$ rpki-client -vvf rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft File: XLKYvBpwUBeAXFYfCQoNR5UOar0.mft (raw, json) Hash identifier: addkWeHnoNR2Mwlw95oE+2mIulCncE+n4IwcLdbY/qo= Subject key identifier: 5E:58:A7:B4:C2:E3:DD:8B:9D:5D:65:C6:62:39:4D:30:72:AF:E5:3D Authority key identifier: 5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD Certificate issuer: /CN=A912BFC5/serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Certificate serial: 25AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft Manifest number: 25AD Signing time: Sat 18 Apr 2026 14:16:36 +0000 Manifest this update: Sat 18 Apr 2026 14:16:35 +0000 Manifest next update: Sat 25 Apr 2026 14:16:35 +0000 Files and hashes: 1: XLKYvBpwUBeAXFYfCQoNR5UOar0.crl (hash: 1Wgtm1iwcluflM5ayCD2EMfikBMC3ptgvMatSh/hP14=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 14:16:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9645 (0x25ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BFC5, serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Validity Not Before: Apr 18 14:16:35 2026 GMT Not After : Apr 25 14:16:35 2026 GMT Subject: CN=69e39244-1af8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:c3:d9:8c:b7:5e:ef:0d:0d:45:2c:20:d7:60: 2c:d0:69:98:53:8e:c2:c7:00:92:2e:a5:10:b5:8f: 9c:70:bf:32:81:d8:df:90:93:1a:51:51:47:b4:2b: 47:19:3f:57:de:ea:dc:01:bf:04:7f:6d:cf:6e:9c: 80:8c:51:9f:52:ae:d3:78:37:83:52:51:ad:76:7c: da:d6:91:6b:33:f5:60:6f:e3:61:c5:de:84:46:08: 3b:90:e0:c8:af:17:d5:56:8f:05:e8:eb:94:83:5b: 27:73:f0:4f:67:a9:82:62:c3:50:6c:57:16:0b:c1: 9b:09:f8:76:8e:5b:64:ae:d0:d3:07:89:f1:88:61: 5e:27:e0:59:21:5a:aa:69:a7:99:8f:93:ad:39:8e: a2:c8:b0:96:a1:43:a6:82:4f:1e:19:b8:f0:01:d7: c5:a8:4d:02:29:03:51:f5:25:0a:29:0e:9e:6b:e3: 93:0b:92:f1:9a:d0:f1:e2:a2:35:71:c7:a2:f3:4c: c8:63:4f:0b:29:cc:da:07:fe:30:93:f7:d8:1e:e5: 3a:aa:aa:a3:54:49:20:55:1c:37:ba:82:7d:73:04: 39:f4:2d:8b:5b:f1:19:7a:7f:83:ad:32:3b:8c:26: 16:aa:17:00:bc:b5:d5:56:a4:8d:ba:58:bf:00:98: 51:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:58:A7:B4:C2:E3:DD:8B:9D:5D:65:C6:62:39:4D:30:72:AF:E5:3D X509v3 Authority Key Identifier: keyid:5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:9a:83:af:78:7e:e5:f3:7a:5f:f6:21:e1:20:b3:0c:6e:34: 96:6b:01:54:01:ee:bc:f7:a3:9a:41:bf:de:e2:9e:c6:ae:b9: b8:2e:ae:f7:87:da:dc:9f:31:a3:57:7a:a2:03:03:0b:88:b6: 19:7d:58:64:6e:65:96:1a:d6:21:ad:32:69:bd:90:02:18:7a: c4:24:35:93:f1:1f:ba:a1:26:98:c5:a2:ed:31:08:8b:10:8b: e7:ce:7c:0b:e1:72:3f:88:a2:b9:49:76:24:9c:a9:43:1b:57: 99:6f:8d:db:f2:f3:9d:97:a7:72:12:aa:38:2d:ce:59:66:ee: 77:f7:c1:3f:af:75:f7:c5:66:df:e4:52:50:5b:1c:e7:5a:d0: 4d:64:1e:50:e6:30:20:4a:54:6e:ec:1c:41:0b:64:d9:53:fd: ae:27:1b:04:7b:0a:29:c5:71:68:d9:85:88:d2:59:3c:5b:c4: 52:65:3b:5e:32:76:b5:fd:43:78:db:ba:ad:92:14:a3:c6:9e: 90:c3:a5:88:32:a1:1c:f0:3b:d7:89:89:e4:81:1d:a4:6d:0e: a1:54:8e:3b:8c:95:e2:f1:d4:f7:de:16:0b:b3:2e:96:85:ba: 7a:98:76:de:59:ec:9c:a4:b8:ca:bc:33:be:d9:84:ec:c6:fc: 1c:b4:76:75 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJGQzUxMTAvBgNVBAUTKDVDQjI5OEJDMUE3MDUwMTc4MDVDNTYxRjA5MEEwRDQ3 OTUwRTZBQkQwHhcNMjYwNDE4MTQxNjM1WhcNMjYwNDI1MTQxNjM1WjAYMRYwFAYD VQQDEw02OWUzOTI0NC0xYWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhcPZjLde7w0NRSwg12As0GmYU47CxwCSLqUQtY+ccL8ygdjfkJMaUVFHtCtH GT9X3urcAb8Ef23PbpyAjFGfUq7TeDeDUlGtdnza1pFrM/Vgb+Nhxd6ERgg7kODI rxfVVo8F6OuUg1snc/BPZ6mCYsNQbFcWC8GbCfh2jltkrtDTB4nxiGFeJ+BZIVqq aaeZj5OtOY6iyLCWoUOmgk8eGbjwAdfFqE0CKQNR9SUKKQ6ea+OTC5LxmtDx4qI1 ccei80zIY08LKczaB/4wk/fYHuU6qqqjVEkgVRw3uoJ9cwQ59C2LW/EZen+DrTI7 jCYWqhcAvLXVVqSNuli/AJhRDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF5Yp7TC 492LnV1lxmI5TTByr+U9MB8GA1UdIwQYMBaAFFyymLwacFAXgFxWHwkKDUeVDmq9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkZDNS8zRjM0MjAzRTI5 MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VCZUFYRllmQ1FvTlI1VU9h cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hMS1l2QnB3VUJlQVhGWWZDUW9OUjVVT2FyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkZDNS8zRjM0MjAzRTI5MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VC ZUFYRllmQ1FvTlI1VU9hcjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbpqDr3h+5fN6X/Yh4SCzDG40lmsBVAHuvPejmkG/3uKexq65uC6u94fa3J8x o1d6ogMDC4i2GX1YZG5llhrWIa0yab2QAhh6xCQ1k/EfuqEmmMWi7TEIixCL5858 C+FyP4iiuUl2JJypQxtXmW+N2/LznZenchKqOC3OWWbud/fBP69198Vm3+RSUFsc 51rQTWQeUOYwIEpUbuwcQQtk2VP9ricbBHsKKcVxaNmFiNJZPFvEUmU7XjJ2tf1D eNu6rZIUo8aekMOliDKhHPA714mJ5IEdpG0OoVSOO4yV4vHU994WC7MuloW6eph2 3lnsnKS4yrwzvtmE7Mb8HLR2dQ== -----END CERTIFICATE-----Generated at Sat Apr 18 21:07:40 2026 by rpki-client