$ rpki-client -vvf rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft File: X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft (raw, json) Hash identifier: 6qsTtTxZpoaCV/xt27OeKPCq0hLqEO04B0n/4TXDdG0= Subject key identifier: 34:81:CB:AF:4D:03:1E:EC:90:ED:48:37:57:6D:DA:88:EA:5F:83:B3 Authority key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 Certificate issuer: /CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Certificate serial: 029E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft Manifest number: 0292 Signing time: Tue 21 Apr 2026 01:30:25 +0000 Manifest this update: Tue 21 Apr 2026 01:30:24 +0000 Manifest next update: Tue 28 Apr 2026 01:30:24 +0000 Files and hashes: 1: X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl (hash: NXjFY4JJbg/NhL+I0Vvtm31UTbkf6Cju7MeV9qK4e/Y=) 2: 5637146C507611EDB59D9E2EC4F9AE02.roa (hash: 18O7Lp0T09zqzj1uz2UvboEJEAG8f//RjAML5YNM31g=) 3: D1FCB742514711ED92E3885EC4F9AE02.roa (hash: mF+0oU+0n20Cgq5ko570coLg0lSVzI4jtUFqm1rkd8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 01:30:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 670 (0x29e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156255, serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Validity Not Before: Apr 21 01:30:24 2026 GMT Not After : Apr 28 01:30:24 2026 GMT Subject: CN=69e6d331-f92a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:54:f0:50:79:8d:3b:d9:fd:67:70:79:69:6a: c0:1b:43:7a:2a:2b:93:d6:0c:1b:e3:60:7a:50:9a: ba:d1:da:dd:78:4a:bc:0d:f8:8c:69:58:f6:bc:7e: e7:87:95:1d:f1:83:c0:13:86:64:45:1c:d4:92:8d: af:2c:bd:98:93:f9:c9:f6:30:ed:d2:a3:5b:fe:13: 30:07:98:b0:01:57:94:fd:9c:3e:44:99:e4:ce:4a: 1b:25:c3:d4:58:80:82:a2:85:13:3e:f8:cb:dd:65: ed:ff:6e:6d:5a:ca:28:15:04:63:b4:99:18:b5:9c: b4:ff:0c:c6:c3:de:02:f1:38:80:76:df:9a:dd:cf: 4d:72:9c:31:40:92:ba:26:b3:fa:e0:a0:55:3a:ae: ab:1d:49:96:6f:97:5a:27:c4:de:83:fb:33:1f:23: e2:a7:2e:1b:fd:50:3d:19:76:5c:35:6b:1e:00:12: 99:17:09:bf:16:a5:2f:35:4a:32:17:52:a5:d5:c7: 0d:24:11:b8:1b:ac:7b:8b:a7:a5:2d:b5:84:92:7e: e5:0d:cd:03:39:e8:92:ee:62:ee:4f:d9:d2:6c:dc: 01:e2:14:00:4c:e8:05:cc:b7:5c:3d:7b:ed:68:4d: 4e:49:8d:81:d0:b6:b5:9d:51:94:f4:38:21:1a:88: 65:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:81:CB:AF:4D:03:1E:EC:90:ED:48:37:57:6D:DA:88:EA:5F:83:B3 X509v3 Authority Key Identifier: keyid:5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:3e:ab:78:d8:ee:9e:bb:0f:95:5f:0d:95:45:02:dd:ef:92: ee:6c:ef:04:8c:e3:7e:f8:07:79:12:f8:bc:60:92:a1:cb:0e: 4a:0b:c7:b1:48:f3:d5:97:31:3f:57:4a:7c:ac:df:e2:5b:02: 11:a7:b9:a5:98:6f:72:96:b1:5b:8f:2a:b1:fa:84:97:49:85: 3e:d1:be:20:fb:d8:5c:f9:e1:81:aa:4b:59:9d:6e:96:0b:cc: b2:40:ea:8d:95:62:57:21:50:c3:18:9f:24:d3:9c:17:a2:c8: 28:d3:1c:44:cb:66:65:45:0b:94:9e:0d:05:75:e7:09:2b:6c: 55:a0:f5:16:08:dd:68:9e:9f:38:5c:35:84:b7:dd:8f:b8:2d: 79:01:b9:a9:c4:95:03:ab:1e:af:01:36:56:93:df:0a:26:cc: 1b:57:3d:ec:0e:fa:95:e5:24:b2:60:18:af:57:2c:f7:01:6e: 10:da:e4:71:be:3d:0b:a3:38:fb:ed:b2:a5:9a:2f:55:f3:97: 29:09:05:4c:19:08:5a:dc:1f:ea:d5:d3:33:89:91:94:c3:6f: ce:59:c9:f9:d2:52:6a:9c:99:b2:a4:9e:15:96:5e:f4:f0:78: ea:cc:bc:2e:b8:db:92:30:74:ca:a9:aa:65:f7:50:d2:31:5c: 34:bd:95:a7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYyNTUxMTAvBgNVBAUTKDVGNkM4RkEzQTY1ODc0MDIzMUIyQzRCMTM0ODFCRTEx NTAwQURDNzYwHhcNMjYwNDIxMDEzMDI0WhcNMjYwNDI4MDEzMDI0WjAYMRYwFAYD VQQDEw02OWU2ZDMzMS1mOTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFTwUHmNO9n9Z3B5aWrAG0N6KiuT1gwb42B6UJq60drdeEq8DfiMaVj2vH7n h5Ud8YPAE4ZkRRzUko2vLL2Yk/nJ9jDt0qNb/hMwB5iwAVeU/Zw+RJnkzkobJcPU WICCooUTPvjL3WXt/25tWsooFQRjtJkYtZy0/wzGw94C8TiAdt+a3c9NcpwxQJK6 JrP64KBVOq6rHUmWb5daJ8Teg/szHyPipy4b/VA9GXZcNWseABKZFwm/FqUvNUoy F1Kl1ccNJBG4G6x7i6elLbWEkn7lDc0DOeiS7mLuT9nSbNwB4hQATOgFzLdcPXvt aE1OSY2B0La1nVGU9DghGohl9QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDSBy69N Ax7skO1IN1dt2ojqX4OzMB8GA1UdIwQYMBaAFF9sj6OmWHQCMbLEsTSBvhFQCtx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjI1NS85MTYyMDg0QzUw NzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRBSXhzc1N4TklHLUVWQUsz SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gyeVBvNlpZZEFJeHNzU3hOSUctRVZBSzNIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjI1NS85MTYyMDg0QzUwNzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRB SXhzc1N4TklHLUVWQUszSFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmz6reNjunrsPlV8NlUUC3e+S7mzvBIzjfvgHeRL4vGCSocsOSgvHsUjz1Zcx P1dKfKzf4lsCEae5pZhvcpaxW48qsfqEl0mFPtG+IPvYXPnhgapLWZ1ulgvMskDq jZViVyFQwxifJNOcF6LIKNMcRMtmZUULlJ4NBXXnCStsVaD1FgjdaJ6fOFw1hLfd j7gteQG5qcSVA6serwE2VpPfCibMG1c97A76leUksmAYr1cs9wFuENrkcb49C6M4 ++2ypZovVfOXKQkFTBkIWtwf6tXTM4mRlMNvzlnJ+dJSapyZsqSeFZZe9PB46sy8 LrjbkjB0yqmqZfdQ0jFcNL2Vpw== -----END CERTIFICATE-----Generated at Tue Apr 21 13:46:53 2026 by rpki-client