$ rpki-client -vvf rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft File: -XyNrMJ-n8zTOuuFNQsmpIFfELc.mft (raw, json) Hash identifier: lkxdjtjT19AQfxZ+5Z1aY27r/HYBzvxpvpl4bJA51eQ= Subject key identifier: AF:2A:25:90:38:1E:00:52:44:4C:A4:2B:4E:C4:B5:49:6D:D8:F0:AC Authority key identifier: F9:7C:8D:AC:C2:7E:9F:CC:D3:3A:EB:85:35:0B:26:A4:81:5F:10:B7 Certificate issuer: /CN=A9196BD8/serialNumber=F97C8DACC27E9FCCD33AEB85350B26A4815F10B7 Certificate serial: 2405 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft Manifest number: 23E5 Signing time: Thu 16 Apr 2026 15:46:39 +0000 Manifest this update: Thu 16 Apr 2026 15:46:39 +0000 Manifest next update: Thu 23 Apr 2026 15:46:39 +0000 Files and hashes: 1: -XyNrMJ-n8zTOuuFNQsmpIFfELc.crl (hash: ClQlD6woBcZmropfuqPpBOdrXkLLZVhbvqT8Bv3rYPw=) 2: A768E6B6FB0811ED860A5143C4F9AE02.roa (hash: aqWngdjtRLqUSkhygiAXUU1YJGxW+DXL13gbX9vTVWo=) 3: C73BE8A654F311E7AC64ED3AC4F9AE02.roa (hash: X4uS0rI/nqhGkS7n3+3yxAC8v3e2kcE3Z3BQmxfknoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.crl rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9221 (0x2405) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196BD8, serialNumber=F97C8DACC27E9FCCD33AEB85350B26A4815F10B7 Validity Not Before: Apr 16 15:46:39 2026 GMT Not After : Apr 23 15:46:39 2026 GMT Subject: CN=69e1045f-6a3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9f:93:45:29:c6:8a:96:96:02:22:74:fb:f7: bf:13:e4:a7:17:e6:9d:29:fc:1e:18:c0:b7:f8:a5: 77:72:dc:26:9a:8f:f1:c6:d6:6d:6b:b0:c5:e3:e8: dd:b5:13:99:7d:9b:16:41:cd:2c:6f:ce:23:f0:44: 8f:4b:97:7f:97:d7:4e:aa:cd:a6:89:32:20:ad:66: 9a:27:e8:02:46:26:20:44:3d:4a:17:e6:2b:6c:9a: fb:19:ac:c4:73:4f:86:17:2f:97:b5:ad:ca:da:8d: e9:45:e6:1f:fb:8d:b7:f5:ac:b1:08:87:4d:7f:35: 1c:c9:9e:66:f7:85:48:1b:85:f0:2c:08:50:fd:cd: 60:97:1d:e8:8e:17:65:f3:2a:56:fd:78:81:62:c6: 51:de:5b:b9:86:b0:82:46:e4:7b:44:af:7e:40:3d: c0:14:cd:5f:fb:ef:22:d0:f3:83:6a:1b:ea:ef:f3: 96:a1:cf:7b:c7:e2:ae:80:12:f6:53:4e:c9:c8:72: 1f:ed:0d:1a:2f:0b:e9:df:f6:11:97:2d:13:4d:e2: 82:ff:19:71:0c:f6:03:dd:4b:0e:13:62:d5:4d:2e: 0a:49:f5:71:be:02:0b:da:13:63:f9:3d:39:ed:08: b9:ba:42:cd:81:3b:30:e8:bf:cc:fa:50:0a:0a:ed: 56:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:2A:25:90:38:1E:00:52:44:4C:A4:2B:4E:C4:B5:49:6D:D8:F0:AC X509v3 Authority Key Identifier: keyid:F9:7C:8D:AC:C2:7E:9F:CC:D3:3A:EB:85:35:0B:26:A4:81:5F:10:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:7d:61:09:2a:45:b7:82:90:9f:c5:1e:39:16:ed:21:13:98: 2f:be:e8:c4:9f:ae:b0:6b:ed:b8:9b:a8:da:4c:6c:e3:2a:5b: 1a:72:89:24:36:42:d0:69:ed:f5:54:60:d7:8c:61:a4:5c:7d: 02:16:d2:eb:05:34:0c:4d:f7:ae:8e:7b:b8:58:12:38:4f:6f: 16:a8:26:68:72:4b:36:b6:a0:be:d3:af:16:d7:33:e8:49:f6: 25:3c:f5:4f:d2:45:7b:e5:26:36:f8:ff:d5:5c:d0:a3:ae:96: 36:5c:cf:46:c9:74:8c:a0:af:01:6a:a5:58:db:57:58:1f:23: 24:02:41:cd:ab:27:ae:b4:28:28:2f:30:09:d7:10:94:0e:85: 41:38:b9:7b:49:f9:2f:7f:79:79:85:cd:1b:c2:6c:99:73:57: 6f:ae:87:ba:90:7f:62:78:e6:d3:2f:a8:ca:26:af:af:36:11: 6a:ce:99:f0:2b:bd:0f:60:1b:76:c7:85:a2:57:5f:91:96:62: 83:b1:f2:0b:ba:12:53:a2:36:37:84:e4:36:14:00:6f:7d:a0: 03:6e:f6:f2:d1:0e:9f:76:71:c4:e9:0a:e9:38:25:0e:53:bb: 18:fa:db:20:aa:f0:d3:39:65:a6:f9:44:be:5a:96:1e:23:78: c3:b9:43:69 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZCRDgxMTAvBgNVBAUTKEY5N0M4REFDQzI3RTlGQ0NEMzNBRUI4NTM1MEIyNkE0 ODE1RjEwQjcwHhcNMjYwNDE2MTU0NjM5WhcNMjYwNDIzMTU0NjM5WjAYMRYwFAYD VQQDEw02OWUxMDQ1Zi02YTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZ+TRSnGipaWAiJ0+/e/E+SnF+adKfweGMC3+KV3ctwmmo/xxtZta7DF4+jd tROZfZsWQc0sb84j8ESPS5d/l9dOqs2miTIgrWaaJ+gCRiYgRD1KF+YrbJr7GazE c0+GFy+Xta3K2o3pReYf+4239ayxCIdNfzUcyZ5m94VIG4XwLAhQ/c1glx3ojhdl 8ypW/XiBYsZR3lu5hrCCRuR7RK9+QD3AFM1f++8i0PODahvq7/OWoc97x+KugBL2 U07JyHIf7Q0aLwvp3/YRly0TTeKC/xlxDPYD3UsOE2LVTS4KSfVxvgIL2hNj+T05 7Qi5ukLNgTsw6L/M+lAKCu1WzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK8qJZA4 HgBSREykK07EtUlt2PCsMB8GA1UdIwQYMBaAFPl8jazCfp/M0zrrhTULJqSBXxC3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkJEOC9DNTgzRDIzMjg3 QTIxMUU1OUU1MUYyNTFDNEY5QUUwMi8tWHlOck1KLW44elRPdXVGTlFzbXBJRmZF TGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YeU5yTUotbjh6VE91dUZOUXNtcElGZkVMYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkJEOC9DNTgzRDIzMjg3QTIxMUU1OUU1MUYyNTFDNEY5QUUwMi8tWHlOck1KLW44 elRPdXVGTlFzbXBJRmZFTGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAwH1hCSpFt4KQn8UeORbtIROYL77oxJ+usGvtuJuo2kxs4ypbGnKJJDZC0Gnt 9VRg14xhpFx9AhbS6wU0DE33ro57uFgSOE9vFqgmaHJLNragvtOvFtcz6En2JTz1 T9JFe+UmNvj/1VzQo66WNlzPRsl0jKCvAWqlWNtXWB8jJAJBzasnrrQoKC8wCdcQ lA6FQTi5e0n5L395eYXNG8JsmXNXb66HupB/Ynjm0y+oyiavrzYRas6Z8Cu9D2Ab dseFoldfkZZig7HyC7oSU6I2N4TkNhQAb32gA2728tEOn3ZxxOkK6TglDlO7GPrb IKrw0zllpvlEvlqWHiN4w7lDaQ== -----END CERTIFICATE-----Generated at Fri Apr 17 21:48:54 2026 by rpki-client