$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.mft File: XTDuvxHkF41iO-G95Nu0y1nMhDc.mft (raw, json) Hash identifier: SJL83zCnKcZYe9w2BPs48Wl6+iHzZdXibwyWVaASAoA= Subject key identifier: AF:04:20:23:46:04:1E:F4:EF:CC:E4:C9:E0:EE:61:6F:21:08:26:7E Authority key identifier: 5D:30:EE:BF:11:E4:17:8D:62:3B:E1:BD:E4:DB:B4:CB:59:CC:84:37 Certificate issuer: /CN=A91AB1C2/serialNumber=5D30EEBF11E4178D623BE1BDE4DBB4CB59CC8437 Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTDuvxHkF41iO-G95Nu0y1nMhDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.mft Manifest number: 45 Signing time: Fri 17 Apr 2026 08:10:39 +0000 Manifest this update: Fri 17 Apr 2026 08:10:38 +0000 Manifest next update: Fri 24 Apr 2026 08:10:38 +0000 Files and hashes: 1: XTDuvxHkF41iO-G95Nu0y1nMhDc.crl (hash: 0uLYY0jq+6gd6irwEeHlLgHfcjpiMfkllBUAX6Pv/XI=) 2: 24992E62E0FC11F0B50D6A7D5F6F56BC.roa (hash: eAx7dd7W8IzFugozPftJzHrtY4Ej4f42CnK31HLLaRE=) 3: 253978EAE0FC11F0B50D6A7D5F6F56BC.roa (hash: 6RxldyO2/Y3wToEhzB/mHNRPtNgIGcUmqFl9NgQBrdA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.crl rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTDuvxHkF41iO-G95Nu0y1nMhDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 08:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB1C2, serialNumber=5D30EEBF11E4178D623BE1BDE4DBB4CB59CC8437 Validity Not Before: Apr 17 08:10:38 2026 GMT Not After : Apr 24 08:10:38 2026 GMT Subject: CN=69e1eafe-24ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b7:bb:16:0d:dd:ed:06:95:20:c7:50:66:48: 55:c8:70:f9:9d:a8:2a:65:0d:c5:2a:dd:8b:da:c6: 72:67:91:57:be:1f:0d:81:1f:6d:f9:53:23:14:05: 8c:33:72:3d:b1:69:36:14:c6:8e:9f:77:a0:49:3a: d3:bc:51:0f:6c:f3:d7:5a:ca:6a:d2:4e:7e:df:0d: 50:85:a0:49:a6:82:44:f9:29:a0:fe:2d:15:d7:e2: ec:7f:e8:61:d2:c1:94:02:3c:d6:ac:b7:74:07:98: 79:66:8e:13:36:4d:e4:cd:04:68:7b:b7:9f:e8:b5: 64:54:2c:07:43:33:ae:44:85:19:0d:2d:41:75:29: c1:86:13:8a:1c:13:38:1c:b1:c2:8d:ee:f2:09:48: ee:88:d5:67:f4:d7:f6:ce:13:c4:76:66:3c:c5:0a: d8:9d:09:3a:36:d1:c8:38:df:d2:f4:ea:f2:29:55: b7:65:9c:43:9a:a2:67:5a:42:b6:f1:1f:47:02:d1: 09:6b:d5:e4:7e:cf:1c:c6:e1:76:b9:a5:51:98:2b: f5:99:52:a9:54:64:11:93:f3:ce:11:d3:9d:37:6d: da:17:ae:4e:57:ce:fd:91:83:98:18:1a:10:d9:a9: 04:34:fa:9f:6e:f8:f5:71:5f:6c:b2:20:83:82:0c: c2:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:04:20:23:46:04:1E:F4:EF:CC:E4:C9:E0:EE:61:6F:21:08:26:7E X509v3 Authority Key Identifier: keyid:5D:30:EE:BF:11:E4:17:8D:62:3B:E1:BD:E4:DB:B4:CB:59:CC:84:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTDuvxHkF41iO-G95Nu0y1nMhDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:1f:36:0c:18:92:56:c2:f8:0e:8c:10:30:42:b2:81:88:9c: fb:6e:a2:75:7b:06:e2:1e:eb:7a:15:6e:6c:94:f5:24:30:f7: 26:f2:f6:42:32:77:10:cc:f3:e9:e7:f8:7f:e0:95:c3:57:a8: 9c:dd:59:c0:c6:c1:19:7f:e2:7a:64:58:07:3e:d5:18:7d:fb: 16:2c:60:af:57:f7:b7:6f:21:d1:20:a7:de:b2:9d:fb:d7:cc: 56:b4:04:e9:86:cc:a1:73:b4:b8:95:82:69:73:3b:bf:b7:04: 89:0b:e8:a4:60:96:7a:50:08:4d:64:97:52:e5:8c:f1:0f:a2: 1e:9a:eb:7f:c6:f0:ac:ab:45:7e:b0:5e:a1:77:60:e7:7b:4b: 92:09:5c:db:e5:77:95:8c:d5:71:da:42:da:60:5e:71:68:23: 46:29:fd:1c:4b:f0:18:be:c6:fa:4d:66:34:8a:91:72:65:40: 76:0d:a8:14:13:37:b6:9b:4a:34:15:e9:a7:8d:df:61:0e:d4: 2f:6c:8d:dc:46:6d:cf:76:9c:af:28:31:95:f1:51:52:4b:8d: 24:55:9a:43:4d:44:35:66:ce:44:dd:ea:f9:96:ce:d9:dc:de: a3:42:8a:e1:02:d3:82:d8:a7:29:33:3c:b0:02:57:2b:bb:50: c5:d0:40:18 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QjFDMjExMC8GA1UEBRMoNUQzMEVFQkYxMUU0MTc4RDYyM0JFMUJERTREQkI0Q0I1 OUNDODQzNzAeFw0yNjA0MTcwODEwMzhaFw0yNjA0MjQwODEwMzhaMBgxFjAUBgNV BAMTDTY5ZTFlYWZlLTI0ZmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDt7sWDd3tBpUgx1BmSFXIcPmdqCplDcUq3YvaxnJnkVe+Hw2BH235UyMUBYwz cj2xaTYUxo6fd6BJOtO8UQ9s89daymrSTn7fDVCFoEmmgkT5KaD+LRXX4ux/6GHS wZQCPNast3QHmHlmjhM2TeTNBGh7t5/otWRULAdDM65EhRkNLUF1KcGGE4ocEzgc scKN7vIJSO6I1Wf01/bOE8R2ZjzFCtidCTo20cg439L06vIpVbdlnEOaomdaQrbx H0cC0Qlr1eR+zxzG4Xa5pVGYK/WZUqlUZBGT884R0503bdoXrk5Xzv2Rg5gYGhDZ qQQ0+p9u+PVxX2yyIIOCDML9AgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUrwQgI0YE HvTvzOTJ4O5hbyEIJn4wHwYDVR0jBBgwFoAUXTDuvxHkF41iO+G95Nu0y1nMhDcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFCMUMyLzBGOTEwNzU0RENB MzExRjA4NUQ2RjE1QjQzNkY1NkJDL1hURHV2eEhrRjQxaU8tRzk1TnUweTFuTWhE Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWFREdXZ4SGtGNDFpTy1HOTVOdTB5MW5NaERjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFC MUMyLzBGOTEwNzU0RENBMzExRjA4NUQ2RjE1QjQzNkY1NkJDL1hURHV2eEhrRjQx aU8tRzk1TnUweTFuTWhEYy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQADHzYMGJJWwvgOjBAwQrKBiJz7bqJ1ewbiHut6FW5slPUkMPcm8vZCMncQzPPp 5/h/4JXDV6ic3VnAxsEZf+J6ZFgHPtUYffsWLGCvV/e3byHRIKfesp3718xWtATp hsyhc7S4lYJpczu/twSJC+ikYJZ6UAhNZJdS5YzxD6Iemut/xvCsq0V+sF6hd2Dn e0uSCVzb5XeVjNVx2kLaYF5xaCNGKf0cS/AYvsb6TWY0ipFyZUB2DagUEze2m0o0 Femnjd9hDtQvbI3cRm3PdpyvKDGV8VFSS40kVZpDTUQ1Zs5E3er5ls7Z3N6jQorh AtOC2KcpMzywAlcru1DF0EAY -----END CERTIFICATE-----Generated at Fri Apr 17 19:31:40 2026 by rpki-client