$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft File: XfVm12I2fCjH8_ElYbRxa4yhuWY.mft (raw, json) Hash identifier: XGkCgUguT8c9tkv9l2aMIc63MJMyTJu9FqTvnmRhzWI= Subject key identifier: 90:97:54:9F:74:79:35:45:62:D4:B3:06:6E:8F:AC:9D:05:A8:0D:21 Authority key identifier: 5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 Certificate issuer: /CN=A9133B47/serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Certificate serial: 0176 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft Manifest number: 016D Signing time: Fri 17 Apr 2026 04:29:34 +0000 Manifest this update: Fri 17 Apr 2026 04:29:33 +0000 Manifest next update: Fri 24 Apr 2026 04:29:33 +0000 Files and hashes: 1: XfVm12I2fCjH8_ElYbRxa4yhuWY.crl (hash: mrIwMdUaR2I/a3SwMd+ZSm/ivYl9sSJIMSwr1GztEOI=) 2: 23B1A0120FA511EFB28F5235C4F9AE02.roa (hash: U8i0qlU1iG7iGGOct1cXwPlwr4Q9fN1z2Du4FOYXcDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:29:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 374 (0x176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B47, serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Validity Not Before: Apr 17 04:29:33 2026 GMT Not After : Apr 24 04:29:33 2026 GMT Subject: CN=69e1b72e-def5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:65:64:7b:7f:3d:71:ef:ad:38:04:eb:94:35: 02:06:4d:79:63:95:e3:db:14:fd:94:8b:f4:30:b4: 07:ee:b7:a1:80:7a:6c:49:70:10:e8:60:5c:60:47: 2b:8e:ea:61:f3:36:69:5f:ba:5f:87:ed:24:74:94: 6d:19:ac:61:4c:c1:ad:54:15:ef:0f:3f:24:7b:0d: 33:23:cc:c6:9d:0d:1a:e5:82:0d:65:ac:b4:6d:36: 5b:8e:52:36:79:4b:5d:38:59:a0:81:a9:8d:91:fc: d3:8d:dd:18:40:3a:0b:23:d7:40:ec:9c:46:dd:4f: a4:57:38:af:5b:b6:85:f6:b1:e7:bb:bf:63:54:09: a4:4d:e8:64:6e:ca:fb:57:e5:92:45:28:a1:bf:82: fc:bb:eb:f5:4a:d1:a2:34:d3:60:a3:0f:57:ee:17: d0:03:12:ef:ad:42:aa:af:1c:96:12:2e:44:f2:49: 2f:60:89:d3:7c:fd:ea:0f:89:d8:84:d2:1f:fc:a6: 30:91:a1:29:7b:be:e5:69:68:36:97:79:17:7f:90: c6:75:84:fb:1f:f1:a9:7b:33:70:d7:ce:0d:ad:0d: fb:12:69:e4:10:e2:df:65:94:c6:64:08:70:a2:3b: f7:63:08:f8:69:ae:e3:0d:75:25:e0:06:89:7b:e4: 5c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:97:54:9F:74:79:35:45:62:D4:B3:06:6E:8F:AC:9D:05:A8:0D:21 X509v3 Authority Key Identifier: keyid:5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:cd:4c:ea:94:43:26:ff:cb:60:93:3f:73:bd:82:67:fd:c7: dc:fe:fb:24:e5:af:ac:a0:19:4e:38:38:11:6c:f7:bf:b4:63: c8:f8:c6:b3:2b:e8:70:ba:52:84:a3:2d:80:06:87:36:d7:0d: 7b:37:cd:d6:03:1a:f1:2b:47:78:55:a3:40:d2:ed:d3:b9:3a: 35:c5:6a:c9:f0:06:11:b7:bf:77:b9:69:ce:15:05:f4:12:87: 83:a5:3a:63:03:38:3a:70:d0:61:44:4f:56:8a:45:6f:6f:a4: 64:7b:d7:3f:52:c6:10:98:66:82:21:35:ca:0b:1b:7c:d5:e4: 1c:d0:25:77:b2:1c:54:0d:42:c1:2c:dd:0e:53:ba:a0:eb:cd: 5e:23:5e:53:61:e0:7e:98:95:05:ad:cd:a0:c9:85:16:86:a2: 25:5f:7f:7c:2d:81:91:fa:f3:41:8c:f6:66:18:59:6d:65:03: 8d:58:7a:d5:ba:21:88:15:19:56:c3:bc:b7:f3:42:90:08:bb: 66:0a:ff:e2:15:c6:d1:35:bb:c8:78:42:c0:6e:27:87:43:32: a5:ef:70:1b:f0:e6:83:df:d2:d3:f5:eb:ec:a4:86:ce:30:99: 12:b8:6e:a3:56:ec:89:1d:12:0e:a1:01:17:fd:bb:63:69:00: 51:bf:d5:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCNDcxMTAvBgNVBAUTKDVERjU2NkQ3NjIzNjdDMjhDN0YzRjEyNTYxQjQ3MTZC OENBMUI5NjYwHhcNMjYwNDE3MDQyOTMzWhcNMjYwNDI0MDQyOTMzWjAYMRYwFAYD VQQDEw02OWUxYjcyZS1kZWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWVke389ce+tOATrlDUCBk15Y5Xj2xT9lIv0MLQH7rehgHpsSXAQ6GBcYEcr juph8zZpX7pfh+0kdJRtGaxhTMGtVBXvDz8kew0zI8zGnQ0a5YINZay0bTZbjlI2 eUtdOFmggamNkfzTjd0YQDoLI9dA7JxG3U+kVzivW7aF9rHnu79jVAmkTehkbsr7 V+WSRSihv4L8u+v1StGiNNNgow9X7hfQAxLvrUKqrxyWEi5E8kkvYInTfP3qD4nY hNIf/KYwkaEpe77laWg2l3kXf5DGdYT7H/GpezNw184NrQ37EmnkEOLfZZTGZAhw ojv3Ywj4aa7jDXUl4AaJe+RctQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJCXVJ90 eTVFYtSzBm6PrJ0FqA0hMB8GA1UdIwQYMBaAFF31ZtdiNnwox/PxJWG0cWuMoblm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0I0Ny84NzFCOTI5NDBG QTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZDakg4X0VsWWJSeGE0eWh1 V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmVm0xMkkyZkNqSDhfRWxZYlJ4YTR5aHVXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0I0Ny84NzFCOTI5NDBGQTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZD akg4X0VsWWJSeGE0eWh1V1kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOc1M6pRDJv/LYJM/c72CZ/3H3P77JOWvrKAZTjg4EWz3v7RjyPjGsyvocLpS hKMtgAaHNtcNezfN1gMa8StHeFWjQNLt07k6NcVqyfAGEbe/d7lpzhUF9BKHg6U6 YwM4OnDQYURPVopFb2+kZHvXP1LGEJhmgiE1ygsbfNXkHNAld7IcVA1CwSzdDlO6 oOvNXiNeU2HgfpiVBa3NoMmFFoaiJV9/fC2BkfrzQYz2ZhhZbWUDjVh61bohiBUZ VsO8t/NCkAi7Zgr/4hXG0TW7yHhCwG4nh0Mype9wG/Dmg9/S0/Xr7KSGzjCZErhu o1bsiR0SDqEBF/27Y2kAUb/VqQ== -----END CERTIFICATE-----Generated at Fri Apr 17 18:44:51 2026 by rpki-client