$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft File: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft (raw, json) Hash identifier: wNtJHi2SDKSBCceERoKvGXY5qNS7V9HfKbEBcG0yLIs= Subject key identifier: 53:7A:B4:61:E6:97:97:C4:B8:CF:61:DB:E7:20:36:50:CB:FA:06:80 Authority key identifier: C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 Certificate issuer: /CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Certificate serial: 01E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft Manifest number: 01DE Signing time: Fri 17 Apr 2026 03:12:10 +0000 Manifest this update: Fri 17 Apr 2026 03:12:09 +0000 Manifest next update: Fri 24 Apr 2026 03:12:09 +0000 Files and hashes: 1: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl (hash: ysatMGsenzCCxPI+xktOFvtAeBruE85fGFQYsT+soOE=) 2: 4B2F1F725E7811EE9307D234C4F9AE02.roa (hash: EcFjmxSDjXYlszuf2oD+q8KIZL69XyX6Am534xbF5Os=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:12:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF73, serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Validity Not Before: Apr 17 03:12:09 2026 GMT Not After : Apr 24 03:12:09 2026 GMT Subject: CN=69e1a509-1178 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:dc:5c:05:be:0c:70:ff:0a:c1:ca:a9:8e:8d: 71:9c:40:14:09:0b:ca:92:f0:3f:f8:71:83:14:4a: 0a:18:81:40:e6:f2:2c:3c:04:2b:0d:48:f8:fb:cf: af:6d:ac:40:b8:77:53:e2:29:39:3c:64:7a:be:f3: ec:f3:fe:d9:68:76:46:72:76:64:ed:d6:7b:69:14: 6b:92:04:6f:47:86:39:bc:cc:57:46:f8:53:39:44: 82:71:47:58:ca:3c:cc:43:0f:89:a3:41:86:17:7d: f9:2e:c6:ba:c0:a6:33:cf:81:d7:76:1c:4c:80:6e: f4:64:b8:4c:d2:0f:ee:76:27:59:29:1e:b2:a1:f4: 82:d1:8b:2b:ef:a6:bb:29:c3:3d:04:27:b5:7c:f0: 60:51:3e:ce:16:d9:70:53:4b:12:a8:2d:78:74:63: 9c:c1:e5:44:65:9b:af:dc:0a:95:85:45:2a:6e:31: 24:87:ed:1d:eb:a1:b1:0a:6c:18:41:08:9c:f5:0f: 42:40:3c:18:3e:63:b2:63:9a:bd:cf:a2:71:10:fc: 2e:bd:ea:0a:27:15:06:0f:2f:f7:c2:02:15:af:9e: 3c:2f:b8:27:a1:31:ee:fa:40:f7:fc:03:c5:28:33: 8d:e5:b4:7f:89:35:de:96:c6:8a:b5:8f:65:ff:9d: d1:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:7A:B4:61:E6:97:97:C4:B8:CF:61:DB:E7:20:36:50:CB:FA:06:80 X509v3 Authority Key Identifier: keyid:C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:3b:d3:fc:c6:21:51:e3:31:6e:a6:31:70:71:98:a5:d4:b1: eb:17:7a:7a:ca:42:0d:0b:7f:d0:55:d7:10:3c:52:ea:d3:7d: 9c:06:40:07:2b:c2:9e:08:21:9e:d6:f2:ce:c5:c0:9d:8f:dc: 09:4f:72:25:5a:4d:57:b6:ef:b9:d7:69:c6:85:5e:24:8e:fb: 27:5f:85:d7:f3:d8:39:25:48:cd:9f:97:68:66:79:d8:f5:16: 73:91:08:dd:dd:2a:aa:15:d1:25:ff:76:0b:dd:e8:d5:b1:f5: d3:07:d5:5d:1c:54:50:79:02:ee:bf:73:8a:1e:7d:8c:6a:c1: 0d:6d:c7:43:40:24:4d:27:19:de:72:3e:86:26:2b:71:66:f7: 50:e9:a0:ad:fb:73:b7:05:43:d0:dc:bf:17:1c:14:2f:ef:a5: e6:01:83:09:fb:39:58:fc:8b:09:80:d6:4b:f0:9e:2a:c2:9d: ef:3a:7e:fc:93:28:05:d5:56:46:f9:3e:de:21:07:64:3d:0c: 31:c1:26:30:f0:96:dc:bf:36:ff:2c:2d:54:cc:98:41:8b:21: 8e:f2:b7:4a:28:90:38:8a:77:5c:35:b2:a5:e1:53:6e:56:23: e1:ad:78:ff:68:af:43:13:22:69:28:b9:32:e0:cc:b3:08:5d: 02:50:ff:be -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGNzMxMTAvBgNVBAUTKEM0MDVGMDYxRTMzQjA3MTdDOTA0RkMxREYzRTc5QkNE Nzk1MjBGQTYwHhcNMjYwNDE3MDMxMjA5WhcNMjYwNDI0MDMxMjA5WjAYMRYwFAYD VQQDEw02OWUxYTUwOS0xMTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9xcBb4McP8Kwcqpjo1xnEAUCQvKkvA/+HGDFEoKGIFA5vIsPAQrDUj4+8+v baxAuHdT4ik5PGR6vvPs8/7ZaHZGcnZk7dZ7aRRrkgRvR4Y5vMxXRvhTOUSCcUdY yjzMQw+Jo0GGF335Lsa6wKYzz4HXdhxMgG70ZLhM0g/udidZKR6yofSC0Ysr76a7 KcM9BCe1fPBgUT7OFtlwU0sSqC14dGOcweVEZZuv3AqVhUUqbjEkh+0d66GxCmwY QQic9Q9CQDwYPmOyY5q9z6JxEPwuveoKJxUGDy/3wgIVr548L7gnoTHu+kD3/APF KDON5bR/iTXelsaKtY9l/53RVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFN6tGHm l5fEuM9h2+cgNlDL+gaAMB8GA1UdIwQYMBaAFMQF8GHjOwcXyQT8HfPnm815Ug+m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUY3My9ENUZGMUY0MDVF NzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4ZkpCUHdkOC1lYnpYbFNE NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBWHdZZU03QnhmSkJQd2Q4LWVielhsU0Q2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUY3My9ENUZGMUY0MDVFNzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4 ZkpCUHdkOC1lYnpYbFNENlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkTvT/MYhUeMxbqYxcHGYpdSx6xd6espCDQt/0FXXEDxS6tN9nAZAByvCnggh ntbyzsXAnY/cCU9yJVpNV7bvuddpxoVeJI77J1+F1/PYOSVIzZ+XaGZ52PUWc5EI 3d0qqhXRJf92C93o1bH10wfVXRxUUHkC7r9zih59jGrBDW3HQ0AkTScZ3nI+hiYr cWb3UOmgrftztwVD0Ny/FxwUL++l5gGDCfs5WPyLCYDWS/CeKsKd7zp+/JMoBdVW Rvk+3iEHZD0MMcEmMPCW3L82/ywtVMyYQYshjvK3SiiQOIp3XDWypeFTblYj4a14 /2ivQxMiaSi5MuDMswhdAlD/vg== -----END CERTIFICATE-----Generated at Fri Apr 17 16:58:46 2026 by rpki-client