$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft File: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft (raw, json) Hash identifier: mu5bR4FKRWxJxe5nlOz4pPIswMwu+uvSZCSkE7GhRqo= Subject key identifier: 32:16:B9:44:8D:92:40:39:BC:70:72:01:4A:86:23:E4:A3:C1:0C:31 Authority key identifier: C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 Certificate issuer: /CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Certificate serial: 01F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft Manifest number: 01EF Signing time: Thu 21 May 2026 03:20:14 +0000 Manifest this update: Thu 21 May 2026 03:20:13 +0000 Manifest next update: Thu 28 May 2026 03:20:13 +0000 Files and hashes: 1: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl (hash: WFC2isNNLXzUObB/pAxGe6wQMGPrbywb7AkrsEPxYCo=) 2: 4B2F1F725E7811EE9307D234C4F9AE02.roa (hash: EcFjmxSDjXYlszuf2oD+q8KIZL69XyX6Am534xbF5Os=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 03:20:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF73, serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Validity Not Before: May 21 03:20:13 2026 GMT Not After : May 28 03:20:13 2026 GMT Subject: CN=6a0e79ee-ac1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:9e:95:f5:c8:9f:08:02:be:70:c7:b2:bb:fe: 43:11:cd:cb:8c:1f:92:5d:00:7d:a0:52:f4:b6:93: 61:69:51:2f:f0:41:03:55:f8:25:23:77:a8:f7:bc: 71:52:5f:d1:e2:13:15:cb:81:39:ea:35:60:8b:1e: f6:8c:b5:7b:ed:5f:91:6a:1f:82:f0:76:32:76:5a: 75:66:13:f3:df:58:3b:87:b6:78:93:ec:4b:84:70: e8:64:eb:4c:96:ab:dd:55:11:76:64:d9:94:d3:46: a9:38:d5:61:af:51:a1:fd:07:41:a6:0e:90:4f:40: c2:c0:52:8d:92:da:53:08:8f:2f:90:7a:d7:a2:50: fa:f3:5e:f5:5d:6f:6f:27:68:93:17:0a:ce:11:20: c7:8d:e0:69:01:19:8c:c5:9d:74:1c:3a:50:d3:7f: 92:29:08:ae:54:67:0b:01:22:1c:63:85:75:d5:a8: 2d:e0:81:a2:70:50:70:4a:7b:8e:88:dc:7d:51:17: 28:63:a4:5a:8e:8d:7b:09:20:45:b3:62:71:b7:8c: 3a:71:2f:6b:fb:a2:bf:74:33:56:f8:12:c1:e0:20: 83:21:60:d5:3a:37:22:e9:60:cf:82:6f:0b:3d:62: f5:df:17:ee:4f:0e:98:90:d6:ce:15:ea:a8:15:c3: 8a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:16:B9:44:8D:92:40:39:BC:70:72:01:4A:86:23:E4:A3:C1:0C:31 X509v3 Authority Key Identifier: keyid:C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:c6:a7:fb:9c:c6:03:80:23:ed:a8:21:d7:d7:42:32:af:37: 8e:6f:93:5c:6d:c4:fb:23:79:02:ad:10:c8:40:80:2a:13:28: 56:5e:b5:bf:29:74:75:ed:a7:8f:1a:e5:6f:25:bd:ca:0b:da: 8a:bb:5a:6f:09:4e:86:e4:1c:aa:c0:04:ea:e0:e1:e8:01:8e: 9b:66:71:19:ed:08:a2:41:d9:94:20:49:59:2d:23:35:17:da: ae:00:b5:63:34:d7:bd:e6:f7:d5:48:f6:0c:33:18:3d:05:4d: c2:b4:ba:6d:d7:ba:e3:60:65:48:e9:02:a4:cf:1c:11:cd:55: fa:c3:88:e9:bf:bc:5f:0f:c5:25:63:85:2a:51:a7:ac:7f:5e: 81:a4:8c:0d:0c:95:87:e1:fe:48:f5:e2:74:25:42:1e:ce:b6: 89:79:fb:fe:cc:17:0b:76:9f:d8:31:a8:6e:cd:10:ab:43:64: 4a:83:b4:b0:07:a9:16:89:76:88:de:97:bc:1f:e6:0e:35:7e: 97:40:f6:bd:45:b9:c2:b9:fb:f0:1f:8c:0a:0d:e5:2e:d7:e2: c4:f8:10:f0:6f:67:f5:65:ea:d2:3a:24:24:c7:54:2a:e8:b2: 57:59:d7:17:f5:36:8e:f7:98:f3:3e:04:b6:19:db:5f:51:ad: 59:10:a9:50 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGNzMxMTAvBgNVBAUTKEM0MDVGMDYxRTMzQjA3MTdDOTA0RkMxREYzRTc5QkNE Nzk1MjBGQTYwHhcNMjYwNTIxMDMyMDEzWhcNMjYwNTI4MDMyMDEzWjAYMRYwFAYD VQQDEw02YTBlNzllZS1hYzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJ6V9cifCAK+cMeyu/5DEc3LjB+SXQB9oFL0tpNhaVEv8EEDVfglI3eo97xx Ul/R4hMVy4E56jVgix72jLV77V+Rah+C8HYydlp1ZhPz31g7h7Z4k+xLhHDoZOtM lqvdVRF2ZNmU00apONVhr1Gh/QdBpg6QT0DCwFKNktpTCI8vkHrXolD68171XW9v J2iTFwrOESDHjeBpARmMxZ10HDpQ03+SKQiuVGcLASIcY4V11agt4IGicFBwSnuO iNx9URcoY6Rajo17CSBFs2Jxt4w6cS9r+6K/dDNW+BLB4CCDIWDVOjci6WDPgm8L PWL13xfuTw6YkNbOFeqoFcOKPQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDIWuUSN kkA5vHByAUqGI+SjwQwxMB8GA1UdIwQYMBaAFMQF8GHjOwcXyQT8HfPnm815Ug+m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUY3My9ENUZGMUY0MDVF NzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4ZkpCUHdkOC1lYnpYbFNE NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBWHdZZU03QnhmSkJQd2Q4LWVielhsU0Q2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUY3My9ENUZGMUY0MDVFNzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4 ZkpCUHdkOC1lYnpYbFNENlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAJMan+5zGA4Aj7agh19dCMq83jm+TXG3E+yN5Aq0QyECAKhMoVl61vyl0de2n jxrlbyW9ygvairtabwlOhuQcqsAE6uDh6AGOm2ZxGe0IokHZlCBJWS0jNRfargC1 YzTXveb31Uj2DDMYPQVNwrS6bde642BlSOkCpM8cEc1V+sOI6b+8Xw/FJWOFKlGn rH9egaSMDQyVh+H+SPXidCVCHs62iXn7/swXC3af2DGobs0Qq0NkSoO0sAepFol2 iN6XvB/mDjV+l0D2vUW5wrn78B+MCg3lLtfixPgQ8G9n9WXq0jokJMdUKuiyV1nX F/U2jveY8z4EthnbX1GtWRCpUA== -----END CERTIFICATE-----Generated at Thu May 21 09:38:04 2026 by rpki-client