$ rpki-client -vvf rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft File: XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft (raw, json) Hash identifier: 9jsWgf9MiwKO1Y5YwnQ9khSRXxZkIUlnlHkKwY0M+xY= Subject key identifier: 30:93:E9:2B:42:B0:CA:10:02:04:C8:96:05:73:9A:D6:9B:27:0B:3C Authority key identifier: 5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A Certificate issuer: /CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Certificate serial: 056D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft Manifest number: 0518 Signing time: Sat 04 Apr 2026 23:28:34 +0000 Manifest this update: Sat 04 Apr 2026 23:28:34 +0000 Manifest next update: Sat 11 Apr 2026 23:28:34 +0000 Files and hashes: 1: XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl (hash: hrI0ZJsQy9AEMJaRlvWNW5lwDnRV/mbJnmNz2HvViDA=) 2: 87840F3AFBD111EFB4804F27C4F9AE02.roa (hash: vIEtRSxvBa0Xc/IiKtnrGRDGvVh6iD/nJgJJDv2I0S0=) 3: BEB34436FE3211EFAA1D9A4EC4F9AE02.roa (hash: rcOga+YGZldqreiF0WCdj8lf5Z59J1hOmyY6+goJTWY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:28:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1389 (0x56d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91524AF, serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Validity Not Before: Apr 4 23:28:34 2026 GMT Not After : Apr 11 23:28:34 2026 GMT Subject: CN=69d19ea2-a969 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:17:6c:8d:3c:ff:23:8d:ec:4e:7d:2e:76:c3: 8a:68:04:bf:74:8e:bc:a4:52:5c:29:72:78:eb:02: 66:64:1f:23:ee:1c:fe:f4:7f:bd:09:55:5e:75:32: c3:ed:4f:a5:3d:9a:f9:5b:bd:d7:d9:2a:45:c8:35: 6b:d9:57:4b:82:fb:5c:3d:cf:65:67:97:c4:88:f4: ad:6b:d9:29:74:a4:5b:43:71:68:c2:1a:ac:16:13: ee:07:68:9a:fb:b2:e2:35:c6:9f:e7:d2:ae:02:7b: a3:5b:42:93:a2:95:55:82:37:b3:68:a3:a6:45:e0: 3d:8e:9a:1f:ee:1d:86:f9:cf:43:40:47:03:c1:55: 4c:62:43:4a:7a:00:69:ba:d4:74:58:5f:02:87:90: c8:3d:bc:66:67:3f:e7:6a:d2:77:9f:f2:b9:1e:6b: b7:c1:a8:87:86:ce:28:72:8d:88:93:93:4a:cd:c2: bd:18:6c:d8:20:81:65:e9:2d:fe:b7:5f:a1:56:43: 53:74:41:b1:9d:60:38:9c:26:a2:d6:9a:b8:79:74: 75:59:cd:44:52:0d:11:06:69:4f:d4:33:27:2f:4e: 0c:3d:55:d5:13:52:31:5d:da:41:16:2c:e2:a5:e5: 97:fe:9c:93:2c:02:20:25:72:f8:f2:e1:b0:4b:5f: 63:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:93:E9:2B:42:B0:CA:10:02:04:C8:96:05:73:9A:D6:9B:27:0B:3C X509v3 Authority Key Identifier: keyid:5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:c9:58:d8:68:a0:5f:eb:46:ba:0c:96:2b:e8:3f:72:27:b8: f0:bd:33:6b:6c:f3:be:a7:93:d8:8b:6e:39:04:67:0a:45:12: e1:f2:7b:15:42:ca:ed:ac:ed:bd:1c:7e:f8:4b:e7:6d:2b:b6: b6:88:02:1c:44:75:bc:ec:db:55:29:e9:7c:0b:50:73:be:ce: 99:ef:5a:6b:aa:ac:68:6a:60:d6:90:06:ca:30:21:fe:a8:97: 2e:18:76:8c:17:15:89:92:0b:80:ed:37:d3:26:f1:f4:04:45: da:50:af:3d:e3:f9:6a:fb:7c:37:77:26:c3:61:17:9f:10:f5: 5b:c6:16:58:47:aa:74:d6:16:be:61:b4:72:22:2d:46:f1:01: ab:e4:78:a9:5f:fd:b1:9b:54:46:73:a2:9a:64:17:b9:89:83: 87:6e:ae:13:f3:fe:39:44:79:af:32:63:ee:26:08:84:e9:fc: c4:be:c2:4f:0c:a2:8b:71:8e:4d:8c:9c:32:90:dd:f1:79:69: 10:c8:0b:84:ad:79:f1:ae:8f:71:01:d4:2a:f2:28:6b:f9:f2: ef:a8:56:1e:0b:50:c7:e2:d0:e6:cd:2f:3b:e8:e0:7f:c8:73: 04:34:13:e5:8f:49:80:4d:8c:bf:49:29:7b:a9:40:bd:b6:68: 26:ff:1d:3f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0QUYxMTAvBgNVBAUTKDVDMzE1REFGQzUzQTgyRkRENjJDNzIwMDVDNzY0NDMz M0JDMDI5N0EwHhcNMjYwNDA0MjMyODM0WhcNMjYwNDExMjMyODM0WjAYMRYwFAYD VQQDEw02OWQxOWVhMi1hOTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2BdsjTz/I43sTn0udsOKaAS/dI68pFJcKXJ46wJmZB8j7hz+9H+9CVVedTLD 7U+lPZr5W73X2SpFyDVr2VdLgvtcPc9lZ5fEiPSta9kpdKRbQ3FowhqsFhPuB2ia +7LiNcaf59KuAnujW0KTopVVgjezaKOmReA9jpof7h2G+c9DQEcDwVVMYkNKegBp utR0WF8Ch5DIPbxmZz/natJ3n/K5Hmu3waiHhs4oco2Ik5NKzcK9GGzYIIFl6S3+ t1+hVkNTdEGxnWA4nCai1pq4eXR1Wc1EUg0RBmlP1DMnL04MPVXVE1IxXdpBFizi peWX/pyTLAIgJXL48uGwS19jhwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDCT6StC sMoQAgTIlgVzmtabJws8MB8GA1UdIwQYMBaAFFwxXa/FOoL91ixyAFx2RDM7wCl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjRBRi83NkM3RjBGNDUx RjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2M1dMSElBWEhaRU16dkFL WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hERmRyOFU2Z3YzV0xISUFYSFpFTXp2QUtYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjRBRi83NkM3RjBGNDUxRjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2 M1dMSElBWEhaRU16dkFLWG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjMlY2GigX+tGugyWK+g/cie48L0za2zzvqeT2ItuOQRnCkUS4fJ7FULK7azt vRx++EvnbSu2togCHER1vOzbVSnpfAtQc77Ome9aa6qsaGpg1pAGyjAh/qiXLhh2 jBcViZILgO030ybx9ARF2lCvPeP5avt8N3cmw2EXnxD1W8YWWEeqdNYWvmG0ciIt RvEBq+R4qV/9sZtURnOimmQXuYmDh26uE/P+OUR5rzJj7iYIhOn8xL7CTwyii3GO TYycMpDd8XlpEMgLhK158a6PcQHUKvIoa/ny76hWHgtQx+LQ5s0vO+jgf8hzBDQT 5Y9JgE2Mv0kpe6lAvbZoJv8dPw== -----END CERTIFICATE-----Generated at Mon Apr 6 08:27:55 2026 by rpki-client