$ rpki-client -vvf rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft File: XDlbosoKv2WIhyaHTHgktpt4mZU.mft (raw, json) Hash identifier: VvtBiA1W22PONq1OYw9zhWCbpEqUuzn8R5tXNQPHGtY= Subject key identifier: D5:3D:A1:41:86:C9:B4:BF:CE:60:B2:12:75:E9:0E:33:E2:17:34:C3 Authority key identifier: 5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 Certificate issuer: /CN=A91E66E5/serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Certificate serial: 0EF4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft Manifest number: 0EE5 Signing time: Mon 20 Apr 2026 17:35:11 +0000 Manifest this update: Mon 20 Apr 2026 17:35:11 +0000 Manifest next update: Mon 27 Apr 2026 17:35:11 +0000 Files and hashes: 1: XDlbosoKv2WIhyaHTHgktpt4mZU.crl (hash: 8mIlcDev3MLNXYaEZS9/autZvVOBcMsjdKpaYhL0l0A=) 2: AECDA1B0448F11EDACC30815C4F9AE02.roa (hash: Vv+ic3tuHHAEO62okYNeBPpK0SKMbTv6XBExdyT6xHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 17:35:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3828 (0xef4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E66E5, serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Validity Not Before: Apr 20 17:35:11 2026 GMT Not After : Apr 27 17:35:11 2026 GMT Subject: CN=69e663cf-c9e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1a:db:e0:e0:af:20:07:10:32:01:7d:f4:74: 23:3a:76:4d:c0:4d:23:41:bf:c6:13:f0:ba:06:14: 3e:c2:ad:f9:73:63:6f:a4:04:11:53:2b:0c:58:41: 9e:b0:22:fb:ef:b7:6d:6b:0d:fd:1e:f6:06:05:2d: ad:54:c7:78:a4:0c:a8:65:00:0f:c0:bd:43:f2:58: 7e:00:c4:ec:ef:6c:0a:9e:6a:b1:47:dd:a3:68:24: a4:0b:7e:e2:fb:73:9a:c8:66:35:30:b2:2a:d2:34: 07:d0:ff:af:c2:1f:22:73:86:48:86:d6:e5:61:11: 02:ed:9e:91:c4:f0:b9:af:5b:c9:b1:45:3d:95:19: 44:fc:b7:32:eb:25:34:ac:55:d1:c7:a9:9e:22:dd: 7f:f1:9e:c9:d3:1d:c6:be:2d:7e:a1:aa:13:de:a0: e4:fc:59:6b:21:c6:c4:4a:07:cb:21:fc:0b:60:e9: 7c:50:ac:aa:2c:de:18:2d:c1:02:be:16:9f:12:f6: 23:e1:ba:a4:43:94:38:42:e7:b5:3d:24:87:ab:88: f9:8a:83:08:7a:f3:b4:c9:f7:03:51:96:38:21:22: 10:37:59:64:04:0d:c0:e1:e4:02:fd:2f:3b:60:d5: 35:d5:e8:4b:47:b5:45:dd:e2:b0:bb:d6:05:19:64: 0b:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:3D:A1:41:86:C9:B4:BF:CE:60:B2:12:75:E9:0E:33:E2:17:34:C3 X509v3 Authority Key Identifier: keyid:5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:48:ca:39:d7:14:7b:d8:a6:aa:ca:80:0f:ef:12:bf:02:be: d7:d6:e7:5c:62:b0:4f:d1:bd:3e:50:1e:d7:c4:3a:44:85:7c: 4e:c5:43:f1:c7:47:7b:e3:5c:8a:96:3b:c5:08:c6:1c:52:d7: 56:73:a8:1b:d9:c6:ab:61:cb:6f:f0:c1:43:5f:6b:30:d2:b7: ef:25:57:2a:b8:1b:81:cb:3c:33:18:07:b2:94:c4:fd:3a:fa: 6f:fa:f0:ea:0a:9c:3c:7c:1f:ab:26:80:bd:fe:e7:d4:18:af: 67:67:54:f2:20:aa:25:f0:e4:96:c0:74:ae:51:38:52:d9:dc: 37:fd:66:f8:e5:1d:d1:8c:75:fc:8a:b9:28:b8:74:b6:86:cb: 6f:66:bd:08:f5:75:e0:89:89:de:70:b1:bf:96:b9:9e:5a:10: 2e:f0:4d:8a:d6:16:f9:42:ed:86:b2:6b:aa:07:8a:47:88:70: 2f:f2:ca:e0:60:2a:98:e9:30:6c:7b:7f:21:12:60:60:c2:64: 64:c0:fc:c0:e2:d8:ee:f2:bd:fa:91:4b:14:eb:47:5d:4c:d5: 18:b1:4c:79:ab:c3:86:4a:ea:3e:4a:91:b5:e4:eb:48:c3:88: d1:b9:ba:eb:27:61:4b:67:22:4d:8e:a3:03:35:78:86:90:38: b5:da:75:7c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDvQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY2RTUxMTAvBgNVBAUTKDVDMzk1QkEyQ0EwQUJGNjU4ODg3MjY4NzRDNzgyNEI2 OUI3ODk5OTUwHhcNMjYwNDIwMTczNTExWhcNMjYwNDI3MTczNTExWjAYMRYwFAYD VQQDEw02OWU2NjNjZi1jOWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxrb4OCvIAcQMgF99HQjOnZNwE0jQb/GE/C6BhQ+wq35c2NvpAQRUysMWEGe sCL777dtaw39HvYGBS2tVMd4pAyoZQAPwL1D8lh+AMTs72wKnmqxR92jaCSkC37i +3OayGY1MLIq0jQH0P+vwh8ic4ZIhtblYREC7Z6RxPC5r1vJsUU9lRlE/Lcy6yU0 rFXRx6meIt1/8Z7J0x3Gvi1+oaoT3qDk/FlrIcbESgfLIfwLYOl8UKyqLN4YLcEC vhafEvYj4bqkQ5Q4Que1PSSHq4j5ioMIevO0yfcDUZY4ISIQN1lkBA3A4eQC/S87 YNU11ehLR7VF3eKwu9YFGWQL2wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNU9oUGG ybS/zmCyEnXpDjPiFzTDMB8GA1UdIwQYMBaAFFw5W6LKCr9liIcmh0x4JLabeJmV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjZFNS81NjQzMDU4NkEy NzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3YyV0loeWFIVEhna3RwdDRt WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEbGJvc29LdjJXSWh5YUhUSGdrdHB0NG1aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjZFNS81NjQzMDU4NkEyNzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3Yy V0loeWFIVEhna3RwdDRtWlUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtUjKOdcUe9imqsqAD+8SvwK+19bnXGKwT9G9PlAe18Q6RIV8TsVD8cdHe+Nc ipY7xQjGHFLXVnOoG9nGq2HLb/DBQ19rMNK37yVXKrgbgcs8MxgHspTE/Tr6b/rw 6gqcPHwfqyaAvf7n1BivZ2dU8iCqJfDklsB0rlE4UtncN/1m+OUd0Yx1/Iq5KLh0 tobLb2a9CPV14ImJ3nCxv5a5nloQLvBNitYW+ULthrJrqgeKR4hwL/LK4GAqmOkw bHt/IRJgYMJkZMD8wOLY7vK9+pFLFOtHXUzVGLFMeavDhkrqPkqRteTrSMOI0bm6 6ydhS2ciTY6jAzV4hpA4tdp1fA== -----END CERTIFICATE-----Generated at Wed Apr 22 02:14:54 2026 by rpki-client