$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft File: XwTABfKMKFbHu_R2uRxioC8vxRw.mft (raw, json) Hash identifier: xpm3vT3DexjrSjeX+V1Io69PGS9oIy3Dy+UGZdXV4W8= Subject key identifier: A0:25:F0:77:D9:80:72:09:4E:5B:EE:35:EC:A4:6A:FC:58:B4:69:96 Authority key identifier: 5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C Certificate issuer: /CN=A915A0FB/serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C Certificate serial: 015B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft Manifest number: 0152 Signing time: Fri 17 Apr 2026 04:23:51 +0000 Manifest this update: Fri 17 Apr 2026 04:23:50 +0000 Manifest next update: Fri 24 Apr 2026 04:23:50 +0000 Files and hashes: 1: XwTABfKMKFbHu_R2uRxioC8vxRw.crl (hash: 587Vo9t6KyXG9RUeTRJPOc8cd4JVj7y69CXbFJZqjBQ=) 2: 900F4ADA440611EF85166C30C4F9AE02.roa (hash: Wxf+pnMbRXmK89KrT1cPFUY8XepsRf7BgNp3XpkASBg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:23:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 347 (0x15b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0FB, serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C Validity Not Before: Apr 17 04:23:50 2026 GMT Not After : Apr 24 04:23:50 2026 GMT Subject: CN=69e1b5d6-d1ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:57:f7:2b:eb:04:80:75:68:0f:eb:bd:a0:93: ef:1e:c5:ae:02:73:16:1e:52:3f:65:14:e2:69:a4: e8:7a:cf:1a:68:e2:51:59:39:75:77:79:a2:01:28: 81:51:66:84:20:74:f8:e1:da:cf:1a:0c:a6:db:49: 79:5c:7c:67:58:61:a1:3b:ad:3b:99:ed:22:d0:96: 0c:44:43:a9:d4:97:c4:9f:34:7f:25:09:8a:76:42: be:da:b2:ac:52:a8:32:e2:c6:0a:b5:fc:28:62:5f: 85:f0:25:1c:08:cb:c6:29:bc:75:a6:ba:98:c5:7e: d4:97:3f:19:4a:70:87:69:a0:53:8a:22:11:12:e1: 1f:90:0e:0c:a4:2d:cc:7f:28:33:94:dd:54:24:46: d2:ab:71:25:be:1d:a9:d5:14:5c:e1:6c:59:d6:9f: ff:8b:8c:62:c3:31:c4:de:33:7e:bc:f7:f6:de:ed: 02:25:67:9f:3e:94:aa:0b:da:7c:2f:cd:ea:4c:bf: f8:40:92:ff:7c:f1:8a:b7:83:c3:9f:4e:b2:0c:29: c8:34:72:21:d2:d8:4b:61:72:2c:08:c6:df:5b:fb: c4:5c:46:78:17:d8:90:a4:68:ee:b1:19:7d:e7:ec: 21:7f:c0:dd:70:de:26:e9:5a:1f:f0:27:d0:f4:86: 0d:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:25:F0:77:D9:80:72:09:4E:5B:EE:35:EC:A4:6A:FC:58:B4:69:96 X509v3 Authority Key Identifier: keyid:5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:ec:02:3e:ae:35:78:27:dd:06:29:13:21:15:c5:0a:65:c9: 43:1f:99:29:dd:38:73:41:46:c1:af:8c:9d:ba:88:b9:2e:42: b2:74:47:ea:cc:e6:4c:22:68:56:31:d2:c1:11:3c:34:d7:7c: 11:c4:45:79:2b:3a:30:89:54:90:a6:91:95:0c:8c:bf:61:0e: 1d:03:54:a3:7d:55:a4:b6:e9:2a:d9:c9:84:ec:66:5a:1f:e1: fd:a7:f9:f2:f3:e4:8e:5e:c7:13:45:25:49:90:5a:69:31:3d: dc:7e:7f:a0:dc:97:10:42:af:51:0a:f6:5a:51:91:a6:f3:e8: 7d:81:cd:d2:e0:dd:eb:c4:f6:a5:a2:b3:17:23:63:e1:71:c4: 54:7d:a2:68:f9:6d:8d:ac:4c:56:92:4d:a1:26:98:4c:5e:38: 84:72:9c:6e:6a:e0:c5:64:1f:9a:f1:a9:a9:36:bb:ca:f1:95: 6b:8a:91:75:ef:04:fd:83:df:7e:25:0a:8c:77:80:fb:4b:af: df:26:c1:6f:8e:f4:1d:fb:66:12:e3:a3:66:96:3a:de:24:5e: 9a:d0:ae:2a:dc:61:97:d8:61:a9:49:29:da:8d:5e:ca:fc:7a: 25:fb:15:6c:1c:20:53:81:8d:ce:36:6a:a4:1e:55:e1:17:5e: d3:ba:5f:da -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRkIxMTAvBgNVBAUTKDVGMDRDMDA1RjI4QzI4NTZDN0JCRjQ3NkI5MUM2MkEw MkYyRkM1MUMwHhcNMjYwNDE3MDQyMzUwWhcNMjYwNDI0MDQyMzUwWjAYMRYwFAYD VQQDEw02OWUxYjVkNi1kMWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFf3K+sEgHVoD+u9oJPvHsWuAnMWHlI/ZRTiaaToes8aaOJRWTl1d3miASiB UWaEIHT44drPGgym20l5XHxnWGGhO607me0i0JYMREOp1JfEnzR/JQmKdkK+2rKs Uqgy4sYKtfwoYl+F8CUcCMvGKbx1prqYxX7Ulz8ZSnCHaaBTiiIREuEfkA4MpC3M fygzlN1UJEbSq3Elvh2p1RRc4WxZ1p//i4xiwzHE3jN+vPf23u0CJWefPpSqC9p8 L83qTL/4QJL/fPGKt4PDn06yDCnINHIh0thLYXIsCMbfW/vEXEZ4F9iQpGjusRl9 5+whf8DdcN4m6Vof8CfQ9IYNgwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKAl8HfZ gHIJTlvuNeykavxYtGmWMB8GA1UdIwQYMBaAFF8EwAXyjChWx7v0drkcYqAvL8Uc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBGQi9FMTcxOTM2MjNE OEQxMUVGODcwNTNCMEZDNEY5QUUwMi9Yd1RBQmZLTUtGYkh1X1IydVJ4aW9DOHZ4 UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1h3VEFCZktNS0ZiSHVfUjJ1Unhpb0M4dnhSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBGQi9FMTcxOTM2MjNEOEQxMUVGODcwNTNCMEZDNEY5QUUwMi9Yd1RBQmZLTUtG Ykh1X1IydVJ4aW9DOHZ4UncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFewCPq41eCfdBikTIRXFCmXJQx+ZKd04c0FGwa+MnbqIuS5CsnRH6szmTCJo VjHSwRE8NNd8EcRFeSs6MIlUkKaRlQyMv2EOHQNUo31VpLbpKtnJhOxmWh/h/af5 8vPkjl7HE0UlSZBaaTE93H5/oNyXEEKvUQr2WlGRpvPofYHN0uDd68T2paKzFyNj 4XHEVH2iaPltjaxMVpJNoSaYTF44hHKcbmrgxWQfmvGpqTa7yvGVa4qRde8E/YPf fiUKjHeA+0uv3ybBb470HftmEuOjZpY63iRemtCuKtxhl9hhqUkp2o1eyvx6JfsV bBwgU4GNzjZqpB5V4Rde07pf2g== -----END CERTIFICATE-----Generated at Sat Apr 18 22:24:07 2026 by rpki-client