$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft File: hXm-LYNFaC8nrucGK71O92ZOVxs.mft (raw, json) Hash identifier: +F+/b0nWjAkTnRln8j0ir37fqu9KWuLpU4EjZoebDYk= Subject key identifier: C6:00:FF:5B:AE:69:0A:05:C0:F6:2E:08:52:11:BD:BC:68:85:D7:EE Authority key identifier: 85:79:BE:2D:83:45:68:2F:27:AE:E7:06:2B:BD:4E:F7:66:4E:57:1B Certificate issuer: /CN=A91D0B6B/serialNumber=8579BE2D8345682F27AEE7062BBD4EF7664E571B Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXm-LYNFaC8nrucGK71O92ZOVxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft Manifest number: D5 Signing time: Fri 17 Apr 2026 06:28:12 +0000 Manifest this update: Fri 17 Apr 2026 06:28:11 +0000 Manifest next update: Fri 24 Apr 2026 06:28:11 +0000 Files and hashes: 1: hXm-LYNFaC8nrucGK71O92ZOVxs.crl (hash: kgMvWZtjS4xIlsK73MQHDiuWbDDScSMaU+eygK7dk48=) 2: 73DC435A39F511F09F296862C4F9AE02.roa (hash: kSc2xHms3sPfHeZuP4LV3Eoyr2OjFjDeReRTh5WRY7U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.crl rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXm-LYNFaC8nrucGK71O92ZOVxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:28:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B6B, serialNumber=8579BE2D8345682F27AEE7062BBD4EF7664E571B Validity Not Before: Apr 17 06:28:11 2026 GMT Not After : Apr 24 06:28:11 2026 GMT Subject: CN=69e1d2fc-a70e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f3:d3:20:c5:9a:df:b1:5c:b8:5c:79:26:42: f8:5e:62:bc:b9:16:8e:09:07:30:37:3d:65:aa:ba: 94:25:0e:d1:4b:5f:5d:2f:fc:1b:32:59:0c:3b:76: d1:7a:0f:da:96:f0:ac:45:94:32:01:14:ff:a0:36: 12:3b:d5:f3:e5:00:3e:1f:fc:73:c6:00:a9:d9:b2: 0a:68:f4:3b:82:bb:52:67:f6:e1:7c:1b:4d:34:6a: 50:7e:a6:15:c8:8a:73:c1:71:ff:6a:4d:ca:9d:f5: 52:ee:06:13:79:08:1d:14:8e:79:dc:8d:50:6b:3b: 27:56:9f:20:96:85:c6:8b:a0:90:19:0a:71:32:2a: 37:b6:f3:90:47:20:12:67:3e:af:28:e3:06:34:57: 5b:ec:0b:53:98:8b:28:bf:d8:15:32:3e:9a:cd:26: 59:0c:bd:1c:91:f0:b5:8a:20:aa:db:3b:39:72:69: 3d:76:96:a8:9e:f9:57:bd:58:75:10:56:a0:be:50: 12:cd:9c:23:d7:d9:fa:10:01:63:c7:8c:31:fc:9f: ab:9f:c8:3d:72:dc:56:30:70:00:a5:02:90:15:99: 96:e5:1a:7e:ea:a5:fc:5f:8d:a9:fc:9f:e0:34:6e: 7c:94:5c:bd:a4:0f:dc:4a:49:93:ab:39:c9:40:02: 84:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:00:FF:5B:AE:69:0A:05:C0:F6:2E:08:52:11:BD:BC:68:85:D7:EE X509v3 Authority Key Identifier: keyid:85:79:BE:2D:83:45:68:2F:27:AE:E7:06:2B:BD:4E:F7:66:4E:57:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXm-LYNFaC8nrucGK71O92ZOVxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B6B/7EC0076CFE3F11EF8FA27752C4F9AE02/hXm-LYNFaC8nrucGK71O92ZOVxs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:de:c5:d5:8e:97:13:75:dd:cb:96:70:7b:ce:20:50:3b:08: ca:cb:82:ae:65:40:25:63:9d:3d:7c:57:a0:1e:5a:29:6f:d0: ec:28:e5:64:5f:07:92:3e:9b:be:fa:ef:38:46:2d:be:7b:54: c5:85:39:9c:73:58:d5:73:3f:b3:bc:aa:4a:88:3d:61:5c:a0: d7:11:40:f2:44:46:af:90:f0:74:d0:1b:cf:03:1c:56:64:55: 3e:bb:3e:8d:e7:4f:b7:82:db:8d:41:7d:e4:38:e3:32:f3:62: 63:58:e8:d3:08:9f:51:c2:43:9f:fc:5a:7a:ec:d0:e2:76:c7: f2:f4:30:57:df:6e:db:c4:98:36:16:64:81:4f:ca:c1:3c:5e: de:28:c5:82:2c:12:26:c7:af:b7:53:27:8d:d5:e7:cb:4f:9e: 65:22:62:3b:fb:21:c5:81:7a:92:e4:0e:b3:d4:96:7b:03:17: d2:5d:90:3a:bb:df:c8:53:56:e8:96:98:09:38:41:3e:11:27: e6:5b:1f:39:dc:78:dd:c2:fb:2f:79:41:cd:ff:0d:ee:bd:78: a2:c0:16:6e:a9:c5:6c:e6:7b:0a:60:70:2a:5f:2e:7c:37:d9: 11:89:0d:60:3f:10:47:aa:90:3e:50:a0:66:90:b4:e7:c6:2f: 88:2a:39:01 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCNkIxMTAvBgNVBAUTKDg1NzlCRTJEODM0NTY4MkYyN0FFRTcwNjJCQkQ0RUY3 NjY0RTU3MUIwHhcNMjYwNDE3MDYyODExWhcNMjYwNDI0MDYyODExWjAYMRYwFAYD VQQDEw02OWUxZDJmYy1hNzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnvPTIMWa37FcuFx5JkL4XmK8uRaOCQcwNz1lqrqUJQ7RS19dL/wbMlkMO3bR eg/alvCsRZQyART/oDYSO9Xz5QA+H/xzxgCp2bIKaPQ7grtSZ/bhfBtNNGpQfqYV yIpzwXH/ak3KnfVS7gYTeQgdFI553I1QazsnVp8gloXGi6CQGQpxMio3tvOQRyAS Zz6vKOMGNFdb7AtTmIsov9gVMj6azSZZDL0ckfC1iiCq2zs5cmk9dpaonvlXvVh1 EFagvlASzZwj19n6EAFjx4wx/J+rn8g9ctxWMHAApQKQFZmW5Rp+6qX8X42p/J/g NG58lFy9pA/cSkmTqznJQAKEGwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMYA/1uu aQoFwPYuCFIRvbxohdfuMB8GA1UdIwQYMBaAFIV5vi2DRWgvJ67nBiu9TvdmTlcb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEI2Qi83RUMwMDc2Q0ZF M0YxMUVGOEZBMjc3NTJDNEY5QUUwMi9oWG0tTFlORmFDOG5ydWNHSzcxTzkyWk9W eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hYbS1MWU5GYUM4bnJ1Y0dLNzFPOTJaT1Z4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEI2Qi83RUMwMDc2Q0ZFM0YxMUVGOEZBMjc3NTJDNEY5QUUwMi9oWG0tTFlORmFD OG5ydWNHSzcxTzkyWk9WeHMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAet7F1Y6XE3Xdy5Zwe84gUDsIysuCrmVAJWOdPXxXoB5aKW/Q7CjlZF8Hkj6b vvrvOEYtvntUxYU5nHNY1XM/s7yqSog9YVyg1xFA8kRGr5DwdNAbzwMcVmRVPrs+ jedPt4LbjUF95DjjMvNiY1jo0wifUcJDn/xaeuzQ4nbH8vQwV99u28SYNhZkgU/K wTxe3ijFgiwSJsevt1MnjdXny0+eZSJiO/shxYF6kuQOs9SWewMX0l2QOrvfyFNW 6JaYCThBPhEn5lsfOdx43cL7L3lBzf8N7r14osAWbqnFbOZ7CmBwKl8ufDfZEYkN YD8QR6qQPlCgZpC058YviCo5AQ== -----END CERTIFICATE-----Generated at Fri Apr 17 12:41:47 2026 by rpki-client