$ rpki-client -vvf rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft File: XAq0JfK0I14cgVaDvWyOi3uAtyc.mft (raw, json) Hash identifier: XUiSnLrBT9zmokcJU+uBJL4JgJKzicvf/Rfr7lMt4g4= Subject key identifier: 4F:E0:F1:B0:20:DE:EC:BF:43:82:FC:F9:FE:CF:4B:F5:7F:5A:27:1F Authority key identifier: 5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 Certificate issuer: /CN=A917F8A9/serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Certificate serial: 0A31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft Manifest number: 0A16 Signing time: Thu 16 Apr 2026 19:43:52 +0000 Manifest this update: Thu 16 Apr 2026 19:43:51 +0000 Manifest next update: Thu 23 Apr 2026 19:43:51 +0000 Files and hashes: 1: XAq0JfK0I14cgVaDvWyOi3uAtyc.crl (hash: iPa9oRpNyjGOFejiXmJSGYcogoTcLJsRiCHh99dt0iw=) 2: 83DC30E0D0DB11EA9336962FC4F9AE02.roa (hash: V4TtDHDwWfSTPDtmdJxLiYpQrBPMzCI9Mup9QQhSTOc=) 3: 0774A2C894F211EAB30E7682C4F9AE02.roa (hash: phoNlFrzl7WYjyRvdppnlSL/FBRV8iS5x5iyLwB+dTc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:43:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2609 (0xa31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F8A9, serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Validity Not Before: Apr 16 19:43:51 2026 GMT Not After : Apr 23 19:43:51 2026 GMT Subject: CN=69e13bf8-c3f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4e:47:ae:02:7e:b1:39:ba:a3:44:97:1f:2e: e7:fa:21:07:1f:b5:cf:0a:71:f4:00:b8:a0:23:b6: 5e:b3:74:d3:37:36:3c:ad:54:b1:1d:40:aa:c1:91: 3e:07:b5:27:80:91:0d:0a:4d:d4:27:08:d4:9e:ba: b2:0f:ef:12:02:41:65:04:98:04:16:14:36:a1:51: e4:45:96:bf:f4:e9:8c:91:7e:8a:c8:af:62:2e:f8: 9e:07:ec:5d:d8:95:25:ca:0d:f5:96:a6:98:a1:6a: 1f:e8:70:3f:70:3e:db:c5:34:72:da:1c:a1:2d:7a: 7d:b9:4c:b6:94:59:96:71:87:d7:12:92:6f:68:85: 50:e1:6a:42:5c:19:08:38:02:b2:03:9b:22:65:7c: ff:6f:55:bb:ea:21:5c:e1:f7:71:54:84:08:69:9b: 80:9e:7b:55:14:2b:d7:71:fd:81:88:9c:15:d0:78: 6c:96:53:a4:99:d2:a2:2f:2e:fe:c0:2c:08:b4:37: 1b:78:f9:0f:79:30:71:6e:15:29:5a:3c:9a:02:5d: 59:74:f5:73:f1:03:cc:29:f6:26:2e:4e:fd:0b:21: 0b:22:e6:5b:cb:7b:30:c5:0a:05:13:88:01:40:c8: 22:f0:3f:39:d2:e8:03:51:bd:54:8d:f2:a1:8f:18: 82:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:E0:F1:B0:20:DE:EC:BF:43:82:FC:F9:FE:CF:4B:F5:7F:5A:27:1F X509v3 Authority Key Identifier: keyid:5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e0:68:c0:6d:69:a2:aa:81:27:00:84:5c:5d:59:21:ed:4a:f3: 6e:7c:72:a1:83:1f:bd:de:a9:bb:61:e9:ef:ac:3a:bc:e8:11: 41:05:26:02:0b:2d:db:c1:e9:a5:1a:d3:fa:49:c3:06:16:35: 98:11:ae:b0:e2:1c:ce:95:89:72:83:6b:64:f9:25:bc:3d:63: 69:1c:30:ee:38:d7:e4:3d:91:d6:5d:48:8b:05:f2:de:07:12: 16:8c:ac:4a:40:54:23:a1:b9:f8:7e:52:e8:8a:ec:c1:45:d3: 69:05:57:5e:a5:9f:58:63:bf:aa:03:d9:cc:e5:d1:42:7b:90: e5:fc:76:28:8f:6d:11:77:74:25:7d:67:64:d8:62:e1:7d:9b: 42:a8:b3:b2:91:cc:6a:1b:f5:55:49:2c:40:da:da:14:56:de: cf:a7:06:37:33:a5:d4:e6:d8:49:ec:0d:32:e9:92:4b:25:29: 4e:6c:a5:b2:dc:f6:95:67:5b:da:0f:98:45:b8:67:ff:c4:31: ec:27:0c:72:eb:2a:ef:40:04:d4:67:d8:a7:99:90:7c:34:41: 07:37:27:7d:b7:51:4a:1f:7a:9b:66:76:df:5a:fb:02:ac:41: c5:37:bc:38:0a:e2:12:e4:9c:ce:e9:dd:66:95:11:a4:95:ca: e3:cb:d9:f5 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4QTkxMTAvBgNVBAUTKDVDMEFCNDI1RjJCNDIzNUUxQzgxNTY4M0JENkM4RThC N0I4MEI3MjcwHhcNMjYwNDE2MTk0MzUxWhcNMjYwNDIzMTk0MzUxWjAYMRYwFAYD VQQDEw02OWUxM2JmOC1jM2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuE5HrgJ+sTm6o0SXHy7n+iEHH7XPCnH0ALigI7Zes3TTNzY8rVSxHUCqwZE+ B7UngJENCk3UJwjUnrqyD+8SAkFlBJgEFhQ2oVHkRZa/9OmMkX6KyK9iLvieB+xd 2JUlyg31lqaYoWof6HA/cD7bxTRy2hyhLXp9uUy2lFmWcYfXEpJvaIVQ4WpCXBkI OAKyA5siZXz/b1W76iFc4fdxVIQIaZuAnntVFCvXcf2BiJwV0HhsllOkmdKiLy7+ wCwItDcbePkPeTBxbhUpWjyaAl1ZdPVz8QPMKfYmLk79CyELIuZby3swxQoFE4gB QMgi8D850ugDUb1UjfKhjxiCCQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE/g8bAg 3uy/Q4L8+f7PS/V/WicfMB8GA1UdIwQYMBaAFFwKtCXytCNeHIFWg71sjot7gLcn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjhBOS8yQUEwNDMzMDk0 RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkxNGNnVmFEdld5T2kzdUF0 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBcTBKZkswSTE0Y2dWYUR2V3lPaTN1QXR5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjhBOS8yQUEwNDMzMDk0RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkx NGNnVmFEdld5T2kzdUF0eWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA4GjAbWmiqoEnAIRcXVkh7UrzbnxyoYMfvd6pu2Hp76w6vOgRQQUmAgst28Hp pRrT+knDBhY1mBGusOIczpWJcoNrZPklvD1jaRww7jjX5D2R1l1IiwXy3gcSFoys SkBUI6G5+H5S6IrswUXTaQVXXqWfWGO/qgPZzOXRQnuQ5fx2KI9tEXd0JX1nZNhi 4X2bQqizspHMahv1VUksQNraFFbez6cGNzOl1ObYSewNMumSSyUpTmylstz2lWdb 2g+YRbhn/8Qx7CcMcusq70AE1GfYp5mQfDRBBzcnfbdRSh96m2Z231r7AqxBxTe8 OAriEuSczundZpURpJXK48vZ9Q== -----END CERTIFICATE-----Generated at Fri Apr 17 13:25:06 2026 by rpki-client