$ rpki-client -vvf rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft File: XLKYvBpwUBeAXFYfCQoNR5UOar0.mft (raw, json) Hash identifier: D65Z63Md6ZnDlHSWNAieN4/pvTGLxBLVOBgz5qpox2A= Subject key identifier: 6E:22:D2:F3:0B:E7:38:7E:56:65:93:9D:43:5A:DC:34:81:80:34:B5 Authority key identifier: 5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD Certificate issuer: /CN=A912BFC5/serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Certificate serial: 25C4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft Manifest number: 25C4 Signing time: Tue 02 Jun 2026 14:16:32 +0000 Manifest this update: Tue 02 Jun 2026 14:16:32 +0000 Manifest next update: Tue 09 Jun 2026 14:16:32 +0000 Files and hashes: 1: XLKYvBpwUBeAXFYfCQoNR5UOar0.crl (hash: GRSAMq3Kyd6NTzD11btpdYL6e/7YrVLqtqkGAhUyDUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 14:16:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9668 (0x25c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BFC5, serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Validity Not Before: Jun 2 14:16:32 2026 GMT Not After : Jun 9 14:16:32 2026 GMT Subject: CN=6a1ee5c0-c39f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ff:0f:c2:dc:de:41:0a:c7:b3:08:c9:ad:d0: 0d:aa:fc:e0:11:07:a4:11:71:d0:ca:60:76:13:97: 75:87:0c:7f:08:3a:55:5d:18:f8:bc:ce:ea:0c:e1: 14:a8:09:9e:38:af:0e:4f:65:a7:c8:f6:7c:4e:57: 90:e7:cf:dc:fa:dc:05:b5:b8:90:52:16:a6:5e:2d: 82:65:e4:5a:f7:ae:cd:14:6e:7d:d6:e6:13:d6:ca: c5:90:ec:1c:fc:99:85:5d:20:8b:77:0b:04:ea:33: 11:1c:ee:2c:36:b0:ba:62:d2:90:90:47:07:24:ec: cb:28:56:54:93:9a:93:0e:f3:3e:a1:40:b0:06:87: e8:c1:19:3c:9f:be:49:2e:e0:ca:9b:b0:83:71:da: 84:48:77:db:b9:8e:f5:16:35:09:6b:b1:10:41:df: 69:b7:b5:6c:34:59:3d:55:44:3f:fa:f0:18:4a:95: 8b:10:4b:f5:96:bf:98:64:6f:f3:32:00:0f:44:ae: c9:85:f0:fc:9a:e4:29:e9:3c:af:4a:ce:14:63:de: ec:80:95:58:80:26:22:93:8d:2c:b6:6a:9a:92:f7: 9b:d2:1d:1d:31:ce:91:41:1d:75:48:4b:bf:65:a7: 2d:0a:71:a8:87:85:b0:d9:4d:ee:06:3e:ff:2f:c7: c1:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:22:D2:F3:0B:E7:38:7E:56:65:93:9D:43:5A:DC:34:81:80:34:B5 X509v3 Authority Key Identifier: keyid:5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:93:09:17:2e:c1:00:b5:89:30:12:7e:03:2c:3b:b0:9a:d6: 35:1e:78:9f:ae:54:3d:7e:fc:28:d9:73:00:a9:37:f6:65:37: bb:ba:51:7f:5d:1e:71:b7:8a:db:0f:8e:ca:b7:48:a9:e1:a0: ba:a3:01:4b:72:74:4e:4c:1a:97:d4:3c:38:fb:6c:7a:e6:48: 3a:63:82:b7:73:2d:72:9f:50:40:43:ca:c8:30:75:76:d7:02: fc:9a:21:42:a1:1c:0f:6c:25:6f:51:d6:7f:5f:f6:40:36:2e: a5:f6:f2:64:65:ef:01:70:9c:a7:c9:6f:6f:ab:3b:a3:72:e3: ef:62:14:82:cc:4c:7b:f0:b3:49:e5:6e:7d:d6:44:63:11:05: c2:83:15:46:28:aa:a0:af:1a:a4:2c:96:37:b6:1c:ca:61:d5: dc:8e:06:1f:5e:a2:9f:0f:57:8b:0f:71:4f:5b:a1:fb:8f:c8: 4f:d8:35:c4:85:49:c2:3d:b8:74:b5:f3:bb:dc:05:8d:85:fd: f2:6e:5e:97:a1:46:49:4d:9a:20:de:52:5f:77:3a:de:5f:21: 7a:32:fd:ec:f7:29:4f:50:a6:35:15:05:e4:26:4c:f6:e2:b8: 0f:f7:f6:6f:8f:4f:7c:9f:1c:e9:a5:a8:19:37:64:5f:60:ea: 9f:89:88:9e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJGQzUxMTAvBgNVBAUTKDVDQjI5OEJDMUE3MDUwMTc4MDVDNTYxRjA5MEEwRDQ3 OTUwRTZBQkQwHhcNMjYwNjAyMTQxNjMyWhcNMjYwNjA5MTQxNjMyWjAYMRYwFAYD VQQDEw02YTFlZTVjMC1jMzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsP8PwtzeQQrHswjJrdANqvzgEQekEXHQymB2E5d1hwx/CDpVXRj4vM7qDOEU qAmeOK8OT2WnyPZ8TleQ58/c+twFtbiQUhamXi2CZeRa967NFG591uYT1srFkOwc /JmFXSCLdwsE6jMRHO4sNrC6YtKQkEcHJOzLKFZUk5qTDvM+oUCwBofowRk8n75J LuDKm7CDcdqESHfbuY71FjUJa7EQQd9pt7VsNFk9VUQ/+vAYSpWLEEv1lr+YZG/z MgAPRK7JhfD8muQp6TyvSs4UY97sgJVYgCYik40stmqakveb0h0dMc6RQR11SEu/ ZactCnGoh4Ww2U3uBj7/L8fB8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG4i0vML 5zh+VmWTnUNa3DSBgDS1MB8GA1UdIwQYMBaAFFyymLwacFAXgFxWHwkKDUeVDmq9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkZDNS8zRjM0MjAzRTI5 MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VCZUFYRllmQ1FvTlI1VU9h cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hMS1l2QnB3VUJlQVhGWWZDUW9OUjVVT2FyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkZDNS8zRjM0MjAzRTI5MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VC ZUFYRllmQ1FvTlI1VU9hcjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPJMJFy7BALWJMBJ+Ayw7sJrWNR54n65UPX78KNlzAKk39mU3u7pRf10ecbeK 2w+OyrdIqeGguqMBS3J0Tkwal9Q8OPtseuZIOmOCt3Mtcp9QQEPKyDB1dtcC/Joh QqEcD2wlb1HWf1/2QDYupfbyZGXvAXCcp8lvb6s7o3Lj72IUgsxMe/CzSeVufdZE YxEFwoMVRiiqoK8apCyWN7YcymHV3I4GH16inw9Xiw9xT1uh+4/IT9g1xIVJwj24 dLXzu9wFjYX98m5el6FGSU2aIN5SX3c63l8hejL97PcpT1CmNRUF5CZM9uK4D/f2 b49PfJ8c6aWoGTdkX2Dqn4mIng== -----END CERTIFICATE-----Generated at Tue Jun 2 21:20:08 2026 by rpki-client