$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json) Hash identifier: TS8qZBXNqfWmlnGXaM34AnrVj4QNW/1HAuW3mM+7DEk= Subject key identifier: EA:A2:8D:C2:28:97:D3:8D:6B:B8:95:44:8F:0C:36:45:AA:F8:8A:D9 Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: 0124 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft Manifest number: 011B Signing time: Fri 17 Apr 2026 05:32:02 +0000 Manifest this update: Fri 17 Apr 2026 05:32:01 +0000 Manifest next update: Fri 24 Apr 2026 05:32:01 +0000 Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: efsSR1n2fHWHUmBShtYKhT/tDrknuHrtrLljJJA3Spc=) 2: CB24F37C033711F0B76A8520C4F9AE02.roa (hash: XEgsmSONdO5QmyZ+W6pwM4gqDm2Ruw04W/Sgse84F1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Validity Not Before: Apr 17 05:32:01 2026 GMT Not After : Apr 24 05:32:01 2026 GMT Subject: CN=69e1c5d2-da15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a3:d5:cc:2d:11:d6:e9:a4:df:69:41:3f:67: 5e:dc:ec:81:1f:65:78:96:53:09:c9:1d:fd:d9:16: 3a:ac:3e:7e:ee:18:e4:5b:0e:86:80:86:a3:3d:1b: 8a:27:dc:c9:d1:6f:b5:06:7d:78:c7:c9:18:b7:4c: e0:22:cc:e7:b4:80:bd:30:a2:5c:5d:d3:99:5b:09: 32:9e:64:52:8b:d9:9a:36:55:60:bd:1c:50:f8:3b: 91:d4:16:9b:18:85:7f:51:63:c6:aa:50:a0:db:6d: 93:33:35:d9:5c:a4:79:f0:e4:ac:88:1e:5e:b4:53: d0:54:09:4c:5e:1a:c0:06:59:5e:ba:6f:0a:b8:72: c1:cb:02:cb:7c:24:40:54:78:65:1b:63:8c:f7:f7: 24:e2:b6:81:55:fe:5c:6b:9e:1e:f1:6d:9c:29:c0: a7:e2:da:68:35:1e:b4:a3:e1:0e:bc:be:98:99:b6: 35:9a:c9:9f:c5:67:ff:8b:d8:63:70:75:52:34:0b: c5:cd:e7:07:4f:e5:00:bb:a4:2a:4f:17:22:e4:f5: 88:8d:66:9e:be:b0:cf:de:9f:b5:bd:f2:32:f7:2a: c0:09:32:cc:fa:5e:a6:30:da:6d:ad:31:b6:83:5e: 1c:00:9a:6f:34:99:46:e7:32:46:53:b1:3b:37:01: 47:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:A2:8D:C2:28:97:D3:8D:6B:B8:95:44:8F:0C:36:45:AA:F8:8A:D9 X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:57:83:89:54:9b:43:00:70:e5:8c:62:0d:2c:e8:1a:17:1a: a5:a1:62:84:e4:8e:f2:a6:ad:9e:1c:74:76:36:36:89:29:23: 76:d2:11:52:36:f3:57:29:ef:2f:76:7c:3d:cf:da:e6:b1:c9: f0:e2:4c:3d:24:c8:d4:45:ec:f5:fe:f6:cf:4e:0f:9c:7a:6f: a4:21:2f:0c:93:5b:e2:76:dd:3c:ff:92:f8:c1:e2:71:c6:d1: 6a:80:de:68:50:c5:a5:32:ee:c6:d2:94:73:48:ea:d3:a8:6f: f7:84:35:8c:23:ba:79:db:cb:1c:ad:29:37:90:ee:59:27:af: cd:03:f4:a1:4e:06:f2:eb:4e:f9:c3:75:f1:35:8d:3d:7d:c8: 3c:de:55:a3:22:59:f1:79:97:c1:b7:df:d7:8c:54:4a:2f:12: 6b:93:19:44:22:50:41:9f:34:77:7f:45:84:53:fc:2f:d7:ff: 03:be:00:10:43:5d:1d:33:c3:3b:bf:f6:66:d2:ec:6d:9a:b2: aa:4a:48:56:ea:93:d2:64:30:3a:f8:1e:f5:de:d0:89:35:21: 62:b3:dd:96:09:a1:64:43:86:88:c4:3e:0c:4e:25:07:a8:d1: cc:c3:bc:68:ef:0d:b3:62:7d:2e:aa:62:d6:b0:af:73:77:39: f7:5f:d1:fa -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI3ODcxMTAvBgNVBAUTKDVEOTQ2RDRGNDc5RDM3QkNFMTcwMENCMEJBREQ1MUEy QzNERjYyMEYwHhcNMjYwNDE3MDUzMjAxWhcNMjYwNDI0MDUzMjAxWjAYMRYwFAYD VQQDEw02OWUxYzVkMi1kYTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26PVzC0R1umk32lBP2de3OyBH2V4llMJyR392RY6rD5+7hjkWw6GgIajPRuK J9zJ0W+1Bn14x8kYt0zgIszntIC9MKJcXdOZWwkynmRSi9maNlVgvRxQ+DuR1Bab GIV/UWPGqlCg222TMzXZXKR58OSsiB5etFPQVAlMXhrABlleum8KuHLBywLLfCRA VHhlG2OM9/ck4raBVf5ca54e8W2cKcCn4tpoNR60o+EOvL6YmbY1msmfxWf/i9hj cHVSNAvFzecHT+UAu6QqTxci5PWIjWaevrDP3p+1vfIy9yrACTLM+l6mMNptrTG2 g14cAJpvNJlG5zJGU7E7NwFHVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOqijcIo l9ONa7iVRI8MNkWq+IrZMB8GA1UdIwQYMBaAFF2UbU9HnTe84XAMsLrdUaLD32IP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mjc4Ny8yMjg2NTYyQThG NzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43emhjQXl3dXQxUm9zUGZZ ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZllnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mjc4Ny8yMjg2NTYyQThGNzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43 emhjQXl3dXQxUm9zUGZZZzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqleDiVSbQwBw5YxiDSzoGhcapaFihOSO8qatnhx0djY2iSkjdtIRUjbzVynv L3Z8Pc/a5rHJ8OJMPSTI1EXs9f72z04PnHpvpCEvDJNb4nbdPP+S+MHiccbRaoDe aFDFpTLuxtKUc0jq06hv94Q1jCO6edvLHK0pN5DuWSevzQP0oU4G8utO+cN18TWN PX3IPN5VoyJZ8XmXwbff14xUSi8Sa5MZRCJQQZ80d39FhFP8L9f/A74AEENdHTPD O7/2ZtLsbZqyqkpIVuqT0mQwOvge9d7QiTUhYrPdlgmhZEOGiMQ+DE4lB6jRzMO8 aO8Ns2J9Lqpi1rCvc3c591/R+g== -----END CERTIFICATE-----Generated at Fri Apr 17 14:17:37 2026 by rpki-client