$ rpki-client -vvf rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft File: X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft (raw, json) Hash identifier: b8gHrQjiuFI9rWvu46bzJopVMCWP7R6Kd5clJaEn3Iw= Subject key identifier: 2C:42:71:72:67:02:17:B6:12:10:97:67:47:81:17:13:F7:D8:E8:F9 Authority key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 Certificate issuer: /CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Certificate serial: 029C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft Manifest number: 0290 Signing time: Fri 17 Apr 2026 01:29:46 +0000 Manifest this update: Fri 17 Apr 2026 01:29:46 +0000 Manifest next update: Fri 24 Apr 2026 01:29:46 +0000 Files and hashes: 1: X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl (hash: LC3NSsqSbsC6Zs8SdroYr35p34GNDeLRzym3WnKhRjU=) 2: D1FCB742514711ED92E3885EC4F9AE02.roa (hash: mF+0oU+0n20Cgq5ko570coLg0lSVzI4jtUFqm1rkd8w=) 3: 5637146C507611EDB59D9E2EC4F9AE02.roa (hash: 18O7Lp0T09zqzj1uz2UvboEJEAG8f//RjAML5YNM31g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:29:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 668 (0x29c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156255, serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Validity Not Before: Apr 17 01:29:46 2026 GMT Not After : Apr 24 01:29:46 2026 GMT Subject: CN=69e18d0a-cab3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1c:59:3b:03:0e:09:e6:a1:53:27:33:f5:db: 56:f4:8c:8d:82:47:4e:e8:6e:35:77:14:21:d2:9c: f8:14:17:9d:aa:0c:04:ea:7d:67:0b:5d:25:42:09: 42:b7:da:62:9e:b1:54:38:30:58:19:f8:d9:76:2f: 15:0d:18:48:06:9c:ae:07:4a:3c:34:dd:0a:17:8d: 82:eb:0e:d1:ab:52:6c:1c:b1:84:23:97:89:fc:fe: d7:d8:24:5a:c2:ef:57:0b:bd:b2:b9:c4:0a:ff:ea: 21:fe:47:00:6d:08:7f:d9:21:22:7e:59:e1:19:2f: f7:2e:b0:88:f6:8d:29:ca:5b:25:fa:63:48:05:11: 5c:57:f6:ea:17:cf:d6:1f:f8:b5:5a:25:05:cc:d3: 9d:a9:2a:08:f5:dd:aa:15:0c:58:e8:45:72:20:d5: 7c:df:8c:93:3f:39:a9:b1:b3:e3:08:f7:8c:96:cf: 0d:94:1a:e7:b8:3a:bb:4f:80:2a:d7:97:41:6b:9b: 0c:f1:6f:f0:7c:c2:32:97:28:f7:17:be:51:73:aa: 02:09:95:b7:51:4a:28:82:d6:a7:f6:e9:74:d5:f4: 0c:09:4a:bb:9f:cd:56:28:e6:8f:44:1d:0a:6a:2e: 65:4c:37:b0:74:49:54:46:46:93:58:44:b9:2d:6a: b1:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:42:71:72:67:02:17:B6:12:10:97:67:47:81:17:13:F7:D8:E8:F9 X509v3 Authority Key Identifier: keyid:5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:bb:5b:03:c0:58:5d:7e:3f:13:da:83:1d:ed:1c:3e:a0:67: cb:6d:4b:bd:90:ab:9f:e9:89:2e:56:66:7b:f5:10:d5:c9:fe: dd:c8:67:85:a4:9d:0f:69:b3:06:65:ce:89:44:50:b0:49:49: 5d:d6:a6:df:7f:95:d1:22:c8:96:16:91:53:5e:67:9f:78:8b: 9c:ee:c6:33:90:29:65:8d:e7:57:df:cd:2f:57:3a:b1:91:cb: 75:82:53:66:69:5a:a4:f7:cb:89:c6:74:53:b9:61:4f:83:20: cf:17:09:09:8b:4f:32:32:c9:44:fa:72:67:7a:8b:38:5b:b0: 88:ba:37:f4:51:c1:35:50:5d:15:5e:3b:32:35:3e:ce:2a:44: b6:37:8d:88:ec:5e:79:c1:0e:f4:e6:80:10:d7:2b:0f:14:72: 09:ac:57:04:e2:79:05:3b:04:f1:d0:db:ea:ed:8b:71:0a:43: 52:f0:c4:82:a2:03:ff:43:b9:78:3e:23:a7:29:6f:8c:3b:0c: fa:ef:9a:c0:ce:eb:28:0e:8f:48:c3:8f:97:8e:4b:d0:51:0f: cd:26:a6:57:9b:88:47:42:69:7c:a2:40:ef:b2:15:dc:f4:92: 7e:b3:d9:93:0d:bd:07:78:54:ca:dc:38:0b:d2:87:f8:7a:0d: ba:2c:fb:66 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYyNTUxMTAvBgNVBAUTKDVGNkM4RkEzQTY1ODc0MDIzMUIyQzRCMTM0ODFCRTEx NTAwQURDNzYwHhcNMjYwNDE3MDEyOTQ2WhcNMjYwNDI0MDEyOTQ2WjAYMRYwFAYD VQQDEw02OWUxOGQwYS1jYWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRxZOwMOCeahUycz9dtW9IyNgkdO6G41dxQh0pz4FBedqgwE6n1nC10lQglC t9pinrFUODBYGfjZdi8VDRhIBpyuB0o8NN0KF42C6w7Rq1JsHLGEI5eJ/P7X2CRa wu9XC72yucQK/+oh/kcAbQh/2SEiflnhGS/3LrCI9o0pylsl+mNIBRFcV/bqF8/W H/i1WiUFzNOdqSoI9d2qFQxY6EVyINV834yTPzmpsbPjCPeMls8NlBrnuDq7T4Aq 15dBa5sM8W/wfMIylyj3F75Rc6oCCZW3UUoogtan9ul01fQMCUq7n81WKOaPRB0K ai5lTDewdElURkaTWES5LWqxOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCxCcXJn Ahe2EhCXZ0eBFxP32Oj5MB8GA1UdIwQYMBaAFF9sj6OmWHQCMbLEsTSBvhFQCtx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjI1NS85MTYyMDg0QzUw NzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRBSXhzc1N4TklHLUVWQUsz SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gyeVBvNlpZZEFJeHNzU3hOSUctRVZBSzNIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjI1NS85MTYyMDg0QzUwNzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRB SXhzc1N4TklHLUVWQUszSFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANbtbA8BYXX4/E9qDHe0cPqBny21LvZCrn+mJLlZme/UQ1cn+3chnhaSdD2mz BmXOiURQsElJXdam33+V0SLIlhaRU15nn3iLnO7GM5ApZY3nV9/NL1c6sZHLdYJT ZmlapPfLicZ0U7lhT4MgzxcJCYtPMjLJRPpyZ3qLOFuwiLo39FHBNVBdFV47MjU+ zipEtjeNiOxeecEO9OaAENcrDxRyCaxXBOJ5BTsE8dDb6u2LcQpDUvDEgqID/0O5 eD4jpylvjDsM+u+awM7rKA6PSMOPl45L0FEPzSamV5uIR0JpfKJA77IV3PSSfrPZ kw29B3hUytw4C9KH+HoNuiz7Zg== -----END CERTIFICATE-----Generated at Fri Apr 17 13:22:50 2026 by rpki-client