$ rpki-client -vvf rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft File: XAq0JfK0I14cgVaDvWyOi3uAtyc.mft (raw, json) Hash identifier: lwMG3jWm25C7+kEnLa1WJqeCw8IUseTIaXVcRhbzdZo= Subject key identifier: 68:9C:B1:DA:8F:16:6F:7C:13:04:A9:CC:17:95:F5:A7:4F:80:04:C8 Authority key identifier: 5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 Certificate issuer: /CN=A917F8A9/serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Certificate serial: 0A42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft Manifest number: 0A27 Signing time: Wed 20 May 2026 19:48:35 +0000 Manifest this update: Wed 20 May 2026 19:48:35 +0000 Manifest next update: Wed 27 May 2026 19:48:35 +0000 Files and hashes: 1: XAq0JfK0I14cgVaDvWyOi3uAtyc.crl (hash: gsUyI2d1WgvnWx7ZZbVo1rJWW2jf0yf7dnRS+T1HWYg=) 2: 0774A2C894F211EAB30E7682C4F9AE02.roa (hash: phoNlFrzl7WYjyRvdppnlSL/FBRV8iS5x5iyLwB+dTc=) 3: 83DC30E0D0DB11EA9336962FC4F9AE02.roa (hash: V4TtDHDwWfSTPDtmdJxLiYpQrBPMzCI9Mup9QQhSTOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 19:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2626 (0xa42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F8A9, serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Validity Not Before: May 20 19:48:35 2026 GMT Not After : May 27 19:48:35 2026 GMT Subject: CN=6a0e1013-9eba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:af:59:48:91:aa:18:64:e9:d1:22:a8:a8:f6: 77:90:19:d6:34:54:40:a9:20:d5:26:64:33:21:06: 0b:ac:3b:84:08:52:33:6f:85:90:15:23:be:82:75: 3c:b5:f2:39:31:b3:a7:64:79:e0:5f:63:75:00:56: 05:54:b9:ce:c7:8b:09:17:89:20:02:c6:19:78:7c: 82:eb:b5:0d:11:98:20:d2:8d:43:66:57:cb:c5:2c: 94:f3:78:fe:76:91:08:f6:39:22:21:20:de:ad:29: d2:ed:e8:91:d5:f2:a8:df:07:c1:92:eb:a1:da:f6: e9:04:ff:d6:83:2f:92:35:ca:8b:2b:9c:77:80:c6: 6b:10:28:24:b3:a7:da:cf:96:14:ef:12:27:2e:09: 80:93:02:23:19:dc:3d:32:ed:e8:0f:61:9d:19:d8: 65:0c:99:67:43:40:e3:95:e9:46:96:75:1a:ad:4c: ef:9f:14:c9:1a:73:94:0c:fc:74:b6:4c:f3:bd:81: 0b:f3:c3:1b:ac:be:d0:ec:ee:f1:eb:96:33:46:42: 6d:5d:1c:f2:c0:29:8b:d7:6e:c8:b7:74:ed:26:77: 0f:10:a6:6a:ea:77:9c:31:9b:0a:98:2d:7e:f0:0f: f8:b9:87:a6:57:85:75:54:b8:9d:27:da:c0:6a:8b: 4d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:9C:B1:DA:8F:16:6F:7C:13:04:A9:CC:17:95:F5:A7:4F:80:04:C8 X509v3 Authority Key Identifier: keyid:5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:2e:70:2e:a9:50:2b:6b:5f:30:1a:94:9c:5b:4e:a2:da:99: 15:60:71:5d:9a:69:dd:7d:ac:97:48:dc:a6:fd:15:98:e4:b3: 10:df:a9:8b:a3:89:5f:df:08:c4:d3:7c:e8:14:e7:4c:0f:f0: b0:07:d2:bf:76:89:64:91:96:a7:08:33:4f:80:b4:85:df:a8: fc:df:9c:63:34:79:c8:61:04:78:2d:e2:d1:51:9d:a1:8a:73: ca:f3:e4:de:97:d9:07:a9:7f:bf:e6:8b:23:16:21:70:28:9d: e6:a5:50:1c:ff:cc:03:ce:0b:4b:ab:64:6c:a7:8a:de:b6:3d: ce:57:67:28:5e:5b:b5:fe:27:df:ed:74:ce:2a:d7:da:da:4f: 6c:c9:d0:21:58:e5:40:4d:c9:fb:5a:0b:f2:67:55:3b:f5:c5: 40:52:45:6e:56:2f:a4:c6:6e:55:44:81:c7:17:b6:21:4a:0c: e4:bb:29:7e:35:17:24:4f:be:54:64:d0:88:e8:fc:f1:f1:81: ed:ce:8c:fc:c2:e0:3e:fe:4e:d2:89:db:ed:0b:3c:91:99:44: d5:e7:18:14:2a:8e:76:a7:fa:8f:55:86:cb:14:13:0f:ad:ed: 22:41:29:0d:36:f4:c7:a8:e7:9f:eb:d3:30:1c:ef:49:79:db: 34:11:f2:0d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4QTkxMTAvBgNVBAUTKDVDMEFCNDI1RjJCNDIzNUUxQzgxNTY4M0JENkM4RThC N0I4MEI3MjcwHhcNMjYwNTIwMTk0ODM1WhcNMjYwNTI3MTk0ODM1WjAYMRYwFAYD VQQDEw02YTBlMTAxMy05ZWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwq9ZSJGqGGTp0SKoqPZ3kBnWNFRAqSDVJmQzIQYLrDuECFIzb4WQFSO+gnU8 tfI5MbOnZHngX2N1AFYFVLnOx4sJF4kgAsYZeHyC67UNEZgg0o1DZlfLxSyU83j+ dpEI9jkiISDerSnS7eiR1fKo3wfBkuuh2vbpBP/Wgy+SNcqLK5x3gMZrECgks6fa z5YU7xInLgmAkwIjGdw9Mu3oD2GdGdhlDJlnQ0DjlelGlnUarUzvnxTJGnOUDPx0 tkzzvYEL88MbrL7Q7O7x65YzRkJtXRzywCmL127It3TtJncPEKZq6necMZsKmC1+ 8A/4uYemV4V1VLidJ9rAaotNhQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGicsdqP Fm98EwSpzBeV9adPgATIMB8GA1UdIwQYMBaAFFwKtCXytCNeHIFWg71sjot7gLcn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjhBOS8yQUEwNDMzMDk0 RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkxNGNnVmFEdld5T2kzdUF0 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBcTBKZkswSTE0Y2dWYUR2V3lPaTN1QXR5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjhBOS8yQUEwNDMzMDk0RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkx NGNnVmFEdld5T2kzdUF0eWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACy5wLqlQK2tfMBqUnFtOotqZFWBxXZpp3X2sl0jcpv0VmOSzEN+pi6OJX98I xNN86BTnTA/wsAfSv3aJZJGWpwgzT4C0hd+o/N+cYzR5yGEEeC3i0VGdoYpzyvPk 3pfZB6l/v+aLIxYhcCid5qVQHP/MA84LS6tkbKeK3rY9zldnKF5btf4n3+10zirX 2tpPbMnQIVjlQE3J+1oL8mdVO/XFQFJFblYvpMZuVUSBxxe2IUoM5LspfjUXJE++ VGTQiOj88fGB7c6M/MLgPv5O0onb7Qs8kZlE1ecYFCqOdqf6j1WGyxQTD63tIkEp DTb0x6jnn+vTMBzvSXnbNBHyDQ== -----END CERTIFICATE-----Generated at Thu May 21 09:39:08 2026 by rpki-client