$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft File: XpnXCH3VTqLn519cgIcHE4Posp4.mft (raw, json) Hash identifier: u/K1XKkQGDbf0Oql5VqWWidUS4kdyrDXzD/0G5jqekc= Subject key identifier: A2:9F:7C:50:AD:F0:EF:A5:18:53:9B:E1:70:CC:29:DC:BD:77:15:04 Authority key identifier: 5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E Certificate issuer: /CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Certificate serial: 0B90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft Manifest number: 0B6D Signing time: Sat 04 Apr 2026 19:00:59 +0000 Manifest this update: Sat 04 Apr 2026 19:00:58 +0000 Manifest next update: Sat 11 Apr 2026 19:00:58 +0000 Files and hashes: 1: XpnXCH3VTqLn519cgIcHE4Posp4.crl (hash: UnRwI+TgnnQ0un+F4rs1pnkKZVWtsXC99SCa24jSsfg=) 2: 1ECAB88C1AD811F193E57F8A3E3D8C67.roa (hash: EEp5QsWdoJsIxpAKqW/3S6obmsW1cvqsTV52GMYJYYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2960 (0xb90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81D3, serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Validity Not Before: Apr 4 19:00:58 2026 GMT Not After : Apr 11 19:00:58 2026 GMT Subject: CN=69d15feb-5a84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:87:20:7f:fb:5b:ee:20:41:69:d8:90:f3:3d: f8:eb:50:f7:c1:e3:3e:9f:07:95:06:e3:fc:75:62: c5:65:2f:cc:0e:77:91:b4:92:e7:d2:70:59:c9:06: eb:53:92:68:3a:40:5d:a0:ab:6f:88:21:4e:18:0f: 41:d2:83:d0:60:d1:e1:1b:1b:b8:92:d9:a2:72:bf: 95:0d:cf:60:a1:6c:8a:ff:61:17:36:35:35:3b:0f: f1:a8:25:5c:13:31:db:66:4a:7a:a1:1c:13:86:1d: 34:73:fc:ce:35:f8:7a:8e:a5:89:80:bd:b8:12:9e: 08:67:36:d9:43:6e:d5:f3:fe:0e:35:e6:8b:9e:39: cc:4a:96:2e:ee:09:39:d6:ce:8c:24:ea:70:0f:f3: 6a:e4:1a:16:b8:5e:91:53:d2:b5:0c:fc:89:3b:68: 21:de:be:55:b0:50:c1:4a:c2:54:3f:2c:47:e1:51: 21:df:51:a4:a6:84:4c:cd:5d:9f:d4:14:3e:e1:f7: d8:ff:ff:69:0d:c4:cb:2e:04:6a:80:ee:7d:1e:16: 6a:ef:90:7e:6b:99:50:49:52:c3:b4:9f:33:9e:ac: f8:4d:a4:6c:3a:70:21:09:3c:7e:35:22:0a:f1:15: 81:a1:08:d1:95:c3:92:79:30:44:f4:f4:d6:50:da: 7c:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:9F:7C:50:AD:F0:EF:A5:18:53:9B:E1:70:CC:29:DC:BD:77:15:04 X509v3 Authority Key Identifier: keyid:5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:06:30:ee:16:2b:ab:1a:0e:ce:9e:7c:06:55:9b:6f:fc:5a: a3:bd:4d:1c:88:7e:9b:d1:59:ea:26:7a:3a:ae:8f:bd:78:a5: 44:10:17:cb:36:55:95:fd:42:8f:4e:45:ca:43:8f:63:d7:ab: 69:cd:4b:66:42:22:5c:07:c5:7b:0c:2d:b3:88:39:19:c2:2a: b0:34:51:b1:07:5e:55:65:d9:b9:aa:82:6c:33:ff:05:9d:50: 7a:95:fc:4a:8f:28:76:fb:ce:40:cc:0b:cd:9f:36:a7:2b:64: 2a:05:ae:1f:9e:f0:ca:51:19:d3:a3:42:74:25:6b:77:a5:6a: a9:27:88:2f:a5:63:58:df:3d:58:2c:32:a2:99:8a:2e:61:18: ff:b9:b7:18:fd:4c:e2:10:b9:2b:2e:4e:6d:1c:89:92:66:63: ec:60:1d:77:27:e8:5a:de:12:9b:63:46:37:bf:f9:6b:13:7d: 23:71:e5:68:6b:d3:9a:a5:bb:b2:fe:9f:ec:2a:d3:b2:d3:f3: 68:60:26:7a:78:b1:cf:ca:43:d9:dc:b8:e7:f3:2e:4a:74:58: 35:f7:f9:26:7b:49:f5:5e:c8:c0:0d:66:98:93:31:a8:9e:32: 14:e3:df:db:ee:98:2d:dc:b7:00:6a:8f:b9:31:d1:e3:9f:02: e6:95:d0:7f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxRDMxMTAvBgNVBAUTKDVFOTlENzA4N0RENTRFQTJFN0U3NUY1QzgwODcwNzEz ODNFOEIyOUUwHhcNMjYwNDA0MTkwMDU4WhcNMjYwNDExMTkwMDU4WjAYMRYwFAYD VQQDEw02OWQxNWZlYi01YTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmocgf/tb7iBBadiQ8z3461D3weM+nweVBuP8dWLFZS/MDneRtJLn0nBZyQbr U5JoOkBdoKtviCFOGA9B0oPQYNHhGxu4ktmicr+VDc9goWyK/2EXNjU1Ow/xqCVc EzHbZkp6oRwThh00c/zONfh6jqWJgL24Ep4IZzbZQ27V8/4ONeaLnjnMSpYu7gk5 1s6MJOpwD/Nq5BoWuF6RU9K1DPyJO2gh3r5VsFDBSsJUPyxH4VEh31GkpoRMzV2f 1BQ+4ffY//9pDcTLLgRqgO59HhZq75B+a5lQSVLDtJ8znqz4TaRsOnAhCTx+NSIK 8RWBoQjRlcOSeTBE9PTWUNp8/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKKffFCt 8O+lGFOb4XDMKdy9dxUEMB8GA1UdIwQYMBaAFF6Z1wh91U6i5+dfXICHBxOD6LKe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFEMy8wQTg0NTlGNDUy MzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRxTG41MTljZ0ljSEU0UG9z cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hwblhDSDNWVHFMbjUxOWNnSWNIRTRQb3NwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODFEMy8wQTg0NTlGNDUyMzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRx TG41MTljZ0ljSEU0UG9zcDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA1AYw7hYrqxoOzp58BlWbb/xao71NHIh+m9FZ6iZ6Oq6PvXilRBAXyzZVlf1C j05FykOPY9erac1LZkIiXAfFewwts4g5GcIqsDRRsQdeVWXZuaqCbDP/BZ1QepX8 So8odvvOQMwLzZ82pytkKgWuH57wylEZ06NCdCVrd6VqqSeIL6VjWN89WCwyopmK LmEY/7m3GP1M4hC5Ky5ObRyJkmZj7GAddyfoWt4Sm2NGN7/5axN9I3HlaGvTmqW7 sv6f7CrTstPzaGAmenixz8pD2dy45/MuSnRYNff5JntJ9V7IwA1mmJMxqJ4yFOPf 2+6YLdy3AGqPuTHR458C5pXQfw== -----END CERTIFICATE-----Generated at Mon Apr 6 03:37:06 2026 by rpki-client