$ rpki-client -vvf rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft File: XctT6r5qkI7KhlLekkgHxQnFLTA.mft (raw, json) Hash identifier: AuoslFDQfW3s/xAmVoMURgWCQALDkG3SGJS9jNFMDF8= Subject key identifier: 9F:E0:63:2A:DF:DE:07:8A:11:E9:83:59:9F:01:CF:39:09:92:0B:C7 Authority key identifier: 5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 Certificate issuer: /CN=A918560D/serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Certificate serial: 0D91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft Manifest number: 0D85 Signing time: Sat 04 Apr 2026 17:49:22 +0000 Manifest this update: Sat 04 Apr 2026 17:49:21 +0000 Manifest next update: Sat 11 Apr 2026 17:49:21 +0000 Files and hashes: 1: XctT6r5qkI7KhlLekkgHxQnFLTA.crl (hash: CBwAdl79m4kBmXkfj1YU+zEWeRT/gQaA9VCeebvhmwg=) 2: 41A8E738045111EA9C7DF516C4F9AE02.roa (hash: g7Y2fTPIrRGmI+yyaq93Q8oA6ahVmpPa/2gUU/U5QQ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:49:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3473 (0xd91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918560D, serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Validity Not Before: Apr 4 17:49:21 2026 GMT Not After : Apr 11 17:49:21 2026 GMT Subject: CN=69d14f22-db7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:9c:aa:6d:18:ef:80:6d:f8:3f:09:a7:e7:06: 8d:cd:50:6a:f7:40:c7:66:63:aa:1e:6e:22:19:cd: 82:16:b5:0c:c2:1c:85:c6:a6:38:bb:45:21:52:fb: 7c:62:07:7e:28:44:18:c6:bd:f0:ed:9f:79:1d:a8: 0c:85:16:fe:b0:a0:f5:20:cd:47:d8:6c:07:59:66: e2:f2:d2:25:f7:33:a4:0f:4c:76:76:27:30:a5:65: 7c:2c:1a:6f:3e:a2:1e:6a:1e:cb:17:29:b9:46:ad: b6:b7:ad:20:6d:67:b1:53:e5:4a:44:ef:bc:21:ef: 70:aa:d9:84:aa:ca:d1:4d:2d:be:4b:8e:82:21:69: 67:e6:43:ee:8b:8b:98:16:f1:89:57:58:39:2d:cf: 2d:1a:fc:d6:75:8d:dd:1a:db:86:1a:68:aa:a2:45: de:81:d9:58:97:ea:2b:3f:88:b7:b6:c9:50:80:fb: b3:0d:d0:e8:f3:8f:6c:bd:c5:18:a6:4e:ea:f0:d5: 4d:ed:55:b1:75:3d:7a:00:6f:67:a4:3e:25:e4:cc: de:20:ad:2d:70:03:e6:9e:02:92:ba:92:d6:68:c4: 32:2b:31:23:a7:0a:2b:bf:e9:b9:16:80:4f:61:51: 11:57:25:12:80:e8:5e:e3:45:b8:c6:41:18:f7:7f: 1a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:E0:63:2A:DF:DE:07:8A:11:E9:83:59:9F:01:CF:39:09:92:0B:C7 X509v3 Authority Key Identifier: keyid:5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:15:79:10:52:82:3d:8b:f5:8f:c0:e9:97:68:55:67:8a:9e: 3c:5f:b1:ad:9d:74:03:82:fb:dd:85:ed:be:d7:e3:76:64:1d: c9:2f:09:ac:f8:a3:1b:ca:3b:3d:da:f7:c6:8f:d4:4b:57:e1: 5c:1d:cd:6b:58:09:9c:f9:1a:85:82:15:50:01:c9:7e:6f:21: e0:da:ca:c7:16:0b:b2:78:0a:62:04:dd:e9:8f:02:05:ea:92: a4:8e:f9:44:72:62:61:83:ff:dc:b8:d0:65:73:76:b2:7c:f2: cd:7f:36:72:6f:e5:39:34:e9:1d:1f:83:07:d5:ce:c5:0a:b9: 3e:e3:dc:2a:11:4c:53:73:1c:ec:e6:dd:bd:63:9c:19:b8:d4: 5a:9d:b9:bc:13:16:15:05:8a:0b:bd:80:a5:d2:56:38:fd:e9: 40:e4:53:5f:e6:42:5c:0e:3b:e5:df:d9:3d:af:71:99:51:b7: a0:a5:95:48:43:f2:4d:fe:b9:98:a4:22:ca:33:62:76:b8:17: ba:23:75:59:77:b1:34:5a:03:30:3d:4a:aa:a0:28:7f:a9:cf: f5:e1:8f:5f:fc:f4:f9:4a:0e:b4:19:6a:53:a4:00:22:3d:c8: f1:02:d4:d7:6a:ae:f9:86:a4:b6:33:3e:a3:49:df:43:1f:66: 21:a8:88:c9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2MEQxMTAvBgNVBAUTKDVEQ0I1M0VBQkU2QTkwOEVDQTg2NTJERTkyNDgwN0M1 MDlDNTJEMzAwHhcNMjYwNDA0MTc0OTIxWhcNMjYwNDExMTc0OTIxWjAYMRYwFAYD VQQDEw02OWQxNGYyMi1kYjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJyqbRjvgG34Pwmn5waNzVBq90DHZmOqHm4iGc2CFrUMwhyFxqY4u0UhUvt8 Ygd+KEQYxr3w7Z95HagMhRb+sKD1IM1H2GwHWWbi8tIl9zOkD0x2dicwpWV8LBpv PqIeah7LFym5Rq22t60gbWexU+VKRO+8Ie9wqtmEqsrRTS2+S46CIWln5kPui4uY FvGJV1g5Lc8tGvzWdY3dGtuGGmiqokXegdlYl+orP4i3tslQgPuzDdDo849svcUY pk7q8NVN7VWxdT16AG9npD4l5MzeIK0tcAPmngKSupLWaMQyKzEjpworv+m5FoBP YVERVyUSgOhe40W4xkEY938aSQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ/gYyrf 3geKEemDWZ8BzzkJkgvHMB8GA1UdIwQYMBaAFF3LU+q+apCOyoZS3pJIB8UJxS0w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTYwRC9GNURDQTZENEU1 QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJN0tobExla2tnSHhRbkZM VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjdFQ2cjVxa0k3S2hsTGVra2dIeFFuRkxUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTYwRC9GNURDQTZENEU1QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJ N0tobExla2tnSHhRbkZMVEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATxV5EFKCPYv1j8Dpl2hVZ4qePF+xrZ10A4L73YXtvtfjdmQdyS8JrPijG8o7 Pdr3xo/US1fhXB3Na1gJnPkahYIVUAHJfm8h4NrKxxYLsngKYgTd6Y8CBeqSpI75 RHJiYYP/3LjQZXN2snzyzX82cm/lOTTpHR+DB9XOxQq5PuPcKhFMU3Mc7ObdvWOc GbjUWp25vBMWFQWKC72ApdJWOP3pQORTX+ZCXA475d/ZPa9xmVG3oKWVSEPyTf65 mKQiyjNidrgXuiN1WXexNFoDMD1KqqAof6nP9eGPX/z0+UoOtBlqU6QAIj3I8QLU 12qu+YaktjM+o0nfQx9mIaiIyQ== -----END CERTIFICATE-----Generated at Mon Apr 6 14:00:00 2026 by rpki-client