$ rpki-client -vvf rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft File: XQ11AElW7cyrm4QnGnNA5jhV_4o.mft (raw, json) Hash identifier: cremBSIfpuAnEe4Kd9R9q4W82FBk90pR9FdHtE0JzM8= Subject key identifier: 3F:9A:3F:FA:1F:A0:35:60:B2:34:BD:5E:EF:31:5E:29:5D:E5:0A:F8 Authority key identifier: 5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A Certificate issuer: /CN=A912BC39/serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Certificate serial: 07DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft Manifest number: 07C8 Signing time: Wed 20 May 2026 21:26:31 +0000 Manifest this update: Wed 20 May 2026 21:26:30 +0000 Manifest next update: Wed 27 May 2026 21:26:30 +0000 Files and hashes: 1: XQ11AElW7cyrm4QnGnNA5jhV_4o.crl (hash: NW70JVLwthe1m9T7zz1FxFWLBYga2pBjmdOqmjcSh6M=) 2: 8EBA772E3F2B11EB87759716C4F9AE02.roa (hash: rRI5YNBN8BFJj5LVMQ9i0QefTh7uLQfpdIvxJ+hQ5Wc=) 3: 688EAE1E8A1911EC94921D85C4F9AE02.roa (hash: PSZyKZNLeC+ynTVNPefbaajpAUQPkgVzephvNIxcZqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 21:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2010 (0x7da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BC39, serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Validity Not Before: May 20 21:26:30 2026 GMT Not After : May 27 21:26:30 2026 GMT Subject: CN=6a0e2706-e392 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:ae:60:e8:3d:21:85:e6:79:4c:58:a4:9c:c6: 3a:26:e9:e7:fe:85:23:bd:1e:69:48:8b:14:03:0f: 91:4d:9f:ef:68:00:fc:c2:af:d1:2f:15:3f:99:68: 02:27:4b:ce:cb:31:b9:f3:13:2a:4f:b2:fb:b7:6d: 87:db:58:76:dd:69:22:e8:11:f6:6e:e3:55:4f:1d: d8:14:a7:bf:82:92:f7:67:27:b8:18:50:4a:39:6c: 66:c7:41:26:92:3c:ce:cc:87:2a:6d:a3:b5:ac:b4: c7:df:5e:9d:84:14:f0:32:57:08:3e:be:79:ee:32: c8:d5:32:5c:8e:2d:e1:18:75:61:43:ec:12:42:cc: bb:3a:54:75:b8:c1:b6:5e:06:4d:fe:86:0a:f3:d5: 79:be:cf:8a:96:7f:01:2d:7b:d4:c2:4b:76:28:cf: bc:ea:cc:00:81:6f:0a:f5:8e:da:2a:f3:f0:bf:91: ff:c4:c6:a7:81:89:7e:a7:63:dd:ef:c7:9d:70:60: c6:85:8c:9f:5e:94:84:1a:cc:73:1f:b2:6d:8e:9f: c7:b1:6b:d9:e8:3c:af:1e:76:81:7f:b6:f6:fa:34: ad:07:fa:38:7d:ee:bb:eb:f3:72:0a:7b:74:5e:c8: 8d:02:18:8c:11:aa:4a:51:a7:59:b6:93:60:a2:e9: 6e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:9A:3F:FA:1F:A0:35:60:B2:34:BD:5E:EF:31:5E:29:5D:E5:0A:F8 X509v3 Authority Key Identifier: keyid:5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:ce:c6:74:b2:d8:2a:0c:f6:4b:86:7a:76:ff:a5:d8:48:00: f6:47:d7:8a:c4:c7:e4:33:2d:04:7a:e2:de:f3:a6:6b:1e:a2: f1:87:44:9f:1a:91:b9:95:c7:49:49:ed:34:e5:96:c6:d0:6b: bb:96:06:71:fd:28:c1:a9:b0:87:00:88:ef:3c:95:5a:72:96: 31:bf:92:cc:13:4a:23:4e:cd:65:12:8d:99:cc:91:5f:30:60: ed:11:dc:de:b8:19:a5:a0:28:fe:6a:f1:a8:69:19:af:2a:0b: 71:52:bd:bb:fb:80:76:7e:fb:5b:c6:f2:a7:26:50:81:ca:62: 82:d7:07:2b:09:c7:90:5a:c5:d8:87:fa:ed:2f:aa:d5:40:db: 71:6e:d6:17:29:46:0d:e5:6f:aa:ac:6a:98:64:b3:20:f4:b7: 23:d0:23:48:e0:de:da:a8:a4:f6:e5:07:47:5a:5d:d3:c1:79: 85:c5:b0:19:ed:64:e4:3b:69:f2:3c:22:45:04:23:e7:88:76: ff:98:ff:aa:70:63:00:43:9d:53:59:04:a9:51:d1:67:4a:e9: 5b:56:f4:d4:c4:e7:62:38:bc:f9:95:7d:90:35:ac:4d:02:1f: aa:1e:dc:6a:03:bc:13:12:e7:29:44:8f:1f:8c:23:67:27:35: d7:a5:e2:c6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJDMzkxMTAvBgNVBAUTKDVEMEQ3NTAwNDk1NkVEQ0NBQjlCODQyNzFBNzM0MEU2 Mzg1NUZGOEEwHhcNMjYwNTIwMjEyNjMwWhcNMjYwNTI3MjEyNjMwWjAYMRYwFAYD VQQDEw02YTBlMjcwNi1lMzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAka5g6D0hheZ5TFiknMY6Junn/oUjvR5pSIsUAw+RTZ/vaAD8wq/RLxU/mWgC J0vOyzG58xMqT7L7t22H21h23Wki6BH2buNVTx3YFKe/gpL3Zye4GFBKOWxmx0Em kjzOzIcqbaO1rLTH316dhBTwMlcIPr557jLI1TJcji3hGHVhQ+wSQsy7OlR1uMG2 XgZN/oYK89V5vs+Kln8BLXvUwkt2KM+86swAgW8K9Y7aKvPwv5H/xMangYl+p2Pd 78edcGDGhYyfXpSEGsxzH7Jtjp/HsWvZ6DyvHnaBf7b2+jStB/o4fe676/NyCnt0 XsiNAhiMEapKUadZtpNgouluBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD+aP/of oDVgsjS9Xu8xXild5Qr4MB8GA1UdIwQYMBaAFF0NdQBJVu3Mq5uEJxpzQOY4Vf+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkMzOS9CMzdCMTU4RTNG MjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdjeXJtNFFuR25OQTVqaFZf NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hRMTFBRWxXN2N5cm00UW5Hbk5BNWpoVl80by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkMzOS9CMzdCMTU4RTNGMjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdj eXJtNFFuR25OQTVqaFZfNG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAyc7GdLLYKgz2S4Z6dv+l2EgA9kfXisTH5DMtBHri3vOmax6i8YdEnxqRuZXH SUntNOWWxtBru5YGcf0owamwhwCI7zyVWnKWMb+SzBNKI07NZRKNmcyRXzBg7RHc 3rgZpaAo/mrxqGkZryoLcVK9u/uAdn77W8bypyZQgcpigtcHKwnHkFrF2If67S+q 1UDbcW7WFylGDeVvqqxqmGSzIPS3I9AjSODe2qik9uUHR1pd08F5hcWwGe1k5Dtp 8jwiRQQj54h2/5j/qnBjAEOdU1kEqVHRZ0rpW1b01MTnYji8+ZV9kDWsTQIfqh7c agO8ExLnKUSPH4wjZyc116Xixg== -----END CERTIFICATE-----Generated at Thu May 21 10:38:23 2026 by rpki-client