$ rpki-client -vvf rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft File: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft (raw, json) Hash identifier: 8yApr2lNvaaqBBrpumXwZ3LOZIQQn+RzJzmqlLkuTqw= Subject key identifier: 3E:AE:4F:C9:CA:D4:85:12:DE:D1:5E:9E:89:AA:47:4D:DA:BD:67:0A Authority key identifier: C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 Certificate issuer: /CN=A91243FE/serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Certificate serial: 0469 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft Manifest number: 0463 Signing time: Thu 21 May 2026 00:13:17 +0000 Manifest this update: Thu 21 May 2026 00:13:17 +0000 Manifest next update: Thu 28 May 2026 00:13:17 +0000 Files and hashes: 1: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl (hash: wgBk65O6ObymhSWm/ph8lr+xEfLiR78ngk106jEJAC4=) 2: 5ADF4C92956811EC9028F155C4F9AE02.roa (hash: oP7ajvSBOi8rYgtfwAx6v0p5MUB3I81Nl5lQOdGX7pI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 00:13:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1129 (0x469) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91243FE, serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Validity Not Before: May 21 00:13:17 2026 GMT Not After : May 28 00:13:17 2026 GMT Subject: CN=6a0e4e1d-695b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:3a:87:d3:8f:b2:42:fd:36:f4:01:ea:b4:64: bb:c8:61:fe:a1:a5:19:f3:13:d2:01:71:82:36:b3: 3b:4e:ac:e7:91:4d:11:be:a2:e5:69:f0:4a:ee:32: b5:60:72:72:48:ef:d7:f4:fa:a2:96:a3:85:ac:03: c6:cb:79:6f:6b:5b:f1:16:c4:e3:0a:23:f0:da:8d: 29:be:ce:a7:84:16:95:da:ab:b7:c4:74:ee:4c:7f: 32:04:ef:3a:27:73:ff:2c:3c:df:db:dd:5c:ba:27: 2c:3e:70:19:4b:f9:d8:90:10:c6:25:6d:2a:38:fa: a0:d5:b2:5d:de:d1:b0:76:9c:4c:71:3d:c0:6d:d9: 89:e9:9f:73:2c:a7:d8:8d:ef:06:6e:f2:07:52:dc: 9a:10:6b:69:5c:95:91:cf:3b:5d:14:97:07:d6:99: 91:7d:ef:0d:7c:b7:5d:da:7f:9c:4c:04:16:7e:ce: 5b:d9:60:da:a2:1e:5c:39:96:f0:55:26:79:d2:b7: 6c:e4:8e:05:02:47:65:a9:46:5f:bc:bc:72:92:20: 14:5a:08:e9:88:e9:42:23:60:a5:42:11:dd:b6:33: ee:e6:eb:aa:4e:c0:9f:a1:f5:05:a6:74:d1:a5:01: 97:d2:91:c9:92:b6:e5:58:42:1f:1c:c5:e8:ae:4d: 60:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:AE:4F:C9:CA:D4:85:12:DE:D1:5E:9E:89:AA:47:4D:DA:BD:67:0A X509v3 Authority Key Identifier: keyid:C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:1f:38:87:30:94:82:8f:a1:9d:67:63:b7:74:29:b2:5a:64: db:63:bc:12:ad:67:ca:67:15:e7:96:2a:ce:5a:1a:09:86:68: 49:35:d9:f9:d4:27:df:6b:a9:ba:1d:2b:6b:94:b1:5c:e7:b4: f0:23:8e:6f:78:3f:01:3f:6d:a1:95:1f:5d:42:cc:80:c8:71: 3a:20:95:43:b9:8f:90:1a:11:fa:45:d3:ae:c7:f9:24:1f:8b: e8:73:4c:63:19:b7:08:a9:9e:b4:5f:91:c9:10:af:f0:7f:14: 30:0a:b3:b0:cd:fa:3f:d2:dd:de:24:e4:d5:5e:95:52:27:89: af:00:1e:86:bb:46:36:e0:a2:8f:0e:73:76:fc:3b:c7:5f:56: 08:a0:6f:e1:3b:19:96:79:fb:33:2f:83:c4:70:47:26:12:f8: fd:09:1b:89:ba:a3:c5:ae:33:a3:51:82:77:6e:65:dc:f9:24: 13:ea:25:37:0a:0f:1e:e1:22:56:79:3a:b3:af:ea:aa:7f:74: 4a:53:83:3c:23:c9:29:d2:03:42:d3:f8:44:d5:d3:96:b3:3d: 5b:d3:22:8a:11:98:4e:76:2a:c4:2c:2a:01:60:8d:96:5b:f4: a2:08:d1:62:75:42:f4:f1:c6:69:0d:66:13:34:b5:ed:53:c8: 54:f3:2e:f0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQzRkUxMTAvBgNVBAUTKEM3MEJGM0RGRjQ1MDIzRDQxQUY0QzRERjVENzY1MDQw QjkyNDFBQzcwHhcNMjYwNTIxMDAxMzE3WhcNMjYwNTI4MDAxMzE3WjAYMRYwFAYD VQQDEw02YTBlNGUxZC02OTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAiDqH04+yQv029AHqtGS7yGH+oaUZ8xPSAXGCNrM7TqznkU0RvqLlafBK7jK1 YHJySO/X9PqilqOFrAPGy3lva1vxFsTjCiPw2o0pvs6nhBaV2qu3xHTuTH8yBO86 J3P/LDzf291cuicsPnAZS/nYkBDGJW0qOPqg1bJd3tGwdpxMcT3AbdmJ6Z9zLKfY je8GbvIHUtyaEGtpXJWRzztdFJcH1pmRfe8NfLdd2n+cTAQWfs5b2WDaoh5cOZbw VSZ50rds5I4FAkdlqUZfvLxykiAUWgjpiOlCI2ClQhHdtjPu5uuqTsCfofUFpnTR pQGX0pHJkrblWEIfHMXork1gTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD6uT8nK 1IUS3tFenomqR03avWcKMB8GA1UdIwQYMBaAFMcL89/0UCPUGvTE3112UEC5JBrH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDNGRS85ODE0ODA2Mjk1 NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5UWE5TVRmWFhaUVFMa2tH c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3dnozX1JRSTlRYTlNVGZYWFpRUUxra0dzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDNGRS85ODE0ODA2Mjk1NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5 UWE5TVRmWFhaUVFMa2tHc2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdB84hzCUgo+hnWdjt3Qpslpk22O8Eq1nymcV55YqzloaCYZoSTXZ+dQn32up uh0ra5SxXOe08COOb3g/AT9toZUfXULMgMhxOiCVQ7mPkBoR+kXTrsf5JB+L6HNM Yxm3CKmetF+RyRCv8H8UMAqzsM36P9Ld3iTk1V6VUieJrwAehrtGNuCijw5zdvw7 x19WCKBv4TsZlnn7My+DxHBHJhL4/Qkbibqjxa4zo1GCd25l3PkkE+olNwoPHuEi Vnk6s6/qqn90SlODPCPJKdIDQtP4RNXTlrM9W9MiihGYTnYqxCwqAWCNllv0ogjR YnVC9PHGaQ1mEzS17VPIVPMu8A== -----END CERTIFICATE-----Generated at Thu May 21 10:27:44 2026 by rpki-client