$ rpki-client -vvf rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft File: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft (raw, json) Hash identifier: B2mNM8UeRswUcAsUXi1Y1IzHpJeGlTtswDRMi/em1Ek= Subject key identifier: 20:21:75:A5:59:F7:4A:56:8E:28:59:7B:A3:7F:C4:72:B9:FB:C6:F4 Authority key identifier: 5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 Certificate issuer: /CN=A918B0B9/serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Certificate serial: 0A48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft Manifest number: 0A2E Signing time: Sat 04 Apr 2026 19:35:24 +0000 Manifest this update: Sat 04 Apr 2026 19:35:24 +0000 Manifest next update: Sat 11 Apr 2026 19:35:24 +0000 Files and hashes: 1: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl (hash: 9OCxLxm+oqVD8JNUtGnZDCnTnW5L/3GHo3aR9mW971c=) 2: BED54F1A9B1611EA939F5A3FC4F9AE02.roa (hash: onxrfn2R6ig2K9q93zM3JJGyF8TFo8y2BhAaG52JL84=) 3: 52F955A89B1511EA9BEFA53BC4F9AE02.roa (hash: mNeRqaSY4bVJ7ErHkgjVt3OEqspS9nVqduSxSH22Fmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:35:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2632 (0xa48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B0B9, serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Validity Not Before: Apr 4 19:35:24 2026 GMT Not After : Apr 11 19:35:24 2026 GMT Subject: CN=69d167fc-a21b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:91:ed:49:49:4c:5b:3f:4c:43:af:25:e1:35: ac:b9:90:dd:7f:ec:9d:92:67:0f:d6:5d:2d:58:8a: 3f:9c:e0:0e:11:42:e7:95:a1:02:da:31:e3:dc:cf: 8c:44:1f:3b:2d:7d:46:a3:81:b0:d3:7a:09:f2:f8: be:82:4a:d9:07:1d:2e:64:82:0a:52:93:28:73:82: 4a:c2:eb:49:6b:26:55:da:38:32:ff:ad:5c:83:85: 0c:87:a6:c6:02:13:c1:7f:8f:3a:3a:93:50:60:52: e8:eb:d9:a9:d4:31:b0:ca:42:ad:65:d5:ec:e9:f0: c2:f8:8e:fb:15:1a:8a:d4:ad:44:75:74:4a:e0:98: 1a:91:0e:93:d3:bc:82:f5:31:0f:43:ee:c6:a2:34: cb:f4:73:cd:98:d6:cc:2d:b6:f4:38:5f:7e:93:f1: 0c:43:d5:d2:4e:4c:5f:9c:be:e3:9d:5f:98:9f:e3: 61:06:f5:4d:01:70:18:21:5b:eb:58:4c:7b:4b:ff: e6:e1:a3:bf:ee:f2:3e:1e:44:16:fd:f1:d4:60:da: 1c:5c:87:92:94:21:6b:f8:ec:8a:66:34:29:16:10: 9f:b4:a9:46:12:52:10:1e:f8:9d:c9:4d:69:be:48: 69:c2:9e:51:a0:e5:bd:12:17:33:7d:df:91:bd:7f: b2:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:21:75:A5:59:F7:4A:56:8E:28:59:7B:A3:7F:C4:72:B9:FB:C6:F4 X509v3 Authority Key Identifier: keyid:5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:42:77:4f:a6:2b:04:32:36:09:5d:29:6a:ce:4b:4e:48:28: e4:63:7a:8a:46:93:93:84:b4:14:13:d1:fd:1a:13:50:d9:36: ab:12:aa:e1:2a:af:95:f0:70:f7:5c:f6:5b:36:00:0d:fd:fb: 6b:7f:11:b1:58:44:c0:c6:fc:16:a2:84:4e:32:27:97:21:72: c3:ae:f2:6b:30:c0:f1:09:f2:6f:15:75:f4:3d:78:d9:28:10: 9f:6f:fc:93:a9:0a:9c:6c:d4:63:c6:e1:f2:f9:6a:bc:68:37: 5a:45:e4:ae:90:20:a6:25:6c:8f:13:18:91:eb:1d:da:f0:60: 31:64:28:e8:47:6f:84:f8:b6:3e:5a:60:71:3e:2a:eb:06:bf: 07:f2:c2:2f:5a:93:8c:4a:28:1e:4f:8b:8a:a6:49:67:a3:48: 51:a8:0d:13:92:04:79:e3:88:eb:51:b3:71:d8:61:cd:a9:06: 9e:a0:76:67:39:0c:72:1c:5d:f6:18:8b:7d:89:9a:c2:a6:ae: 6d:91:97:bb:c4:9f:ea:41:2d:55:54:36:0f:5c:cf:e1:8a:2c: 92:45:0b:40:bf:55:80:13:b1:ef:50:54:f9:24:dd:33:49:9b: 3d:74:17:9b:50:39:b0:34:b0:7c:c0:dc:09:13:e9:3b:3f:c7: d5:13:6b:57 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIwQjkxMTAvBgNVBAUTKDVDNUE0RkFFNEFGMDFGRkRDOTI3NTM1NUNDQkFCOEM4 MTAxODlGNTQwHhcNMjYwNDA0MTkzNTI0WhcNMjYwNDExMTkzNTI0WjAYMRYwFAYD VQQDEw02OWQxNjdmYy1hMjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZHtSUlMWz9MQ68l4TWsuZDdf+ydkmcP1l0tWIo/nOAOEULnlaEC2jHj3M+M RB87LX1Go4Gw03oJ8vi+gkrZBx0uZIIKUpMoc4JKwutJayZV2jgy/61cg4UMh6bG AhPBf486OpNQYFLo69mp1DGwykKtZdXs6fDC+I77FRqK1K1EdXRK4JgakQ6T07yC 9TEPQ+7GojTL9HPNmNbMLbb0OF9+k/EMQ9XSTkxfnL7jnV+Yn+NhBvVNAXAYIVvr WEx7S//m4aO/7vI+HkQW/fHUYNocXIeSlCFr+OyKZjQpFhCftKlGElIQHvidyU1p vkhpwp5RoOW9Ehczfd+RvX+ynwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCAhdaVZ 90pWjihZe6N/xHK5+8b0MB8GA1UdIwQYMBaAFFxaT65K8B/9ySdTVcy6uMgQGJ9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjBCOS85Q0JGM0Q5MDhG QTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hfM0pKMU5WekxxNHlCQVlu MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hGcFBya3J3SF8zSkoxTlZ6THE0eUJBWW4xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjBCOS85Q0JGM0Q5MDhGQTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hf M0pKMU5WekxxNHlCQVluMVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXkJ3T6YrBDI2CV0pas5LTkgo5GN6ikaTk4S0FBPR/RoTUNk2qxKq4SqvlfBw 91z2WzYADf37a38RsVhEwMb8FqKETjInlyFyw67yazDA8QnybxV19D142SgQn2/8 k6kKnGzUY8bh8vlqvGg3WkXkrpAgpiVsjxMYkesd2vBgMWQo6EdvhPi2PlpgcT4q 6wa/B/LCL1qTjEooHk+LiqZJZ6NIUagNE5IEeeOI61GzcdhhzakGnqB2ZzkMchxd 9hiLfYmawqaubZGXu8Sf6kEtVVQ2D1zP4YoskkULQL9VgBOx71BU+STdM0mbPXQX m1A5sDSwfMDcCRPpOz/H1RNrVw== -----END CERTIFICATE-----Generated at Mon Apr 6 13:58:28 2026 by rpki-client