$ rpki-client -vvf rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft File: XKzlv2VarPfLxicsXGl_N3oGzow.mft (raw, json) Hash identifier: WPJeKV0gpNjy7BFEukYEsUmWSAvNBrXrZniubNlEVGc= Subject key identifier: 60:F6:C5:D4:11:8E:59:27:75:14:99:D9:F2:92:47:AA:15:23:09:97 Authority key identifier: 5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C Certificate issuer: /CN=A917C9BF/serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Certificate serial: 0132 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft Manifest number: 012C Signing time: Fri 17 Apr 2026 05:20:35 +0000 Manifest this update: Fri 17 Apr 2026 05:20:34 +0000 Manifest next update: Fri 24 Apr 2026 05:20:34 +0000 Files and hashes: 1: XKzlv2VarPfLxicsXGl_N3oGzow.crl (hash: bY0NdGF0SC8Ojs6kQ8gGE5FadTPvlavpdAokY8ZAuPY=) 2: 15875DC27B5E11EFAB71253BC4F9AE02.roa (hash: zbGwECDik3OAcu543q9pzZB/RKrVhWGvUuUO/9+kdaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 306 (0x132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C9BF, serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Validity Not Before: Apr 17 05:20:34 2026 GMT Not After : Apr 24 05:20:34 2026 GMT Subject: CN=69e1c322-a69e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:27:a5:a0:c5:fe:bd:d9:2e:e9:04:59:41:0b: 85:eb:cc:4a:29:76:1a:3e:db:3c:8f:30:d5:03:da: 17:c2:78:c6:8b:e0:64:54:8f:34:26:72:5a:af:a2: 22:1f:a5:e7:8e:89:19:f8:8f:17:f7:94:74:07:fd: e3:64:2e:8c:1c:26:e2:38:17:7c:92:9e:41:b1:cd: e4:fd:31:f7:fe:19:cc:67:b9:64:90:d5:cf:57:a2: 8b:01:1d:e0:e0:28:71:e4:09:05:a2:cd:7f:06:fc: 9d:6c:f8:a7:0f:dd:2f:08:07:11:03:5b:0b:d1:c8: 72:85:90:12:5b:ec:8e:f8:6b:1c:62:25:40:97:1a: 8d:03:f9:77:a4:18:d4:b5:3b:52:b2:c1:4c:72:81: 16:90:35:ac:c7:a1:ca:cf:c4:cf:33:6b:43:f2:ad: 40:e9:eb:dd:8c:46:02:b2:d9:72:df:a7:b7:48:62: 47:d3:35:fb:cf:4c:af:60:d8:4b:37:96:3d:12:35: bb:73:af:5d:7e:fb:67:72:c3:8e:f1:1f:2e:ed:ff: 7f:01:57:8b:48:ca:5d:d4:a1:b3:d0:20:47:cb:8d: b4:df:54:bf:67:85:88:83:70:2f:7f:ea:e6:72:9c: 7a:d1:f7:fe:98:a8:c6:ed:10:cc:b7:d7:83:ad:92: 3a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:F6:C5:D4:11:8E:59:27:75:14:99:D9:F2:92:47:AA:15:23:09:97 X509v3 Authority Key Identifier: keyid:5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:ff:1b:44:14:3f:da:78:f4:59:e1:55:11:62:bf:a6:30:51: 12:ef:65:71:94:85:15:20:a2:9c:ab:f9:32:54:e0:f9:3e:8b: e8:9b:67:db:d1:b6:6e:08:c0:d8:d9:ef:6a:f9:b4:f0:81:2e: e5:88:bd:bc:6d:e9:bc:e0:05:00:60:6e:f9:26:e0:48:1e:bd: 54:1d:4b:55:fd:b3:de:0b:04:3a:3f:82:2b:8d:c0:77:8c:df: 7f:0e:6c:c8:1a:2b:6c:39:9e:db:36:38:cc:19:ee:91:a5:ff: dc:26:b8:8b:64:1e:d1:96:d6:e9:b3:03:5a:45:23:b0:ce:69: 6e:5e:ec:88:a0:0a:7e:48:f2:e8:76:89:7a:b4:b4:bc:3f:b0: 89:37:1e:81:f1:bb:c4:a7:41:a4:57:47:ad:8e:cd:bc:95:e6: 5a:37:0f:01:85:e5:86:ed:fe:25:e4:9d:a6:ff:b5:70:76:cb: 21:dc:57:f3:1f:11:45:1d:71:1f:ec:2c:ce:bc:2f:35:97:4f: b6:5d:e1:13:8d:c4:82:d6:6a:38:a8:ec:f3:7a:65:bc:37:5e: af:1a:21:ae:8c:c5:a9:32:ce:1c:84:cf:60:21:dc:1a:85:ee: d7:18:95:49:5d:39:2b:40:72:af:89:fc:22:27:be:ba:f6:a6: 1c:8f:76:c4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5QkYxMTAvBgNVBAUTKDVDQUNFNUJGNjU1QUFDRjdDQkM2MjcyQzVDNjk3RjM3 N0EwNkNFOEMwHhcNMjYwNDE3MDUyMDM0WhcNMjYwNDI0MDUyMDM0WjAYMRYwFAYD VQQDEw02OWUxYzMyMi1hNjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8ieloMX+vdku6QRZQQuF68xKKXYaPts8jzDVA9oXwnjGi+BkVI80JnJar6Ii H6XnjokZ+I8X95R0B/3jZC6MHCbiOBd8kp5Bsc3k/TH3/hnMZ7lkkNXPV6KLAR3g 4Chx5AkFos1/BvydbPinD90vCAcRA1sL0chyhZASW+yO+GscYiVAlxqNA/l3pBjU tTtSssFMcoEWkDWsx6HKz8TPM2tD8q1A6evdjEYCstly36e3SGJH0zX7z0yvYNhL N5Y9EjW7c69dfvtncsOO8R8u7f9/AVeLSMpd1KGz0CBHy42031S/Z4WIg3Avf+rm cpx60ff+mKjG7RDMt9eDrZI6hQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGD2xdQR jlkndRSZ2fKSR6oVIwmXMB8GA1UdIwQYMBaAFFys5b9lWqz3y8YnLFxpfzd6Bs6M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzlCRi9CRTFENEEzNDdC NEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQZkx4aWNzWEdsX04zb0d6 b3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLemx2MlZhclBmTHhpY3NYR2xfTjNvR3pvdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzlCRi9CRTFENEEzNDdCNEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQ Zkx4aWNzWEdsX04zb0d6b3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAif8bRBQ/2nj0WeFVEWK/pjBREu9lcZSFFSCinKv5MlTg+T6L6Jtn29G2bgjA 2Nnvavm08IEu5Yi9vG3pvOAFAGBu+SbgSB69VB1LVf2z3gsEOj+CK43Ad4zffw5s yBorbDme2zY4zBnukaX/3Ca4i2Qe0ZbW6bMDWkUjsM5pbl7siKAKfkjy6HaJerS0 vD+wiTcegfG7xKdBpFdHrY7NvJXmWjcPAYXlhu3+JeSdpv+1cHbLIdxX8x8RRR1x H+wszrwvNZdPtl3hE43EgtZqOKjs83plvDderxohrozFqTLOHITPYCHcGoXu1xiV SV05K0Byr4n8Iie+uvamHI92xA== -----END CERTIFICATE-----Generated at Fri Apr 17 14:24:58 2026 by rpki-client