$ rpki-client -vvf rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft File: X3A2SNc_YGlFARjbom-WaC1a5so.mft (raw, json) Hash identifier: ozT4l5qp/EplKffg6RV5FIqsjv1Bz2ia9JTSBLsI+G0= Subject key identifier: 68:3F:75:DA:15:1B:31:3B:2D:71:0D:8B:B5:3F:D0:C0:FF:FB:90:81 Authority key identifier: 5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA Certificate issuer: /CN=A91508BB/serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Certificate serial: 352C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft Manifest number: 352C Signing time: Thu 16 Apr 2026 14:37:28 +0000 Manifest this update: Thu 16 Apr 2026 14:37:28 +0000 Manifest next update: Thu 23 Apr 2026 14:37:28 +0000 Files and hashes: 1: X3A2SNc_YGlFARjbom-WaC1a5so.crl (hash: ymxbdZLo+yO3AfVQTkKDYsuKaHcY498bvIq5jn8oW4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:37:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13612 (0x352c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91508BB, serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Validity Not Before: Apr 16 14:37:28 2026 GMT Not After : Apr 23 14:37:28 2026 GMT Subject: CN=69e0f428-a175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:9d:cc:75:44:29:2e:40:73:0c:84:a2:d9:15: 72:2a:9f:8c:2c:ee:21:ec:df:f0:cc:e3:7a:7e:29: 79:67:a5:56:06:95:69:99:20:4c:dd:ed:4b:b0:3e: 72:a6:7a:f4:92:01:a2:21:02:17:0e:cd:63:e0:a8: c3:f2:60:b3:99:12:5b:da:55:45:ce:fd:6b:2e:2d: 3a:f2:91:ae:a6:b8:08:72:25:c2:01:68:a7:6f:c7: 06:bb:a8:25:92:1a:4c:da:4c:72:79:86:3b:7c:f6: 62:58:01:f0:5a:09:30:fd:31:22:3b:73:5e:19:04: 85:f2:ce:7b:5d:de:60:74:db:41:39:59:d5:f4:f2: e4:2d:0f:ff:6e:ee:fd:73:7b:ab:c0:b8:98:2e:00: 39:f1:46:bc:e2:b9:59:a3:e5:f1:5a:7e:7b:98:3e: 59:56:57:f3:c1:72:64:b9:51:53:cf:9e:d7:09:5d: 71:d3:1f:c2:88:23:96:a7:6c:1f:55:0f:75:0b:cd: 3c:d7:10:e2:27:5c:cd:db:f2:07:ae:69:38:51:31: 92:06:ab:ff:6b:75:09:4a:ba:68:3b:af:cc:1e:ea: 70:33:da:08:96:b2:ef:a4:1a:9e:49:fd:eb:1c:52: 60:39:e0:18:5c:c2:69:a3:35:01:d3:c6:11:aa:b2: 84:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:3F:75:DA:15:1B:31:3B:2D:71:0D:8B:B5:3F:D0:C0:FF:FB:90:81 X509v3 Authority Key Identifier: keyid:5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:b3:1a:54:85:a4:d6:3f:fb:26:2f:b7:81:c2:82:16:d3:af: 53:db:12:38:a2:96:fa:b1:58:e5:ed:e1:3e:db:5e:4c:dd:88: 81:c3:43:7d:27:f4:26:81:ea:5a:d5:c0:9a:fd:c5:0f:88:b6: bf:39:7f:30:0e:0e:bd:4b:a0:84:81:e8:d3:73:e8:58:70:ab: 06:42:55:99:56:56:e5:72:f3:59:1b:5c:54:37:9c:f8:e4:99: bc:50:de:ea:e8:f9:a4:87:aa:c4:f5:cd:c8:8a:db:31:f5:3c: 4d:be:ef:26:d9:bf:ad:96:8a:30:89:97:89:d4:ce:7b:94:d2: 63:1a:0e:a1:c0:35:e1:7f:57:b5:72:2a:22:01:a1:93:f4:c4: a8:0a:77:84:1a:f5:b1:04:bf:81:fe:61:0b:03:56:bb:49:24: 84:46:7b:54:9a:be:70:f0:b8:3f:fb:95:7e:dd:43:f7:dc:8d: b2:31:0c:ee:aa:2b:f5:67:e8:ef:e2:77:a9:6e:a0:55:48:75: 00:ae:53:3d:d2:e7:6c:f2:22:72:40:ce:11:9a:c8:d7:4d:54: 5f:39:48:b6:bf:26:20:fc:0a:c5:35:2e:4d:2b:e6:14:2e:d8: cd:b9:e4:92:2a:d8:70:85:2c:da:ad:a6:12:3c:1f:e3:83:84: 95:cb:93:2a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4QkIxMTAvBgNVBAUTKDVGNzAzNjQ4RDczRjYwNjk0NTAxMThEQkEyNkY5NjY4 MkQ1QUU2Q0EwHhcNMjYwNDE2MTQzNzI4WhcNMjYwNDIzMTQzNzI4WjAYMRYwFAYD VQQDEw02OWUwZjQyOC1hMTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZ3MdUQpLkBzDISi2RVyKp+MLO4h7N/wzON6fil5Z6VWBpVpmSBM3e1LsD5y pnr0kgGiIQIXDs1j4KjD8mCzmRJb2lVFzv1rLi068pGuprgIciXCAWinb8cGu6gl khpM2kxyeYY7fPZiWAHwWgkw/TEiO3NeGQSF8s57Xd5gdNtBOVnV9PLkLQ//bu79 c3urwLiYLgA58Ua84rlZo+XxWn57mD5ZVlfzwXJkuVFTz57XCV1x0x/CiCOWp2wf VQ91C8081xDiJ1zN2/IHrmk4UTGSBqv/a3UJSrpoO6/MHupwM9oIlrLvpBqeSf3r HFJgOeAYXMJpozUB08YRqrKEwQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGg/ddoV GzE7LXENi7U/0MD/+5CBMB8GA1UdIwQYMBaAFF9wNkjXP2BpRQEY26JvlmgtWubK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDhCQi81QTBEOTU4ODFE OEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lHbEZBUmpib20tV2FDMWE1 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gzQTJTTmNfWUdsRkFSamJvbS1XYUMxYTVzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDhCQi81QTBEOTU4ODFEOEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lH bEZBUmpib20tV2FDMWE1c28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAorMaVIWk1j/7Ji+3gcKCFtOvU9sSOKKW+rFY5e3hPtteTN2IgcNDfSf0JoHq WtXAmv3FD4i2vzl/MA4OvUughIHo03PoWHCrBkJVmVZW5XLzWRtcVDec+OSZvFDe 6uj5pIeqxPXNyIrbMfU8Tb7vJtm/rZaKMImXidTOe5TSYxoOocA14X9XtXIqIgGh k/TEqAp3hBr1sQS/gf5hCwNWu0kkhEZ7VJq+cPC4P/uVft1D99yNsjEM7qor9Wfo 7+J3qW6gVUh1AK5TPdLnbPIickDOEZrI101UXzlItr8mIPwKxTUuTSvmFC7Yzbnk kirYcIUs2q2mEjwf44OElcuTKg== -----END CERTIFICATE-----Generated at Fri Apr 17 09:59:35 2026 by rpki-client