$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft File: xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft (raw, json) Hash identifier: C1Xh5MEbnbxIvr4QST9Yc4BojQ9LX4UhZRXy4UsyS3E= Subject key identifier: 81:0A:11:61:F9:2C:35:AE:AA:EC:F8:A4:55:B8:AE:D7:06:74:84:0C Authority key identifier: C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 Certificate issuer: /CN=A91D51A0/serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Certificate serial: 04F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft Manifest number: 04B0 Signing time: Thu 16 Apr 2026 23:55:26 +0000 Manifest this update: Thu 16 Apr 2026 23:55:26 +0000 Manifest next update: Thu 23 Apr 2026 23:55:26 +0000 Files and hashes: 1: xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl (hash: j7kleBx9lzyNarA9VgJ7LN9mqVRZ6YVuvx+4p7LDORM=) 2: 5CA964A68AC111EC91D19A11C4F9AE02.roa (hash: gvK8maqGxYp4lJeyX+W8kif65fkOj90NEZevEg0iRXM=) 3: 86131D8AEA5D11ED80641166C4F9AE02.roa (hash: 4zgXlz4lhWhr5EJp9fYE8JRkFNuqjMzkEZkN69QI13A=) 4: F179A39E0F0011F1AA61A6530E3D8C67.roa (hash: z5YNw9oqROxQNw3poTnbGicNOXVgbGeLROsEVEcC0k8=) 5: D46B2C087F8711EC81E76A59C4F9AE02.roa (hash: hUayntDdKbP8YD8KFW+2g7hE9d13fe7KDzMZQmXs21I=) 6: C3261EF826DF11ED94E18118C4F9AE02.roa (hash: hTS0InVz4oILVGeujjlkHVbEAsw1NZRZHIk3vW8oIWw=) 7: 8FD0B12E400311EEBF5A8B52C4F9AE02.roa (hash: Fu109TGeOUOlOrI2XIFdihyRA7Fr+8/prz/x7VcBoCE=) 8: 6F8A81CCF30C11ED94750772C4F9AE02.roa (hash: +lysYAiE7tAFh6WIuGOmgLYRebmV1ikcUzBVaS8mik0=) 9: 350FEB88D40611EDADEE3D1EC4F9AE02.roa (hash: D9z3NJUY8YNFb7cpJMaWfb8axb5uXCoUzET824J42QI=) 10: F0259B5AC4BF11F0B2402975C4F9AE02.roa (hash: Sro4OLk/DSMCZn4K0Wy038cX6/xvomXtZ3z40SAC7Vo=) 11: 874B6EBC0F6E11F190C9BD30293D8C67.roa (hash: HqtrqO9wtp4Bw9to/IZBSTc+H4UcScxKGJWTDnLTim8=) 12: D83192B0152B11EE85ED4B1DC4F9AE02.roa (hash: EMlA3Q/StxXuEEyaCIdkb3FX9P3Rrmoemgp7n81D5+4=) 13: C5B45CA014F411F180EDEBBD193D8C67.roa (hash: 1jcExNuLyHWYrWjBJRhFw6fSw8L5FWvGvk7sIxrsGAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:55:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1273 (0x4f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51A0, serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Validity Not Before: Apr 16 23:55:26 2026 GMT Not After : Apr 23 23:55:26 2026 GMT Subject: CN=69e176ee-37f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9c:98:f2:fc:c2:0e:31:f4:dc:7a:56:ef:9e: ee:32:81:95:4b:66:af:80:59:15:72:b0:5d:45:0b: d6:c8:83:a7:94:e1:64:31:42:4a:53:f5:c2:61:41: eb:0c:d2:eb:94:c7:80:bc:71:b0:f2:f5:32:42:12: a7:83:43:5b:5e:53:10:24:55:6d:8d:c7:51:6e:c1: e1:37:9b:35:25:31:4d:b9:1b:34:67:14:ea:f6:2e: 00:f0:71:d6:ff:c5:53:43:21:69:4d:ba:2c:56:46: 1f:a1:e3:3b:3b:10:6a:0a:9a:b9:1a:29:07:87:f9: 9e:02:e3:85:75:a2:cc:8d:1c:8b:53:ff:48:11:33: 8c:0c:52:d2:99:23:43:2f:9b:db:93:70:36:98:3f: 7f:df:ae:f8:bf:25:bb:d0:62:d7:4c:1a:e2:2b:29: 41:ab:7d:61:5f:8e:af:a3:d4:eb:97:02:bc:f9:4d: f2:f4:25:01:91:19:ca:18:86:86:dc:2c:d8:84:67: 27:75:60:e0:e9:12:13:be:09:2c:38:1d:e5:d4:88: 50:69:be:ae:ef:a0:79:05:42:93:9d:fa:a9:4b:28: f3:55:03:ea:24:e2:21:39:67:66:eb:e7:bd:99:9e: 9c:ea:63:92:c6:bb:87:d9:2f:f1:d7:c0:f2:1d:b8: 67:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:0A:11:61:F9:2C:35:AE:AA:EC:F8:A4:55:B8:AE:D7:06:74:84:0C X509v3 Authority Key Identifier: keyid:C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:b4:ef:ea:b0:bd:59:0b:db:f3:ea:cc:54:ab:d2:de:ea:33: e2:98:7d:89:54:36:7f:81:21:e2:8a:fa:18:db:de:02:f3:6c: 98:e2:c8:8a:0e:f6:bd:2c:e8:04:ee:b7:fe:21:e1:04:ef:b4: aa:30:8d:65:f5:2c:b6:97:b5:db:b6:81:bd:14:88:92:31:f7: f8:28:47:cc:2b:db:aa:e8:f4:ae:01:97:a1:d2:fe:51:16:da: fc:2c:8e:d9:40:68:49:d2:76:06:c2:98:f6:57:90:48:69:85: 00:c5:50:a8:9e:60:28:4d:2b:28:78:94:09:ec:62:2f:54:1a: cd:a6:59:e2:a7:73:9f:68:e1:91:b4:4f:8c:d0:e0:03:7b:2b: 91:cf:97:a1:ac:69:1c:4c:74:2a:ce:3b:51:11:b3:61:ae:32: 41:1b:88:ce:02:e5:7b:eb:97:05:5f:c0:22:c2:84:20:26:d1: fc:c9:7a:eb:eb:26:18:f1:12:0e:c8:66:74:f8:bb:68:e5:69: cb:b2:4b:a5:9b:a5:54:bf:72:c1:12:6e:cf:69:00:68:95:90: 36:64:f7:7d:4b:d6:ae:f1:6d:dc:cb:04:b2:25:65:e1:5f:b6: fc:f8:4b:79:c6:e2:f5:5f:bc:2e:7a:c2:ce:14:08:84:c3:b1: 6e:c8:bd:3c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQTAxMTAvBgNVBAUTKEM2RUFCRUI5M0UxRDA2RTJDMzJFMUM0Q0JFMTQ3Q0ZC Mzk5OTI1MzkwHhcNMjYwNDE2MjM1NTI2WhcNMjYwNDIzMjM1NTI2WjAYMRYwFAYD VQQDEw02OWUxNzZlZS0zN2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZyY8vzCDjH03HpW757uMoGVS2avgFkVcrBdRQvWyIOnlOFkMUJKU/XCYUHr DNLrlMeAvHGw8vUyQhKng0NbXlMQJFVtjcdRbsHhN5s1JTFNuRs0ZxTq9i4A8HHW /8VTQyFpTbosVkYfoeM7OxBqCpq5GikHh/meAuOFdaLMjRyLU/9IETOMDFLSmSND L5vbk3A2mD9/3674vyW70GLXTBriKylBq31hX46vo9TrlwK8+U3y9CUBkRnKGIaG 3CzYhGcndWDg6RITvgksOB3l1IhQab6u76B5BUKTnfqpSyjzVQPqJOIhOWdm6+e9 mZ6c6mOSxruH2S/x18DyHbhnEwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIEKEWH5 LDWuquz4pFW4rtcGdIQMMB8GA1UdIwQYMBaAFMbqvrk+HQbiwy4cTL4UfPs5mSU5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFBMC83QzUzOTEwQzdG ODQxMUVDODA1MThFNTFDNEY5QUUwMi94dXEtdVQ0ZEJ1TERMaHhNdmhSOC16bVpK VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h1cS11VDRkQnVMRExoeE12aFI4LXptWkpUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTFBMC83QzUzOTEwQzdGODQxMUVDODA1MThFNTFDNEY5QUUwMi94dXEtdVQ0ZEJ1 TERMaHhNdmhSOC16bVpKVGsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgbTv6rC9WQvb8+rMVKvS3uoz4ph9iVQ2f4Eh4or6GNveAvNsmOLIig72vSzo BO63/iHhBO+0qjCNZfUstpe127aBvRSIkjH3+ChHzCvbquj0rgGXodL+URba/CyO 2UBoSdJ2BsKY9leQSGmFAMVQqJ5gKE0rKHiUCexiL1QazaZZ4qdzn2jhkbRPjNDg A3srkc+XoaxpHEx0Ks47URGzYa4yQRuIzgLle+uXBV/AIsKEICbR/Ml66+smGPES DshmdPi7aOVpy7JLpZulVL9ywRJuz2kAaJWQNmT3fUvWrvFt3MsEsiVl4V+2/PhL ecbi9V+8LnrCzhQIhMOxbsi9PA== -----END CERTIFICATE-----Generated at Fri Apr 17 18:34:15 2026 by rpki-client