$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft File: cx5XsN_ep5G6TV1xly2oEF3JPos.mft (raw, json) Hash identifier: Kv2RdjJjuqzNW8LQGM12Xg8rw0ZyaBxTWwGY/TDdyi4= Subject key identifier: EC:5D:51:80:5E:B3:A3:BB:F3:50:D9:40:78:AA:56:F0:09:FB:0D:1A Authority key identifier: 73:1E:57:B0:DF:DE:A7:91:BA:4D:5D:71:97:2D:A8:10:5D:C9:3E:8B Certificate issuer: /CN=A91AA444/serialNumber=731E57B0DFDEA791BA4D5D71972DA8105DC93E8B Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft Manifest number: 01A6 Signing time: Sun 05 Apr 2026 03:37:24 +0000 Manifest this update: Sun 05 Apr 2026 03:37:23 +0000 Manifest next update: Sun 12 Apr 2026 03:37:23 +0000 Files and hashes: 1: cx5XsN_ep5G6TV1xly2oEF3JPos.crl (hash: A/3LXWG+n+8ofOJJBBlsecBSLpalwLWuMA+jslZOlhI=) 2: 24DD519CEEA311EFA5EDDD76C4F9AE02.roa (hash: oYkxtXccfNzhupGam+/pGKaAabTu5hknTCz4hIdu2D0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.crl rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:37:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA444, serialNumber=731E57B0DFDEA791BA4D5D71972DA8105DC93E8B Validity Not Before: Apr 5 03:37:23 2026 GMT Not After : Apr 12 03:37:23 2026 GMT Subject: CN=69d1d8f4-0dc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d8:47:35:aa:d2:16:35:9b:38:0c:57:c2:94: fe:dc:f1:c4:a7:18:6f:b5:27:6a:7e:67:ed:ed:23: bc:7a:5a:6f:28:7d:28:ae:af:db:96:85:c1:49:8e: b4:25:5f:9b:7e:17:10:8e:23:ba:8d:a4:8b:bf:d0: 3b:b6:df:9c:f8:e0:ef:71:a1:11:62:9f:34:c1:85: fb:30:58:84:00:78:68:48:01:29:36:f5:27:c6:f3: bc:30:e1:7f:24:98:9a:68:47:2b:65:0b:5e:43:44: b2:ef:f9:74:05:0d:71:75:75:a6:26:38:fe:ca:43: ab:3d:56:2c:62:b6:c4:0f:11:87:4f:0b:7a:6d:6c: 6c:e6:81:e7:3b:1c:44:90:c0:fd:17:11:03:ed:92: b7:81:ba:eb:6f:60:71:39:c8:6d:3b:24:9c:aa:f5: b6:f3:ec:e0:48:22:fb:5b:ad:5f:c2:e2:f1:80:1f: 5e:fe:09:c3:63:0d:24:35:da:25:f2:20:0c:24:e4: ef:5e:31:3c:44:d1:fd:2f:7e:e0:d1:52:80:ec:58: 74:e1:74:e7:a0:51:7b:65:7a:c0:01:6f:2a:ea:66: b6:a3:b3:a1:48:36:99:73:93:53:c4:56:e0:53:7b: 92:54:90:b1:b8:0a:42:76:ab:14:81:1e:21:82:76: 8a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:5D:51:80:5E:B3:A3:BB:F3:50:D9:40:78:AA:56:F0:09:FB:0D:1A X509v3 Authority Key Identifier: keyid:73:1E:57:B0:DF:DE:A7:91:BA:4D:5D:71:97:2D:A8:10:5D:C9:3E:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:31:9a:68:aa:4d:e1:d9:b0:3e:ff:1f:cd:4c:29:3a:a2:ed: 59:78:be:72:b7:f1:16:4b:9b:2c:3f:ea:dc:15:f6:9f:a9:2d: 46:8b:17:c0:b1:4b:8e:e9:5d:e8:6f:23:f0:1f:68:c8:81:75: ba:42:1e:06:60:4c:fc:ae:68:ce:37:e3:3c:a5:44:06:31:33: 57:df:5d:f5:f0:23:96:d2:85:b1:67:6e:ce:ec:36:bd:4a:c5: f9:f6:1c:b2:89:a4:9d:23:2a:fc:61:e7:4d:c8:8d:b7:9c:9f: 8e:ac:98:23:e5:3b:51:fd:67:be:fb:08:a1:e0:1e:90:3c:e2: 7e:9b:e6:c3:fb:3e:57:08:1f:98:20:c8:bf:0d:91:fb:3d:11: 8b:aa:7b:6d:95:2f:20:02:96:1e:73:17:8b:0a:e3:81:cc:ec: e1:fd:ce:ca:a9:1a:dc:52:48:87:ca:7c:c6:c1:c2:7c:dc:6d: dc:d4:5d:9c:0f:8f:86:c0:c6:e0:7f:c7:73:d0:fd:7e:42:06: 8f:ed:45:66:38:87:b9:5b:8d:c4:38:df:25:d2:16:7e:8b:b4: 10:f1:f0:ff:0a:d0:fd:62:87:00:cf:07:4c:d4:53:46:e2:3c: bb:4e:04:ce:15:6d:3c:1b:ac:0c:58:a0:fc:2b:9c:55:6a:c2: e4:bb:62:96 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE0NDQxMTAvBgNVBAUTKDczMUU1N0IwREZERUE3OTFCQTRENUQ3MTk3MkRBODEw NURDOTNFOEIwHhcNMjYwNDA1MDMzNzIzWhcNMjYwNDEyMDMzNzIzWjAYMRYwFAYD VQQDEw02OWQxZDhmNC0wZGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNhHNarSFjWbOAxXwpT+3PHEpxhvtSdqfmft7SO8elpvKH0orq/bloXBSY60 JV+bfhcQjiO6jaSLv9A7tt+c+ODvcaERYp80wYX7MFiEAHhoSAEpNvUnxvO8MOF/ JJiaaEcrZQteQ0Sy7/l0BQ1xdXWmJjj+ykOrPVYsYrbEDxGHTwt6bWxs5oHnOxxE kMD9FxED7ZK3gbrrb2BxOchtOyScqvW28+zgSCL7W61fwuLxgB9e/gnDYw0kNdol 8iAMJOTvXjE8RNH9L37g0VKA7Fh04XTnoFF7ZXrAAW8q6ma2o7OhSDaZc5NTxFbg U3uSVJCxuApCdqsUgR4hgnaKLQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOxdUYBe s6O781DZQHiqVvAJ+w0aMB8GA1UdIwQYMBaAFHMeV7Df3qeRuk1dcZctqBBdyT6L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTQ0NC84RENFMjc0QUIx MUQxMUVFQTMzNjMzMTlDNEY5QUUwMi9jeDVYc05fZXA1RzZUVjF4bHkyb0VGM0pQ b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N4NVhzTl9lcDVHNlRWMXhseTJvRUYzSlBvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTQ0NC84RENFMjc0QUIxMUQxMUVFQTMzNjMzMTlDNEY5QUUwMi9jeDVYc05fZXA1 RzZUVjF4bHkyb0VGM0pQb3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbTGaaKpN4dmwPv8fzUwpOqLtWXi+crfxFkubLD/q3BX2n6ktRosXwLFLjuld 6G8j8B9oyIF1ukIeBmBM/K5ozjfjPKVEBjEzV99d9fAjltKFsWduzuw2vUrF+fYc somknSMq/GHnTciNt5yfjqyYI+U7Uf1nvvsIoeAekDzifpvmw/s+VwgfmCDIvw2R +z0Ri6p7bZUvIAKWHnMXiwrjgczs4f3Oyqka3FJIh8p8xsHCfNxt3NRdnA+PhsDG 4H/Hc9D9fkIGj+1FZjiHuVuNxDjfJdIWfou0EPHw/wrQ/WKHAM8HTNRTRuI8u04E zhVtPBusDFig/CucVWrC5Ltilg== -----END CERTIFICATE-----Generated at Sun Apr 5 19:53:19 2026 by rpki-client