$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft File: XerjhTD4FfvwubP472N1B4bIrAo.mft (raw, json) Hash identifier: d+uczt1uFVoVQSgFz9aLP+6BWAkU+4I/TcitKMy8SDc= Subject key identifier: 8D:C7:CA:AB:8B:89:13:66:7C:64:3E:1A:98:ED:F7:3B:4D:09:D6:68 Authority key identifier: 5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A Certificate issuer: /CN=A91A4481/serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Certificate serial: 0188 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft Manifest number: 0183 Signing time: Thu 21 May 2026 04:33:48 +0000 Manifest this update: Thu 21 May 2026 04:33:47 +0000 Manifest next update: Thu 28 May 2026 04:33:47 +0000 Files and hashes: 1: XerjhTD4FfvwubP472N1B4bIrAo.crl (hash: 6+3g/UPuQlBJneNIMb2u3f7WKhxZ4hzy9I39tyKZWhk=) 2: 5B08B12602C211EF9A1E4567C4F9AE02.roa (hash: tC7+VJT22TXj7yUL7xjBDLMNT6SajKWeU3nOU11r1Qw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 04:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 392 (0x188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4481, serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Validity Not Before: May 21 04:33:47 2026 GMT Not After : May 28 04:33:47 2026 GMT Subject: CN=6a0e8b2c-4e36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f4:72:65:d7:b7:0f:97:2b:e2:c0:16:19:b8: cc:42:9a:50:09:fd:51:6e:4e:80:51:5b:a0:90:5c: 46:26:68:eb:46:72:03:79:db:40:c1:22:db:24:cb: 03:a6:0a:ac:2b:40:a5:a0:aa:bc:35:55:fd:a5:68: 70:d3:93:6e:2d:56:03:4b:bc:a1:29:e7:3b:70:8d: 11:ff:d9:aa:41:1e:c9:07:ef:32:56:54:d0:c0:5d: b1:7f:09:84:88:95:e9:8e:a2:a8:42:3f:58:3d:98: 5e:48:b8:a5:5e:2b:0a:74:d9:e0:87:58:9d:98:27: 10:b1:30:03:a5:20:86:39:5e:cb:0e:73:d9:37:f1: 3b:ad:61:83:e5:cc:ea:04:78:2e:92:6e:c8:e6:c0: 32:c5:7c:a9:d8:53:87:1e:e1:41:59:cf:51:0d:b9: 51:5b:d0:27:9f:14:2d:d7:bd:d8:0f:b1:8b:28:f1: 5e:4f:97:10:a8:4c:52:da:af:81:11:58:1b:c4:39: f8:36:55:24:03:71:35:90:ba:61:da:a4:a2:4c:80: 00:ae:7c:a2:74:4f:c9:35:68:95:fd:af:3d:83:f4: ad:a7:4b:50:1a:b8:aa:5d:65:7b:08:df:ea:9d:7b: 84:7e:7d:f9:3e:2b:f4:bd:57:4d:73:81:a6:7c:35: 4a:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:C7:CA:AB:8B:89:13:66:7C:64:3E:1A:98:ED:F7:3B:4D:09:D6:68 X509v3 Authority Key Identifier: keyid:5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:de:81:5c:5f:e3:5e:fb:b6:f1:25:cf:e6:ee:7c:bc:05:cc: 54:28:5a:cf:13:92:a9:c4:e1:bd:d9:2a:00:97:0f:d1:b1:0f: ed:97:cd:63:ce:2e:78:23:95:f7:88:88:08:20:95:1e:0c:be: 14:fe:7b:a4:cd:ba:40:fe:0f:a6:05:f5:35:42:26:73:0f:d1: 8f:d9:03:08:4f:47:eb:15:da:5e:8b:3c:b0:60:8a:b8:e9:ce: e5:27:08:3b:4e:70:56:36:0c:fb:04:4c:7a:66:e2:7e:e0:f9: d5:17:f5:2b:71:f6:6c:1a:9f:b5:94:59:19:4c:d4:59:12:cd: e5:d1:4e:e7:f0:c3:4d:c6:4d:7c:da:c2:29:11:ca:ec:c1:49: f6:26:dc:95:8e:27:15:74:3f:c1:98:d4:f0:d3:a3:56:16:64: 3d:f9:3a:78:c7:8a:83:0c:1d:e8:b5:e5:b3:e3:da:d5:43:f0: ee:bf:3f:ec:f1:37:30:78:df:df:c6:fc:be:8c:51:68:fd:3d: 52:f7:75:2e:ac:85:bd:79:ec:da:68:62:ec:f6:92:f0:05:4a: e1:57:ca:06:d8:21:43:7a:eb:43:b5:6a:5a:f2:fe:82:1c:df: 8d:fe:8e:8e:a9:f1:9a:29:98:42:05:ec:d7:af:04:b6:b4:da: 90:cb:74:e3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0ODExMTAvBgNVBAUTKDVERUFFMzg1MzBGODE1RkJGMEI5QjNGOEVGNjM3NTA3 ODZDOEFDMEEwHhcNMjYwNTIxMDQzMzQ3WhcNMjYwNTI4MDQzMzQ3WjAYMRYwFAYD VQQDEw02YTBlOGIyYy00ZTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfRyZde3D5cr4sAWGbjMQppQCf1Rbk6AUVugkFxGJmjrRnIDedtAwSLbJMsD pgqsK0CloKq8NVX9pWhw05NuLVYDS7yhKec7cI0R/9mqQR7JB+8yVlTQwF2xfwmE iJXpjqKoQj9YPZheSLilXisKdNngh1idmCcQsTADpSCGOV7LDnPZN/E7rWGD5czq BHgukm7I5sAyxXyp2FOHHuFBWc9RDblRW9AnnxQt173YD7GLKPFeT5cQqExS2q+B EVgbxDn4NlUkA3E1kLph2qSiTIAArnyidE/JNWiV/a89g/Stp0tQGriqXWV7CN/q nXuEfn35Piv0vVdNc4GmfDVK+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI3HyquL iRNmfGQ+Gpjt9ztNCdZoMB8GA1UdIwQYMBaAFF3q44Uw+BX78Lmz+O9jdQeGyKwK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQ4MS9CQzg0MEY0NjAy QzExMUVGQUYzQ0I0NjVDNEY5QUUwMi9YZXJqaFRENEZmdnd1YlA0NzJOMUI0Ykly QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hlcmpoVEQ0RmZ2d3ViUDQ3Mk4xQjRiSXJBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQ4MS9CQzg0MEY0NjAyQzExMUVGQUYzQ0I0NjVDNEY5QUUwMi9YZXJqaFRENEZm dnd1YlA0NzJOMUI0YklyQW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAb96BXF/jXvu28SXP5u58vAXMVChazxOSqcThvdkqAJcP0bEP7ZfNY84ueCOV 94iICCCVHgy+FP57pM26QP4PpgX1NUImcw/Rj9kDCE9H6xXaXos8sGCKuOnO5ScI O05wVjYM+wRMembifuD51Rf1K3H2bBqftZRZGUzUWRLN5dFO5/DDTcZNfNrCKRHK 7MFJ9ibclY4nFXQ/wZjU8NOjVhZkPfk6eMeKgwwd6LXls+Pa1UPw7r8/7PE3MHjf 38b8voxRaP09Uvd1LqyFvXns2mhi7PaS8AVK4VfKBtghQ3rrQ7VqWvL+ghzfjf6O jqnxmimYQgXs168EtrTakMt04w== -----END CERTIFICATE-----Generated at Thu May 21 09:38:12 2026 by rpki-client