$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: B6XGadVjKhpUyrrzEVzBwuF+px1NAixLz8wV41NeA4M= Subject key identifier: 8F:A9:78:00:2F:46:49:D3:E8:09:7A:A7:A4:CD:5D:C7:83:04:74:DA Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 25B1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 25B1 Signing time: Thu 16 Apr 2026 14:32:21 +0000 Manifest this update: Thu 16 Apr 2026 14:32:20 +0000 Manifest next update: Thu 23 Apr 2026 14:32:20 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: b/yg04AkagWvO7NixwBe9UayEnLuIxBU6NKR3xxZups=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:32:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9649 (0x25b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Validity Not Before: Apr 16 14:32:20 2026 GMT Not After : Apr 23 14:32:20 2026 GMT Subject: CN=69e0f2f5-6b71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:02:2f:4a:de:b6:93:84:cf:40:75:c7:bb:c3: f6:89:53:0d:f4:fe:e5:94:2b:8e:4f:c6:2d:79:06: 04:21:f1:be:c1:d2:a5:25:8e:70:b4:e5:2b:16:1d: 9b:6b:45:a3:6f:84:20:de:33:fb:da:dc:e4:99:28: c7:d9:e1:66:af:0b:12:eb:25:ff:a0:23:06:dd:c6: 42:c9:3c:ac:0e:e5:95:26:79:00:63:5e:be:49:ed: 2b:68:56:b6:85:13:b2:86:d4:91:fa:9a:ec:99:db: 10:fe:cd:97:d7:b4:99:4d:65:9e:18:13:12:a6:25: 1f:cc:58:90:d5:a7:1e:2c:2a:7f:8c:35:08:e1:84: 6c:97:5c:e1:b6:77:a8:87:34:5f:15:c4:39:9c:2b: f7:49:b5:fc:9c:27:08:0e:e7:e6:6c:11:33:a9:44: 15:f7:b3:f3:08:f3:c9:30:39:61:01:04:aa:cb:c2: f7:cf:1a:23:93:3a:7a:df:f2:04:76:c7:b4:f0:ed: bb:00:f3:1b:a3:42:7a:73:7b:f7:44:c3:81:db:ff: f9:e9:9c:68:1e:41:53:67:36:bd:54:52:01:1d:87: b1:2f:2f:4c:61:ee:a6:f8:ec:f4:b7:60:a9:64:56: 6c:e0:6b:65:f6:ae:0f:c5:4e:62:47:f9:eb:20:d4: ee:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:A9:78:00:2F:46:49:D3:E8:09:7A:A7:A4:CD:5D:C7:83:04:74:DA X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:3b:bc:28:db:8f:0c:75:8d:60:e7:2e:29:1a:56:45:cf:3f: 7c:66:52:63:28:db:18:f9:66:ed:dc:98:3a:f0:0f:b3:07:ee: 72:ad:c7:2e:a8:e9:09:12:58:a1:27:fc:49:9f:10:5a:64:df: 65:f3:b1:5f:3c:7b:cc:4f:2a:83:3f:92:4f:2b:8a:3a:f8:34: d3:1a:db:47:b1:00:3d:d5:79:9e:e6:e7:bb:a2:8f:be:ed:14: f5:e7:57:e5:97:59:9a:5b:78:56:2d:23:86:11:0f:91:07:5b: 8c:78:22:0a:b1:30:2a:75:50:5f:5f:44:3c:2d:40:e6:b5:6f: 92:36:c4:59:8c:f4:52:0a:50:94:b6:84:0b:f1:f4:27:11:71: 25:eb:c7:ce:f9:cc:1f:af:2f:47:a5:97:dd:c9:59:8f:9f:20: f5:27:23:a5:ff:19:65:e5:74:16:82:aa:a8:27:bb:aa:33:29: f6:f6:ec:67:81:c5:d6:e9:99:4a:dd:e7:b2:a1:3a:6f:15:5c: 2a:c1:25:08:7b:d0:51:7d:00:8d:ea:8e:b0:48:e1:af:74:da: 75:b6:d7:38:3d:63:38:97:48:23:16:13:70:f8:6b:0c:31:52: d6:b5:d8:db:ae:3e:7f:95:3f:18:9f:58:50:c6:54:55:19:98: 11:9b:97:de -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjYwNDE2MTQzMjIwWhcNMjYwNDIzMTQzMjIwWjAYMRYwFAYD VQQDEw02OWUwZjJmNS02YjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgIvSt62k4TPQHXHu8P2iVMN9P7llCuOT8YteQYEIfG+wdKlJY5wtOUrFh2b a0Wjb4Qg3jP72tzkmSjH2eFmrwsS6yX/oCMG3cZCyTysDuWVJnkAY16+Se0raFa2 hROyhtSR+prsmdsQ/s2X17SZTWWeGBMSpiUfzFiQ1aceLCp/jDUI4YRsl1zhtneo hzRfFcQ5nCv3SbX8nCcIDufmbBEzqUQV97PzCPPJMDlhAQSqy8L3zxojkzp63/IE dse08O27APMbo0J6c3v3RMOB2//56ZxoHkFTZza9VFIBHYexLy9MYe6m+Oz0t2Cp ZFZs4Gtl9q4PxU5iR/nrINTuZwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI+peAAv RknT6Al6p6TNXceDBHTaMB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAazu8KNuPDHWNYOcuKRpWRc8/fGZSYyjbGPlm7dyYOvAPswfucq3HLqjpCRJY oSf8SZ8QWmTfZfOxXzx7zE8qgz+STyuKOvg00xrbR7EAPdV5nubnu6KPvu0U9edX 5ZdZmlt4Vi0jhhEPkQdbjHgiCrEwKnVQX19EPC1A5rVvkjbEWYz0UgpQlLaEC/H0 JxFxJevHzvnMH68vR6WX3clZj58g9Scjpf8ZZeV0FoKqqCe7qjMp9vbsZ4HF1umZ St3nsqE6bxVcKsElCHvQUX0AjeqOsEjhr3TadbbXOD1jOJdIIxYTcPhrDDFS1rXY 264+f5U/GJ9YUMZUVRmYEZuX3g== -----END CERTIFICATE-----Generated at Fri Apr 17 14:34:34 2026 by rpki-client