$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft File: XYnzqvmxOgelsmTy3rpk1cUAZRw.mft (raw, json) Hash identifier: JtAO2sQosym/lC9fUEUqLE1Sb3kyPwuniYE1Jc/UcYg= Subject key identifier: 1B:37:9F:BC:8E:BF:71:75:24:5C:87:D9:99:55:92:09:9E:36:46:7C Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 0275 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft Manifest number: 0264 Signing time: Fri 17 Apr 2026 01:56:52 +0000 Manifest this update: Fri 17 Apr 2026 01:56:51 +0000 Manifest next update: Fri 24 Apr 2026 01:56:51 +0000 Files and hashes: 1: XYnzqvmxOgelsmTy3rpk1cUAZRw.crl (hash: RvzKsXeazSnvj4hh6l2R3OVN3gSaOTmAoi/Z8ph7kOY=) 2: 9FBA5FCCA63911ED874E6630C4F9AE02.roa (hash: ClwvMUH1LVLekjvPCckwoGuRynW5TD4w0EqiLo6Abj0=) 3: 9EA7B7D8A63911ED874E6630C4F9AE02.roa (hash: DHZLT6kRWzcG3+2PiBnd4pNnMfMfwzitkH/VyFmiyhk=) 4: 5DCE1A1AA63C11ED9306165AC4F9AE02.roa (hash: ry8gAyMl/oF2tDrb6QBcr0lUpoct2VpMmyLx0Y2gIls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:56:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 629 (0x275) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240, serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: Apr 17 01:56:51 2026 GMT Not After : Apr 24 01:56:51 2026 GMT Subject: CN=69e19364-7ad5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:7a:74:41:ed:e4:19:81:6d:9d:12:46:3a:c4: f8:35:40:7b:3c:9d:e2:17:da:27:96:ca:b8:2b:c7: fa:13:0d:df:51:d3:f7:54:5d:06:cf:87:28:67:63: 51:15:70:b7:e8:ea:cc:20:a8:50:cb:9e:a4:ac:09: 55:de:4b:80:d8:98:86:86:21:17:6e:38:f0:1c:13: a8:05:7f:3c:b2:8f:4a:ef:45:ae:b4:fb:d9:5b:10: fb:72:58:17:55:f7:09:fc:94:34:cd:b5:90:ae:11: 88:55:8e:b4:3a:39:0c:ff:77:b0:b8:c0:06:00:98: 71:f1:f2:d2:e2:7d:5f:f9:cd:13:24:e1:b4:c9:f2: c8:f4:f9:28:4d:50:b1:f6:68:3d:71:79:68:9c:cd: 0c:97:55:b3:db:0b:da:3b:67:35:72:f7:bd:37:d5: 26:05:79:a8:7d:da:ce:20:eb:95:30:07:eb:6e:ac: 19:dc:32:48:f5:d6:e7:b1:99:f0:b5:1d:52:c0:59: f6:a4:ea:10:11:4f:b3:2f:54:a9:a4:74:3f:48:c8: 64:56:32:da:9c:37:15:6f:ac:03:19:28:33:93:04: 76:d4:57:33:df:3a:c5:d0:6e:1e:c5:73:ba:c0:93: 4b:7b:77:78:33:6c:82:8b:b6:9c:fc:ab:d5:a0:0c: 90:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:37:9F:BC:8E:BF:71:75:24:5C:87:D9:99:55:92:09:9E:36:46:7C X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:50:26:64:7c:f0:a5:be:89:28:13:f9:18:21:29:1a:fa:66: a7:74:8c:fe:7a:f9:20:0e:05:d6:c8:aa:6d:24:53:0f:61:c7: 11:a5:d8:2b:41:83:82:31:9a:e5:b6:e2:2f:49:55:ff:90:41: c4:c9:cf:81:b4:e2:6d:e3:e2:77:bc:bd:b9:3f:3c:68:c0:22: 84:4b:9c:fe:9a:53:bf:aa:85:69:01:3a:37:41:01:f8:4b:29: a1:e6:57:24:b7:b5:2b:bc:86:e6:8b:91:af:06:a8:05:26:32: b6:16:4d:2d:3c:f6:38:dd:4f:26:4f:ad:f3:37:72:57:71:99: 0e:9f:ca:09:4e:63:55:f5:9d:58:dc:de:d4:40:e7:c4:0f:95: fa:5f:fd:f6:a9:f3:4f:ca:e1:0e:84:1f:e9:73:0b:21:d7:d2: 08:4c:7d:19:6a:65:11:95:37:21:7a:55:d1:97:a6:8d:6e:58: 97:33:73:a1:e8:ad:08:a8:75:d2:30:8e:bd:cc:79:1a:da:5e: 88:8d:e2:b7:21:9f:96:c5:3a:40:36:08:e8:88:3a:d8:d0:a0: d4:bd:ab:8b:83:9a:dc:17:7c:45:12:ff:31:1d:37:9b:b6:89: 1d:1c:ca:d3:44:da:88:b9:e5:0c:f4:7b:43:6e:54:75:77:f6: cc:23:cc:fe -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjYwNDE3MDE1NjUxWhcNMjYwNDI0MDE1NjUxWjAYMRYwFAYD VQQDEw02OWUxOTM2NC03YWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6np0Qe3kGYFtnRJGOsT4NUB7PJ3iF9onlsq4K8f6Ew3fUdP3VF0Gz4coZ2NR FXC36OrMIKhQy56krAlV3kuA2JiGhiEXbjjwHBOoBX88so9K70WutPvZWxD7clgX VfcJ/JQ0zbWQrhGIVY60OjkM/3ewuMAGAJhx8fLS4n1f+c0TJOG0yfLI9PkoTVCx 9mg9cXlonM0Ml1Wz2wvaO2c1cve9N9UmBXmofdrOIOuVMAfrbqwZ3DJI9dbnsZnw tR1SwFn2pOoQEU+zL1SppHQ/SMhkVjLanDcVb6wDGSgzkwR21Fcz3zrF0G4exXO6 wJNLe3d4M2yCi7ac/KvVoAyQUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBs3n7yO v3F1JFyH2ZlVkgmeNkZ8MB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTI0MC8yN0RERTdEODlCN0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9n ZWxzbVR5M3JwazFjVUFaUncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAelAmZHzwpb6JKBP5GCEpGvpmp3SM/nr5IA4F1siqbSRTD2HHEaXYK0GDgjGa 5bbiL0lV/5BBxMnPgbTibePid7y9uT88aMAihEuc/ppTv6qFaQE6N0EB+EspoeZX JLe1K7yG5ouRrwaoBSYythZNLTz2ON1PJk+t8zdyV3GZDp/KCU5jVfWdWNze1EDn xA+V+l/99qnzT8rhDoQf6XMLIdfSCEx9GWplEZU3IXpV0ZemjW5YlzNzoeitCKh1 0jCOvcx5GtpeiI3ityGflsU6QDYI6Ig62NCg1L2ri4Oa3Bd8RRL/MR03m7aJHRzK 00TaiLnlDPR7Q25UdXf2zCPM/g== -----END CERTIFICATE-----Generated at Sat Apr 18 00:28:30 2026 by rpki-client