$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft File: XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft (raw, json) Hash identifier: SKlgxMELkq9w6IbIr8VE/XqiEtygpGYnnsc83V8j0s8= Subject key identifier: 49:1C:8D:90:83:89:80:19:33:FA:3F:CD:F8:65:95:82:94:7A:1B:BE Authority key identifier: 5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 Certificate issuer: /CN=A91B23B3/serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Certificate serial: 0A64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft Manifest number: 0A3B Signing time: Thu 16 Apr 2026 19:40:07 +0000 Manifest this update: Thu 16 Apr 2026 19:40:07 +0000 Manifest next update: Thu 23 Apr 2026 19:40:07 +0000 Files and hashes: 1: XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl (hash: ZJ4ilFNIPeg2huF+YwR8dhKHW2oOjvF5xGoqgVl1JBs=) 2: 3818D9A09A9011EFB14F1729C4F9AE02.roa (hash: WPLajparplJU8xXoLqj3sJQqQv2qTK7SmIP3Bri0gcA=) 3: 2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa (hash: 72DcOTbzZF7+TCywcpXepZonikbAwf9INnwgkXqBzAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:40:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2660 (0xa64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23B3, serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Validity Not Before: Apr 16 19:40:07 2026 GMT Not After : Apr 23 19:40:07 2026 GMT Subject: CN=69e13b17-df5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:67:a2:5c:93:29:62:b7:d1:6f:2d:68:5c:42: 82:f8:64:f2:89:d2:0a:a5:0f:99:d5:b2:60:9a:a7: 25:43:21:1e:69:fc:ee:68:59:ee:d7:cb:d0:15:9a: d8:a0:38:83:be:01:69:85:b6:ec:d8:99:e6:fb:06: 86:60:1a:c7:d3:dc:22:30:2a:2d:8a:41:7f:e1:65: 90:ca:4e:a8:5b:b9:c4:81:7b:ec:6f:b5:72:db:e8: 33:d7:1f:60:4f:af:85:d6:1d:e1:d9:68:c6:35:c7: 38:2e:e8:a5:fc:44:9d:98:01:35:89:03:64:76:b6: 44:e3:42:5b:a3:9e:e6:a1:52:1d:1a:93:d2:53:ac: f6:46:3b:30:69:19:86:4d:eb:15:08:76:b8:57:e9: db:cd:73:90:33:7e:97:7f:3f:d1:c1:cc:74:9a:43: de:d0:39:7e:16:b1:54:1b:60:7f:e2:ee:26:3c:d2: 9e:90:00:c3:8e:06:73:94:3e:0e:bf:a4:7e:1c:ed: f8:87:c3:0d:1f:49:15:66:4e:56:f8:62:a9:8f:ac: 53:7a:57:4c:84:58:d9:22:b2:f1:a7:80:ce:09:3b: 9e:b7:ae:4a:4c:ad:4c:80:1c:50:b3:23:c7:c4:8b: fe:24:c7:69:31:38:12:88:2e:59:93:aa:fe:2f:81: 9a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:1C:8D:90:83:89:80:19:33:FA:3F:CD:F8:65:95:82:94:7A:1B:BE X509v3 Authority Key Identifier: keyid:5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:de:9e:15:39:84:6e:92:3c:af:65:05:bd:54:8d:28:21:c5: 8e:ab:05:ea:4f:fe:ee:3d:c5:ef:4c:d4:e3:0a:4c:ae:b6:5b: 90:c2:21:a0:52:89:98:2c:b6:31:73:a9:92:e9:7e:40:53:3d: 68:f4:95:7d:a3:80:4f:6f:b6:07:a1:5d:0d:e2:6c:ae:84:90: 8c:bd:4d:59:8b:9d:44:1f:a3:33:0a:95:03:a0:44:43:3d:a2: 31:5f:c5:7b:c9:c4:22:19:1e:ef:41:4d:2a:44:d4:dc:46:76: 57:6f:5c:73:2d:86:e0:4d:fc:45:1b:5f:c4:f7:3e:f3:92:09: 15:b4:11:0b:e3:f5:9c:89:ac:d4:e6:db:d0:f7:cb:dc:fa:5a: 58:20:e0:62:81:f9:0e:68:f7:75:51:c9:4f:99:d2:5d:12:2c: d9:da:49:7c:0d:db:75:b9:94:86:97:c7:88:a3:a1:8c:34:53: ee:c6:86:0f:d7:64:ba:77:54:2a:ed:ca:d5:7e:1a:e3:7b:92: 91:72:f1:e1:8c:9e:a4:9b:76:04:c7:44:b6:29:86:3f:02:23: c3:42:80:fa:ad:2b:cb:e6:82:2d:84:e5:4c:9e:02:50:7c:3c: f0:2f:98:a1:0c:86:ef:75:64:82:d2:5e:3e:8f:15:03:36:de: 9c:3c:b9:ff -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIzQjMxMTAvBgNVBAUTKDVDMzY4NDM5Q0JDNUY1QTQ1NzE1RDY0NzZCRUFBNjY4 NkQwOTUxQjEwHhcNMjYwNDE2MTk0MDA3WhcNMjYwNDIzMTk0MDA3WjAYMRYwFAYD VQQDEw02OWUxM2IxNy1kZjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGeiXJMpYrfRby1oXEKC+GTyidIKpQ+Z1bJgmqclQyEeafzuaFnu18vQFZrY oDiDvgFphbbs2Jnm+waGYBrH09wiMCotikF/4WWQyk6oW7nEgXvsb7Vy2+gz1x9g T6+F1h3h2WjGNcc4Luil/ESdmAE1iQNkdrZE40Jbo57moVIdGpPSU6z2RjswaRmG TesVCHa4V+nbzXOQM36Xfz/Rwcx0mkPe0Dl+FrFUG2B/4u4mPNKekADDjgZzlD4O v6R+HO34h8MNH0kVZk5W+GKpj6xTeldMhFjZIrLxp4DOCTuet65KTK1MgBxQsyPH xIv+JMdpMTgSiC5Zk6r+L4GauQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEkcjZCD iYAZM/o/zfhllYKUehu+MB8GA1UdIwQYMBaAFFw2hDnLxfWkVxXWR2vqpmhtCVGx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjNCMy9FNjQ2NUExMDhF OTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2RjlhUlhGZFpIYS1xbWFHMEpV YkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEYUVPY3ZGOWFSWEZkWkhhLXFtYUcwSlViRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjNCMy9FNjQ2NUExMDhFOTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2Rjlh UlhGZFpIYS1xbWFHMEpVYkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAd6eFTmEbpI8r2UFvVSNKCHFjqsF6k/+7j3F70zU4wpMrrZbkMIhoFKJmCy2 MXOpkul+QFM9aPSVfaOAT2+2B6FdDeJsroSQjL1NWYudRB+jMwqVA6BEQz2iMV/F e8nEIhke70FNKkTU3EZ2V29ccy2G4E38RRtfxPc+85IJFbQRC+P1nIms1Obb0PfL 3PpaWCDgYoH5Dmj3dVHJT5nSXRIs2dpJfA3bdbmUhpfHiKOhjDRT7saGD9dkundU Ku3K1X4a43uSkXLx4YyepJt2BMdEtimGPwIjw0KA+q0ry+aCLYTlTJ4CUHw88C+Y oQyG73VkgtJePo8VAzbenDy5/w== -----END CERTIFICATE-----Generated at Fri Apr 17 10:07:23 2026 by rpki-client