$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft File: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft (raw, json) Hash identifier: qV1hMYK6N1SnCp6HFgdtyR92BK9gY8H87AHf3CpeFt8= Subject key identifier: 25:88:C6:6B:23:66:16:4C:A5:B0:5F:73:CA:56:8F:42:7F:43:79:C1 Authority key identifier: C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 Certificate issuer: /CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Certificate serial: 01DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft Manifest number: 01D8 Signing time: Sun 05 Apr 2026 03:02:43 +0000 Manifest this update: Sun 05 Apr 2026 03:02:43 +0000 Manifest next update: Sun 12 Apr 2026 03:02:43 +0000 Files and hashes: 1: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl (hash: dZA3lHV1/KpNm/C0aLHE+BuIu4SHmGs5sqxGc8cZTzM=) 2: 4B2F1F725E7811EE9307D234C4F9AE02.roa (hash: EcFjmxSDjXYlszuf2oD+q8KIZL69XyX6Am534xbF5Os=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:02:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 477 (0x1dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF73, serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Validity Not Before: Apr 5 03:02:43 2026 GMT Not After : Apr 12 03:02:43 2026 GMT Subject: CN=69d1d0d3-10b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:92:7b:d5:b5:db:e5:a9:f1:19:75:a7:a3:cb: 39:74:aa:3a:62:3d:f9:6f:b0:43:84:c0:d5:9a:19: 4b:63:81:ff:f9:5f:ad:85:67:c8:92:8b:5d:56:77: e0:52:6a:b1:95:04:06:80:2c:c4:d9:67:ce:67:df: 18:ff:f3:5a:18:73:51:3f:41:96:df:63:1b:7c:d3: 6b:da:62:16:28:c0:2a:7e:26:30:d9:99:41:5b:7a: 96:fa:fe:d5:a4:61:29:f7:5a:75:88:19:18:40:de: db:6a:1f:ba:4a:1e:d5:72:1f:22:81:aa:3d:3e:ee: 67:eb:40:3c:59:b1:cb:6a:5c:fb:0c:f6:3b:7e:0f: a6:71:1f:68:5e:89:aa:7c:75:c2:c4:b8:57:43:67: 3c:48:e7:4b:67:87:b6:21:87:ba:92:16:69:31:aa: d9:72:0f:c9:a2:a9:ad:05:a4:8d:1e:e6:74:3a:9d: 46:26:69:77:ff:e8:0e:d3:f5:5a:a2:91:5b:d5:11: 32:f1:ae:fc:4f:c0:c9:d9:ba:2e:8d:1c:ac:3c:45: d6:77:e6:0c:64:13:ca:98:eb:8b:53:95:8d:f1:9c: 17:39:01:ed:73:37:c1:0d:7f:e3:24:af:d9:b5:bc: 94:d3:2f:1b:b4:54:61:b4:75:44:d0:bc:b9:ce:15: 63:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:88:C6:6B:23:66:16:4C:A5:B0:5F:73:CA:56:8F:42:7F:43:79:C1 X509v3 Authority Key Identifier: keyid:C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:6d:0a:df:31:dc:7a:88:85:3d:01:01:67:56:da:39:dc:6f: a7:84:f3:d7:95:f6:74:83:4d:13:ad:9c:b0:c3:53:c6:37:1b: ee:67:54:ee:37:6f:f7:a2:41:85:92:d0:66:09:dd:58:08:d4: 23:2a:f6:aa:13:ad:08:83:7a:56:6b:89:79:1b:53:80:95:f6: d7:86:f6:47:ea:23:7e:18:f6:6b:7a:17:11:b6:d6:c1:eb:a5: c4:17:82:ac:86:3e:0c:15:e3:26:50:b1:a7:a4:42:48:2a:43: 60:09:47:01:1f:6c:81:cd:d4:e8:4f:ed:9d:4d:c2:af:55:8c: 86:f9:62:de:0d:29:02:7c:87:ea:69:82:38:c2:40:17:64:f0: 72:3f:38:43:0b:51:34:06:9a:96:de:85:7c:7b:98:be:c5:80: 93:f2:67:eb:34:7d:36:b7:6a:59:f0:3d:fe:2b:f0:64:16:a0: 9f:bc:c9:03:07:a6:69:f2:4b:64:5b:76:ba:5e:f4:45:4f:fb: 18:84:f8:f1:ef:65:ff:32:05:ce:6b:fc:21:c9:11:6f:3f:45: a7:16:18:b1:19:08:33:9a:d6:dd:a3:c0:b8:71:36:24:72:60: ae:41:9a:69:9d:d2:22:a0:cc:02:47:2d:6d:3a:c9:48:53:92: 7f:e9:d1:fb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGNzMxMTAvBgNVBAUTKEM0MDVGMDYxRTMzQjA3MTdDOTA0RkMxREYzRTc5QkNE Nzk1MjBGQTYwHhcNMjYwNDA1MDMwMjQzWhcNMjYwNDEyMDMwMjQzWjAYMRYwFAYD VQQDEw02OWQxZDBkMy0xMGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0JJ71bXb5anxGXWno8s5dKo6Yj35b7BDhMDVmhlLY4H/+V+thWfIkotdVnfg UmqxlQQGgCzE2WfOZ98Y//NaGHNRP0GW32MbfNNr2mIWKMAqfiYw2ZlBW3qW+v7V pGEp91p1iBkYQN7bah+6Sh7Vch8igao9Pu5n60A8WbHLalz7DPY7fg+mcR9oXomq fHXCxLhXQ2c8SOdLZ4e2IYe6khZpMarZcg/JoqmtBaSNHuZ0Op1GJml3/+gO0/Va opFb1REy8a78T8DJ2boujRysPEXWd+YMZBPKmOuLU5WN8ZwXOQHtczfBDX/jJK/Z tbyU0y8btFRhtHVE0Ly5zhVjXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCWIxmsj ZhZMpbBfc8pWj0J/Q3nBMB8GA1UdIwQYMBaAFMQF8GHjOwcXyQT8HfPnm815Ug+m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUY3My9ENUZGMUY0MDVF NzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4ZkpCUHdkOC1lYnpYbFNE NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBWHdZZU03QnhmSkJQd2Q4LWVielhsU0Q2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUY3My9ENUZGMUY0MDVFNzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4 ZkpCUHdkOC1lYnpYbFNENlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAh20K3zHceoiFPQEBZ1baOdxvp4Tz15X2dINNE62csMNTxjcb7mdU7jdv96JB hZLQZgndWAjUIyr2qhOtCIN6VmuJeRtTgJX214b2R+ojfhj2a3oXEbbWweulxBeC rIY+DBXjJlCxp6RCSCpDYAlHAR9sgc3U6E/tnU3Cr1WMhvli3g0pAnyH6mmCOMJA F2Twcj84QwtRNAaalt6FfHuYvsWAk/Jn6zR9NrdqWfA9/ivwZBagn7zJAwemafJL ZFt2ul70RU/7GIT48e9l/zIFzmv8IckRbz9FpxYYsRkIM5rW3aPAuHE2JHJgrkGa aZ3SIqDMAkctbTrJSFOSf+nR+w== -----END CERTIFICATE-----Generated at Sun Apr 5 19:52:15 2026 by rpki-client