$ rpki-client -vvf rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft File: XrCY701WVcxmtq-Bw83kBi2ALzs.mft (raw, json) Hash identifier: m1bZrtTXU8+ZA3JOKeezFLlNqq5YzYi3/12mnivAb8g= Subject key identifier: F5:B7:FC:61:9D:C0:E1:64:67:47:F6:FE:C0:2E:A7:F3:EC:49:6D:C1 Authority key identifier: 5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B Certificate issuer: /CN=A919E3FB/serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B Certificate serial: 0586 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft Manifest number: 057E Signing time: Wed 20 May 2026 23:20:08 +0000 Manifest this update: Wed 20 May 2026 23:20:08 +0000 Manifest next update: Wed 27 May 2026 23:20:08 +0000 Files and hashes: 1: XrCY701WVcxmtq-Bw83kBi2ALzs.crl (hash: xNDO7u0GBA5wMi9AeQabBwgdsQuPeRJjWKiWAzkZUmQ=) 2: B4D8E692267111ECA0546981C4F9AE02.roa (hash: CMK57h7d3VJ8Y5Z6L2ancbIus6PT121u0oU6HX7o5tQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 23:20:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1414 (0x586) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E3FB, serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B Validity Not Before: May 20 23:20:08 2026 GMT Not After : May 27 23:20:08 2026 GMT Subject: CN=6a0e41a8-7133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:c0:70:0a:98:4f:eb:9d:71:cd:37:6e:e0:a4: 30:9b:8c:44:3e:3a:bf:4b:d2:dd:b2:9f:a4:99:40: 5d:d5:38:61:4b:c1:ba:06:6b:65:6c:48:56:5e:44: cf:d4:16:44:eb:f5:c7:f3:aa:b3:40:94:f6:e2:d5: 14:fb:f9:e8:95:fc:d2:b5:66:12:00:63:b3:8c:01: 6f:17:34:95:e0:2e:9b:f0:47:b6:e6:b1:6c:18:3c: 1b:ca:fb:bc:4a:9f:d1:ad:48:d9:c8:f4:9b:3f:4d: b1:ad:fd:dc:e1:b3:e9:32:f7:0c:dd:91:62:0b:32: a7:c8:91:d5:33:57:9a:ff:2a:ad:48:ff:f6:bc:ca: 75:29:a4:a3:76:5d:a2:7d:1c:d5:1b:b3:a0:4d:fe: 52:ff:36:6f:aa:d7:95:49:2e:1f:b1:74:60:e0:58: 27:ed:83:93:b5:48:47:90:3f:5f:ab:a3:2f:20:9c: 58:60:17:7a:7a:93:aa:6c:71:83:48:88:29:f9:e6: f5:52:c8:75:a2:34:06:3f:5b:e6:83:1f:4c:95:6b: 02:16:2f:48:9a:ab:66:3e:6b:b8:8f:c9:68:f6:a4: 51:d2:6b:ea:2c:bb:2b:e8:31:93:0d:82:a7:98:cf: 63:84:8d:f2:46:67:a7:45:7a:63:70:3d:e4:70:a1: 0a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:B7:FC:61:9D:C0:E1:64:67:47:F6:FE:C0:2E:A7:F3:EC:49:6D:C1 X509v3 Authority Key Identifier: keyid:5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:ed:7f:b1:30:6f:fc:e8:57:59:78:df:68:3c:f4:14:c2:22: e8:c5:0a:f3:51:42:bf:c4:95:42:76:24:5b:60:f5:f0:12:92: 1e:6c:c9:d1:0f:f6:19:9b:c8:14:90:26:77:0b:48:c1:6f:46: 2d:9b:a3:2a:89:69:a0:17:9e:e8:06:49:45:e9:14:8c:70:59: 1a:8f:5e:c8:41:92:6a:0c:ab:e9:95:0f:97:8e:33:20:dd:bc: 48:e3:14:51:2d:cc:25:8c:18:01:7d:b4:fe:9d:ac:dc:dd:c2: 19:2f:8a:8c:a0:9c:d1:ef:15:55:02:9e:11:f4:3d:fb:20:43: 0c:63:ff:87:17:18:d9:9b:3c:6c:04:d9:f7:78:bd:21:27:99: 16:62:8f:3e:69:ea:25:45:2e:7e:c8:4e:58:69:ad:7c:d6:70: b7:48:6c:c4:1d:c8:4c:87:9f:1d:e8:0b:bd:ce:40:f9:6d:fc: 32:0f:d0:7d:e3:57:d4:21:79:ec:79:e3:f4:2b:fd:26:a3:2a: ac:6e:00:7e:8b:5c:c4:ff:7c:7e:53:88:38:c7:b6:27:49:ac: f9:66:fd:2c:63:0e:f6:54:94:07:d7:91:97:b9:18:52:9e:73: 2b:2a:5d:49:16:3d:34:98:d3:bc:13:64:de:0b:86:cd:10:99: 92:35:4f:51 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUzRkIxMTAvBgNVBAUTKDVFQjA5OEVGNEQ1NjU1Q0M2NkI2QUY4MUMzQ0RFNDA2 MkQ4MDJGM0IwHhcNMjYwNTIwMjMyMDA4WhcNMjYwNTI3MjMyMDA4WjAYMRYwFAYD VQQDEw02YTBlNDFhOC03MTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA68BwCphP651xzTdu4KQwm4xEPjq/S9Ldsp+kmUBd1ThhS8G6BmtlbEhWXkTP 1BZE6/XH86qzQJT24tUU+/nolfzStWYSAGOzjAFvFzSV4C6b8Ee25rFsGDwbyvu8 Sp/RrUjZyPSbP02xrf3c4bPpMvcM3ZFiCzKnyJHVM1ea/yqtSP/2vMp1KaSjdl2i fRzVG7OgTf5S/zZvqteVSS4fsXRg4Fgn7YOTtUhHkD9fq6MvIJxYYBd6epOqbHGD SIgp+eb1Ush1ojQGP1vmgx9MlWsCFi9ImqtmPmu4j8lo9qRR0mvqLLsr6DGTDYKn mM9jhI3yRmenRXpjcD3kcKEKFwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPW3/GGd wOFkZ0f2/sAup/PsSW3BMB8GA1UdIwQYMBaAFF6wmO9NVlXMZravgcPN5AYtgC87 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTNGQi9GREQ0NEMyMjI2 NkUxMUVDQUMwOTdDN0JDNEY5QUUwMi9YckNZNzAxV1ZjeG10cS1Cdzgza0JpMkFM enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hyQ1k3MDFXVmN4bXRxLUJ3ODNrQmkyQUx6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTNGQi9GREQ0NEMyMjI2NkUxMUVDQUMwOTdDN0JDNEY5QUUwMi9YckNZNzAxV1Zj eG10cS1Cdzgza0JpMkFMenMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAKO1/sTBv/OhXWXjfaDz0FMIi6MUK81FCv8SVQnYkW2D18BKSHmzJ0Q/2GZvI FJAmdwtIwW9GLZujKolpoBee6AZJRekUjHBZGo9eyEGSagyr6ZUPl44zIN28SOMU US3MJYwYAX20/p2s3N3CGS+KjKCc0e8VVQKeEfQ9+yBDDGP/hxcY2Zs8bATZ93i9 ISeZFmKPPmnqJUUufshOWGmtfNZwt0hsxB3ITIefHegLvc5A+W38Mg/QfeNX1CF5 7Hnj9Cv9JqMqrG4AfotcxP98flOIOMe2J0ms+Wb9LGMO9lSUB9eRl7kYUp5zKypd SRY9NJjTvBNk3guGzRCZkjVPUQ== -----END CERTIFICATE-----Generated at Thu May 21 11:04:02 2026 by rpki-client