$ rpki-client -vvf rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.mft File: rXZeStXAqz70hB0-NIQoC-rLzC0.mft (raw, json) Hash identifier: SPKkUaFTEocGPbncDKUq8/6rXnHXQJj3IHbSua8zLLE= Subject key identifier: B2:DD:A5:C2:9D:73:3F:26:06:2C:11:10:71:6F:AA:20:2F:F7:BE:8E Authority key identifier: AD:76:5E:4A:D5:C0:AB:3E:F4:84:1D:3E:34:84:28:0B:EA:CB:CC:2D Certificate issuer: /CN=A913CC0C/serialNumber=AD765E4AD5C0AB3EF4841D3E3484280BEACBCC2D Certificate serial: 01D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXZeStXAqz70hB0-NIQoC-rLzC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.mft Manifest number: 01CC Signing time: Tue 21 Apr 2026 03:31:00 +0000 Manifest this update: Tue 21 Apr 2026 03:31:00 +0000 Manifest next update: Tue 28 Apr 2026 03:31:00 +0000 Files and hashes: 1: rXZeStXAqz70hB0-NIQoC-rLzC0.crl (hash: VD+KYd2aBdNqRjGkGUUOjR/OgtjTV1UnOVNwJN/23wk=) 2: 1DD8238C836E11EEBBF2912FC4F9AE02.roa (hash: m2Uv3v7XUW3vXrCq6wyXHCyPqWh0u6BnyHOlUQ7XuZM=) 3: 791E1D14836E11EEAD2B0731C4F9AE02.roa (hash: 9nJcymyhJdyjosWxKF37Ye2GxMONKGYPO84iI01RFGA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.crl rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXZeStXAqz70hB0-NIQoC-rLzC0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 03:30:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CC0C, serialNumber=AD765E4AD5C0AB3EF4841D3E3484280BEACBCC2D Validity Not Before: Apr 21 03:31:00 2026 GMT Not After : Apr 28 03:31:00 2026 GMT Subject: CN=69e6ef74-06d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ad:5c:a6:06:33:c8:83:8f:1f:f0:f2:30:47: 2d:5e:7f:f6:70:8b:34:58:9d:cd:4d:40:2a:ad:11: bc:8e:d3:46:d7:35:62:34:66:ae:db:86:0e:64:39: 44:58:34:1f:8f:e6:f2:36:f2:87:bd:84:6e:c9:2e: e5:9b:53:22:02:f3:2a:57:c6:3e:03:0f:1f:d5:b7: ae:56:77:2f:7c:7d:7c:ed:c1:1b:06:17:b7:f0:a4: e6:37:42:ea:80:05:b7:46:6c:75:56:52:fd:34:05: f2:93:df:4d:dc:28:ba:df:f2:ea:54:d0:32:3b:c3: 69:f5:21:3a:1f:a2:d1:22:54:c1:48:c3:eb:ca:32: 24:e3:bf:26:e3:c0:36:fb:01:57:d6:94:f5:10:13: a5:93:3f:48:bd:23:4b:18:00:75:6a:c2:12:56:ac: 23:01:6f:18:0c:b8:2d:9d:75:a1:41:27:a4:b3:cf: 4a:6b:57:fe:58:e5:53:f6:80:b0:25:cf:8d:78:e6: dc:64:73:cc:ed:fd:fd:a0:66:b3:f9:1a:84:97:53: bb:a0:8b:8a:99:98:2b:1c:2d:e5:e9:0e:54:f2:53: 98:09:2a:0d:8d:20:10:c0:45:32:be:51:50:5b:c0: e5:dc:db:5a:18:01:d6:71:9b:cd:8f:7b:24:44:6f: ba:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:DD:A5:C2:9D:73:3F:26:06:2C:11:10:71:6F:AA:20:2F:F7:BE:8E X509v3 Authority Key Identifier: keyid:AD:76:5E:4A:D5:C0:AB:3E:F4:84:1D:3E:34:84:28:0B:EA:CB:CC:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXZeStXAqz70hB0-NIQoC-rLzC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:38:66:f2:4c:db:8d:1b:34:ea:d3:cb:68:25:cb:e7:c6:54: 9f:8c:73:73:c2:ce:e5:a0:92:ba:16:22:27:ff:5e:11:ac:cf: 52:a8:d2:ab:52:7d:04:bf:e0:bd:4f:ad:a9:52:21:0b:54:da: 4d:f7:99:a5:71:f1:b5:00:a4:32:79:8b:54:a1:74:4c:8c:4a: d6:f3:c4:9d:ff:5a:36:7f:a7:45:5e:82:07:01:24:09:04:af: 4f:37:eb:03:96:73:93:5d:f3:b9:76:7e:31:ee:ac:ce:d5:d3: d5:ca:cc:98:bf:e8:d4:07:6e:1b:63:4d:c5:c6:d2:ba:b9:1a: 71:dc:15:1c:22:5b:06:2a:9a:08:b7:79:4b:d9:7b:ca:ea:1a: 72:58:f8:13:3a:fb:f6:4c:8c:1f:79:ef:8b:71:d3:af:6a:d8: f8:57:4b:0d:0e:89:8d:d5:54:fb:63:00:da:f7:7d:f1:fe:74: 72:23:df:a6:f4:7c:78:ac:58:70:2e:c2:2e:97:c1:f6:d0:c5: 43:f6:09:36:91:6c:9f:67:22:73:e3:cd:1d:ec:35:3c:26:f7: f7:e5:72:b3:dc:1b:50:78:c5:c7:ac:83:dd:0c:08:c1:19:1d: f7:3a:50:90:45:45:aa:b0:c8:3a:a0:11:bd:34:7f:00:30:e8: 3e:fc:f6:4e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NDMEMxMTAvBgNVBAUTKEFENzY1RTRBRDVDMEFCM0VGNDg0MUQzRTM0ODQyODBC RUFDQkNDMkQwHhcNMjYwNDIxMDMzMTAwWhcNMjYwNDI4MDMzMTAwWjAYMRYwFAYD VQQDEw02OWU2ZWY3NC0wNmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApa1cpgYzyIOPH/DyMEctXn/2cIs0WJ3NTUAqrRG8jtNG1zViNGau24YOZDlE WDQfj+byNvKHvYRuyS7lm1MiAvMqV8Y+Aw8f1beuVncvfH187cEbBhe38KTmN0Lq gAW3Rmx1VlL9NAXyk99N3Ci63/LqVNAyO8Np9SE6H6LRIlTBSMPryjIk478m48A2 +wFX1pT1EBOlkz9IvSNLGAB1asISVqwjAW8YDLgtnXWhQSeks89Ka1f+WOVT9oCw Jc+NeObcZHPM7f39oGaz+RqEl1O7oIuKmZgrHC3l6Q5U8lOYCSoNjSAQwEUyvlFQ W8Dl3NtaGAHWcZvNj3skRG+6/wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLLdpcKd cz8mBiwREHFvqiAv976OMB8GA1UdIwQYMBaAFK12XkrVwKs+9IQdPjSEKAvqy8wt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0MwQy84NDI1ODU2QTgz NTcxMUVFQUJFQjJBM0ZDNEY5QUUwMi9yWFplU3RYQXF6NzBoQjAtTklRb0Mtckx6 QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYWmVTdFhBcXo3MGhCMC1OSVFvQy1yTHpDMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Q0MwQy84NDI1ODU2QTgzNTcxMUVFQUJFQjJBM0ZDNEY5QUUwMi9yWFplU3RYQXF6 NzBoQjAtTklRb0Mtckx6QzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA2jhm8kzbjRs06tPLaCXL58ZUn4xzc8LO5aCSuhYiJ/9eEazPUqjSq1J9BL/g vU+tqVIhC1TaTfeZpXHxtQCkMnmLVKF0TIxK1vPEnf9aNn+nRV6CBwEkCQSvTzfr A5Zzk13zuXZ+Me6sztXT1crMmL/o1AduG2NNxcbSurkacdwVHCJbBiqaCLd5S9l7 yuoaclj4Ezr79kyMH3nvi3HTr2rY+FdLDQ6JjdVU+2MA2vd98f50ciPfpvR8eKxY cC7CLpfB9tDFQ/YJNpFsn2cic+PNHew1PCb39+Vys9wbUHjFx6yD3QwIwRkd9zpQ kEVFqrDIOqARvTR/ADDoPvz2Tg== -----END CERTIFICATE-----Generated at Wed Apr 22 07:27:12 2026 by rpki-client