$ rpki-client -vvf rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft File: XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft (raw, json) Hash identifier: Hj5XWRBf9wDZSWlmUBHc7a1hDUXjQPuoiKLzHmyukb8= Subject key identifier: D5:E0:CA:7F:32:91:74:A0:30:00:D9:4F:F8:2C:11:8C:F1:1B:29:73 Authority key identifier: 5E:84:25:16:65:70:4C:DD:DF:2F:3F:9B:E8:2E:31:FF:B0:74:A5:8E Certificate issuer: /CN=A9127EAD/serialNumber=5E84251665704CDDDF2F3F9BE82E31FFB074A58E Certificate serial: 0899 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft Manifest number: 0890 Signing time: Thu 16 Apr 2026 20:28:49 +0000 Manifest this update: Thu 16 Apr 2026 20:28:49 +0000 Manifest next update: Thu 23 Apr 2026 20:28:49 +0000 Files and hashes: 1: XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl (hash: sozKJouCqqc4A0znbkaEdSrbzwt8y8en0bb+mY8NE7c=) 2: 6CAC2064EA2211EA9C2F064AC4F9AE02.roa (hash: HgX4tCn4FMdl0R/ylo4Q2his11f507x0EEUUjL+i3vA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:28:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2201 (0x899) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127EAD, serialNumber=5E84251665704CDDDF2F3F9BE82E31FFB074A58E Validity Not Before: Apr 16 20:28:49 2026 GMT Not After : Apr 23 20:28:49 2026 GMT Subject: CN=69e14681-c3b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b5:00:b8:f9:c7:4f:09:97:51:fb:9a:32:97: 0c:bd:fd:d9:cb:bd:e6:00:a7:ff:1a:4e:a3:51:97: c5:6a:af:92:4b:06:ec:ab:ea:59:3d:cf:f1:ea:6d: bd:6c:33:b7:c3:51:5d:5f:c5:38:92:fa:89:95:d4: 71:9b:f0:89:dd:53:34:bf:34:02:50:37:47:3c:9c: 30:80:1d:50:f5:fd:73:4a:e6:7b:49:a2:60:a3:52: 73:7e:ec:b4:d6:33:99:f5:1e:3c:5b:f2:2a:be:47: 2e:1f:7f:cf:de:35:d4:9e:66:6a:73:35:d7:14:f1: 8d:92:8e:9b:fc:04:67:36:e1:34:19:a2:12:48:fb: ce:c7:d7:05:a1:55:ed:72:ff:b9:05:35:21:a6:52: 5e:ec:97:1e:14:98:98:0d:0b:58:78:07:ca:25:16: b8:12:b6:db:b1:f8:4f:0e:e5:de:88:cc:d0:9f:2a: 9f:f9:b7:7a:f7:9e:e6:b6:d4:f6:dd:2f:bc:f3:61: 16:c3:b4:1c:29:2f:30:6c:47:c7:8e:f2:e7:4f:35: 8e:0f:bc:e6:2f:69:f0:08:e9:0f:4a:4a:31:4d:78: 52:da:d0:ab:f1:32:a4:d0:8e:a9:c2:2d:e5:3e:02: 13:c2:e8:f1:d4:ed:54:1a:18:46:02:c8:75:05:14: 37:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:E0:CA:7F:32:91:74:A0:30:00:D9:4F:F8:2C:11:8C:F1:1B:29:73 X509v3 Authority Key Identifier: keyid:5E:84:25:16:65:70:4C:DD:DF:2F:3F:9B:E8:2E:31:FF:B0:74:A5:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:dd:6d:0e:91:90:b9:54:9b:f9:22:cd:d7:ba:bf:82:20:e3: 96:4e:81:02:ab:ea:bd:65:30:f9:cf:b3:89:ee:a9:33:92:1c: 5f:b0:3d:27:18:c6:01:b9:34:da:1c:74:2a:8a:29:71:e8:f4: 41:05:05:c3:1d:8f:94:b0:99:eb:f5:3c:ec:18:14:1c:3b:25: 4b:fc:c1:3e:e2:98:b3:40:3a:c5:43:aa:a6:1a:ed:01:ae:00: 36:69:81:cc:22:c5:b1:7a:67:68:25:5d:06:7f:56:bf:70:4b: d5:84:46:19:0c:d5:68:d2:87:cd:a1:67:e6:53:d7:6f:99:94: 3f:1b:01:b1:12:af:37:8d:52:87:c0:d2:c2:82:fe:c7:b8:80: ee:ef:03:a1:d9:2c:a3:cc:a0:25:67:f2:9a:d6:c2:9b:d8:4c: 57:c5:63:6f:78:e6:7e:97:b0:65:ef:42:6b:da:00:3d:40:2c: 22:8c:07:62:36:80:dd:73:a1:1b:08:d1:40:11:67:7f:a2:12: b3:37:d4:0e:d1:02:b5:45:9b:15:06:ba:3c:be:62:bc:68:54: 13:04:a6:c4:a8:91:1f:3a:9c:91:c2:98:6e:7f:40:60:8b:ec: 09:4e:a1:ab:c7:42:4a:59:b7:45:c0:89:72:6a:69:d5:02:51: bd:b7:88:69 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdFQUQxMTAvBgNVBAUTKDVFODQyNTE2NjU3MDRDRERERjJGM0Y5QkU4MkUzMUZG QjA3NEE1OEUwHhcNMjYwNDE2MjAyODQ5WhcNMjYwNDIzMjAyODQ5WjAYMRYwFAYD VQQDEw02OWUxNDY4MS1jM2I5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm7UAuPnHTwmXUfuaMpcMvf3Zy73mAKf/Gk6jUZfFaq+SSwbsq+pZPc/x6m29 bDO3w1FdX8U4kvqJldRxm/CJ3VM0vzQCUDdHPJwwgB1Q9f1zSuZ7SaJgo1Jzfuy0 1jOZ9R48W/IqvkcuH3/P3jXUnmZqczXXFPGNko6b/ARnNuE0GaISSPvOx9cFoVXt cv+5BTUhplJe7JceFJiYDQtYeAfKJRa4ErbbsfhPDuXeiMzQnyqf+bd6957mttT2 3S+882EWw7QcKS8wbEfHjvLnTzWOD7zmL2nwCOkPSkoxTXhS2tCr8TKk0I6pwi3l PgITwujx1O1UGhhGAsh1BRQ3cwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNXgyn8y kXSgMADZT/gsEYzxGylzMB8GA1UdIwQYMBaAFF6EJRZlcEzd3y8/m+guMf+wdKWO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0VBRC9FOUI3MDY2NkVB MjAxMUVBOUNCRkFENDhDNEY5QUUwMi9Yb1FsRm1Wd1ROM2ZMei1iNkM0eF83QjBw WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvUWxGbVZ3VE4zZkx6LWI2QzR4XzdCMHBZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0VBRC9FOUI3MDY2NkVBMjAxMUVBOUNCRkFENDhDNEY5QUUwMi9Yb1FsRm1Wd1RO M2ZMei1iNkM0eF83QjBwWTQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAr91tDpGQuVSb+SLN17q/giDjlk6BAqvqvWUw+c+zie6pM5IcX7A9JxjGAbk0 2hx0Koopcej0QQUFwx2PlLCZ6/U87BgUHDslS/zBPuKYs0A6xUOqphrtAa4ANmmB zCLFsXpnaCVdBn9Wv3BL1YRGGQzVaNKHzaFn5lPXb5mUPxsBsRKvN41Sh8DSwoL+ x7iA7u8Dodkso8ygJWfymtbCm9hMV8Vjb3jmfpewZe9Ca9oAPUAsIowHYjaA3XOh GwjRQBFnf6ISszfUDtECtUWbFQa6PL5ivGhUEwSmxKiRHzqckcKYbn9AYIvsCU6h q8dCSlm3RcCJcmpp1QJRvbeIaQ== -----END CERTIFICATE-----Generated at Fri Apr 17 12:24:48 2026 by rpki-client