$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft File: XYnzqvmxOgelsmTy3rpk1cUAZRw.mft (raw, json) Hash identifier: EgzQxqD95G1RjNdyqnVwTKej7AVulW3N6+vBh4HS32I= Subject key identifier: 8E:4E:AA:36:2E:83:D4:67:D9:E1:89:97:3C:8D:2E:C8:EE:09:0C:6B Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 026F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft Manifest number: 025E Signing time: Sun 05 Apr 2026 01:47:30 +0000 Manifest this update: Sun 05 Apr 2026 01:47:29 +0000 Manifest next update: Sun 12 Apr 2026 01:47:29 +0000 Files and hashes: 1: XYnzqvmxOgelsmTy3rpk1cUAZRw.crl (hash: F8jtpjeQUq84XfV09WVjR16KLqyphjG/F1Tzvb6Rd1I=) 2: 9EA7B7D8A63911ED874E6630C4F9AE02.roa (hash: DHZLT6kRWzcG3+2PiBnd4pNnMfMfwzitkH/VyFmiyhk=) 3: 9FBA5FCCA63911ED874E6630C4F9AE02.roa (hash: ClwvMUH1LVLekjvPCckwoGuRynW5TD4w0EqiLo6Abj0=) 4: 5DCE1A1AA63C11ED9306165AC4F9AE02.roa (hash: ry8gAyMl/oF2tDrb6QBcr0lUpoct2VpMmyLx0Y2gIls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 623 (0x26f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240, serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: Apr 5 01:47:29 2026 GMT Not After : Apr 12 01:47:29 2026 GMT Subject: CN=69d1bf32-8fda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:55:9f:50:09:6e:dc:49:5d:eb:51:4a:98:59: 8c:69:46:bc:38:e0:40:1f:30:8c:32:0a:54:95:7f: ea:b9:22:37:78:8a:4f:3d:b8:00:ab:0f:3a:1a:91: 3b:56:ec:94:c4:88:c8:a8:9c:b4:17:1f:13:40:ec: a8:a3:dc:1b:fa:9f:dd:d7:fd:b1:7b:86:27:d9:fd: 61:cc:6c:ad:29:23:96:4f:ed:c6:01:46:5c:08:2f: 2c:99:cf:ce:6e:55:11:7d:89:ba:8b:6a:7a:b2:c7: 05:d2:49:1b:91:c7:fd:03:2b:af:0b:00:52:3d:c5: 59:1c:f0:b5:8e:d4:e7:b6:cf:d1:ae:d8:c4:4d:91: d0:f3:bd:09:db:15:6f:e7:68:22:bb:ed:c1:82:9e: fd:31:cd:ab:4b:10:19:f1:87:2e:9b:bc:e3:02:10: 45:5f:29:be:91:5b:27:4e:02:50:3d:5e:c9:3e:76: 01:be:71:de:d7:7d:23:bf:1e:0e:09:22:da:6d:91: f3:04:68:d5:0b:dd:f2:4f:b0:3f:c7:36:a9:58:a7: d5:e1:61:4d:a9:ac:53:46:4a:c2:b1:97:e4:f5:67: 22:01:8b:de:c9:24:17:1e:a2:98:5a:e3:c7:e8:10: 04:b4:5d:1d:f4:87:87:79:0d:94:d0:11:e3:c7:7b: 39:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:4E:AA:36:2E:83:D4:67:D9:E1:89:97:3C:8D:2E:C8:EE:09:0C:6B X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:20:96:8e:c7:02:69:16:57:7a:89:ea:e0:f6:90:85:36:c0: cf:80:e3:68:b6:0c:61:aa:e5:7a:9a:21:44:fd:15:8f:5a:fc: 8f:03:76:c0:0b:bd:7d:38:41:29:2c:04:8c:a7:8b:c8:f5:93: ef:d7:0b:85:dc:e7:81:fd:06:e1:e6:c4:0a:f2:41:56:54:1a: 8b:0b:9c:c5:db:e5:04:34:45:e6:26:da:53:43:2e:19:62:cc: f9:ee:5b:80:bd:d8:fd:88:67:eb:95:bc:0e:7a:ac:72:a0:71: 19:2f:c0:c6:29:a8:68:a9:57:e1:9a:78:b5:92:0f:a3:e9:e1: 64:3c:a4:72:fd:bd:88:9f:ca:9e:29:04:d0:d5:47:e8:e2:c2: 03:86:90:d6:4b:a6:94:fc:a7:4b:d1:86:15:3e:ae:05:58:49: f3:2a:41:88:8c:e7:75:8d:5a:67:51:e2:85:ae:a7:6d:46:3d: 96:f6:51:39:b0:02:8d:df:6e:7b:b7:0b:a5:49:c4:b7:32:e0: da:c4:50:2e:f3:77:a8:49:10:aa:85:2a:7b:a9:6d:08:c9:f1: b7:92:7c:ad:b6:23:6d:81:c8:bf:22:76:ea:06:9c:b7:b7:db: 72:3c:5b:86:68:64:d2:de:9d:ab:43:57:5f:ce:c5:2a:a9:fe: d1:fa:43:93 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjYwNDA1MDE0NzI5WhcNMjYwNDEyMDE0NzI5WjAYMRYwFAYD VQQDEw02OWQxYmYzMi04ZmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp1WfUAlu3Eld61FKmFmMaUa8OOBAHzCMMgpUlX/quSI3eIpPPbgAqw86GpE7 VuyUxIjIqJy0Fx8TQOyoo9wb+p/d1/2xe4Yn2f1hzGytKSOWT+3GAUZcCC8smc/O blURfYm6i2p6sscF0kkbkcf9AyuvCwBSPcVZHPC1jtTnts/RrtjETZHQ870J2xVv 52giu+3Bgp79Mc2rSxAZ8Ycum7zjAhBFXym+kVsnTgJQPV7JPnYBvnHe130jvx4O CSLabZHzBGjVC93yT7A/xzapWKfV4WFNqaxTRkrCsZfk9WciAYveySQXHqKYWuPH 6BAEtF0d9IeHeQ2U0BHjx3s55QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI5OqjYu g9Rn2eGJlzyNLsjuCQxrMB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTI0MC8yN0RERTdEODlCN0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9n ZWxzbVR5M3JwazFjVUFaUncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAACCWjscCaRZXeonq4PaQhTbAz4DjaLYMYarlepohRP0Vj1r8jwN2wAu9fThB KSwEjKeLyPWT79cLhdzngf0G4ebECvJBVlQaiwucxdvlBDRF5ibaU0MuGWLM+e5b gL3Y/Yhn65W8DnqscqBxGS/AximoaKlX4Zp4tZIPo+nhZDykcv29iJ/KnikE0NVH 6OLCA4aQ1kumlPynS9GGFT6uBVhJ8ypBiIzndY1aZ1Hiha6nbUY9lvZRObACjd9u e7cLpUnEtzLg2sRQLvN3qEkQqoUqe6ltCMnxt5J8rbYjbYHIvyJ26gact7fbcjxb hmhk0t6dq0NXX87FKqn+0fpDkw== -----END CERTIFICATE-----Generated at Sun Apr 5 20:00:10 2026 by rpki-client