$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E8B/04DE2B92BE2211F0B38DB519C4F9AE02/Xb7wLCg84I1tzonzkSoMMKcBkMg.mft File: Xb7wLCg84I1tzonzkSoMMKcBkMg.mft (raw, json) Hash identifier: SPqFWrr05YjTyDaZ9X+h/aZ7wscYX/kVXaqqhCyYq2s= Subject key identifier: 97:6D:55:24:11:5E:00:D6:4D:CB:B7:10:1A:F1:41:4A:E1:AE:7F:C0 Authority key identifier: 5D:BE:F0:2C:28:3C:E0:8D:6D:CE:89:F3:91:2A:0C:30:A7:01:90:C8 Certificate issuer: /CN=A91E3E8B/serialNumber=5DBEF02C283CE08D6DCE89F3912A0C30A70190C8 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xb7wLCg84I1tzonzkSoMMKcBkMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E8B/04DE2B92BE2211F0B38DB519C4F9AE02/Xb7wLCg84I1tzonzkSoMMKcBkMg.mft Manifest number: 53 Signing time: Fri 17 Apr 2026 07:51:59 +0000 Manifest this update: Fri 17 Apr 2026 07:51:58 +0000 Manifest next update: Fri 24 Apr 2026 07:51:58 +0000 Files and hashes: 1: Xb7wLCg84I1tzonzkSoMMKcBkMg.crl (hash: PKJqKj6yij9c2lyoPencaOQ8QLWsbiyO7d1oHmNzxKs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E8B/04DE2B92BE2211F0B38DB519C4F9AE02/Xb7wLCg84I1tzonzkSoMMKcBkMg.crl rsync://rpki.apnic.net/member_repository/A91E3E8B/04DE2B92BE2211F0B38DB519C4F9AE02/Xb7wLCg84I1tzonzkSoMMKcBkMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xb7wLCg84I1tzonzkSoMMKcBkMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 07:51:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E8B, serialNumber=5DBEF02C283CE08D6DCE89F3912A0C30A70190C8 Validity Not Before: Apr 17 07:51:58 2026 GMT Not After : Apr 24 07:51:58 2026 GMT Subject: CN=69e1e69f-2d52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:60:09:fd:3e:0e:d6:c7:c5:f8:55:08:00:33: 2a:2a:7c:3c:50:b3:bb:8e:b7:de:24:59:70:c7:38: a5:33:76:96:ba:a5:2f:05:0e:c3:4f:ee:e4:16:41: d0:87:7f:e8:9d:d0:93:04:f4:2b:70:1b:a0:88:cd: 3f:1b:97:60:12:02:a6:03:40:b9:4a:4f:fd:63:4f: e7:61:8d:34:2b:47:00:d8:a8:2b:69:c0:02:48:5b: 2f:1c:6d:6e:d5:d2:89:62:05:74:5f:cb:e1:64:bd: ac:0f:b7:ff:a4:87:ff:e7:a8:18:b5:a9:2c:32:5a: c3:3a:de:1c:94:c5:9d:e4:4c:98:8b:dc:b2:a9:23: 38:02:b1:45:6f:5c:2e:2d:1b:c2:f6:4b:5e:fd:6f: 51:b8:02:ab:22:49:29:2b:97:53:07:17:dd:06:47: cb:ab:c5:1b:5b:99:02:0c:3e:b1:fe:5f:f3:69:bf: fa:8f:b1:d8:7e:63:3d:16:f4:f8:8b:c8:f5:d7:72: 90:17:0c:55:28:76:48:2c:ee:9a:2c:69:31:54:86: 84:62:3b:f1:ba:e5:54:d3:93:97:1a:0f:20:fa:ef: 91:a5:fd:26:d3:64:27:bb:78:29:33:ff:b4:43:6c: a3:b6:86:c4:78:ca:5b:2c:e4:a9:98:11:5d:70:bd: 69:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:6D:55:24:11:5E:00:D6:4D:CB:B7:10:1A:F1:41:4A:E1:AE:7F:C0 X509v3 Authority Key Identifier: keyid:5D:BE:F0:2C:28:3C:E0:8D:6D:CE:89:F3:91:2A:0C:30:A7:01:90:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E8B/04DE2B92BE2211F0B38DB519C4F9AE02/Xb7wLCg84I1tzonzkSoMMKcBkMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xb7wLCg84I1tzonzkSoMMKcBkMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E8B/04DE2B92BE2211F0B38DB519C4F9AE02/Xb7wLCg84I1tzonzkSoMMKcBkMg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:30:f5:7a:e3:88:7c:2c:ac:63:ce:a1:2c:a6:9c:35:8d:b1: 3c:86:36:3d:86:99:c0:6b:4a:83:02:06:7e:f7:ac:e0:16:a3: bd:95:aa:2f:82:3c:79:c9:24:5c:e8:4d:69:ab:3f:aa:16:1f: ca:ce:82:75:2a:1c:5d:58:14:3a:21:01:a7:b9:b3:82:e9:5f: 90:e7:6f:08:ea:ff:a2:9b:ff:3e:36:83:75:d4:cd:dc:15:ce: 97:00:18:ae:b8:27:67:29:69:82:5a:88:f9:1c:88:e8:d2:7e: d5:b8:06:90:a9:0f:69:f6:83:44:79:01:f3:3f:c9:57:da:0b: b1:95:71:fd:3b:df:dc:11:2c:76:da:e4:c1:4f:3d:52:4c:d5: 6e:54:e7:a9:fc:0c:c0:2c:97:df:87:e4:e1:d7:f6:41:0c:5e: 31:aa:63:86:42:20:cc:57:03:4d:e6:e4:94:5b:aa:26:fc:60: 78:bb:c0:2d:d4:fe:0b:eb:fc:f1:8e:2f:51:4e:ee:d4:a1:71: d5:a5:4d:bd:fc:cd:0b:0b:b2:46:94:92:26:b6:28:ca:b9:f8: eb:e9:4e:6c:8b:54:06:85:25:1c:aa:7f:42:81:01:be:9a:89: 52:43:49:52:3e:28:89:27:c2:98:ce:94:02:94:1d:27:31:44: 14:17:ee:ab -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF M0U4QjExMC8GA1UEBRMoNURCRUYwMkMyODNDRTA4RDZEQ0U4OUYzOTEyQTBDMzBB NzAxOTBDODAeFw0yNjA0MTcwNzUxNThaFw0yNjA0MjQwNzUxNThaMBgxFjAUBgNV BAMTDTY5ZTFlNjlmLTJkNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8YAn9Pg7Wx8X4VQgAMyoqfDxQs7uOt94kWXDHOKUzdpa6pS8FDsNP7uQWQdCH f+id0JME9CtwG6CIzT8bl2ASAqYDQLlKT/1jT+dhjTQrRwDYqCtpwAJIWy8cbW7V 0oliBXRfy+FkvawPt/+kh//nqBi1qSwyWsM63hyUxZ3kTJiL3LKpIzgCsUVvXC4t G8L2S179b1G4AqsiSSkrl1MHF90GR8urxRtbmQIMPrH+X/Npv/qPsdh+Yz0W9PiL yPXXcpAXDFUodkgs7posaTFUhoRiO/G65VTTk5caDyD675Gl/SbTZCe7eCkz/7RD bKO2hsR4ylss5KmYEV1wvWkrAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUl21VJBFe ANZNy7cQGvFBSuGuf8AwHwYDVR0jBBgwFoAUXb7wLCg84I1tzonzkSoMMKcBkMgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzRThCLzA0REUyQjkyQkUy MjExRjBCMzhEQjUxOUM0RjlBRTAyL1hiN3dMQ2c4NEkxdHpvbnprU29NTUtjQmtN Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWGI3d0xDZzg0STF0em9uemtTb01NS2NCa01nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz RThCLzA0REUyQjkyQkUyMjExRjBCMzhEQjUxOUM0RjlBRTAyL1hiN3dMQ2c4NEkx dHpvbnprU29NTUtjQmtNZy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA8MPV644h8LKxjzqEsppw1jbE8hjY9hpnAa0qDAgZ+96zgFqO9laovgjx5ySRc 6E1pqz+qFh/KzoJ1KhxdWBQ6IQGnubOC6V+Q528I6v+im/8+NoN11M3cFc6XABiu uCdnKWmCWoj5HIjo0n7VuAaQqQ9p9oNEeQHzP8lX2guxlXH9O9/cESx22uTBTz1S TNVuVOep/AzALJffh+Th1/ZBDF4xqmOGQiDMVwNN5uSUW6om/GB4u8At1P4L6/zx ji9RTu7UoXHVpU29/M0LC7JGlJImtijKufjr6U5si1QGhSUcqn9CgQG+molSQ0lS PiiJJ8KYzpQClB0nMUQUF+6r -----END CERTIFICATE-----Generated at Fri Apr 17 15:41:58 2026 by rpki-client