$ rpki-client -vvf rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft File: XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft (raw, json) Hash identifier: 7xfIdr0GwuKz3NoB22T0N0sb9klh6NhGGFoJy5DMRrA= Subject key identifier: 2D:F4:E7:37:A2:09:F7:A0:52:8C:D1:71:76:1B:CF:7D:8A:D2:F4:91 Authority key identifier: 5C:2C:58:27:C4:E8:99:BC:2A:50:34:06:C5:CB:09:B1:8E:13:3F:C6 Certificate issuer: /CN=A9153F9E/serialNumber=5C2C5827C4E899BC2A503406C5CB09B18E133FC6 Certificate serial: 077C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft Manifest number: 077C Signing time: Thu 16 Apr 2026 21:27:47 +0000 Manifest this update: Thu 16 Apr 2026 21:27:47 +0000 Manifest next update: Thu 23 Apr 2026 21:27:47 +0000 Files and hashes: 1: XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl (hash: 4l7TTBJfBk7bFk8UfTweXDKoE93Qcg2NdisVlcj4O7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1916 (0x77c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153F9E, serialNumber=5C2C5827C4E899BC2A503406C5CB09B18E133FC6 Validity Not Before: Apr 16 21:27:47 2026 GMT Not After : Apr 23 21:27:47 2026 GMT Subject: CN=69e15453-5e11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:9c:3b:40:de:48:99:12:52:d0:b1:35:2d:a4: b2:5a:56:a0:cd:95:a6:aa:28:be:01:c9:71:5e:76: 33:3d:af:fd:01:23:dc:15:5d:2d:2f:f3:7f:6e:24: 2c:dc:f2:51:f3:df:70:c1:0f:9e:aa:a8:52:db:03: 85:de:a2:7c:41:84:8d:b0:35:16:c8:8e:14:8c:22: a5:6d:36:9b:35:e3:77:62:4e:58:14:2e:a4:3f:54: f9:6e:d8:ba:8a:fd:a1:12:9e:bc:4d:46:23:7a:77: 68:2b:3d:94:29:58:a7:25:10:33:ef:55:63:05:ee: 97:f8:71:40:f2:d2:4b:56:d5:56:ce:0e:af:a4:d0: 9a:78:c3:93:5e:72:2b:29:a5:6d:57:e0:58:32:64: 76:9c:5f:3f:0b:9d:a3:f6:70:73:d5:80:ac:83:10: ce:ef:c0:04:09:c4:13:45:ce:2e:69:28:0d:e9:29: 48:2c:ac:68:1c:03:77:c9:3f:79:bb:74:57:17:33: 96:e6:f0:5f:71:d6:cc:c2:3f:e1:69:ca:8b:d2:bf: bd:49:c7:3a:66:b6:bd:76:b3:c0:27:98:53:a4:1e: f5:d7:b9:07:b3:8d:1c:07:50:8f:81:12:be:f6:e1: dc:a6:70:9e:7c:1f:a7:a5:49:b6:cd:5d:fb:1e:7c: f8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F4:E7:37:A2:09:F7:A0:52:8C:D1:71:76:1B:CF:7D:8A:D2:F4:91 X509v3 Authority Key Identifier: keyid:5C:2C:58:27:C4:E8:99:BC:2A:50:34:06:C5:CB:09:B1:8E:13:3F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:95:4d:b2:35:b3:4e:cc:e2:fe:ba:ea:07:92:fa:85:ef:41: e4:0d:e7:b7:51:1d:ce:29:b2:38:07:73:49:71:c3:c3:7f:5b: 58:20:e8:77:68:6f:ce:5b:85:b0:84:e3:8a:2b:4a:9a:06:bb: 16:c5:52:0e:76:ec:22:40:8f:71:10:44:ff:62:2d:1e:76:b9: 6f:02:49:3c:f6:2a:12:4f:6b:28:c4:76:d3:28:05:78:9a:d9: 82:5f:5e:c3:82:8d:12:02:3c:ba:e3:fa:0d:b3:4c:52:4b:e3: 04:7f:7b:93:28:e3:a2:54:54:41:63:42:6e:7d:91:ea:09:c6: 26:ae:50:4d:45:ba:69:47:e4:2a:57:48:30:b4:66:56:6c:59: 51:b5:1d:4d:78:a7:80:3d:76:ad:e8:0f:14:27:8f:15:ae:8e: 87:71:4b:1e:3d:97:27:35:c0:9a:37:1a:80:63:44:4a:9b:13: b2:bc:77:af:12:ee:f8:ee:20:cd:e5:87:08:54:82:88:31:5b: 30:dd:86:bf:bd:ac:71:1c:b2:d3:90:cd:7d:23:c5:33:14:be: ba:a5:10:00:8b:88:76:22:4f:96:3a:1f:04:4b:14:43:4e:b2: fb:c0:fe:9d:79:96:a2:1b:e4:ec:db:3c:13:db:8d:56:e8:a7: 2e:e4:35:bb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNGOUUxMTAvBgNVBAUTKDVDMkM1ODI3QzRFODk5QkMyQTUwMzQwNkM1Q0IwOUIx OEUxMzNGQzYwHhcNMjYwNDE2MjEyNzQ3WhcNMjYwNDIzMjEyNzQ3WjAYMRYwFAYD VQQDEw02OWUxNTQ1My01ZTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnZw7QN5ImRJS0LE1LaSyWlagzZWmqii+AclxXnYzPa/9ASPcFV0tL/N/biQs 3PJR899wwQ+eqqhS2wOF3qJ8QYSNsDUWyI4UjCKlbTabNeN3Yk5YFC6kP1T5bti6 iv2hEp68TUYjendoKz2UKVinJRAz71VjBe6X+HFA8tJLVtVWzg6vpNCaeMOTXnIr KaVtV+BYMmR2nF8/C52j9nBz1YCsgxDO78AECcQTRc4uaSgN6SlILKxoHAN3yT95 u3RXFzOW5vBfcdbMwj/hacqL0r+9Scc6Zra9drPAJ5hTpB7117kHs40cB1CPgRK+ 9uHcpnCefB+npUm2zV37Hnz4VwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC305zei CfegUozRcXYbz32K0vSRMB8GA1UdIwQYMBaAFFwsWCfE6Jm8KlA0BsXLCbGOEz/G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Y5RS8wMEQ4Qzg4QzUz QUYxMUVCOTkzMDA5MTZDNEY5QUUwMi9YQ3hZSjhUb21id3FVRFFHeGNzSnNZNFRQ OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hDeFlKOFRvbWJ3cVVEUUd4Y3NKc1k0VFA4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0Y5RS8wMEQ4Qzg4QzUzQUYxMUVCOTkzMDA5MTZDNEY5QUUwMi9YQ3hZSjhUb21i d3FVRFFHeGNzSnNZNFRQOFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJZVNsjWzTszi/rrqB5L6he9B5A3nt1EdzimyOAdzSXHDw39bWCDod2hvzluF sITjiitKmga7FsVSDnbsIkCPcRBE/2ItHna5bwJJPPYqEk9rKMR20ygFeJrZgl9e w4KNEgI8uuP6DbNMUkvjBH97kyjjolRUQWNCbn2R6gnGJq5QTUW6aUfkKldIMLRm VmxZUbUdTXingD12regPFCePFa6Oh3FLHj2XJzXAmjcagGNESpsTsrx3rxLu+O4g zeWHCFSCiDFbMN2Gv72scRyy05DNfSPFMxS+uqUQAIuIdiJPljofBEsUQ06y+8D+ nXmWohvk7Ns8E9uNVuinLuQ1uw== -----END CERTIFICATE-----Generated at Fri Apr 17 15:46:38 2026 by rpki-client