$ rpki-client -vvf rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.mft File: xeslRrtzrOaT4ZqxB9g_JmYyzug.mft (raw, json) Hash identifier: 4iLNt9q11HydJrcw6fel+ZX9d8ORe+iLriyEjvvPBwY= Subject key identifier: 7E:41:72:65:1C:DB:68:94:96:AF:50:34:6A:B5:3C:33:82:36:E6:D5 Authority key identifier: C5:EB:25:46:BB:73:AC:E6:93:E1:9A:B1:07:D8:3F:26:66:32:CE:E8 Certificate issuer: /CN=A9197A55/serialNumber=C5EB2546BB73ACE693E19AB107D83F266632CEE8 Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/xeslRrtzrOaT4ZqxB9g_JmYyzug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.mft Manifest number: 35 Signing time: Fri 17 Apr 2026 08:23:18 +0000 Manifest this update: Fri 17 Apr 2026 08:23:17 +0000 Manifest next update: Fri 24 Apr 2026 08:23:17 +0000 Files and hashes: 1: xeslRrtzrOaT4ZqxB9g_JmYyzug.crl (hash: PPloV2ceboIy4GaySp+j5yQalloPt3JsJJsiBRsFSu8=) 2: 21DB5BC4FAAA11F0A3B995435A6F56BC.roa (hash: LbeaZF1XRjLI75LU93fIN8JRsM753tbKTBrRQHfA4hk=) 3: 40E6AE74FAAA11F0BBD6BD435A6F56BC.roa (hash: rFUINwctLdCKpeYymZBC+HyAkWIaWkc+ZM7j+MzLgis=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.crl rsync://rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/xeslRrtzrOaT4ZqxB9g_JmYyzug.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 08:23:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197A55, serialNumber=C5EB2546BB73ACE693E19AB107D83F266632CEE8 Validity Not Before: Apr 17 08:23:17 2026 GMT Not After : Apr 24 08:23:17 2026 GMT Subject: CN=69e1edf6-154b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8b:ee:2c:1f:04:e7:71:a7:f8:22:f4:3a:3f: b0:32:cf:5f:e2:09:4a:ee:24:aa:5d:47:95:1f:4c: 23:2f:e9:4e:b6:6d:b1:11:9a:a9:9e:8e:18:b3:cd: 94:27:f9:7b:c2:c8:6e:5b:67:74:15:19:07:97:c7: 79:79:c0:3e:bc:44:44:c0:6b:56:1a:80:8b:a4:b7: ec:bd:d1:dd:8f:dd:5d:bb:41:12:6f:9a:dd:b7:2e: 36:dd:4b:39:8a:f7:e8:3a:ae:5e:93:eb:59:d2:30: 5d:58:08:76:ab:5a:89:74:db:13:f5:4f:67:df:6f: 80:c0:c0:ac:bc:31:6e:20:23:62:88:22:b2:d3:70: 95:2f:95:e9:0f:66:28:c8:85:2f:9c:51:0d:25:90: 46:82:72:92:6f:8b:56:e1:ae:35:32:cf:a1:a1:6e: 4f:b0:93:94:b2:53:e3:47:5a:94:53:ee:0e:4f:3a: bc:9e:04:d8:74:a0:d8:54:5c:aa:2d:4a:4e:dd:19: 5b:91:19:03:34:3f:a9:22:ff:1e:41:16:31:84:6a: 8b:90:c2:a9:43:5f:69:2a:2d:6f:e5:07:be:9a:3a: 9e:db:88:93:2f:4c:f2:01:c9:b7:33:63:ff:1d:28: b7:0f:f7:84:c4:c0:e4:ec:95:d6:fc:37:9f:e2:41: c5:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:41:72:65:1C:DB:68:94:96:AF:50:34:6A:B5:3C:33:82:36:E6:D5 X509v3 Authority Key Identifier: keyid:C5:EB:25:46:BB:73:AC:E6:93:E1:9A:B1:07:D8:3F:26:66:32:CE:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/xeslRrtzrOaT4ZqxB9g_JmYyzug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:d4:5d:2b:99:06:c6:02:5a:13:94:d1:28:8e:91:17:89:9f: bd:de:57:18:09:20:cd:32:e6:10:9a:37:b9:7c:22:47:08:aa: 61:ef:de:f1:a8:89:3d:fd:81:30:50:c7:a1:c8:94:0b:55:de: 86:21:c8:c7:83:aa:fe:d9:94:25:ce:a7:9b:12:21:ab:04:9b: ca:b4:e2:ac:db:19:c9:35:10:35:f9:de:2f:19:bf:3d:ca:40: a4:f1:d1:a7:17:c1:0c:15:09:b7:91:62:2f:97:ae:1f:8d:e3: 0f:f1:60:70:75:f9:a7:fb:19:66:e2:74:aa:db:3b:ed:29:bc: 50:fc:f2:eb:72:be:ee:d8:65:21:7b:bf:99:0d:7e:2f:98:1b: cb:52:e5:2d:dd:75:a8:0b:0f:c0:ea:82:0c:e5:c7:3b:0e:60: dd:ea:df:69:ec:de:80:93:bc:ca:7b:87:0c:69:50:04:0b:2a: 09:c7:40:16:8a:64:82:79:75:b3:a0:a2:2b:05:c7:7d:54:9b: a5:5f:08:f3:99:58:ed:18:07:b4:c6:34:1a:fd:6c:88:b3:8c: 79:ec:eb:81:6b:00:c4:32:6d:d1:f8:5e:5c:89:f2:61:69:b6: d9:c0:9a:4c:9f:89:e6:6c:ce:77:7a:81:1f:6a:6b:80:b1:0a: 46:e5:d8:e8 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 N0E1NTExMC8GA1UEBRMoQzVFQjI1NDZCQjczQUNFNjkzRTE5QUIxMDdEODNGMjY2 NjMyQ0VFODAeFw0yNjA0MTcwODIzMTdaFw0yNjA0MjQwODIzMTdaMBgxFjAUBgNV BAMTDTY5ZTFlZGY2LTE1NGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRi+4sHwTncaf4IvQ6P7Ayz1/iCUruJKpdR5UfTCMv6U62bbERmqmejhizzZQn +XvCyG5bZ3QVGQeXx3l5wD68RETAa1YagIukt+y90d2P3V27QRJvmt23LjbdSzmK 9+g6rl6T61nSMF1YCHarWol02xP1T2ffb4DAwKy8MW4gI2KIIrLTcJUvlekPZijI hS+cUQ0lkEaCcpJvi1bhrjUyz6Ghbk+wk5SyU+NHWpRT7g5POryeBNh0oNhUXKot Sk7dGVuRGQM0P6ki/x5BFjGEaouQwqlDX2kqLW/lB76aOp7biJMvTPIBybczY/8d KLcP94TEwOTsldb8N5/iQcUvAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUfkFyZRzb aJSWr1A0arU8M4I25tUwHwYDVR0jBBgwFoAUxeslRrtzrOaT4ZqxB9g/JmYyzugw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3QTU1L0IzMkI1MDI4RjdB NTExRjA4N0U1MUYxNjU1NkY1NkJDL3hlc2xScnR6ck9hVDRacXhCOWdfSm1ZeXp1 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIveGVzbFJydHpyT2FUNFpxeEI5Z19KbVl5enVnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3 QTU1L0IzMkI1MDI4RjdBNTExRjA4N0U1MUYxNjU1NkY1NkJDL3hlc2xScnR6ck9h VDRacXhCOWdfSm1ZeXp1Zy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBE1F0rmQbGAloTlNEojpEXiZ+93lcYCSDNMuYQmje5fCJHCKph797xqIk9/YEw UMehyJQLVd6GIcjHg6r+2ZQlzqebEiGrBJvKtOKs2xnJNRA1+d4vGb89ykCk8dGn F8EMFQm3kWIvl64fjeMP8WBwdfmn+xlm4nSq2zvtKbxQ/PLrcr7u2GUhe7+ZDX4v mBvLUuUt3XWoCw/A6oIM5cc7DmDd6t9p7N6Ak7zKe4cMaVAECyoJx0AWimSCeXWz oKIrBcd9VJulXwjzmVjtGAe0xjQa/WyIs4x57OuBawDEMm3R+F5cifJhabbZwJpM n4nmbM53eoEfamuAsQpG5djo -----END CERTIFICATE-----Generated at Fri Apr 17 18:46:56 2026 by rpki-client