$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft File: xvdY7N3EybD3LwZcNa1UaXQycRs.mft (raw, json) Hash identifier: AX7vqmOrdBdr6w4YCnefoQoDIC1NNzFJs73tzEqkLEw= Subject key identifier: F1:BF:94:1C:9B:C8:F5:50:A5:81:04:8B:5D:B3:DF:65:61:A7:0C:CA Authority key identifier: C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B Certificate issuer: /CN=A91E8DF5/serialNumber=C6F758ECDDC4C9B0F72F065C35AD54697432711B Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft Manifest number: DF Signing time: Fri 17 Apr 2026 06:24:37 +0000 Manifest this update: Fri 17 Apr 2026 06:24:36 +0000 Manifest next update: Fri 24 Apr 2026 06:24:36 +0000 Files and hashes: 1: xvdY7N3EybD3LwZcNa1UaXQycRs.crl (hash: 4BIcCO4jCQcUtN+t0dGMQylxMrg8MBoh+oyj/Qfdtr8=) 2: D2E899F86EB511F0A3A63A59C4F9AE02.roa (hash: e+Kx8yx39vD35NK5FmMiKiiW7Dize/nId4xxFjZxyI0=) 3: 2C0E544C6EB511F094E66857C4F9AE02.roa (hash: 5hXzmFr17jMpDBDwfAxIzSXfRZTLmAdnHnJCXCD80mw=) 4: 917D3A184BED11F0A2F7CC21C4F9AE02.roa (hash: fvOW/E/H4txmKlUGL4qB5PT9I4APbJO6w4MS+iWEvcM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.crl rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:24:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8DF5, serialNumber=C6F758ECDDC4C9B0F72F065C35AD54697432711B Validity Not Before: Apr 17 06:24:36 2026 GMT Not After : Apr 24 06:24:36 2026 GMT Subject: CN=69e1d224-ab55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:62:b7:ef:e2:1f:ad:e4:37:c5:23:ea:5d:7a: 58:f8:a7:9f:c3:bf:64:92:ef:9b:1e:9e:8b:71:c6: dd:f0:ec:10:2a:aa:7e:38:33:ff:48:19:d9:6e:ba: 03:c5:6f:38:40:3e:00:cf:5b:70:fe:bd:e2:ec:0d: c6:04:74:30:74:a2:7e:ed:6b:44:94:13:1c:45:eb: 85:92:2b:aa:0d:f1:30:a4:cf:17:43:1d:7c:3c:99: 51:bb:28:e4:a6:57:a6:10:84:b4:1e:85:53:66:b5: a6:b4:f4:b1:7f:7f:6a:12:78:24:01:bd:02:62:ab: 65:ca:f7:29:ed:3c:7a:3c:91:2f:0b:63:33:73:b8: 46:8f:55:e0:89:9c:50:47:d5:e0:73:85:41:76:31: 69:7a:15:db:e7:b4:71:f6:d5:a9:a2:9e:39:78:00: 79:f1:a0:5c:e3:d8:85:53:ae:16:ee:8a:65:84:77: e8:b9:61:a2:08:3c:0d:98:0d:24:19:17:12:0a:f9: 56:48:be:da:d5:7c:67:f9:ae:a4:1c:13:c8:82:f0: 55:a4:0b:37:cd:40:99:20:9f:1d:90:8b:fe:fc:18: 1b:75:66:69:92:78:29:56:99:01:c2:1f:b9:2b:44: 78:cb:55:9e:24:a8:83:4f:38:ec:d5:a3:6a:56:a2: f3:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:BF:94:1C:9B:C8:F5:50:A5:81:04:8B:5D:B3:DF:65:61:A7:0C:CA X509v3 Authority Key Identifier: keyid:C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:d1:f0:a7:2f:fc:8a:c3:09:26:b4:73:b2:d9:bc:9b:25:ba: fd:ed:10:a0:68:11:c4:c4:9d:24:42:be:5b:2c:b7:7a:ca:07: 24:65:b3:f6:c5:58:cd:2d:5c:10:ba:3f:c9:46:14:3b:20:c5: 0f:2b:48:ba:dc:6a:f7:51:4a:18:9a:b7:37:62:c2:63:34:8f: 5b:03:12:42:9c:a7:53:15:31:3d:ed:a8:85:0f:2a:e5:de:f4: 3c:2d:90:91:b0:35:a7:16:31:70:ae:7e:a2:34:96:e5:d7:44: c7:5e:16:6c:56:ff:7f:6a:99:88:0f:a2:db:13:42:cc:d8:23: c7:40:38:60:4e:90:b0:1c:3e:98:f0:29:da:3c:bd:d4:47:b4: bf:b2:5a:1e:6f:39:87:e7:bb:6f:b9:cb:06:1f:b0:f9:68:e3: db:ed:24:8f:07:1a:77:d7:12:1a:9b:31:40:b5:37:21:8a:4e: 00:06:bd:a1:e3:91:44:98:e8:7a:4b:4f:c6:e4:2c:b5:90:a0: fa:8e:c7:dd:3d:0a:31:af:a3:f6:dc:9d:91:44:7f:d7:14:2a: b4:2d:73:6b:38:0e:22:67:52:48:27:fe:78:4b:59:02:65:46: 3c:77:fe:20:15:a3:77:3a:49:36:2a:79:fc:b3:db:62:91:21: ab:ab:5e:da -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThERjUxMTAvBgNVBAUTKEM2Rjc1OEVDRERDNEM5QjBGNzJGMDY1QzM1QUQ1NDY5 NzQzMjcxMUIwHhcNMjYwNDE3MDYyNDM2WhcNMjYwNDI0MDYyNDM2WjAYMRYwFAYD VQQDEw02OWUxZDIyNC1hYjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApmK37+IfreQ3xSPqXXpY+Kefw79kku+bHp6Lccbd8OwQKqp+ODP/SBnZbroD xW84QD4Az1tw/r3i7A3GBHQwdKJ+7WtElBMcReuFkiuqDfEwpM8XQx18PJlRuyjk plemEIS0HoVTZrWmtPSxf39qEngkAb0CYqtlyvcp7Tx6PJEvC2Mzc7hGj1XgiZxQ R9Xgc4VBdjFpehXb57Rx9tWpop45eAB58aBc49iFU64W7oplhHfouWGiCDwNmA0k GRcSCvlWSL7a1Xxn+a6kHBPIgvBVpAs3zUCZIJ8dkIv+/BgbdWZpkngpVpkBwh+5 K0R4y1WeJKiDTzjs1aNqVqLziQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPG/lByb yPVQpYEEi12z32VhpwzKMB8GA1UdIwQYMBaAFMb3WOzdxMmw9y8GXDWtVGl0MnEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOERGNS8zMUUwRjE2QUY5 NjAxMUVGOUQ2NzlDN0FDNEY5QUUwMi94dmRZN04zRXliRDNMd1pjTmExVWFYUXlj UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h2ZFk3TjNFeWJEM0x3WmNOYTFVYVhReWNScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OERGNS8zMUUwRjE2QUY5NjAxMUVGOUQ2NzlDN0FDNEY5QUUwMi94dmRZN04zRXli RDNMd1pjTmExVWFYUXljUnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXdHwpy/8isMJJrRzstm8myW6/e0QoGgRxMSdJEK+Wyy3esoHJGWz9sVYzS1c ELo/yUYUOyDFDytIutxq91FKGJq3N2LCYzSPWwMSQpynUxUxPe2ohQ8q5d70PC2Q kbA1pxYxcK5+ojSW5ddEx14WbFb/f2qZiA+i2xNCzNgjx0A4YE6QsBw+mPAp2jy9 1Ee0v7JaHm85h+e7b7nLBh+w+Wjj2+0kjwcad9cSGpsxQLU3IYpOAAa9oeORRJjo ektPxuQstZCg+o7H3T0KMa+j9tydkUR/1xQqtC1zazgOImdSSCf+eEtZAmVGPHf+ IBWjdzpJNip5/LPbYpEhq6te2g== -----END CERTIFICATE-----Generated at Fri Apr 17 11:41:19 2026 by rpki-client