$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.mft File: XKcmhHc2ig8SXvQrkg12wnEpzCs.mft (raw, json) Hash identifier: 5Xk8fclqSfkx6zhTWZ5cum+ZWdi+vnODtDZaWOm+fw8= Subject key identifier: E3:D0:50:67:A0:9D:12:BD:2E:A9:B4:9F:24:63:C4:09:4E:B1:A5:08 Authority key identifier: 5C:A7:26:84:77:36:8A:0F:12:5E:F4:2B:92:0D:76:C2:71:29:CC:2B Certificate issuer: /CN=A91EA742/serialNumber=5CA7268477368A0F125EF42B920D76C27129CC2B Certificate serial: 0198 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKcmhHc2ig8SXvQrkg12wnEpzCs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.mft Manifest number: 0198 Signing time: Sun 05 Apr 2026 03:45:33 +0000 Manifest this update: Sun 05 Apr 2026 03:45:33 +0000 Manifest next update: Sun 12 Apr 2026 03:45:33 +0000 Files and hashes: 1: XKcmhHc2ig8SXvQrkg12wnEpzCs.crl (hash: LzmUPjZNGkAOVGOkJihJT4IyOkIaNHq3f5r0Mv5jP9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.crl rsync://rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKcmhHc2ig8SXvQrkg12wnEpzCs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:45:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA742, serialNumber=5CA7268477368A0F125EF42B920D76C27129CC2B Validity Not Before: Apr 5 03:45:33 2026 GMT Not After : Apr 12 03:45:33 2026 GMT Subject: CN=69d1dadd-cceb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:7a:25:2d:2a:a9:77:8b:55:3c:08:3c:03:52: 4b:01:f8:4a:1c:27:52:69:67:39:bd:10:dc:d6:86: 87:99:d0:b8:b1:86:1f:02:51:ca:0f:30:34:2d:62: 53:f5:f4:0c:95:58:15:fa:8f:1f:2c:d0:af:4f:d0: 65:2c:46:74:5e:97:ac:03:10:65:18:65:b4:a0:52: ff:86:5b:ab:62:ac:72:16:4b:30:d3:7d:b6:1e:86: 10:25:50:67:15:99:2e:7e:76:0f:dc:66:d3:06:b9: 91:fa:38:4c:43:6a:0c:07:ac:74:54:f6:60:d7:35: fd:d6:57:d8:4b:78:f5:b6:73:5a:09:92:e0:e3:aa: 96:a3:5b:ab:6b:a3:b7:ac:d1:30:17:11:53:73:2b: f2:3e:c0:23:05:0b:12:47:42:78:57:7e:6c:78:10: 0d:44:17:23:21:7f:94:cf:a1:05:4e:c5:ae:60:57: 94:f4:66:77:48:97:35:5a:94:73:80:b5:2c:ba:14: 6d:22:7a:8a:0f:82:e3:6c:72:39:e6:0a:31:c9:4f: 80:e0:3c:54:40:80:25:eb:32:30:da:7e:f9:fe:3d: 6f:f7:a7:dc:77:e3:76:07:d6:c8:65:15:0c:05:99: 7b:e2:06:66:45:e6:7a:8e:06:cc:03:85:47:9f:00: 26:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:D0:50:67:A0:9D:12:BD:2E:A9:B4:9F:24:63:C4:09:4E:B1:A5:08 X509v3 Authority Key Identifier: keyid:5C:A7:26:84:77:36:8A:0F:12:5E:F4:2B:92:0D:76:C2:71:29:CC:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKcmhHc2ig8SXvQrkg12wnEpzCs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dc:2d:80:93:7e:62:18:1b:0a:d1:79:05:c8:6c:52:f1:f7:b5: 7a:0f:17:f9:58:51:ff:72:b1:02:06:7b:51:d0:7a:fb:9a:4e: a0:86:ea:f8:79:bc:91:17:4f:2a:3f:bb:eb:e7:43:e1:65:f9: 3e:ae:5e:28:78:e7:1a:d4:e5:2e:d2:ca:34:88:09:a1:c8:72: f9:fc:e1:0a:df:ca:22:4c:11:a9:0f:95:87:20:98:2d:f3:c3: e1:41:c5:67:db:b8:89:69:f1:5d:19:76:08:20:59:93:06:bc: 91:c4:20:6b:41:ce:df:69:2a:88:f5:78:6e:58:cc:14:04:00: 41:f6:4c:32:40:2e:b0:71:36:76:04:03:68:1c:73:39:dc:cb: 0d:3a:7c:3a:5e:fe:7c:a0:8a:27:cd:a0:38:f3:cf:0b:43:f6: 0c:36:ef:a6:7d:54:2a:9b:76:1c:c3:77:bf:0e:e5:ee:3b:61: 54:ab:1f:1c:5e:91:e2:68:d9:6a:6c:a1:03:51:5f:97:cb:f7: 62:b5:b1:34:a7:37:a6:ae:cd:48:3f:a2:87:8a:0b:23:93:41: d3:d4:7f:9f:25:7e:b4:2f:e6:93:84:c1:af:88:bb:93:52:ab: 64:0d:fb:9b:16:79:b0:c0:52:bc:45:ad:6d:7c:48:4a:d5:12: 3e:94:e3:18 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3NDIxMTAvBgNVBAUTKDVDQTcyNjg0NzczNjhBMEYxMjVFRjQyQjkyMEQ3NkMy NzEyOUNDMkIwHhcNMjYwNDA1MDM0NTMzWhcNMjYwNDEyMDM0NTMzWjAYMRYwFAYD VQQDEw02OWQxZGFkZC1jY2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5XolLSqpd4tVPAg8A1JLAfhKHCdSaWc5vRDc1oaHmdC4sYYfAlHKDzA0LWJT 9fQMlVgV+o8fLNCvT9BlLEZ0XpesAxBlGGW0oFL/hlurYqxyFksw0322HoYQJVBn FZkufnYP3GbTBrmR+jhMQ2oMB6x0VPZg1zX91lfYS3j1tnNaCZLg46qWo1ura6O3 rNEwFxFTcyvyPsAjBQsSR0J4V35seBANRBcjIX+Uz6EFTsWuYFeU9GZ3SJc1WpRz gLUsuhRtInqKD4LjbHI55goxyU+A4DxUQIAl6zIw2n75/j1v96fcd+N2B9bIZRUM BZl74gZmReZ6jgbMA4VHnwAmgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOPQUGeg nRK9Lqm0nyRjxAlOsaUIMB8GA1UdIwQYMBaAFFynJoR3NooPEl70K5INdsJxKcwr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTc0Mi9EQkE4QTVFMkMw NTYxMUVFOTcxNTc4MTBDNEY5QUUwMi9YS2NtaEhjMmlnOFNYdlFya2cxMnduRXB6 Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLY21oSGMyaWc4U1h2UXJrZzEyd25FcHpDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTc0Mi9EQkE4QTVFMkMwNTYxMUVFOTcxNTc4MTBDNEY5QUUwMi9YS2NtaEhjMmln OFNYdlFya2cxMnduRXB6Q3MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA3C2Ak35iGBsK0XkFyGxS8fe1eg8X+VhR/3KxAgZ7UdB6+5pOoIbq+Hm8kRdP Kj+76+dD4WX5Pq5eKHjnGtTlLtLKNIgJochy+fzhCt/KIkwRqQ+VhyCYLfPD4UHF Z9u4iWnxXRl2CCBZkwa8kcQga0HO32kqiPV4bljMFAQAQfZMMkAusHE2dgQDaBxz OdzLDTp8Ol7+fKCKJ82gOPPPC0P2DDbvpn1UKpt2HMN3vw7l7jthVKsfHF6R4mjZ amyhA1Ffl8v3YrWxNKc3pq7NSD+ih4oLI5NB09R/nyV+tC/mk4TBr4i7k1KrZA37 mxZ5sMBSvEWtbXxIStUSPpTjGA== -----END CERTIFICATE-----Generated at Sun Apr 5 19:59:18 2026 by rpki-client