$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft File: XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft (raw, json) Hash identifier: G5I6Hr532/oZQcXyGFw2KoQ++TsB/wBWyykr/2i4a2Y= Subject key identifier: 19:09:1B:76:B4:86:F7:64:3B:4B:1E:DA:6B:A9:27:65:4D:24:7D:89 Authority key identifier: 5D:5F:61:90:21:5D:FF:0A:C3:54:32:BC:3A:52:A0:8B:D3:41:B7:00 Certificate issuer: /CN=A91D28E1/serialNumber=5D5F6190215DFF0AC35432BC3A52A08BD341B700 Certificate serial: 01C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft Manifest number: 01BB Signing time: Fri 17 Apr 2026 03:40:09 +0000 Manifest this update: Fri 17 Apr 2026 03:40:09 +0000 Manifest next update: Fri 24 Apr 2026 03:40:09 +0000 Files and hashes: 1: XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl (hash: +2TTpQ1dauQk4xlpXA4/5EC72sH1yJrUcFlob9U7250=) 2: 0A576F089A4C11EEBD557E12C4F9AE02.roa (hash: alib+UnyJdcp5QK+xSWFYIjYS/kjVCRiqsWyoxYGVsQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28E1, serialNumber=5D5F6190215DFF0AC35432BC3A52A08BD341B700 Validity Not Before: Apr 17 03:40:09 2026 GMT Not After : Apr 24 03:40:09 2026 GMT Subject: CN=69e1ab99-db5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:fb:45:d3:65:fc:ad:5c:b3:1a:dc:ab:5f:a3: 3d:1d:d4:23:08:a3:a8:49:72:ca:08:6f:8e:e3:dc: 91:45:68:58:43:e3:12:86:5e:c2:b9:16:d5:1d:47: 5b:52:d2:63:9a:cd:65:10:ff:91:2c:9a:aa:22:3a: a5:1f:22:ec:d5:e8:da:e1:1b:f7:f7:ee:8f:ef:95: 98:22:dc:a6:b5:4c:28:45:c4:c9:b1:24:96:e1:42: 60:19:ec:5f:f9:72:c8:86:6d:b0:56:ba:c2:17:da: 82:11:92:9a:c4:77:2d:bc:4e:5c:f7:d3:29:d7:9f: 7d:ed:ee:c6:f2:29:5f:a0:74:1a:b5:9c:ac:68:81: 33:b1:31:12:ad:45:64:95:e0:b0:38:2c:49:e3:86: a6:10:06:ae:b0:1a:6c:ae:bc:a6:f0:2d:b5:fb:c7: 7d:5e:66:6c:90:01:3d:4b:b1:48:81:d9:e6:bb:7e: 53:ac:29:48:24:95:da:da:a6:87:d7:d7:59:8c:8e: 9a:fa:bd:6a:c9:ed:ce:12:8e:e6:71:f8:4d:65:c2: 41:fd:3f:00:c6:94:0e:e0:98:23:5e:7a:4d:2b:6a: 11:e5:0f:79:45:e0:82:79:66:15:0a:24:6c:a2:a5: ec:77:b7:f3:99:c5:ad:43:c7:c3:c8:f2:ed:15:d3: de:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:09:1B:76:B4:86:F7:64:3B:4B:1E:DA:6B:A9:27:65:4D:24:7D:89 X509v3 Authority Key Identifier: keyid:5D:5F:61:90:21:5D:FF:0A:C3:54:32:BC:3A:52:A0:8B:D3:41:B7:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:2a:10:b8:ef:75:fb:56:34:ee:3f:c3:d6:8e:68:a4:da:5d: 21:75:df:70:91:b0:15:ae:98:2f:05:8e:9e:57:e3:af:f3:4e: df:06:26:ef:28:2a:f5:62:30:b9:44:4a:b2:01:55:b2:11:be: fa:2f:78:35:19:95:5b:99:36:85:00:cd:d4:23:e5:7c:fd:46: ae:c5:e9:44:ca:68:92:fc:03:c2:e9:59:7f:8a:1b:df:df:e5: 50:ba:b9:c6:13:3d:2f:5e:8d:33:b1:03:72:d4:bb:d6:bb:10: 49:ca:48:39:b9:f7:44:8d:3c:4e:d5:81:30:1d:04:4d:0c:6a: 1a:19:96:94:b9:ee:39:36:9b:2f:b3:e2:d2:f7:52:58:e8:46: 30:3f:1a:31:6e:06:13:b5:60:72:a2:bc:c5:d5:85:e5:3b:e1: f3:27:3b:15:7a:69:8e:28:52:e4:8e:28:8b:39:54:39:2c:0a: 29:15:a6:d1:b5:ee:c3:34:ce:38:3a:f1:34:40:30:f0:89:ef: 08:41:c8:c1:cd:b7:60:26:00:00:6a:6a:db:50:4b:78:c5:74: 25:c6:11:52:34:a1:5a:eb:60:1a:99:aa:68:55:36:30:84:2f: 29:d6:59:b3:d4:f9:f2:9c:7b:3e:b6:6c:81:ca:03:91:fc:50: 2e:32:ee:46 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4RTExMTAvBgNVBAUTKDVENUY2MTkwMjE1REZGMEFDMzU0MzJCQzNBNTJBMDhC RDM0MUI3MDAwHhcNMjYwNDE3MDM0MDA5WhcNMjYwNDI0MDM0MDA5WjAYMRYwFAYD VQQDEw02OWUxYWI5OS1kYjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmvtF02X8rVyzGtyrX6M9HdQjCKOoSXLKCG+O49yRRWhYQ+MShl7CuRbVHUdb UtJjms1lEP+RLJqqIjqlHyLs1eja4Rv39+6P75WYItymtUwoRcTJsSSW4UJgGexf +XLIhm2wVrrCF9qCEZKaxHctvE5c99Mp15997e7G8ilfoHQatZysaIEzsTESrUVk leCwOCxJ44amEAausBpsrrym8C21+8d9XmZskAE9S7FIgdnmu35TrClIJJXa2qaH 19dZjI6a+r1qye3OEo7mcfhNZcJB/T8AxpQO4JgjXnpNK2oR5Q95ReCCeWYVCiRs oqXsd7fzmcWtQ8fDyPLtFdPeaQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBkJG3a0 hvdkO0se2mupJ2VNJH2JMB8GA1UdIwQYMBaAFF1fYZAhXf8Kw1QyvDpSoIvTQbcA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhFMS9CQkUzRDQzQTlB NDkxMUVFOTA5MkUwNzBDNEY5QUUwMi9YVjloa0NGZF93ckRWREs4T2xLZ2k5TkJ0 d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hWOWhrQ0ZkX3dyRFZESzhPbEtnaTlOQnR3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhFMS9CQkUzRDQzQTlBNDkxMUVFOTA5MkUwNzBDNEY5QUUwMi9YVjloa0NGZF93 ckRWREs4T2xLZ2k5TkJ0d0EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAACoQuO91+1Y07j/D1o5opNpdIXXfcJGwFa6YLwWOnlfjr/NO3wYm7ygq9WIw uURKsgFVshG++i94NRmVW5k2hQDN1CPlfP1GrsXpRMpokvwDwulZf4ob39/lULq5 xhM9L16NM7EDctS71rsQScpIObn3RI08TtWBMB0ETQxqGhmWlLnuOTabL7Pi0vdS WOhGMD8aMW4GE7VgcqK8xdWF5Tvh8yc7FXppjihS5I4oizlUOSwKKRWm0bXuwzTO ODrxNEAw8InvCEHIwc23YCYAAGpq21BLeMV0JcYRUjShWutgGpmqaFU2MIQvKdZZ s9T58px7PrZsgcoDkfxQLjLuRg== -----END CERTIFICATE-----Generated at Fri Apr 17 15:32:32 2026 by rpki-client