$ rpki-client -vvf rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft File: XLz7z59AY6eYAiqPHiafvf6jb_g.mft (raw, json) Hash identifier: t2QJXAVvwPLPGDOPq3PRniVrJ0lrh3eu07UQu8Kz/8o= Subject key identifier: F2:FB:26:34:BC:79:0A:CD:BF:9B:D8:F6:71:15:25:AC:61:93:23:64 Authority key identifier: 5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 Certificate issuer: /CN=A917F4F2/serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Certificate serial: 0393 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft Manifest number: 038E Signing time: Fri 17 Apr 2026 00:40:50 +0000 Manifest this update: Fri 17 Apr 2026 00:40:49 +0000 Manifest next update: Fri 24 Apr 2026 00:40:49 +0000 Files and hashes: 1: XLz7z59AY6eYAiqPHiafvf6jb_g.crl (hash: 1w5L3Y9qj4vqsTFX0xQNhllvYOvhN/A77DLB2ponIoc=) 2: CA455C5CE0B311ECBC9BEA63C4F9AE02.roa (hash: sOH/2aZPjUSz0+vCYyAKkajRj0VfjNfhE/C/qw+lG4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:40:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 915 (0x393) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F4F2, serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Validity Not Before: Apr 17 00:40:49 2026 GMT Not After : Apr 24 00:40:49 2026 GMT Subject: CN=69e18191-0b30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:23:da:6d:c3:de:61:d5:a4:a9:68:9c:36:0d: 9a:ab:89:34:70:24:16:54:c2:e1:d1:9d:ec:8e:23: 6f:59:c1:b8:cb:60:0e:3f:17:05:ce:a3:7e:92:7a: 5f:55:a7:e4:a9:1b:56:44:02:e1:13:28:9e:95:df: 69:5a:6c:23:5b:90:a5:ba:59:81:4d:bf:1e:7a:c7: dc:65:5d:2c:94:3b:e7:db:7a:ce:fd:60:a2:b2:d5: 67:5c:65:19:42:81:b8:4d:38:16:80:83:d9:61:56: fa:e1:d4:c9:a5:52:28:f9:b0:12:8c:d9:36:30:04: f2:d8:ef:b8:34:67:aa:bf:ae:f6:bb:b3:48:0f:bd: 7a:d3:15:e6:27:de:1f:3c:94:18:39:7c:a6:02:08: 19:77:c6:6e:fe:6c:76:c2:bb:78:81:a0:c1:ad:14: 1b:f7:24:38:86:f0:91:4f:1b:b3:08:6c:2d:6f:c3: 46:f4:19:a7:b0:3c:42:cc:7b:7f:36:7c:31:91:fe: 9b:f6:09:81:9f:46:6e:7d:fb:76:39:5f:a6:b7:f6: 63:44:46:91:f7:7b:bc:ff:da:27:9a:13:7a:f9:05: 0b:91:67:4d:a8:f6:f0:87:9e:3b:fa:6c:ac:25:bb: f0:a2:84:db:25:af:e7:5b:47:25:4f:1f:92:3a:51: 6f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:FB:26:34:BC:79:0A:CD:BF:9B:D8:F6:71:15:25:AC:61:93:23:64 X509v3 Authority Key Identifier: keyid:5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:80:55:a2:10:a2:9d:e8:18:74:0f:05:7d:72:bf:ef:f7:6d: ff:71:fd:59:cb:71:51:79:29:91:77:22:f7:0f:cb:7b:1d:29: 30:cb:42:f2:a1:b3:2e:1b:90:3e:4f:84:40:93:c5:ea:eb:7a: 24:89:06:90:f8:d6:08:eb:ef:f4:d9:2b:16:5a:9c:f5:aa:37: 08:ec:02:9f:4f:b9:6a:79:d5:d1:4e:c0:3d:19:6d:41:90:3a: d2:18:86:4e:35:b8:ca:e6:8f:c3:ed:2b:a6:66:f1:85:5e:b4: 0a:a6:d2:12:57:56:0f:d6:89:ba:30:f7:9c:76:1f:b6:0a:81: e5:e4:dd:49:bc:ee:1c:62:41:82:a4:2b:90:b6:ce:9f:af:9a: 76:eb:48:d4:79:59:10:81:9d:86:c6:da:e7:06:7d:fa:79:dc: c4:7d:43:48:b4:45:c5:74:0b:93:ec:06:32:0a:b2:a3:ba:33: 65:2c:93:d5:34:bd:2d:d6:ae:c0:9f:1c:08:de:f3:c1:7c:af: bf:f2:22:59:e0:25:9d:65:1f:ef:1f:e5:b3:fe:bf:8e:e5:69: 0c:7a:0e:56:06:8d:da:3d:a1:25:b9:31:ca:76:a4:0f:40:9c: a8:e2:80:e8:00:8b:e9:14:bf:24:17:12:f8:b0:f4:1c:3b:5d: 18:24:1f:87 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y0RjIxMTAvBgNVBAUTKDVDQkNGQkNGOUY0MDYzQTc5ODAyMkE4RjFFMjY5RkJE RkVBMzZGRjgwHhcNMjYwNDE3MDA0MDQ5WhcNMjYwNDI0MDA0MDQ5WjAYMRYwFAYD VQQDEw02OWUxODE5MS0wYjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSPabcPeYdWkqWicNg2aq4k0cCQWVMLh0Z3sjiNvWcG4y2AOPxcFzqN+knpf VafkqRtWRALhEyield9pWmwjW5ClulmBTb8eesfcZV0slDvn23rO/WCistVnXGUZ QoG4TTgWgIPZYVb64dTJpVIo+bASjNk2MATy2O+4NGeqv672u7NID7160xXmJ94f PJQYOXymAggZd8Zu/mx2wrt4gaDBrRQb9yQ4hvCRTxuzCGwtb8NG9BmnsDxCzHt/ Nnwxkf6b9gmBn0Zufft2OV+mt/ZjREaR93u8/9onmhN6+QULkWdNqPbwh547+mys JbvwooTbJa/nW0clTx+SOlFv2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPL7JjS8 eQrNv5vY9nEVJaxhkyNkMB8GA1UdIwQYMBaAFFy8+8+fQGOnmAIqjx4mn73+o2/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjRGMi8zNEQ1NTQzMkUw QUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2ZVlBaXFQSGlhZnZmNmpi X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hMejd6NTlBWTZlWUFpcVBIaWFmdmY2amJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjRGMi8zNEQ1NTQzMkUwQUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2 ZVlBaXFQSGlhZnZmNmpiX2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAh4BVohCinegYdA8FfXK/7/dt/3H9WctxUXkpkXci9w/Lex0pMMtC8qGzLhuQ Pk+EQJPF6ut6JIkGkPjWCOvv9NkrFlqc9ao3COwCn0+5annV0U7APRltQZA60hiG TjW4yuaPw+0rpmbxhV60CqbSEldWD9aJujD3nHYftgqB5eTdSbzuHGJBgqQrkLbO n6+adutI1HlZEIGdhsba5wZ9+nncxH1DSLRFxXQLk+wGMgqyo7ozZSyT1TS9Ldau wJ8cCN7zwXyvv/IiWeAlnWUf7x/ls/6/juVpDHoOVgaN2j2hJbkxynakD0CcqOKA 6ACL6RS/JBcS+LD0HDtdGCQfhw== -----END CERTIFICATE-----Generated at Fri Apr 17 09:41:25 2026 by rpki-client