$ rpki-client -vvf rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft File: xHWJli7Q04kmIr5be4vu_ozniKc.mft (raw, json) Hash identifier: JNa4xfhYVSdCuYLTMmxj9qy2h9jkZ4/tf1D166Ydr/g= Subject key identifier: 9C:1E:57:4B:8F:D0:A7:6B:5B:87:91:AF:F1:D5:09:6C:CB:76:07:F1 Authority key identifier: C4:75:89:96:2E:D0:D3:89:26:22:BE:5B:7B:8B:EE:FE:8C:E7:88:A7 Certificate issuer: /CN=A91A13A6/serialNumber=C47589962ED0D3892622BE5B7B8BEEFE8CE788A7 Certificate serial: 01C1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xHWJli7Q04kmIr5be4vu_ozniKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft Manifest number: 01B2 Signing time: Mon 27 Apr 2026 03:59:00 +0000 Manifest this update: Mon 27 Apr 2026 03:59:00 +0000 Manifest next update: Mon 04 May 2026 03:59:00 +0000 Files and hashes: 1: xHWJli7Q04kmIr5be4vu_ozniKc.crl (hash: zoBNndF3Y9aeRnhSFpxeABjx79ZfltRBOWI24H6tnIY=) 2: 8C7D223C2DAB11EF88127264C4F9AE02.roa (hash: X6aIaG1zQqgDiSqMFiuqRqeQ5WZkrDJTEHFLzyOj2LU=) 3: 4E2CAC386E8711EF8521ED6FC4F9AE02.roa (hash: eKVOlBNn+5WuwNFphnK/oDxQ3aByduRE2UhfBxYvHBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.crl rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xHWJli7Q04kmIr5be4vu_ozniKc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:58:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A13A6, serialNumber=C47589962ED0D3892622BE5B7B8BEEFE8CE788A7 Validity Not Before: Apr 27 03:59:00 2026 GMT Not After : May 4 03:59:00 2026 GMT Subject: CN=69eedf04-78e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:97:25:60:ed:64:83:29:d9:72:ef:da:4f:c7: 0e:53:c8:c2:43:84:35:47:7c:5e:2c:31:91:a2:cc: 72:07:ab:78:70:e1:d8:99:2f:c0:af:47:d5:3d:b7: be:59:93:ee:f1:1f:cc:00:bb:96:36:4d:63:2a:66: d0:86:b0:e4:38:31:b2:65:67:27:0a:1f:b3:8e:49: 4f:e6:ee:4c:7d:9c:fe:be:e4:71:30:7f:5a:17:b4: 5d:9c:36:b1:5b:49:22:99:bc:fb:9b:33:17:23:59: 4b:4f:1c:1b:f2:83:40:3a:fe:ef:a1:ed:27:a1:ac: 22:60:f7:ef:75:27:25:d7:25:9b:4d:ac:c7:54:e3: 6d:8d:0f:1d:fd:e7:b7:41:f7:1a:67:9a:35:f5:39: 27:ea:08:aa:4f:83:b5:82:8f:c7:bc:5b:1b:d5:e3: f7:08:97:21:a3:a2:ae:aa:50:01:26:7d:aa:91:66: 3b:53:ca:51:f6:81:21:f3:c1:89:a3:4d:ce:be:f0: fa:70:5e:c0:fd:43:f8:9a:b2:fc:45:83:9a:88:60: f8:cd:20:4e:31:95:80:28:18:e0:7e:71:48:b5:63: 3c:60:19:1a:bf:ab:7f:41:92:b2:96:1c:56:df:b6: 7a:40:a9:6e:f4:9e:3c:c7:9d:51:2e:3f:0f:6d:0d: 36:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:1E:57:4B:8F:D0:A7:6B:5B:87:91:AF:F1:D5:09:6C:CB:76:07:F1 X509v3 Authority Key Identifier: keyid:C4:75:89:96:2E:D0:D3:89:26:22:BE:5B:7B:8B:EE:FE:8C:E7:88:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xHWJli7Q04kmIr5be4vu_ozniKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:bb:91:f2:14:9c:91:49:f3:2a:60:2d:ea:db:31:71:e1:40: ef:52:6c:df:3d:63:a3:78:b8:df:d5:25:16:64:c4:1f:9b:68: e0:ad:8c:57:27:44:a8:ff:55:e7:fc:55:6c:ff:6f:d2:3a:40: 37:c9:fc:f6:4d:cd:19:37:87:26:0a:bf:fe:4e:b9:b3:0f:8d: 6e:85:06:0e:39:8a:02:00:7a:1a:d8:97:0a:87:84:de:e7:02: b9:81:a2:19:6d:06:a6:2f:5f:2b:f3:1b:65:ca:44:b0:e5:0a: 51:d9:fe:71:31:16:a0:3e:96:98:5a:a7:af:f3:ed:6b:4c:13: b7:b0:bf:17:b4:ee:3d:38:a0:5b:2f:4f:4a:93:30:8f:0f:12: a1:9a:05:3f:bc:82:c5:5b:7b:fd:39:2d:4f:2f:85:58:c9:4b: 1d:6c:ca:c1:12:f5:69:7d:3d:a4:d6:a9:a3:5e:7f:5a:ff:24: cb:45:8d:9d:57:be:b6:5f:d5:39:00:75:37:0b:02:53:3f:ee: 58:8a:f9:a2:25:ea:08:75:42:6a:4f:0b:dc:c1:c0:9f:77:d9: 8f:bd:b5:16:c3:f1:f1:39:e8:82:2e:2d:fe:87:b5:40:6f:51: c4:78:5d:51:0c:13:06:a7:c1:1f:51:f1:d1:d1:60:cc:df:e9: b0:a8:e0:c6 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEzQTYxMTAvBgNVBAUTKEM0NzU4OTk2MkVEMEQzODkyNjIyQkU1QjdCOEJFRUZF OENFNzg4QTcwHhcNMjYwNDI3MDM1OTAwWhcNMjYwNTA0MDM1OTAwWjAYMRYwFAYD VQQDEw02OWVlZGYwNC03OGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJclYO1kgynZcu/aT8cOU8jCQ4Q1R3xeLDGRosxyB6t4cOHYmS/Ar0fVPbe+ WZPu8R/MALuWNk1jKmbQhrDkODGyZWcnCh+zjklP5u5MfZz+vuRxMH9aF7RdnDax W0kimbz7mzMXI1lLTxwb8oNAOv7voe0noawiYPfvdScl1yWbTazHVONtjQ8d/ee3 QfcaZ5o19Tkn6giqT4O1go/HvFsb1eP3CJcho6KuqlABJn2qkWY7U8pR9oEh88GJ o03OvvD6cF7A/UP4mrL8RYOaiGD4zSBOMZWAKBjgfnFItWM8YBkav6t/QZKylhxW 37Z6QKlu9J48x51RLj8PbQ02cQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJweV0uP 0KdrW4eRr/HVCWzLdgfxMB8GA1UdIwQYMBaAFMR1iZYu0NOJJiK+W3uL7v6M54in MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTNBNi84MDc5NEM5QUMw OEMxMUVFQkQ4MDVCMjRDNEY5QUUwMi94SFdKbGk3UTA0a21JcjViZTR2dV9vem5p S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hIV0psaTdRMDRrbUlyNWJlNHZ1X296bmlLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTNBNi84MDc5NEM5QUMwOEMxMUVFQkQ4MDVCMjRDNEY5QUUwMi94SFdKbGk3UTA0 a21JcjViZTR2dV9vem5pS2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqbuR8hSckUnzKmAt6tsxceFA71Js3z1jo3i439UlFmTEH5to4K2MVydEqP9V 5/xVbP9v0jpAN8n89k3NGTeHJgq//k65sw+NboUGDjmKAgB6GtiXCoeE3ucCuYGi GW0Gpi9fK/MbZcpEsOUKUdn+cTEWoD6WmFqnr/Pta0wTt7C/F7TuPTigWy9PSpMw jw8SoZoFP7yCxVt7/TktTy+FWMlLHWzKwRL1aX09pNapo15/Wv8ky0WNnVe+tl/V OQB1NwsCUz/uWIr5oiXqCHVCak8L3MHAn3fZj721FsPx8Tnogi4t/oe1QG9RxHhd UQwTBqfBH1Hx0dFgzN/psKjgxg== -----END CERTIFICATE-----Generated at Mon Apr 27 20:17:31 2026 by rpki-client