$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft File: XYnzqvmxOgelsmTy3rpk1cUAZRw.mft (raw, json) Hash identifier: RCKKQ6Rl9qlJ+Qk0Kz3sSd4d3HFZx6p6Tzz2nKcb6EM= Subject key identifier: 76:FC:E6:00:53:F4:70:27:C9:62:AF:F2:3D:4E:70:50:BE:E3:30:06 Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 028B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft Manifest number: 027A Signing time: Sun 31 May 2026 01:53:19 +0000 Manifest this update: Sun 31 May 2026 01:53:18 +0000 Manifest next update: Sun 07 Jun 2026 01:53:18 +0000 Files and hashes: 1: XYnzqvmxOgelsmTy3rpk1cUAZRw.crl (hash: jg3Dnf6x/Qk4QgANFjjiWce1P/9SuhiA+AwWB6Acx4M=) 2: 9EA7B7D8A63911ED874E6630C4F9AE02.roa (hash: DHZLT6kRWzcG3+2PiBnd4pNnMfMfwzitkH/VyFmiyhk=) 3: 5DCE1A1AA63C11ED9306165AC4F9AE02.roa (hash: ry8gAyMl/oF2tDrb6QBcr0lUpoct2VpMmyLx0Y2gIls=) 4: 9FBA5FCCA63911ED874E6630C4F9AE02.roa (hash: ClwvMUH1LVLekjvPCckwoGuRynW5TD4w0EqiLo6Abj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Jun 2026 01:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 651 (0x28b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240, serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: May 31 01:53:18 2026 GMT Not After : Jun 7 01:53:18 2026 GMT Subject: CN=6a1b948e-216d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:44:49:66:46:90:86:04:0b:32:9b:c0:3f:1b: 47:cc:cc:ed:db:a7:7f:70:1f:35:f0:57:09:c3:46: cb:54:c4:65:d3:9c:19:39:c9:0a:49:50:24:d7:93: d4:4d:75:8c:8d:ae:16:e0:ff:bd:37:fd:c7:d9:3a: 95:c8:76:63:e0:d0:db:54:89:35:6e:44:67:d3:7f: db:e4:91:6e:3e:f6:83:42:0c:b9:89:a4:b7:12:9d: 75:bd:04:7c:4f:05:9a:a5:71:b4:48:3f:d3:c1:83: f2:8e:a0:20:b6:70:95:90:45:b5:03:4c:56:61:3a: b9:7f:b0:d1:64:05:4d:3a:b6:b4:04:00:60:7e:c9: c6:00:a7:cb:a1:2f:31:c5:49:d5:ad:7e:8b:9b:87: 21:ac:21:9a:5a:a4:96:75:a7:10:1c:a8:cc:85:63: b9:d1:a6:3a:e3:d4:ab:52:b6:2c:1b:45:00:f6:63: 04:c1:2e:8a:cf:3e:a7:3f:67:84:47:b6:cc:f5:ca: 10:85:a3:d1:f9:20:58:0f:4d:db:a1:d4:17:1e:8d: bd:39:1f:57:af:23:1d:2a:67:dc:71:16:7c:b3:55: cb:b9:f4:27:06:19:ff:d6:a3:53:e5:09:16:3b:bc: 24:dc:9a:44:ea:ca:66:de:22:5c:96:d4:53:59:1a: 43:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:FC:E6:00:53:F4:70:27:C9:62:AF:F2:3D:4E:70:50:BE:E3:30:06 X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:8c:72:6a:55:6d:1f:83:21:d7:c2:f8:d8:fe:b7:80:0c:8d: 2a:8a:7b:02:1c:b5:c2:64:7e:9c:45:bf:20:a0:7b:1b:55:98: b9:dd:ec:58:88:72:9a:fc:b0:22:1d:6f:81:8a:a3:69:3c:d2: f3:bb:20:5c:19:1b:77:e6:fc:db:5d:1b:34:97:51:12:35:aa: ba:15:0c:00:8f:91:b9:e1:b4:fd:f0:57:bf:64:75:dc:c6:ce: cc:16:f4:5a:73:5d:a2:b4:bd:7f:67:69:0d:a2:e4:b2:15:d6: 2d:9e:46:0b:a1:21:53:0f:74:b5:30:00:ca:01:26:e0:88:86: 72:a1:e9:80:51:67:84:ca:3d:67:d3:4c:7a:72:e1:f8:ac:e2: 35:17:fb:a3:ea:4d:72:ac:d6:fb:7a:b6:e9:25:e8:59:d1:f9: 82:75:8a:35:ae:3e:26:61:dd:bc:17:f4:5e:80:26:1c:9d:c9: d1:4a:48:62:f5:05:1c:65:5a:71:eb:2c:c0:fe:bf:ff:29:a3: 80:88:c7:b7:38:d1:78:6e:48:78:0d:f5:87:54:7b:ca:a7:f1: f9:f1:51:c9:ec:4c:1c:06:65:e3:c1:bd:0f:0f:77:75:38:20: 19:b1:c3:b8:05:b3:90:66:ee:4f:c6:d9:84:28:84:04:19:e4: 24:99:95:b2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjYwNTMxMDE1MzE4WhcNMjYwNjA3MDE1MzE4WjAYMRYwFAYD VQQDEw02YTFiOTQ4ZS0yMTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvURJZkaQhgQLMpvAPxtHzMzt26d/cB818FcJw0bLVMRl05wZOckKSVAk15PU TXWMja4W4P+9N/3H2TqVyHZj4NDbVIk1bkRn03/b5JFuPvaDQgy5iaS3Ep11vQR8 TwWapXG0SD/TwYPyjqAgtnCVkEW1A0xWYTq5f7DRZAVNOra0BABgfsnGAKfLoS8x xUnVrX6Lm4chrCGaWqSWdacQHKjMhWO50aY649SrUrYsG0UA9mMEwS6Kzz6nP2eE R7bM9coQhaPR+SBYD03bodQXHo29OR9XryMdKmfccRZ8s1XLufQnBhn/1qNT5QkW O7wk3JpE6spm3iJcltRTWRpDXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHb85gBT 9HAnyWKv8j1OcFC+4zAGMB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTI0MC8yN0RERTdEODlCN0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9n ZWxzbVR5M3JwazFjVUFaUncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABIxyalVtH4Mh18L42P63gAyNKop7Ahy1wmR+nEW/IKB7G1WYud3sWIhymvyw Ih1vgYqjaTzS87sgXBkbd+b8210bNJdREjWquhUMAI+RueG0/fBXv2R13MbOzBb0 WnNdorS9f2dpDaLkshXWLZ5GC6EhUw90tTAAygEm4IiGcqHpgFFnhMo9Z9NMenLh +KziNRf7o+pNcqzW+3q26SXoWdH5gnWKNa4+JmHdvBf0XoAmHJ3J0UpIYvUFHGVa cesswP6//ymjgIjHtzjReG5IeA31h1R7yqfx+fFRyexMHAZl48G9Dw93dTggGbHD uAWzkGbuT8bZhCiEBBnkJJmVsg== -----END CERTIFICATE-----Generated at Sun May 31 18:54:38 2026 by rpki-client