$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft File: XSeFtU0WPtAepUGLz6NPG3RWtxM.mft (raw, json) Hash identifier: k0jUqpliwbB2rn2Bc18YLG7/mVtQm0BlQ70myFGyeOI= Subject key identifier: 2E:7A:AA:EB:4E:E5:10:58:4B:13:E8:36:44:19:52:69:F6:C5:05:5F Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 0546 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft Manifest number: 0525 Signing time: Sat 18 Apr 2026 23:29:58 +0000 Manifest this update: Sat 18 Apr 2026 23:29:57 +0000 Manifest next update: Sat 25 Apr 2026 23:29:57 +0000 Files and hashes: 1: XSeFtU0WPtAepUGLz6NPG3RWtxM.crl (hash: ePPzfNCZtkkrle5dx49jqcjd+9RPpvGK2SoejCxpBdU=) 2: 6337963E4C3D11ECB5FF844FC4F9AE02.roa (hash: YlLnh1haCAguuDMWLHxz+klHykWczeyMGFHRpbzDxJg=) 3: ACE844F047AA11ECA0F05026C4F9AE02.roa (hash: xF2IvoVXmAincHuvdv8xT2emt6/vG3hUCriU6a0X2F4=) 4: 1F77EFA44C4011EC952D5A23C4F9AE02.roa (hash: TtIgh6p3MeT87i0AxcRjiCaJmw5Zn2R/2iZkAkCBffQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 23:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1350 (0x546) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5, serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: Apr 18 23:29:57 2026 GMT Not After : Apr 25 23:29:57 2026 GMT Subject: CN=69e413f6-a14d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:78:ad:f3:9a:9f:a1:e2:91:e7:e7:a9:ca:3a: 57:33:16:7b:98:7f:c6:aa:8a:8d:6a:7a:07:c5:27: 75:a7:d0:83:54:fd:9e:dc:7b:45:c3:f2:c0:7d:f1: 49:ff:22:9f:01:a3:b4:90:5f:b4:b7:00:0e:78:74: b6:45:74:3b:49:17:71:0c:38:74:52:04:7b:0d:83: 76:02:03:10:09:f1:b0:42:ab:c7:17:a6:4a:ee:0c: 6f:17:98:f9:22:57:44:55:bb:42:58:a1:a6:27:de: 56:08:8d:09:a8:33:94:a9:c3:ea:80:82:f6:fa:f3: 21:01:df:dc:a5:89:ca:48:41:dc:fe:7d:d1:94:4f: c4:af:2b:50:f0:b9:4a:86:6e:e6:2b:fa:85:f2:aa: 09:07:05:14:fe:9a:c3:ae:62:f3:45:75:61:35:2a: 53:f9:8f:7c:48:c2:a1:5d:5d:e4:67:22:e3:02:bd: 14:a6:16:b5:8a:4c:e8:c8:8b:03:4b:63:cb:7c:6d: 8d:40:1b:fe:dc:37:37:8c:15:26:0a:9e:25:4c:8e: 38:6a:e1:77:e5:cc:c6:fb:7d:34:b3:f8:41:42:33: e4:47:87:93:1e:e9:c7:e0:76:0b:86:c4:1c:f2:8f: 2e:61:52:f7:a0:67:2c:f2:f8:c3:3c:92:b8:1e:40: 06:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:7A:AA:EB:4E:E5:10:58:4B:13:E8:36:44:19:52:69:F6:C5:05:5F X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:70:3d:71:d6:3b:a2:9c:65:00:7b:ea:ea:f7:17:cb:6d:5a: ff:e7:9f:86:91:40:e3:1d:e7:73:25:16:c3:be:a2:90:7e:23: e9:82:13:37:eb:74:16:86:42:19:4b:6f:10:3a:a6:31:bc:f5: b2:64:b2:d6:7d:df:c5:9e:bf:4d:f5:79:73:b4:46:28:4e:06: 93:ce:b2:e3:65:ac:32:65:bc:a8:7c:e2:f9:b7:3b:e1:ee:02: 2c:04:f7:d0:0c:c2:40:f7:db:2b:59:58:0b:0e:25:0c:79:bb: d1:55:cd:1e:11:84:75:e5:57:8b:08:f8:6b:8e:ed:5a:5a:e6: 6f:77:36:2b:b8:5e:2f:c8:a5:59:a7:2e:3d:6a:0b:a7:0b:69: 2d:96:59:d7:38:5b:5e:10:25:e9:26:c5:d4:8e:24:72:7a:ce: 37:0e:08:73:2b:46:cf:6f:06:78:00:42:58:6b:6c:2f:e9:03: 97:e3:82:ae:46:a0:88:b3:48:23:60:28:bc:45:b7:91:a9:e0: 14:73:e7:f9:d9:0e:ca:67:b8:f5:95:ea:42:6b:03:e9:c7:93: c6:23:93:e8:4e:5d:15:73:4a:b4:52:59:01:d0:9f:05:ec:a2: 23:94:2a:23:a6:b0:93:37:2f:92:7e:e3:10:e3:83:3e:15:67: 05:05:8d:d5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjYwNDE4MjMyOTU3WhcNMjYwNDI1MjMyOTU3WjAYMRYwFAYD VQQDEw02OWU0MTNmNi1hMTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArnit85qfoeKR5+epyjpXMxZ7mH/GqoqNanoHxSd1p9CDVP2e3HtFw/LAffFJ /yKfAaO0kF+0twAOeHS2RXQ7SRdxDDh0UgR7DYN2AgMQCfGwQqvHF6ZK7gxvF5j5 IldEVbtCWKGmJ95WCI0JqDOUqcPqgIL2+vMhAd/cpYnKSEHc/n3RlE/ErytQ8LlK hm7mK/qF8qoJBwUU/prDrmLzRXVhNSpT+Y98SMKhXV3kZyLjAr0Upha1ikzoyIsD S2PLfG2NQBv+3Dc3jBUmCp4lTI44auF35czG+300s/hBQjPkR4eTHunH4HYLhsQc 8o8uYVL3oGcs8vjDPJK4HkAGUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC56qutO 5RBYSxPoNkQZUmn2xQVfMB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NDNS8yQUM0RDMzRTQ2QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0 QWVwVUdMejZOUEczUld0eE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAg3A9cdY7opxlAHvq6vcXy21a/+efhpFA4x3ncyUWw76ikH4j6YITN+t0FoZC GUtvEDqmMbz1smSy1n3fxZ6/TfV5c7RGKE4Gk86y42WsMmW8qHzi+bc74e4CLAT3 0AzCQPfbK1lYCw4lDHm70VXNHhGEdeVXiwj4a47tWlrmb3c2K7heL8ilWacuPWoL pwtpLZZZ1zhbXhAl6SbF1I4kcnrONw4IcytGz28GeABCWGtsL+kDl+OCrkagiLNI I2AovEW3kangFHPn+dkOyme49ZXqQmsD6ceTxiOT6E5dFXNKtFJZAdCfBeyiI5Qq I6awkzcvkn7jEOODPhVnBQWN1Q== -----END CERTIFICATE-----Generated at Sun Apr 19 13:41:38 2026 by rpki-client