgC0C01VVYqjBUV JPCF5FvtZdx6UtJ3OGDlNJPbt/HHNplSOdqAdBC+qo0WQ319aWQRs0u8ulP5xqM4 RymzlNjyf1X7oHpHAEHiGVxmXPNTGyge6KxBv3jlORBJw9vNT2aB6czgamfSNsUa Ild1w8L9+tOJyj3Tfmh/TB5Qu6b/145zIzgWTMBcLvT0guhOkJc/uO+Fud1glgv8 L836LLFTAIb0U4gVjwTm+eGMOGmoMB6Fw9I/IV3ZGJa21hJ9AejGP/merliW5aod 3hZ1C2RvnZmK0nf1N+H3YUm9qA== -----END CERTIFICATE-----Generated at Fri Apr 17 19:07:58 2026 by rpki-client