$ rpki-client -vvf rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft File: xCIPUDVWR7fICyzovHEmqsLiLTc.mft (raw, json) Hash identifier: 9pL7hZgP2lV/4Fxxl0GapfeQoraBtGOOa9xAb8KYr3A= Subject key identifier: D3:5E:4A:B5:F1:91:5D:23:FA:E9:BC:16:D7:4C:6B:55:6D:03:9F:91 Authority key identifier: C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 Certificate issuer: /CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Certificate serial: 3578 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft Manifest number: 3550 Signing time: Sun 26 Apr 2026 14:18:30 +0000 Manifest this update: Sun 26 Apr 2026 14:18:29 +0000 Manifest next update: Sun 03 May 2026 14:18:29 +0000 Files and hashes: 1: xCIPUDVWR7fICyzovHEmqsLiLTc.crl (hash: rHPDsbXdFWE9xNGaqr0YrZIvXqHqYu35U+akYiedhXY=) 2: D7ABA864DFE611ED8872DE0EC4F9AE02.roa (hash: uTwgdWpEtjV1ALHAM8OqP3F4AfwGv1rbWW6ZiHZWVyg=) 3: 24D6C7C4F1FD11F0B766F66D486F56BC.roa (hash: x81djxirc4TZ7LBWsfaYDwm6dEqBh0TJcdGGB4pBfl8=) 4: 8C2774CA0F3511EF93020023C4F9AE02.roa (hash: kemAcHttVJ/67VTbPvla1uxc5lCQKg8ypYYWxu51V6g=) 5: 24C4305A7CD911EEB0B4C962C4F9AE02.roa (hash: x1jt7itPjnC6MQbNejsBQgbeqBxLH2bZYuNPNtNXfYM=) 6: 074A1CE2F1FD11F0BDA01C59486F56BC.roa (hash: PbRvsMPaciwk4aKrh1Gz2k+CLsuW70foiScaNfZvE3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 14:18:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13688 (0x3578) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D64D, serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Validity Not Before: Apr 26 14:18:29 2026 GMT Not After : May 3 14:18:29 2026 GMT Subject: CN=69ee1eb5-fa4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c1:54:b0:20:3d:7b:c3:f3:4b:29:20:e0:62: 32:a5:8c:0b:a7:00:30:4f:6a:d6:05:8d:ac:6b:5b: e6:83:3f:85:43:31:d1:a2:dd:36:ce:e5:89:21:01: 32:52:0c:69:d6:84:75:54:98:84:ab:7c:1f:b0:c3: ef:fc:f0:1f:35:24:6b:2f:fa:56:fa:f0:4d:b7:83: 60:fe:e6:6c:e8:28:31:54:9c:64:15:52:62:03:4f: 18:60:cc:88:35:99:aa:48:4e:5c:be:37:35:4a:82: 5f:e2:63:43:95:7d:a6:fb:d6:45:cc:3f:45:dd:44: d9:33:a8:6a:84:86:8b:d3:d9:88:9e:b1:f2:c8:92: a4:72:97:5f:2c:5e:11:30:33:22:14:90:cb:03:88: 2d:31:e7:d0:3c:83:fd:9f:26:1c:61:44:ba:1a:c0: df:06:18:e4:2e:91:28:ab:85:4a:c4:15:bc:e3:34: 0c:8d:70:d5:0c:0d:4f:d7:01:7f:f7:15:03:e1:a3: 02:3c:5c:ca:93:ba:46:d9:9e:ab:dc:98:e1:91:8e: 6f:a2:dd:3c:0c:ad:05:a4:f1:62:fa:05:fa:0b:74: d8:c6:09:51:db:b7:c5:67:e8:a7:a3:c7:9c:60:66: 77:50:a9:56:11:38:6c:20:0d:6e:a1:71:67:c1:da: 22:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:5E:4A:B5:F1:91:5D:23:FA:E9:BC:16:D7:4C:6B:55:6D:03:9F:91 X509v3 Authority Key Identifier: keyid:C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:23:e7:d5:90:55:79:bd:b2:12:80:19:da:59:4d:ff:61:62: ec:d5:92:90:7d:a0:81:a8:8c:bc:7c:85:e8:f7:2c:42:7f:3d: 2f:ec:d1:d9:88:5c:a5:1c:54:4f:69:20:e2:0b:4d:34:22:73: da:f8:4b:5a:b6:dc:09:59:94:a8:8b:70:a0:be:48:7f:fc:6d: d9:91:f8:75:13:0f:6e:c0:9b:18:ca:c6:f2:22:3b:46:22:30: ec:8f:7a:c5:e6:b0:e6:ce:6c:0b:dd:58:23:66:46:38:b4:db: 2c:80:d2:89:2b:c1:88:1b:33:56:a1:ca:ff:aa:01:bc:57:08: 92:da:65:5b:f8:18:e4:55:3c:59:3b:4d:8c:b2:4a:33:19:31: 3e:08:80:64:da:e1:3f:73:c0:cc:29:09:26:6e:e6:f5:0b:7e: f2:78:11:9b:85:02:76:d9:51:36:08:8d:2a:ed:1b:96:1b:61: 19:56:cd:0f:31:e4:19:4a:34:53:da:99:de:08:a0:80:57:cb: c2:6e:ea:5b:e8:6c:2f:3e:60:ea:4e:2f:c9:ad:aa:5b:74:68: c7:27:1e:92:33:bd:14:9f:88:df:cf:bb:e1:58:6c:c3:ef:5a: 35:57:cc:7c:31:26:6a:09:2f:f1:75:89:23:bb:af:59:4a:20: 6c:7a:8e:6a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2NEQxMTAvBgNVBAUTKEM0MjIwRjUwMzU1NjQ3QjdDODBCMkNFOEJDNzEyNkFB QzJFMjJEMzcwHhcNMjYwNDI2MTQxODI5WhcNMjYwNTAzMTQxODI5WjAYMRYwFAYD VQQDEw02OWVlMWViNS1mYTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAucFUsCA9e8PzSykg4GIypYwLpwAwT2rWBY2sa1vmgz+FQzHRot02zuWJIQEy Ugxp1oR1VJiEq3wfsMPv/PAfNSRrL/pW+vBNt4Ng/uZs6CgxVJxkFVJiA08YYMyI NZmqSE5cvjc1SoJf4mNDlX2m+9ZFzD9F3UTZM6hqhIaL09mInrHyyJKkcpdfLF4R MDMiFJDLA4gtMefQPIP9nyYcYUS6GsDfBhjkLpEoq4VKxBW84zQMjXDVDA1P1wF/ 9xUD4aMCPFzKk7pG2Z6r3JjhkY5vot08DK0FpPFi+gX6C3TYxglR27fFZ+ino8ec YGZ3UKlWEThsIA1uoXFnwdoilwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNNeSrXx kV0j+um8FtdMa1VtA5+RMB8GA1UdIwQYMBaAFMQiD1A1Vke3yAss6LxxJqrC4i03 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDY0RC9EOTMzM0ZFNDFE NkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3ZklDeXpvdkhFbXFzTGlM VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDSVBVRFZXUjdmSUN5em92SEVtcXNMaUxUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDY0RC9EOTMzM0ZFNDFENkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3 ZklDeXpvdkhFbXFzTGlMVGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdCPn1ZBVeb2yEoAZ2llN/2Fi7NWSkH2ggaiMvHyF6PcsQn89L+zR2YhcpRxU T2kg4gtNNCJz2vhLWrbcCVmUqItwoL5If/xt2ZH4dRMPbsCbGMrG8iI7RiIw7I96 xeaw5s5sC91YI2ZGOLTbLIDSiSvBiBszVqHK/6oBvFcIktplW/gY5FU8WTtNjLJK MxkxPgiAZNrhP3PAzCkJJm7m9Qt+8ngRm4UCdtlRNgiNKu0blhthGVbNDzHkGUo0 U9qZ3giggFfLwm7qW+hsLz5g6k4vya2qW3RoxycekjO9FJ+I38+74Vhsw+9aNVfM fDEmagkv8XWJI7uvWUogbHqOag== -----END CERTIFICATE-----Generated at Mon Apr 27 23:08:29 2026 by rpki-client