$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft File: XpnXCH3VTqLn519cgIcHE4Posp4.mft (raw, json) Hash identifier: BU8YUsBNbPdBpAFHjiwVUJzxzF88PbTEuZFoWpxjeTA= Subject key identifier: B5:B1:CA:EA:E4:8D:C9:CB:0A:5B:4E:9D:04:EF:56:CA:1D:91:24:65 Authority key identifier: 5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E Certificate issuer: /CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Certificate serial: 0B99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft Manifest number: 0B75 Signing time: Thu 16 Apr 2026 19:28:24 +0000 Manifest this update: Thu 16 Apr 2026 19:28:24 +0000 Manifest next update: Thu 23 Apr 2026 19:28:24 +0000 Files and hashes: 1: XpnXCH3VTqLn519cgIcHE4Posp4.crl (hash: jwo0X/sEkghBLOuLTIV8sIkjdZz1uYxcRtpBkF40Ero=) 2: 1ECAB88C1AD811F193E57F8A3E3D8C67.roa (hash: fuUoAX7qold+hBso2xjm+AtCXw9QMD6MxM+hCTTXcPw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:28:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2969 (0xb99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81D3, serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Validity Not Before: Apr 16 19:28:24 2026 GMT Not After : Apr 23 19:28:24 2026 GMT Subject: CN=69e13858-3bf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:85:97:11:0e:5b:05:25:c0:38:bf:e9:4b:c7: af:22:46:0e:9d:28:b1:8f:6a:12:0f:ea:6e:cb:91: 6d:44:b0:45:75:ce:2e:ba:ff:5a:5f:45:07:e3:ef: 73:70:87:93:0e:cd:bb:ca:75:c2:1c:4b:d9:92:85: a7:27:b8:18:ba:c4:66:7c:40:89:51:57:32:86:0f: e4:8e:9a:ac:39:f9:30:85:29:a5:d2:e0:35:af:7a: da:fc:94:38:c1:15:aa:16:18:49:58:ca:b8:ed:34: b1:9a:0d:41:b3:87:6a:b2:47:64:ea:48:ba:b6:de: 28:a6:c1:10:ad:e0:50:ab:33:18:53:93:d5:c5:8d: 10:57:31:99:ee:a1:08:55:72:46:80:08:c5:c9:03: 03:49:c2:12:1f:cb:aa:35:92:57:2f:61:b2:1c:55: e2:14:fe:66:59:51:26:cd:48:fc:58:8e:28:ae:bd: 92:30:30:7d:81:6d:8a:e9:e9:de:c7:2c:c5:8d:61: d9:21:6c:3e:e4:cf:79:69:21:99:d1:f5:b3:47:d7: 6e:fd:c9:08:c5:1c:cd:8f:bc:18:22:49:a7:0f:2f: 3f:71:c7:f0:08:19:a2:9f:09:53:36:3d:83:5b:af: 6f:f9:bc:ec:50:e0:2e:81:92:fe:a4:88:b2:ed:6f: d3:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:B1:CA:EA:E4:8D:C9:CB:0A:5B:4E:9D:04:EF:56:CA:1D:91:24:65 X509v3 Authority Key Identifier: keyid:5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:db:ea:99:6f:f3:2b:56:51:4b:3a:a5:b9:e3:10:39:ff:b9: fd:dd:da:7b:cb:0a:20:23:95:8d:77:51:66:fa:74:16:91:c2: 90:5a:7f:36:21:43:d9:7e:a5:24:e7:71:dc:4d:c7:fb:28:0d: 37:01:36:fe:f0:3b:25:78:90:83:66:24:af:d4:3a:7b:75:c2: 89:ab:60:11:56:e0:0c:f8:91:e6:96:dd:61:89:9b:ec:46:ac: 59:e0:ac:f2:79:14:0a:a9:c8:80:ef:27:01:cd:c1:0c:57:8c: 12:23:da:1d:33:f9:0f:81:b2:86:a1:f2:fc:d9:1a:00:18:d9: f2:48:3b:7f:22:e6:03:41:e4:2d:0c:5d:17:d2:1b:97:41:a7: 29:aa:23:8f:99:4a:4d:73:0e:14:c9:75:0e:1c:25:6d:75:07: cd:83:dc:b2:be:81:96:93:cb:c9:40:93:4d:20:8c:42:3d:eb: 31:4b:1c:4b:24:eb:e6:6f:24:71:f6:d7:d8:55:0c:0f:a8:96: 35:33:4f:fa:d2:fe:d0:cc:8e:ef:60:4b:38:71:28:ef:ad:b1: 76:1a:96:5b:95:0e:ff:d0:14:d3:4c:2f:aa:75:ea:88:b0:db: b2:24:13:5c:0a:29:bf:31:91:5e:67:8e:6e:97:4c:a2:6d:f7: f3:1f:a3:c6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxRDMxMTAvBgNVBAUTKDVFOTlENzA4N0RENTRFQTJFN0U3NUY1QzgwODcwNzEz ODNFOEIyOUUwHhcNMjYwNDE2MTkyODI0WhcNMjYwNDIzMTkyODI0WjAYMRYwFAYD VQQDEw02OWUxMzg1OC0zYmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyoWXEQ5bBSXAOL/pS8evIkYOnSixj2oSD+puy5FtRLBFdc4uuv9aX0UH4+9z cIeTDs27ynXCHEvZkoWnJ7gYusRmfECJUVcyhg/kjpqsOfkwhSml0uA1r3ra/JQ4 wRWqFhhJWMq47TSxmg1Bs4dqskdk6ki6tt4opsEQreBQqzMYU5PVxY0QVzGZ7qEI VXJGgAjFyQMDScISH8uqNZJXL2GyHFXiFP5mWVEmzUj8WI4orr2SMDB9gW2K6ene xyzFjWHZIWw+5M95aSGZ0fWzR9du/ckIxRzNj7wYIkmnDy8/ccfwCBminwlTNj2D W69v+bzsUOAugZL+pIiy7W/TtQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLWxyurk jcnLCltOnQTvVsodkSRlMB8GA1UdIwQYMBaAFF6Z1wh91U6i5+dfXICHBxOD6LKe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFEMy8wQTg0NTlGNDUy MzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRxTG41MTljZ0ljSEU0UG9z cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hwblhDSDNWVHFMbjUxOWNnSWNIRTRQb3NwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODFEMy8wQTg0NTlGNDUyMzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRx TG41MTljZ0ljSEU0UG9zcDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAxdvqmW/zK1ZRSzqlueMQOf+5/d3ae8sKICOVjXdRZvp0FpHCkFp/NiFD2X6l JOdx3E3H+ygNNwE2/vA7JXiQg2Ykr9Q6e3XCiatgEVbgDPiR5pbdYYmb7EasWeCs 8nkUCqnIgO8nAc3BDFeMEiPaHTP5D4GyhqHy/NkaABjZ8kg7fyLmA0HkLQxdF9Ib l0GnKaojj5lKTXMOFMl1DhwlbXUHzYPcsr6BlpPLyUCTTSCMQj3rMUscSyTr5m8k cfbX2FUMD6iWNTNP+tL+0MyO72BLOHEo762xdhqWW5UO/9AU00wvqnXqiLDbsiQT XAopvzGRXmeObpdMom338x+jxg== -----END CERTIFICATE-----Generated at Fri Apr 17 08:09:12 2026 by rpki-client