$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft File: XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft (raw, json) Hash identifier: ojSz1ImYUi8ZG3dkk/9nva/v3nbJKTOR3aQFRrKISug= Subject key identifier: B0:F5:4D:CB:EC:1D:91:4F:E9:D5:18:1E:D0:C2:C1:9F:63:1A:9A:8C Authority key identifier: 5D:4F:41:2A:E4:80:10:FE:54:87:F0:18:F1:71:A9:C6:46:9D:9A:C5 Certificate issuer: /CN=A91BCA5B/serialNumber=5D4F412AE48010FE5487F018F171A9C6469D9AC5 Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft Manifest number: 53 Signing time: Fri 17 Apr 2026 07:52:48 +0000 Manifest this update: Fri 17 Apr 2026 07:52:48 +0000 Manifest next update: Fri 24 Apr 2026 07:52:48 +0000 Files and hashes: 1: XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl (hash: 59LJH2m+TBP2yulxLNv11LvJi7mW8OMFggj6jEsX2Gc=) 2: AF2E6AE2C03B11F09EE7012FC4F9AE02.roa (hash: X+3wJMfk1XJRp+yqbhiP7HWaocFMU1AXSgdZNrsdlvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCA5B, serialNumber=5D4F412AE48010FE5487F018F171A9C6469D9AC5 Validity Not Before: Apr 17 07:52:48 2026 GMT Not After : Apr 24 07:52:48 2026 GMT Subject: CN=69e1e6d0-5375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:f4:32:86:b7:a7:c4:3b:55:65:b2:fe:48:ef: d1:66:bc:77:58:7e:7c:5c:d9:84:32:c5:24:20:6a: 11:04:31:3f:b1:2b:35:aa:19:27:3a:9e:de:78:27: 6c:ce:bc:ff:f4:a2:de:7c:02:17:2f:2b:ca:8c:11: 16:04:6c:91:0f:5c:d9:c9:fa:03:07:3d:c7:ad:e1: 66:ba:2d:9c:95:a2:9f:77:87:c6:84:22:e3:1b:2d: 28:b7:81:d4:e5:fc:4f:77:83:6d:ca:5b:30:bd:a2: 4c:c8:98:b9:7e:69:11:f1:fc:c6:51:b0:35:7f:ed: b0:87:ed:ec:74:f2:78:6f:8c:fb:e6:a1:3e:3c:bd: e3:27:75:50:63:7a:be:be:e7:86:22:b9:cb:27:c5: bf:e4:3f:e0:8f:27:44:8f:9e:ee:dc:29:9b:58:f5: 46:4b:cf:1e:10:e2:a8:c6:66:b7:84:87:50:ef:c7: d0:5a:77:0c:d2:f4:83:f8:b5:bf:b0:d2:e4:3f:53: 78:54:bb:0f:e7:8f:f8:e3:f9:bc:eb:d9:cc:a0:d1: d1:f5:30:20:8d:b8:d9:b9:2f:8f:18:48:5d:ec:54: 09:f1:18:12:2b:58:b6:e7:3b:22:69:64:37:72:d6: 67:36:e8:17:2e:15:c8:51:1f:4e:09:de:dc:37:3f: e5:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:F5:4D:CB:EC:1D:91:4F:E9:D5:18:1E:D0:C2:C1:9F:63:1A:9A:8C X509v3 Authority Key Identifier: keyid:5D:4F:41:2A:E4:80:10:FE:54:87:F0:18:F1:71:A9:C6:46:9D:9A:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:88:20:a5:9e:f2:4d:11:c0:ed:37:e0:e3:db:4f:19:2e:09: 1f:62:60:d4:8a:49:2c:61:44:f8:1a:04:d9:9f:95:0f:1e:53: c5:c2:bf:c0:01:9c:d6:d0:42:43:c0:87:e5:59:46:df:ac:1b: 9d:76:ab:45:a6:f8:9d:06:f8:1f:6c:c6:62:15:f7:68:5c:65: 7b:c2:f2:c7:39:5e:58:bd:cf:c2:1e:1a:78:18:e8:51:81:c7: 9e:79:b8:b5:86:3e:ae:f0:32:6a:9b:18:4e:26:9d:34:b3:25: 50:a0:cb:31:ad:79:96:f6:87:ae:64:c9:f8:9f:ee:33:36:4d: 30:46:c3:c9:93:17:62:81:18:19:84:55:60:00:0e:87:49:7a: 59:b2:b6:75:9d:bf:89:5d:4e:d3:d9:fb:1a:51:cd:dc:fd:0d: ce:58:9d:cb:77:f0:d1:7f:39:c7:47:c7:a9:c5:29:87:92:9b: 57:68:ba:c7:0d:c7:ef:f8:a6:09:99:32:8d:35:4f:31:80:65: 20:8d:65:43:a5:d9:76:97:55:80:6f:84:0b:23:eb:c6:b2:21: 84:17:d0:a1:2c:85:1c:7c:d8:63:a4:79:a3:2f:d7:a3:c8:aa: 82:6a:99:f7:16:f9:30:97:c8:7c:27:ad:f1:33:12:c9:6f:c7: a1:02:81:49 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC Q0E1QjExMC8GA1UEBRMoNUQ0RjQxMkFFNDgwMTBGRTU0ODdGMDE4RjE3MUE5QzY0 NjlEOUFDNTAeFw0yNjA0MTcwNzUyNDhaFw0yNjA0MjQwNzUyNDhaMBgxFjAUBgNV BAMTDTY5ZTFlNmQwLTUzNzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCf9DKGt6fEO1Vlsv5I79FmvHdYfnxc2YQyxSQgahEEMT+xKzWqGSc6nt54J2zO vP/0ot58AhcvK8qMERYEbJEPXNnJ+gMHPcet4Wa6LZyVop93h8aEIuMbLSi3gdTl /E93g23KWzC9okzImLl+aRHx/MZRsDV/7bCH7ex08nhvjPvmoT48veMndVBjer6+ 54Yiucsnxb/kP+CPJ0SPnu7cKZtY9UZLzx4Q4qjGZreEh1Dvx9BadwzS9IP4tb+w 0uQ/U3hUuw/nj/jj+bzr2cyg0dH1MCCNuNm5L48YSF3sVAnxGBIrWLbnOyJpZDdy 1mc26BcuFchRH04J3tw3P+WLAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUsPVNy+wd kU/p1Rge0MLBn2MamowwHwYDVR0jBBgwFoAUXU9BKuSAEP5Uh/AY8XGpxkadmsUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDQTVCL0QyNUQ4NjhFQzAz QTExRjA4OEEzNDYyQ0M0RjlBRTAyL1hVOUJLdVNBRVA1VWhfQVk4WEdweGthZG1z VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWFU5Qkt1U0FFUDVVaF9BWThYR3B4a2FkbXNVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJD QTVCL0QyNUQ4NjhFQzAzQTExRjA4OEEzNDYyQ0M0RjlBRTAyL1hVOUJLdVNBRVA1 VWhfQVk4WEdweGthZG1zVS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQC9iCClnvJNEcDtN+Dj208ZLgkfYmDUikksYUT4GgTZn5UPHlPFwr/AAZzW0EJD wIflWUbfrBuddqtFpvidBvgfbMZiFfdoXGV7wvLHOV5Yvc/CHhp4GOhRgceeebi1 hj6u8DJqmxhOJp00syVQoMsxrXmW9oeuZMn4n+4zNk0wRsPJkxdigRgZhFVgAA6H SXpZsrZ1nb+JXU7T2fsaUc3c/Q3OWJ3Ld/DRfznHR8epxSmHkptXaLrHDcfv+KYJ mTKNNU8xgGUgjWVDpdl2l1WAb4QLI+vGsiGEF9ChLIUcfNhjpHmjL9ejyKqCapn3 Fvkwl8h8J63xMxLJb8ehAoFJ -----END CERTIFICATE-----Generated at Fri Apr 17 09:47:50 2026 by rpki-client