$ rpki-client -vvf rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft File: xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft (raw, json) Hash identifier: mih6MUrzKQ58er0E/M1JmGUVTZXh49OL2pMQTRNyG4g= Subject key identifier: 19:14:FA:45:3D:3B:5B:C2:96:1A:DB:E7:AA:EE:20:D9:21:5F:37:F5 Authority key identifier: C5:BD:8A:50:CA:D5:A0:5E:FE:57:7C:49:C4:71:4E:5D:9A:BB:7F:EF Certificate issuer: /CN=A91E37D1/serialNumber=C5BD8A50CAD5A05EFE577C49C4714E5D9ABB7FEF Certificate serial: 0236 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xb2KUMrVoF7-V3xJxHFOXZq7f-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft Manifest number: 0231 Signing time: Fri 17 Apr 2026 02:22:38 +0000 Manifest this update: Fri 17 Apr 2026 02:22:38 +0000 Manifest next update: Fri 24 Apr 2026 02:22:38 +0000 Files and hashes: 1: xb2KUMrVoF7-V3xJxHFOXZq7f-8.crl (hash: qCYLIFZShyJbcaeJfR1/MDlBl522LLBmutjs7Q/vQVw=) 2: 59A00A402C7111EFA821586AC4F9AE02.roa (hash: l3+rbubcPMHtKSMQDJv+EJ3SUoMsXD+EmSrxxE3voR8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.crl rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xb2KUMrVoF7-V3xJxHFOXZq7f-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:22:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 566 (0x236) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E37D1, serialNumber=C5BD8A50CAD5A05EFE577C49C4714E5D9ABB7FEF Validity Not Before: Apr 17 02:22:38 2026 GMT Not After : Apr 24 02:22:38 2026 GMT Subject: CN=69e1996e-99f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6c:34:ea:97:6d:93:8a:ff:dc:00:f9:b2:04: dc:c5:be:39:f6:69:b8:3b:fd:cd:ec:d6:cd:0f:04: 8d:54:4c:34:e4:10:9a:39:90:70:3a:be:df:cc:36: 86:79:1a:a3:86:58:7b:24:fc:1b:83:53:fd:01:50: 18:47:fd:92:4a:b1:ea:a9:fe:82:60:e2:45:31:70: 38:66:70:85:a8:2d:66:31:14:6e:8f:78:c5:5c:9a: 1c:00:71:2a:a4:7f:8c:17:65:ed:3b:39:fc:a7:ff: ba:92:72:a6:c1:f2:f8:ad:d3:f0:7b:47:71:87:4f: a4:55:ee:fe:63:07:17:97:21:ac:0b:25:95:a2:a4: be:a1:1a:68:8c:c5:9d:b2:7e:a8:bb:73:8c:fe:a1: db:d2:47:c2:24:ec:6f:db:d5:88:df:98:ff:d4:d4: 7a:c8:6b:89:78:1a:25:d2:19:7f:c6:2b:48:0b:da: 06:7a:a0:35:99:0b:b0:e0:4c:16:bf:35:d3:fa:c9: 1f:71:6a:d4:71:90:f0:ed:e7:d8:9b:b2:2d:47:53: 8c:c7:6b:c1:95:a8:fa:76:fb:03:1a:32:98:8e:c5: ab:00:4c:5e:7b:4c:9c:d4:77:3a:19:39:ef:96:c6: 1f:f3:38:10:98:1c:91:50:90:9c:44:58:c8:6c:2e: 9d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:14:FA:45:3D:3B:5B:C2:96:1A:DB:E7:AA:EE:20:D9:21:5F:37:F5 X509v3 Authority Key Identifier: keyid:C5:BD:8A:50:CA:D5:A0:5E:FE:57:7C:49:C4:71:4E:5D:9A:BB:7F:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xb2KUMrVoF7-V3xJxHFOXZq7f-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E37D1/05A98F0EE3B311EDB2F4DA28C4F9AE02/xb2KUMrVoF7-V3xJxHFOXZq7f-8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:b4:1f:7b:00:fb:be:d1:66:97:09:3a:e0:51:3e:2f:59:0a: f2:05:b9:61:9a:5b:bd:76:fd:22:f3:a6:a5:7b:e5:86:35:3f: c6:81:52:8a:0e:d9:59:6d:30:55:0c:53:1c:ad:0d:bf:c9:5f: 77:49:30:a2:e4:31:b9:2f:5c:be:e3:67:dc:39:c0:06:44:aa: 2a:ae:3b:c5:7d:c4:91:37:2a:e4:9a:db:df:45:df:41:3a:e5: 1a:e0:5f:ca:ff:7c:c8:a2:8e:e4:a1:80:64:b6:0e:fa:bc:35: 02:24:20:78:73:53:68:1a:61:3b:02:49:6a:09:9d:74:ca:b8: e1:e6:49:3c:85:fc:d3:a5:f7:2a:8c:43:a3:b1:be:d9:f6:60: f4:82:99:8f:9b:e5:f2:bd:97:3f:cb:73:b7:14:03:b9:e8:f9: 6a:44:bb:8f:af:9a:d3:9d:94:e3:91:e4:12:8b:fb:3f:21:9a: da:ec:b3:63:59:37:93:b7:90:65:80:74:35:6f:91:6a:b8:07: d7:15:23:cd:16:60:94:ad:df:af:e9:e4:77:4b:6a:c8:38:7c: c5:19:f8:b9:67:e3:a5:71:36:71:24:0a:63:61:78:2d:6f:4b: b4:0f:5c:92:a6:76:ad:01:19:15:21:d9:ba:e4:5a:92:02:d2: 57:94:7e:3d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM3RDExMTAvBgNVBAUTKEM1QkQ4QTUwQ0FENUEwNUVGRTU3N0M0OUM0NzE0RTVE OUFCQjdGRUYwHhcNMjYwNDE3MDIyMjM4WhcNMjYwNDI0MDIyMjM4WjAYMRYwFAYD VQQDEw02OWUxOTk2ZS05OWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsGw06pdtk4r/3AD5sgTcxb459mm4O/3N7NbNDwSNVEw05BCaOZBwOr7fzDaG eRqjhlh7JPwbg1P9AVAYR/2SSrHqqf6CYOJFMXA4ZnCFqC1mMRRuj3jFXJocAHEq pH+MF2XtOzn8p/+6knKmwfL4rdPwe0dxh0+kVe7+YwcXlyGsCyWVoqS+oRpojMWd sn6ou3OM/qHb0kfCJOxv29WI35j/1NR6yGuJeBol0hl/xitIC9oGeqA1mQuw4EwW vzXT+skfcWrUcZDw7efYm7ItR1OMx2vBlaj6dvsDGjKYjsWrAExee0yc1Hc6GTnv lsYf8zgQmByRUJCcRFjIbC6d1wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBkU+kU9 O1vClhrb56ruINkhXzf1MB8GA1UdIwQYMBaAFMW9ilDK1aBe/ld8ScRxTl2au3/v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzdEMS8wNUE5OEYwRUUz QjMxMUVEQjJGNERBMjhDNEY5QUUwMi94YjJLVU1yVm9GNy1WM3hKeEhGT1hacTdm LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hiMktVTXJWb0Y3LVYzeEp4SEZPWFpxN2YtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzdEMS8wNUE5OEYwRUUzQjMxMUVEQjJGNERBMjhDNEY5QUUwMi94YjJLVU1yVm9G Ny1WM3hKeEhGT1hacTdmLTgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARbQfewD7vtFmlwk64FE+L1kK8gW5YZpbvXb9IvOmpXvlhjU/xoFSig7ZWW0w VQxTHK0Nv8lfd0kwouQxuS9cvuNn3DnABkSqKq47xX3EkTcq5Jrb30XfQTrlGuBf yv98yKKO5KGAZLYO+rw1AiQgeHNTaBphOwJJagmddMq44eZJPIX806X3KoxDo7G+ 2fZg9IKZj5vl8r2XP8tztxQDuej5akS7j6+a052U45HkEov7PyGa2uyzY1k3k7eQ ZYB0NW+RargH1xUjzRZglK3fr+nkd0tqyDh8xRn4uWfjpXE2cSQKY2F4LW9LtA9c kqZ2rQEZFSHZuuRakgLSV5R+PQ== -----END CERTIFICATE-----Generated at Fri Apr 17 10:01:25 2026 by rpki-client