$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft File: XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft (raw, json) Hash identifier: QkAWmsZGLdWMhXCoGIQ5CkhAf8GT9xUJ1DZJBQrLkqc= Subject key identifier: 3E:3C:65:34:62:96:CC:DC:3C:A2:70:90:05:17:14:CF:84:85:BD:0B Authority key identifier: 5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 Certificate issuer: /CN=A91D0B34/serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Certificate serial: 0A88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft Manifest number: 0A78 Signing time: Thu 16 Apr 2026 19:31:23 +0000 Manifest this update: Thu 16 Apr 2026 19:31:23 +0000 Manifest next update: Thu 23 Apr 2026 19:31:23 +0000 Files and hashes: 1: XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl (hash: NW0pjQXcvEH5NazWeRipA2BqzvT09rZd2mnQEmBDhg8=) 2: 97E61FE46F2111EB85D19531C4F9AE02.roa (hash: F/VFxbWKijK0FBQMOwCi6caTAlncQZjF9P40j+MjDLs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2696 (0xa88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B34, serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Validity Not Before: Apr 16 19:31:23 2026 GMT Not After : Apr 23 19:31:23 2026 GMT Subject: CN=69e1390b-8388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:45:4e:f8:9f:a4:3b:84:64:62:b4:90:12:01: f2:d5:93:7e:28:2c:3d:52:96:e9:81:9d:2e:51:3f: da:44:2d:fa:7a:5e:0b:2d:2d:41:45:6e:a0:dc:73: 4f:40:41:45:eb:f8:2a:8f:6c:1b:1d:60:b9:d6:5d: c4:41:9f:63:e6:96:50:39:2d:a1:ac:ed:cf:9e:5f: 5b:71:8f:20:8d:3f:ce:07:e9:5a:7f:05:4b:24:f1: bc:00:a7:46:63:c4:45:58:1d:04:b0:9a:23:e8:28: 32:8e:6b:da:7a:a9:fd:a0:b2:b9:fd:e2:60:02:f8: f7:72:61:67:45:fa:ae:3e:36:0a:23:57:d1:ca:f7: aa:2f:b0:d6:9c:2d:81:76:d6:c9:1d:b1:67:43:d2: f1:ed:54:16:16:12:7c:6a:dc:da:be:e2:47:cd:81: d6:a8:e5:ee:bb:3f:a4:fd:00:e4:38:21:32:ec:93: d0:90:01:6a:54:89:ba:91:ea:f1:f0:cc:c6:3f:0e: 36:f1:2b:35:ea:54:02:9c:c3:1d:f3:8d:f5:d6:37: 45:b7:2c:aa:56:6b:b5:2f:e5:17:50:eb:8d:30:3a: 5b:d5:0b:45:6f:44:94:32:76:cc:c7:4e:bc:60:72: 59:f7:2f:62:1a:45:9f:7f:9e:d7:ab:4a:c2:33:b8: 23:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:3C:65:34:62:96:CC:DC:3C:A2:70:90:05:17:14:CF:84:85:BD:0B X509v3 Authority Key Identifier: keyid:5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:a0:65:21:2a:e0:9a:c1:2f:aa:23:90:9b:8b:05:ec:6a:f9: bb:69:22:41:0a:ee:37:72:9e:9d:ac:49:1c:b4:67:00:ae:a4: a2:2b:99:4b:21:ab:09:e4:3e:81:ff:48:7a:6a:9a:8f:9f:75: e4:c4:17:75:ab:03:c0:69:a7:c0:9b:6b:92:cf:ff:5a:ae:d7: 51:a6:bb:c1:fc:da:d1:69:f0:65:e6:2a:c3:a7:d4:d6:73:88: 1c:ef:b7:b6:3d:99:f1:07:4b:9d:f6:4d:1d:fc:32:b3:ff:e2: 19:7c:a2:50:7e:e1:b5:58:c5:3e:cb:fc:e4:bd:cb:33:a5:08: 0a:d5:d2:c8:24:cf:58:97:10:b1:77:02:14:75:d9:69:d9:70: 1e:83:85:b9:04:80:87:d4:0f:fd:92:3f:f4:a8:20:95:b4:c6: 04:db:db:81:c7:c2:65:ba:c3:b5:c8:ab:92:67:ff:88:c9:35: f4:54:96:95:d5:f4:af:6f:e8:10:27:2c:97:28:93:47:5b:3b: c0:3d:5c:3f:39:f5:7c:6a:70:e4:f3:51:64:14:11:8e:f8:5e: 34:82:3e:b1:2e:02:1a:8d:21:c9:28:ba:49:93:f3:20:49:89: 94:5d:7b:d9:bc:3f:d4:27:ac:0a:da:bc:72:18:6d:0b:db:d8: a7:bc:78:61 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMzQxMTAvBgNVBAUTKDVERjEwMkUyQTVFNzM2NzcyMUMxMThEQkVDREE2MDJB ODAyOUVFOTQwHhcNMjYwNDE2MTkzMTIzWhcNMjYwNDIzMTkzMTIzWjAYMRYwFAYD VQQDEw02OWUxMzkwYi04Mzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5UVO+J+kO4RkYrSQEgHy1ZN+KCw9UpbpgZ0uUT/aRC36el4LLS1BRW6g3HNP QEFF6/gqj2wbHWC51l3EQZ9j5pZQOS2hrO3Pnl9bcY8gjT/OB+lafwVLJPG8AKdG Y8RFWB0EsJoj6Cgyjmvaeqn9oLK5/eJgAvj3cmFnRfquPjYKI1fRyveqL7DWnC2B dtbJHbFnQ9Lx7VQWFhJ8atzavuJHzYHWqOXuuz+k/QDkOCEy7JPQkAFqVIm6kerx 8MzGPw428Ss16lQCnMMd84311jdFtyyqVmu1L+UXUOuNMDpb1QtFb0SUMnbMx068 YHJZ9y9iGkWff57Xq0rCM7gjIwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD48ZTRi lszcPKJwkAUXFM+Ehb0LMB8GA1UdIwQYMBaAFF3xAuKl5zZ3IcEY2+zaYCqAKe6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIzNC82MDM3RDVEQzgy QTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5uY2h3UmpiN05wZ0tvQXA3 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmRUM0cVhuTm5jaHdSamI3TnBnS29BcDdwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIzNC82MDM3RDVEQzgyQTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5u Y2h3UmpiN05wZ0tvQXA3cFEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAG6BlISrgmsEvqiOQm4sF7Gr5u2kiQQruN3KenaxJHLRnAK6koiuZSyGrCeQ+ gf9Iemqaj5915MQXdasDwGmnwJtrks//Wq7XUaa7wfza0WnwZeYqw6fU1nOIHO+3 tj2Z8QdLnfZNHfwys//iGXyiUH7htVjFPsv85L3LM6UICtXSyCTPWJcQsXcCFHXZ adlwHoOFuQSAh9QP/ZI/9KgglbTGBNvbgcfCZbrDtcirkmf/iMk19FSWldX0r2/o ECcslyiTR1s7wD1cPzn1fGpw5PNRZBQRjvheNII+sS4CGo0hySi6SZPzIEmJlF17 2bw/1CesCtq8chhtC9vYp7x4YQ== -----END CERTIFICATE-----Generated at Fri Apr 17 09:41:58 2026 by rpki-client