$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft File: XnKqfVsdVjLl0z_scvp0M_Sc4po.mft (raw, json) Hash identifier: zlMJ9O5RSv4duLh4BchPV24m6LqmXdtR4s9TbbbU43E= Subject key identifier: FF:95:E5:D3:AD:D2:0F:A9:E7:4D:A7:65:BC:BE:9F:CF:4F:A7:19:00 Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 0230 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft Manifest number: 01FE Signing time: Fri 17 Apr 2026 03:14:19 +0000 Manifest this update: Fri 17 Apr 2026 03:14:18 +0000 Manifest next update: Fri 24 Apr 2026 03:14:18 +0000 Files and hashes: 1: XnKqfVsdVjLl0z_scvp0M_Sc4po.crl (hash: E6BuAZ6EX9bqUN2rvpcgOiJBdQDF2O9qYW0K7n7hcd0=) 2: 9830B6D8663D11EE8CBBAE7CC4F9AE02.roa (hash: CKjWrRKFrq5wIXerALs28X5SJv1uenx7ZdloeFQoUHo=) 3: 98BE8828663D11EE8CBBAE7CC4F9AE02.roa (hash: d0JlKivvI0UuN/+g7FjPgsMv6qjwloa3O1BziCQ3cTE=) 4: 99341DD6663D11EE8CBBAE7CC4F9AE02.roa (hash: kvLOqAvejoloIcBp8iOod+XLqcMm6Km2ICEQUCNEODY=) 5: 36C31E00637111EEA51CA05EC4F9AE02.roa (hash: sT56QjRFMA5RYNrfwK84aeqd2CWRIQx/z7cMGwk6r48=) 6: 678C24C0663F11EEBD955D43C4F9AE02.roa (hash: r/B/wTWM1e+RbFQV+OxoufBd8XhZQMs6+SrSBQGZEm0=) 7: 00E626A4A57611EF98285E5FC4F9AE02.roa (hash: yxoJxjt522RCtypxdpCWh8Ki8MQz+o9DlkQu175uTk8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:14:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 560 (0x230) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82, serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: Apr 17 03:14:18 2026 GMT Not After : Apr 24 03:14:18 2026 GMT Subject: CN=69e1a58b-aea7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b7:6e:45:10:20:fa:f8:b3:85:3f:f5:7f:d5: ab:07:17:2f:75:fd:76:94:79:70:59:be:26:18:c8: b6:55:d2:1d:0a:d2:ae:85:62:c0:f0:fd:21:61:a9: 0f:a1:eb:ad:25:24:58:bf:8a:2d:76:11:48:d7:77: c1:3d:35:d0:4f:24:8e:c1:a0:13:a5:4c:ed:5e:d2: b7:6f:fb:44:63:50:29:10:4a:d2:6f:b5:7e:f6:53: 14:29:30:e9:ee:68:b6:98:e7:c1:e4:00:f4:25:6c: 40:b5:34:4d:0e:1d:7f:f5:60:49:9f:c4:03:03:80: dc:1d:18:e1:7a:ed:45:c5:81:36:02:87:e7:b0:9f: 30:0f:f1:7a:2a:ca:76:a0:60:df:c8:60:60:bd:d1: fa:7d:e0:c9:a3:d8:af:d5:c9:47:13:dc:d9:18:66: 34:8c:9b:86:7b:c5:01:80:7b:cc:a8:45:6e:cc:33: fa:39:22:e3:c6:bb:54:f7:f1:93:4c:f8:d8:8b:15: c8:b5:b9:b4:7a:54:14:78:29:c2:15:50:e9:fd:1e: 78:9b:82:39:c3:f8:ad:38:f9:90:86:ce:4c:c5:dc: d4:55:ce:84:af:d7:a2:5a:01:47:e4:a7:88:98:a1: fb:90:99:11:8e:53:96:31:9f:70:8f:ed:71:80:7f: 74:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:95:E5:D3:AD:D2:0F:A9:E7:4D:A7:65:BC:BE:9F:CF:4F:A7:19:00 X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:ef:c2:08:b1:49:69:fe:cc:d5:3b:44:9a:91:64:db:ff:08: 61:58:ab:c3:7d:e9:33:d4:4a:8f:55:41:e2:42:07:0d:24:d4: 6e:bf:f7:11:07:16:e4:bb:d2:2c:5d:62:ac:5b:c2:18:d5:d0: 17:ee:da:23:d7:57:89:96:95:57:9d:a2:d8:d1:ca:a9:3f:4e: a4:36:03:bd:ef:ae:4b:54:47:2e:8e:1d:43:b6:a1:5a:72:70: 4d:fe:33:8d:7d:35:cc:07:ea:c5:cb:7d:b1:bd:ac:60:9a:f6: 0f:0f:04:97:4f:55:98:81:7d:a5:71:b1:1c:f9:b0:25:34:39: 85:e4:9e:0f:f0:54:83:3f:4b:2d:34:60:b0:83:98:7b:11:5d: d4:ca:a5:84:88:83:14:a0:13:5e:3e:dc:36:0b:84:29:7b:76: 7b:70:8f:49:e6:b7:e5:6e:a0:36:da:df:41:f5:0d:42:8c:ac: 13:e8:64:60:ba:13:80:f6:85:41:da:89:5c:69:c0:90:e8:38: 57:00:39:a1:54:c1:f6:63:71:05:38:6a:73:0a:68:22:89:e3: 8c:d0:a1:89:06:98:b6:66:4d:de:04:6b:42:35:68:0c:50:eb: b8:10:b5:cf:75:f5:b0:4e:43:55:e5:df:d4:59:68:ce:16:78: 34:41:8e:d4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjYwNDE3MDMxNDE4WhcNMjYwNDI0MDMxNDE4WjAYMRYwFAYD VQQDEw02OWUxYTU4Yi1hZWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7duRRAg+vizhT/1f9WrBxcvdf12lHlwWb4mGMi2VdIdCtKuhWLA8P0hYakP oeutJSRYv4otdhFI13fBPTXQTySOwaATpUztXtK3b/tEY1ApEErSb7V+9lMUKTDp 7mi2mOfB5AD0JWxAtTRNDh1/9WBJn8QDA4DcHRjheu1FxYE2AofnsJ8wD/F6Ksp2 oGDfyGBgvdH6feDJo9iv1clHE9zZGGY0jJuGe8UBgHvMqEVuzDP6OSLjxrtU9/GT TPjYixXItbm0elQUeCnCFVDp/R54m4I5w/itOPmQhs5MxdzUVc6Er9eiWgFH5KeI mKH7kJkRjlOWMZ9wj+1xgH906wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFP+V5dOt 0g+p502nZby+n89PpxkAMB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUU4Mi9FQTdFNUZBNjYzNkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZq TGwwel9zY3ZwME1fU2M0cG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFO/CCLFJaf7M1TtEmpFk2/8IYVirw33pM9RKj1VB4kIHDSTUbr/3EQcW5LvS LF1irFvCGNXQF+7aI9dXiZaVV52i2NHKqT9OpDYDve+uS1RHLo4dQ7ahWnJwTf4z jX01zAfqxct9sb2sYJr2Dw8El09VmIF9pXGxHPmwJTQ5heSeD/BUgz9LLTRgsIOY exFd1MqlhIiDFKATXj7cNguEKXt2e3CPSea35W6gNtrfQfUNQoysE+hkYLoTgPaF QdqJXGnAkOg4VwA5oVTB9mNxBThqcwpoIonjjNChiQaYtmZN3gRrQjVoDFDruBC1 z3X1sE5DVeXf1FlozhZ4NEGO1A== -----END CERTIFICATE-----Generated at Fri Apr 17 18:32:49 2026 by rpki-client