$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft File: Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft (raw, json) Hash identifier: fybF9ArFho6nLRWCk1IlQOAlYl1V6yydRmFKieBH3vs= Subject key identifier: BE:D3:FA:22:BE:21:E5:2D:A5:BD:0A:46:7F:9B:C8:B5:46:A7:BF:0E Authority key identifier: 5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC Certificate issuer: /CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Certificate serial: 046B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft Manifest number: 0438 Signing time: Fri 17 Apr 2026 00:18:07 +0000 Manifest this update: Fri 17 Apr 2026 00:18:06 +0000 Manifest next update: Fri 24 Apr 2026 00:18:06 +0000 Files and hashes: 1: Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl (hash: jokYT5Gsn80w/iWqKIEHy0Bj5OYqyc6bEZ2QuD602iY=) 2: 7AA94F3CE03811EFAC3C5652C4F9AE02.roa (hash: Xwopv44IWtrA47h99nFS1HcICRmL98rRNkBLnVkufOs=) 3: 79C2D638E03811EFAC3C5652C4F9AE02.roa (hash: htWOUsGCluqo+bDLkY52m9kGHamjAwjskMqRyVdOAVI=) 4: 7B6F6276E03811EFAC3C5652C4F9AE02.roa (hash: W4goqtPYzyLcCdBI7xc2Qn8MqCV+FsXgvw4MFdwTxhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:18:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1131 (0x46b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E8E, serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Validity Not Before: Apr 17 00:18:06 2026 GMT Not After : Apr 24 00:18:06 2026 GMT Subject: CN=69e17c3e-d009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:63:6c:f5:5d:c1:8c:14:d0:fb:70:af:7e:fc: 5c:06:e2:f9:ac:7f:4e:e1:0f:d9:66:91:d1:35:55: 41:ef:a9:19:29:e2:f6:87:78:4d:b2:aa:80:01:a8: d0:17:87:e2:28:0a:61:a5:6a:d6:22:00:06:9a:fa: e4:a1:cc:69:5e:fd:a7:69:b7:84:78:9f:58:4a:b1: 8e:8e:6d:88:69:29:49:cf:c2:fc:e4:ca:29:31:a1: d2:37:55:0e:c9:56:24:ce:0e:dd:7b:77:f7:22:a5: d1:60:12:65:48:27:0f:00:21:72:ba:14:64:24:9e: 77:2f:9b:2c:a0:04:73:e6:a0:9c:ab:9b:03:9b:4a: ad:e1:42:78:54:dc:f0:e3:34:12:4d:bb:56:ed:7f: dc:07:8b:41:c1:a9:b5:62:d9:7e:90:be:86:9e:90: 1e:fd:2f:2e:ee:ff:b0:e3:81:18:c2:e1:87:d4:a5: 52:36:21:b3:ad:f6:f1:4d:9a:cf:3a:a2:46:12:66: 6f:b9:83:8a:05:84:cb:7b:c8:dc:d2:a0:f3:5d:f4: 43:84:d6:8a:70:d8:55:93:35:69:8e:b4:f9:06:f0: c7:00:26:62:15:da:d4:52:19:6c:ff:e5:d8:0c:68: 4a:ec:5b:ee:1d:d7:d8:28:85:19:e2:5d:2a:b3:a1: 95:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:D3:FA:22:BE:21:E5:2D:A5:BD:0A:46:7F:9B:C8:B5:46:A7:BF:0E X509v3 Authority Key Identifier: keyid:5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:47:ad:d9:23:5f:1f:ed:d0:00:8d:55:45:52:86:fc:f8:db: 45:88:ed:e6:b4:51:1e:5f:21:1b:8d:0a:fc:59:ec:38:65:14: c6:d1:e1:02:51:71:46:4b:7e:50:33:d5:8a:5b:a4:82:44:13: b3:39:85:12:26:0d:f5:9e:23:f7:59:35:ec:97:31:9f:ab:dc: b8:ee:e5:4e:45:9c:bb:c7:f4:9d:06:ef:a4:c3:63:8c:a1:c1: ab:e8:91:c2:54:d7:48:dc:1c:6d:45:06:53:f4:13:94:e7:6f: dc:43:d6:c4:19:f1:6f:53:7c:00:34:4a:d8:c1:5d:bd:6e:9f: 11:79:8e:0d:72:90:23:3f:69:a3:6e:19:f2:96:2f:a9:4d:49: a3:0d:98:68:84:e0:b2:c7:59:6b:e6:a9:0e:92:de:03:ab:67: 41:7b:b5:13:01:f5:1e:42:34:c0:65:01:b1:67:a0:23:fa:dc: e1:3e:94:fc:b5:5c:84:61:ff:96:2b:25:6b:35:d2:ac:9d:15: 93:8e:af:00:09:c8:68:7b:0b:08:e8:45:1c:58:aa:fb:f1:ef: 0b:ce:0b:81:1a:12:f5:30:9f:f1:88:49:05:95:d4:37:ac:2c: 5a:73:9d:8a:e2:10:56:76:6e:c4:71:75:c4:c2:5d:0b:ee:ca: 71:0a:f9:f4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFOEUxMTAvBgNVBAUTKDVGMkU1RTYyOTMyQkI1MEE4NUZGMkY5QTVGMzFCMkJB REQ1RjM0QUMwHhcNMjYwNDE3MDAxODA2WhcNMjYwNDI0MDAxODA2WjAYMRYwFAYD VQQDEw02OWUxN2MzZS1kMDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqWNs9V3BjBTQ+3CvfvxcBuL5rH9O4Q/ZZpHRNVVB76kZKeL2h3hNsqqAAajQ F4fiKAphpWrWIgAGmvrkocxpXv2nabeEeJ9YSrGOjm2IaSlJz8L85MopMaHSN1UO yVYkzg7de3f3IqXRYBJlSCcPACFyuhRkJJ53L5ssoARz5qCcq5sDm0qt4UJ4VNzw 4zQSTbtW7X/cB4tBwam1Ytl+kL6GnpAe/S8u7v+w44EYwuGH1KVSNiGzrfbxTZrP OqJGEmZvuYOKBYTLe8jc0qDzXfRDhNaKcNhVkzVpjrT5BvDHACZiFdrUUhls/+XY DGhK7FvuHdfYKIUZ4l0qs6GVCQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL7T+iK+ IeUtpb0KRn+byLVGp78OMB8GA1UdIwQYMBaAFF8uXmKTK7UKhf8vml8xsrrdXzSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEU4RS8wNEZCQjhGMEFF MEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRRcUZfeS1hWHpHeXV0MWZO S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5NWVZcE1ydFFxRl95LWFYekd5dXQxZk5Ldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEU4RS8wNEZCQjhGMEFFMEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRR cUZfeS1hWHpHeXV0MWZOS3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFket2SNfH+3QAI1VRVKG/PjbRYjt5rRRHl8hG40K/FnsOGUUxtHhAlFxRkt+ UDPVilukgkQTszmFEiYN9Z4j91k17Jcxn6vcuO7lTkWcu8f0nQbvpMNjjKHBq+iR wlTXSNwcbUUGU/QTlOdv3EPWxBnxb1N8ADRK2MFdvW6fEXmODXKQIz9po24Z8pYv qU1Jow2YaITgssdZa+apDpLeA6tnQXu1EwH1HkI0wGUBsWegI/rc4T6U/LVchGH/ lislazXSrJ0Vk46vAAnIaHsLCOhFHFiq+/HvC84LgRoS9TCf8YhJBZXUN6wsWnOd iuIQVnZuxHF1xMJdC+7KcQr59A== -----END CERTIFICATE-----Generated at Fri Apr 17 20:52:59 2026 by rpki-client