$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft File: Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft (raw, json) Hash identifier: ujwLN6F2K7rlHQ3mlNGfZ64Zt50PMEspf96khfu0bE8= Subject key identifier: 47:20:FF:91:E3:7E:D8:B2:A7:09:6B:BB:7B:C8:6C:95:6E:E8:90:79 Authority key identifier: 5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC Certificate issuer: /CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Certificate serial: 0465 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft Manifest number: 0432 Signing time: Sun 05 Apr 2026 00:11:29 +0000 Manifest this update: Sun 05 Apr 2026 00:11:28 +0000 Manifest next update: Sun 12 Apr 2026 00:11:28 +0000 Files and hashes: 1: Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl (hash: 8VR4wJQUnPNcjcsgF7MZ/H9bbhJuPeN1e605Q+27j+k=) 2: 7AA94F3CE03811EFAC3C5652C4F9AE02.roa (hash: Xwopv44IWtrA47h99nFS1HcICRmL98rRNkBLnVkufOs=) 3: 79C2D638E03811EFAC3C5652C4F9AE02.roa (hash: htWOUsGCluqo+bDLkY52m9kGHamjAwjskMqRyVdOAVI=) 4: 7B6F6276E03811EFAC3C5652C4F9AE02.roa (hash: W4goqtPYzyLcCdBI7xc2Qn8MqCV+FsXgvw4MFdwTxhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:11:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1125 (0x465) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E8E, serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Validity Not Before: Apr 5 00:11:28 2026 GMT Not After : Apr 12 00:11:28 2026 GMT Subject: CN=69d1a8b0-9424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ba:f0:f2:a2:0d:1f:77:97:13:3e:81:92:44: 5e:61:39:fa:3b:43:9c:6c:9e:4d:bf:a2:89:b5:b8: 28:f3:2e:4c:ba:3d:a2:99:20:8d:9d:8e:da:cc:44: 04:ef:22:c2:64:92:91:4f:45:c2:75:07:90:17:4c: 15:23:6c:ca:ab:03:b8:6d:61:28:85:82:2c:88:67: 85:8b:b3:82:f0:2a:a8:06:93:be:fa:10:e3:41:f3: cc:63:44:75:ed:6e:ee:6d:8f:b6:67:a1:65:f0:72: 2d:28:f3:f3:0a:34:c9:78:ee:0c:00:c2:35:20:61: a1:32:67:cc:ed:77:ab:3f:1e:0c:70:72:4c:7e:33: 0b:83:00:13:17:70:cb:a6:f0:1c:11:39:2c:bf:1f: 15:2c:da:9b:ba:1f:69:06:cf:8c:bb:4c:ac:90:b7: 5f:b1:bf:20:c4:ac:f8:39:3e:3d:d0:1b:90:3f:37: 67:b5:11:c9:47:32:73:73:df:29:1d:49:d6:ff:b5: 45:23:4e:6c:a0:b6:8c:36:88:fb:a4:12:6b:dd:53: 29:45:9e:6f:a9:20:b6:ee:b7:0f:3c:1d:96:b2:45: 51:24:97:3e:71:4e:10:69:ba:6e:30:bf:4e:f8:59: 1e:6a:dc:01:b2:db:c1:8e:d6:44:0e:07:00:2a:cb: 13:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:20:FF:91:E3:7E:D8:B2:A7:09:6B:BB:7B:C8:6C:95:6E:E8:90:79 X509v3 Authority Key Identifier: keyid:5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:77:93:00:b0:b8:19:d0:82:31:8d:95:a8:2e:a8:e3:ae:57: 9d:aa:00:9d:f9:82:d3:71:21:10:36:54:52:80:c9:93:4f:7a: ae:8b:29:a6:04:a0:f4:02:d0:f9:00:cf:9d:c4:41:50:3f:16: b2:4c:19:ac:df:e5:54:2b:66:fb:c6:09:5d:9f:fa:58:34:d1: a8:15:40:78:84:e0:69:05:ac:e9:9b:d1:d9:ab:aa:66:e3:ff: ec:ad:b5:6e:5e:80:fd:37:ac:ff:de:15:86:ab:20:7f:73:1b: 0a:77:34:8c:7d:f0:e5:93:3e:7d:9d:53:d7:96:41:4c:37:c2: 8b:1b:ed:6a:6a:50:ce:a1:ce:9d:91:89:59:b9:ea:d0:19:ad: 35:08:2c:2a:e8:03:15:83:aa:88:e2:b0:be:ac:3d:5e:8c:6b: e8:4e:50:99:ba:71:2e:ce:d3:19:37:10:fd:2e:ba:e3:f1:97: 5a:96:8f:e9:64:fa:45:ca:c8:a7:f5:9a:4a:d9:c5:a6:5a:96: c1:2f:ec:f2:9a:a0:1c:55:12:61:b3:46:f7:9d:9c:5a:69:8e: c9:53:d4:6a:b0:a6:59:ba:cf:c2:dd:86:36:4a:c3:4f:de:69: d5:30:92:01:94:c7:c4:26:3c:2f:0e:93:76:12:93:e7:28:01: 10:89:94:7c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFOEUxMTAvBgNVBAUTKDVGMkU1RTYyOTMyQkI1MEE4NUZGMkY5QTVGMzFCMkJB REQ1RjM0QUMwHhcNMjYwNDA1MDAxMTI4WhcNMjYwNDEyMDAxMTI4WjAYMRYwFAYD VQQDEw02OWQxYThiMC05NDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubrw8qINH3eXEz6BkkReYTn6O0OcbJ5Nv6KJtbgo8y5Muj2imSCNnY7azEQE 7yLCZJKRT0XCdQeQF0wVI2zKqwO4bWEohYIsiGeFi7OC8CqoBpO++hDjQfPMY0R1 7W7ubY+2Z6Fl8HItKPPzCjTJeO4MAMI1IGGhMmfM7XerPx4McHJMfjMLgwATF3DL pvAcETksvx8VLNqbuh9pBs+Mu0yskLdfsb8gxKz4OT490BuQPzdntRHJRzJzc98p HUnW/7VFI05soLaMNoj7pBJr3VMpRZ5vqSC27rcPPB2WskVRJJc+cU4QabpuML9O +FkeatwBstvBjtZEDgcAKssTgQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEcg/5Hj ftiypwlru3vIbJVu6JB5MB8GA1UdIwQYMBaAFF8uXmKTK7UKhf8vml8xsrrdXzSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEU4RS8wNEZCQjhGMEFF MEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRRcUZfeS1hWHpHeXV0MWZO S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5NWVZcE1ydFFxRl95LWFYekd5dXQxZk5Ldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEU4RS8wNEZCQjhGMEFFMEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRR cUZfeS1hWHpHeXV0MWZOS3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAfneTALC4GdCCMY2VqC6o465XnaoAnfmC03EhEDZUUoDJk096rosppgSg9ALQ +QDPncRBUD8WskwZrN/lVCtm+8YJXZ/6WDTRqBVAeITgaQWs6ZvR2auqZuP/7K21 bl6A/Tes/94Vhqsgf3MbCnc0jH3w5ZM+fZ1T15ZBTDfCixvtampQzqHOnZGJWbnq 0BmtNQgsKugDFYOqiOKwvqw9Xoxr6E5QmbpxLs7TGTcQ/S664/GXWpaP6WT6RcrI p/WaStnFplqWwS/s8pqgHFUSYbNG952cWmmOyVPUarCmWbrPwt2GNkrDT95p1TCS AZTHxCY8Lw6TdhKT5ygBEImUfA== -----END CERTIFICATE-----Generated at Mon Apr 6 15:23:03 2026 by rpki-client