$ rpki-client -vvf rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft File: XAVrgGGoYiwsBruFeG6dxhNhS8o.mft (raw, json) Hash identifier: jVj8oyD5AnS79nC8Yf+Bqn+Os7ewmGio0a2mSeIeyIc= Subject key identifier: 23:C8:DC:5B:74:DD:90:09:CC:3C:C4:F3:09:B5:24:3F:74:16:83:5E Authority key identifier: 5C:05:6B:80:61:A8:62:2C:2C:06:BB:85:78:6E:9D:C6:13:61:4B:CA Certificate issuer: /CN=A914A814/serialNumber=5C056B8061A8622C2C06BB85786E9DC613614BCA Certificate serial: 02D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAVrgGGoYiwsBruFeG6dxhNhS8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft Manifest number: 02A0 Signing time: Thu 23 Apr 2026 01:46:16 +0000 Manifest this update: Thu 23 Apr 2026 01:46:15 +0000 Manifest next update: Thu 30 Apr 2026 01:46:15 +0000 Files and hashes: 1: XAVrgGGoYiwsBruFeG6dxhNhS8o.crl (hash: FCGsEXWhxJrYIJBZnKpUzIW8WB3V+lV3Y4E/WVZikmE=) 2: 710A095EB62A11EF9D01E53DC4F9AE02.roa (hash: DoI1H5cBVDVpM0o3Z6TBBwhDvf1Ij5PjDVqCV737dgA=) 3: 8C1315A8060611EFB7EFA66CC4F9AE02.roa (hash: DxSoqS3b+Y/gdSbATN2rSyfLU8qRKds7oUL0VnUHIkU=) 4: 8A537D0CEB8811F09D1C7947556F56BC.roa (hash: HXOczdbG3jBtr/wzTx6ipHvHkHT1tt95ne5sa0eRBf8=) 5: 01A55FE8EB8811F09418252C556F56BC.roa (hash: cFB/8Vgkj4i8BlW9emUOHcyZlqasNRUOsxhp6QEZNAo=) 6: 71DFDF18890111EEB3F2581FC4F9AE02.roa (hash: EqT4x+M1dS0lAoKnprnpqiEWavrDyHejbJDUqIhSKBc=) 7: 6121C23230AC11F08C150767C4F9AE02.roa (hash: yFAyH86XSQnek6ohQ/lpmbhrJ7zT+NkCgAJN/G3hbEI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.crl rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAVrgGGoYiwsBruFeG6dxhNhS8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Apr 2026 01:46:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 720 (0x2d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A814, serialNumber=5C056B8061A8622C2C06BB85786E9DC613614BCA Validity Not Before: Apr 23 01:46:15 2026 GMT Not After : Apr 30 01:46:15 2026 GMT Subject: CN=69e979e8-e4cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:67:aa:02:4c:43:d7:00:ea:aa:53:20:e6:eb: b7:fa:c3:8b:6a:30:97:0e:bb:b2:02:11:27:a8:b5: eb:7d:ed:aa:2c:a1:a8:d8:dc:a3:dd:3a:e6:aa:b9: 60:e9:9e:71:0d:2f:0a:d0:57:d4:d9:f2:1e:47:40: 4d:7e:5f:7f:06:d1:56:63:bc:79:e9:79:f8:1b:fe: ad:be:0f:4d:1b:a5:d9:3f:a1:51:51:4e:ea:eb:a2: 17:ab:3c:97:b5:5a:d7:b2:cf:f4:12:63:83:7e:69: 80:43:75:49:97:68:a3:06:c9:72:98:39:c0:bc:b6: 48:73:41:63:fb:19:17:d1:f9:01:4d:ff:66:6a:04: 67:91:d4:ab:78:0c:9b:73:af:fd:20:6c:85:bf:6f: 44:fa:a1:2b:a2:a2:9a:b1:60:06:05:c8:e8:85:e3: 83:e5:fe:b7:1f:db:06:7e:27:cc:bd:66:41:27:64: 23:42:db:e2:43:f0:60:3b:c2:09:f0:8f:91:76:f5: 01:05:52:ed:54:69:5b:f0:89:ed:53:27:d8:d8:c2: 8b:46:e8:16:bc:da:df:a6:ff:c0:4f:75:a5:57:45: 8a:97:a1:99:9c:56:4c:57:7e:aa:78:fd:03:20:54: c0:90:b0:88:b2:c3:9c:97:d0:2f:0e:de:9e:ae:5a: b3:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:C8:DC:5B:74:DD:90:09:CC:3C:C4:F3:09:B5:24:3F:74:16:83:5E X509v3 Authority Key Identifier: keyid:5C:05:6B:80:61:A8:62:2C:2C:06:BB:85:78:6E:9D:C6:13:61:4B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAVrgGGoYiwsBruFeG6dxhNhS8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:0e:a0:f0:a7:7e:57:8c:37:6f:62:df:0a:26:e4:58:72:b6: 55:5b:2f:21:10:2a:13:56:ec:e0:de:d5:f7:3e:a9:65:93:d7: 71:87:19:ce:0d:f4:c8:bb:43:bc:88:84:57:0c:b8:fd:ae:33: d2:cb:5b:9a:03:5d:a9:fa:2a:54:8f:47:e8:33:fa:32:8e:35: c2:3b:cd:fa:8a:15:d9:f5:ff:d2:d0:7a:27:24:19:a3:3f:30: 8a:fe:ea:43:c0:bd:14:36:de:8c:d0:11:d2:36:0b:41:dc:47: 45:f3:d7:e6:06:fe:f9:bf:5f:f6:a9:2a:a2:1e:b0:b2:0d:d4: 03:67:69:df:ed:d5:61:70:04:12:6b:cf:eb:d1:5c:ae:62:9d: 92:17:c9:a4:d4:2d:6a:b5:3c:c0:71:1d:92:b4:06:1e:78:15: 3e:ca:7c:4e:60:d9:bd:5a:ce:96:23:43:d3:5f:e5:fe:b6:b5: 2d:c0:6f:ce:d9:30:21:55:20:24:32:91:ff:ef:fb:32:2d:df: bd:9d:47:d1:96:b6:8b:93:bd:04:a2:d7:f8:92:76:e9:1f:bd: 8d:d3:f2:62:7a:67:11:4f:d6:d0:48:7e:01:9c:8a:86:6a:04: 90:27:c8:bf:68:fd:61:12:7b:f9:02:c9:35:3d:6d:53:28:8e: 37:98:23:2e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE4MTQxMTAvBgNVBAUTKDVDMDU2QjgwNjFBODYyMkMyQzA2QkI4NTc4NkU5REM2 MTM2MTRCQ0EwHhcNMjYwNDIzMDE0NjE1WhcNMjYwNDMwMDE0NjE1WjAYMRYwFAYD VQQDEw02OWU5NzllOC1lNGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoGeqAkxD1wDqqlMg5uu3+sOLajCXDruyAhEnqLXrfe2qLKGo2Nyj3Trmqrlg 6Z5xDS8K0FfU2fIeR0BNfl9/BtFWY7x56Xn4G/6tvg9NG6XZP6FRUU7q66IXqzyX tVrXss/0EmODfmmAQ3VJl2ijBslymDnAvLZIc0Fj+xkX0fkBTf9magRnkdSreAyb c6/9IGyFv29E+qEroqKasWAGBcjoheOD5f63H9sGfifMvWZBJ2QjQtviQ/BgO8IJ 8I+RdvUBBVLtVGlb8IntUyfY2MKLRugWvNrfpv/AT3WlV0WKl6GZnFZMV36qeP0D IFTAkLCIssOcl9AvDt6erlqzDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCPI3Ft0 3ZAJzDzE8wm1JD90FoNeMB8GA1UdIwQYMBaAFFwFa4BhqGIsLAa7hXhuncYTYUvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTgxNC9EMzhBMTkxMjc0 NUUxMUVEQkE2ODg1MTRDNEY5QUUwMi9YQVZyZ0dHb1lpd3NCcnVGZUc2ZHhoTmhT OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBVnJnR0dvWWl3c0JydUZlRzZkeGhOaFM4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTgxNC9EMzhBMTkxMjc0NUUxMUVEQkE2ODg1MTRDNEY5QUUwMi9YQVZyZ0dHb1lp d3NCcnVGZUc2ZHhoTmhTOG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHg6g8Kd+V4w3b2LfCibkWHK2VVsvIRAqE1bs4N7V9z6pZZPXcYcZzg30yLtD vIiEVwy4/a4z0stbmgNdqfoqVI9H6DP6Mo41wjvN+ooV2fX/0tB6JyQZoz8wiv7q Q8C9FDbejNAR0jYLQdxHRfPX5gb++b9f9qkqoh6wsg3UA2dp3+3VYXAEEmvP69Fc rmKdkhfJpNQtarU8wHEdkrQGHngVPsp8TmDZvVrOliND01/l/ra1LcBvztkwIVUg JDKR/+/7Mi3fvZ1H0Za2i5O9BKLX+JJ26R+9jdPyYnpnEU/W0Eh+AZyKhmoEkCfI v2j9YRJ7+QLJNT1tUyiON5gjLg== -----END CERTIFICATE-----Generated at Fri Apr 24 14:57:19 2026 by rpki-client