$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft File: XYnzqvmxOgelsmTy3rpk1cUAZRw.mft (raw, json) Hash identifier: klGeMzks+xLw9PwxWd0bUP4FH/S6nrhQoId6Ie2Tqa0= Subject key identifier: 19:1D:3C:4A:75:BB:30:56:DC:B1:08:49:35:04:65:8E:35:75:72:8B Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 0291 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft Manifest number: 0280 Signing time: Sat 13 Jun 2026 01:56:42 +0000 Manifest this update: Sat 13 Jun 2026 01:56:42 +0000 Manifest next update: Sat 20 Jun 2026 01:56:42 +0000 Files and hashes: 1: XYnzqvmxOgelsmTy3rpk1cUAZRw.crl (hash: DMShuHQ/CJPZiHNfV25YK6dAa1QDqu1cT2YgMQeJwgc=) 2: 9EA7B7D8A63911ED874E6630C4F9AE02.roa (hash: DHZLT6kRWzcG3+2PiBnd4pNnMfMfwzitkH/VyFmiyhk=) 3: 5DCE1A1AA63C11ED9306165AC4F9AE02.roa (hash: ry8gAyMl/oF2tDrb6QBcr0lUpoct2VpMmyLx0Y2gIls=) 4: 9FBA5FCCA63911ED874E6630C4F9AE02.roa (hash: ClwvMUH1LVLekjvPCckwoGuRynW5TD4w0EqiLo6Abj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 01:56:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 657 (0x291) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240, serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: Jun 13 01:56:42 2026 GMT Not After : Jun 20 01:56:42 2026 GMT Subject: CN=6a2cb8da-1976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:53:bf:23:43:cd:07:66:f5:fb:a8:9f:c0:4e: 54:a6:1e:1e:19:1d:3e:e7:63:aa:80:0f:ab:b7:c9: af:d1:cf:4c:79:15:d3:fc:07:c0:00:bb:35:b2:56: f7:e6:b4:f9:c4:f5:60:de:da:6e:49:87:b3:30:84: bd:d2:6f:9c:45:48:82:1f:42:5d:8d:95:c5:56:2b: cb:a3:bf:01:9d:d8:c7:59:74:de:bc:1a:48:f1:f9: e1:fe:66:ea:c5:f1:76:77:ad:9e:96:a1:62:0c:6c: e9:33:21:29:6f:c0:56:3e:e0:78:e9:1c:ed:d5:67: e1:a1:95:2c:15:7a:d7:62:57:f1:75:65:4f:34:f0: d7:9a:25:5c:5c:eb:1e:e6:f5:b2:51:6f:38:7a:35: 43:70:92:aa:e3:33:cc:09:79:19:ef:3b:a5:9a:af: ca:e5:86:e8:50:10:a1:d5:07:f1:43:03:46:a8:4d: 21:3c:ff:ee:a1:02:c8:88:ce:44:bb:68:52:4f:ed: 95:f5:ce:0b:33:fd:73:b9:d0:8c:00:7f:e3:fe:24: 0f:b7:cd:d2:18:c4:a9:90:bd:79:e7:24:00:c7:55: b9:f7:89:3c:63:41:b2:5c:1c:06:13:28:ca:4e:72: ba:4a:f6:ea:4c:da:03:23:d8:ea:79:2d:5a:84:42: 9b:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:1D:3C:4A:75:BB:30:56:DC:B1:08:49:35:04:65:8E:35:75:72:8B X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:3d:52:78:61:1e:4f:08:0a:02:5c:58:22:36:b9:00:66:26: e6:2b:e3:ae:2a:0c:94:d4:f5:0f:a1:e2:72:44:37:73:6a:9b: dc:b9:36:4e:fa:04:58:aa:e2:48:77:dd:07:69:5b:2e:02:24: 50:c8:02:69:8d:5c:bb:da:db:9f:23:4d:4a:a0:49:1e:40:8a: 56:b5:63:03:d7:bb:81:99:d0:5c:40:93:12:e8:09:a2:78:ae: ba:d2:5f:aa:4d:84:20:de:7a:71:71:f1:f8:57:df:c5:59:84: e5:68:1d:c2:ca:c6:f2:71:98:f2:89:dd:0a:44:46:7d:d3:1a: 37:19:f9:a6:da:12:0d:ac:49:7e:a8:f5:b2:25:11:bd:be:f5: fb:8c:ac:1f:93:1b:88:76:50:cd:33:c4:2c:66:0f:d1:5e:b7: 1f:0d:8f:d5:94:f3:23:3d:e1:c8:9b:e4:08:17:f1:4a:55:a8: 81:b3:de:41:63:e6:6e:8a:98:bd:d1:3d:75:cf:35:82:33:e6: dd:38:bf:9d:02:71:f3:72:41:82:bf:75:01:51:df:52:e1:5b: c6:78:a3:2c:82:8c:12:4c:49:76:3f:5a:91:54:99:f2:e3:06: 19:4a:e9:f6:55:42:bb:82:c2:9f:9a:bd:3b:92:92:3a:b3:71: 02:1b:1a:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjYwNjEzMDE1NjQyWhcNMjYwNjIwMDE1NjQyWjAYMRYwFAYD VQQDEw02YTJjYjhkYS0xOTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFO/I0PNB2b1+6ifwE5Uph4eGR0+52OqgA+rt8mv0c9MeRXT/AfAALs1slb3 5rT5xPVg3tpuSYezMIS90m+cRUiCH0JdjZXFVivLo78BndjHWXTevBpI8fnh/mbq xfF2d62elqFiDGzpMyEpb8BWPuB46Rzt1WfhoZUsFXrXYlfxdWVPNPDXmiVcXOse 5vWyUW84ejVDcJKq4zPMCXkZ7zulmq/K5YboUBCh1QfxQwNGqE0hPP/uoQLIiM5E u2hST+2V9c4LM/1zudCMAH/j/iQPt83SGMSpkL155yQAx1W594k8Y0GyXBwGEyjK TnK6SvbqTNoDI9jqeS1ahEKbFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBkdPEp1 uzBW3LEISTUEZY41dXKLMB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTI0MC8yN0RERTdEODlCN0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9n ZWxzbVR5M3JwazFjVUFaUncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgD1SeGEeTwgKAlxYIja5AGYm5ivjrioMlNT1D6HickQ3c2qb3Lk2TvoEWKri SHfdB2lbLgIkUMgCaY1cu9rbnyNNSqBJHkCKVrVjA9e7gZnQXECTEugJoniuutJf qk2EIN56cXHx+FffxVmE5WgdwsrG8nGY8ondCkRGfdMaNxn5ptoSDaxJfqj1siUR vb71+4ysH5MbiHZQzTPELGYP0V63Hw2P1ZTzIz3hyJvkCBfxSlWogbPeQWPmboqY vdE9dc81gjPm3Ti/nQJx83JBgr91AVHfUuFbxnijLIKMEkxJdj9akVSZ8uMGGUrp 9lVCu4LCn5q9O5KSOrNxAhsaqQ== -----END CERTIFICATE-----Generated at Sat Jun 13 07:36:56 2026 by rpki-client