$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft File: xIoOQPt_45dbEsI-AwrFTFIFcWM.mft (raw, json) Hash identifier: jnlUnpUlMyAUY4oZQRNDXceW+tGVIzpMOs1TTBaPaZY= Subject key identifier: 12:65:CD:4B:DD:F9:F8:C5:CF:87:08:C5:6F:93:3F:BB:3D:83:79:F6 Authority key identifier: C4:8A:0E:40:FB:7F:E3:97:5B:12:C2:3E:03:0A:C5:4C:52:05:71:63 Certificate issuer: /CN=A91D28BC/serialNumber=C48A0E40FB7FE3975B12C23E030AC54C52057163 Certificate serial: 0608 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIoOQPt_45dbEsI-AwrFTFIFcWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft Manifest number: 0602 Signing time: Sun 26 Apr 2026 22:49:20 +0000 Manifest this update: Sun 26 Apr 2026 22:49:20 +0000 Manifest next update: Sun 03 May 2026 22:49:20 +0000 Files and hashes: 1: xIoOQPt_45dbEsI-AwrFTFIFcWM.crl (hash: By8nuJD/JUc9Itkae18k6b84cj1bhk+HbjIqrzchp2k=) 2: 2B07FA82EADC11EBBE430B5EC4F9AE02.roa (hash: IP/QJfV6mDMkAmZvNNAznS9XZlWRM/mkzo7SsyQDQEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.crl rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIoOQPt_45dbEsI-AwrFTFIFcWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 22:49:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1544 (0x608) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28BC, serialNumber=C48A0E40FB7FE3975B12C23E030AC54C52057163 Validity Not Before: Apr 26 22:49:20 2026 GMT Not After : May 3 22:49:20 2026 GMT Subject: CN=69ee9670-0f0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:64:59:cf:90:91:03:f0:f8:b7:15:1c:e8:33: 36:95:6a:77:a2:8f:ba:ce:8a:7e:df:f5:ad:f9:58: 9f:7a:bb:ea:5d:e2:59:d2:62:27:e7:33:45:82:3d: 01:5f:46:43:a4:44:25:be:42:00:33:74:34:19:db: 56:18:aa:2c:80:17:2d:e3:83:fd:91:83:3a:7d:f8: 8e:5f:90:84:61:e5:c5:66:8e:15:81:be:4f:25:73: a2:44:a4:df:4b:df:02:77:47:b6:9a:7a:d0:35:6e: 2e:81:81:76:89:55:02:35:f4:99:6a:31:bd:79:1a: 79:52:f4:5b:be:a2:72:f2:22:49:b9:ef:0d:9b:96: 0e:be:68:70:e5:84:a8:af:67:d1:cf:06:f6:09:96: 41:6c:8d:1d:13:47:d5:4d:1c:c8:3c:fc:82:57:ae: 2d:13:c7:02:fc:af:99:cf:5f:04:c9:64:0b:72:09: ab:0e:c0:fd:3a:e4:a3:01:75:84:08:69:45:a0:f5: f2:6f:ac:b3:3a:ff:bd:1b:19:9e:ea:7a:c5:05:65: 60:60:20:1a:b0:26:a5:d5:fa:9b:09:48:16:b7:b8: a2:36:15:45:69:38:98:89:2a:71:e4:ce:d2:1c:2e: c7:0d:4f:34:30:cd:8e:7b:91:12:a8:0a:65:90:6b: 8d:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:65:CD:4B:DD:F9:F8:C5:CF:87:08:C5:6F:93:3F:BB:3D:83:79:F6 X509v3 Authority Key Identifier: keyid:C4:8A:0E:40:FB:7F:E3:97:5B:12:C2:3E:03:0A:C5:4C:52:05:71:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIoOQPt_45dbEsI-AwrFTFIFcWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:65:d2:76:96:79:ba:31:61:01:c3:bf:1e:5f:6f:48:98:49: 6a:26:7f:be:84:f6:90:5d:08:df:2a:aa:cd:d1:8f:d3:58:75: 64:d0:88:0c:70:2a:ae:db:aa:be:5d:ca:62:75:52:3b:d4:4f: 9b:af:0c:cf:79:41:7e:d8:d7:a0:94:5b:39:25:c5:7d:1b:fd: 2b:7d:0b:46:b9:ef:76:28:22:52:7b:cd:d9:5e:43:61:de:65: 94:8b:22:b1:09:2b:ec:4f:ff:35:08:74:1d:76:13:e4:4f:bf: 0e:21:63:d7:38:6a:d9:80:18:10:b7:ae:cc:5c:d1:d3:7e:f8: 8b:f9:95:77:7c:fd:86:8e:66:ab:61:b3:34:4c:0e:60:c2:0c: c7:07:85:6b:da:55:a9:5c:e5:22:40:4f:09:08:6f:9f:60:fd: be:6d:99:c9:33:ce:3b:2b:57:33:7b:b7:eb:6e:14:30:66:4e: 84:46:2a:af:7a:0e:4f:1f:a3:a6:ca:70:ce:f0:f3:eb:5e:84: 66:9d:62:1b:dc:70:16:dc:b8:a5:86:31:67:58:26:87:08:93: 67:a5:ea:6b:c3:dc:c4:5f:c8:a1:36:48:33:13:9d:78:1b:9e: 90:af:cd:9a:3f:e8:f9:5c:62:49:49:98:f5:2e:f4:54:73:09: 0a:c4:39:80 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4QkMxMTAvBgNVBAUTKEM0OEEwRTQwRkI3RkUzOTc1QjEyQzIzRTAzMEFDNTRD NTIwNTcxNjMwHhcNMjYwNDI2MjI0OTIwWhcNMjYwNTAzMjI0OTIwWjAYMRYwFAYD VQQDEw02OWVlOTY3MC0wZjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2RZz5CRA/D4txUc6DM2lWp3oo+6zop+3/Wt+VifervqXeJZ0mIn5zNFgj0B X0ZDpEQlvkIAM3Q0GdtWGKosgBct44P9kYM6ffiOX5CEYeXFZo4Vgb5PJXOiRKTf S98Cd0e2mnrQNW4ugYF2iVUCNfSZajG9eRp5UvRbvqJy8iJJue8Nm5YOvmhw5YSo r2fRzwb2CZZBbI0dE0fVTRzIPPyCV64tE8cC/K+Zz18EyWQLcgmrDsD9OuSjAXWE CGlFoPXyb6yzOv+9Gxme6nrFBWVgYCAasCal1fqbCUgWt7iiNhVFaTiYiSpx5M7S HC7HDU80MM2Oe5ESqAplkGuNzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBJlzUvd +fjFz4cIxW+TP7s9g3n2MB8GA1UdIwQYMBaAFMSKDkD7f+OXWxLCPgMKxUxSBXFj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhCQy85MjA5MjM5MEVB RDgxMUVCQkQyQ0M3NThDNEY5QUUwMi94SW9PUVB0XzQ1ZGJFc0ktQXdyRlRGSUZj V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJb09RUHRfNDVkYkVzSS1Bd3JGVEZJRmNXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhCQy85MjA5MjM5MEVBRDgxMUVCQkQyQ0M3NThDNEY5QUUwMi94SW9PUVB0XzQ1 ZGJFc0ktQXdyRlRGSUZjV00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAAmXSdpZ5ujFhAcO/Hl9vSJhJaiZ/voT2kF0I3yqqzdGP01h1ZNCIDHAqrtuq vl3KYnVSO9RPm68Mz3lBftjXoJRbOSXFfRv9K30LRrnvdigiUnvN2V5DYd5llIsi sQkr7E//NQh0HXYT5E+/DiFj1zhq2YAYELeuzFzR0374i/mVd3z9ho5mq2GzNEwO YMIMxweFa9pVqVzlIkBPCQhvn2D9vm2ZyTPOOytXM3u3624UMGZOhEYqr3oOTx+j pspwzvDz616EZp1iG9xwFty4pYYxZ1gmhwiTZ6Xqa8PcxF/IoTZIMxOdeBuekK/N mj/o+VxiSUmY9S70VHMJCsQ5gA== -----END CERTIFICATE-----Generated at Tue Apr 28 23:59:16 2026 by rpki-client