$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft File: XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft (raw, json) Hash identifier: Ql97J1/SS4jHVMkX/8cfYoPGenStHlilvbperWI13bo= Subject key identifier: 2C:54:1E:5F:61:DA:F2:A5:05:7B:66:BE:DD:1C:2F:0B:60:66:01:8C Authority key identifier: 5E:78:64:2B:03:CC:37:E2:6F:D4:15:E7:D7:61:BE:48:47:36:C5:66 Certificate issuer: /CN=A91E7B89/serialNumber=5E78642B03CC37E26FD415E7D761BE484736C566 Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnhkKwPMN-Jv1BXn12G-SEc2xWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft Manifest number: 50 Signing time: Fri 15 May 2026 08:23:38 +0000 Manifest this update: Fri 15 May 2026 08:23:37 +0000 Manifest next update: Fri 22 May 2026 08:23:37 +0000 Files and hashes: 1: XnhkKwPMN-Jv1BXn12G-SEc2xWY.crl (hash: 860ucRC4RlSPzV5zIrGbMT/kClAYMaleQKoLxBhShwA=) 2: 1BD6E18E1D1A11F1B8E79D60103D8C67.roa (hash: FWUBzi+iodYXnW4vMdTTKwC/KG79KdBqlOoiZl/TPEw=) 3: 72480DC0D9A111F0989DD75268D3641D.roa (hash: /m7dePdPhCd+iFe1dsv0pa92EOKO9ZVeLTSq8mVj9oY=) 4: 1C61CBFA1D1A11F1B8E79D60103D8C67.roa (hash: wYka0Jo+ri8cUtmDcLdxLnFG7gW5TQTaHwdh/jeTkn4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.crl rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnhkKwPMN-Jv1BXn12G-SEc2xWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 May 2026 08:23:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7B89, serialNumber=5E78642B03CC37E26FD415E7D761BE484736C566 Validity Not Before: May 15 08:23:37 2026 GMT Not After : May 22 08:23:37 2026 GMT Subject: CN=6a06d80a-2e63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:33:b8:da:51:0a:06:c8:36:59:0d:21:31:d5: f5:0f:8e:b6:bb:9c:87:4b:d4:fa:88:3f:81:30:1a: 60:36:c4:cd:32:3c:60:f5:fd:25:bb:36:0b:04:95: b4:0a:bf:d9:1b:78:a0:f0:b9:48:25:d7:4d:8d:76: 04:a9:83:ba:f5:b3:b2:6c:63:f2:7f:4a:15:78:86: 4f:13:c1:77:94:1d:00:ff:f8:8a:ee:4f:9e:f5:1c: 40:69:c2:f8:57:31:ec:f6:f3:70:10:96:a4:a3:19: 86:d5:77:b4:70:65:f9:54:da:14:63:49:c7:be:f4: 72:2d:fb:d5:85:c6:97:0d:91:bf:9d:f4:26:fd:09: 1f:66:77:68:14:8e:c5:ab:39:ac:d6:68:11:bf:7e: ef:0d:3e:6d:77:aa:fe:bd:fa:5e:5c:de:33:dd:fc: 74:33:68:ba:db:c8:69:db:28:9a:11:14:9b:eb:e1: ba:45:f7:4f:2b:b9:d9:8e:94:65:7f:28:73:5c:5b: 76:b6:a0:95:38:bb:94:c4:1b:3e:bc:b9:be:ea:ec: e0:21:c9:6c:b1:32:ae:40:e8:fd:39:1c:60:a0:12: 5b:c5:a3:f0:94:67:f1:6d:98:69:e9:48:bd:a4:e1: a7:b4:c7:c6:bf:ac:52:37:22:43:81:6b:20:1b:d6: 14:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:54:1E:5F:61:DA:F2:A5:05:7B:66:BE:DD:1C:2F:0B:60:66:01:8C X509v3 Authority Key Identifier: keyid:5E:78:64:2B:03:CC:37:E2:6F:D4:15:E7:D7:61:BE:48:47:36:C5:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnhkKwPMN-Jv1BXn12G-SEc2xWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:06:2d:ce:55:26:35:4c:17:b8:f0:f5:6c:8d:98:00:89:f0: 7f:84:5c:77:20:4e:76:ee:38:73:1c:8f:32:30:cc:ca:90:a5: 4c:de:6f:37:f7:18:aa:f5:e7:6b:5c:e7:49:3c:85:40:d4:f9: 3c:6f:0f:fc:04:b6:60:0c:80:fc:5b:16:6e:30:a8:07:99:91: 74:b4:bb:d8:fc:ba:57:62:cd:94:d2:48:f3:97:de:41:f7:8e: a0:44:4c:15:6d:0d:29:e7:d8:1c:06:6c:bf:42:04:02:f3:e1: 18:a5:0b:a5:3b:6a:04:5c:c0:79:b6:03:6a:72:6b:80:00:06: 18:77:b5:85:23:38:f1:c7:42:f7:e0:8b:fd:d1:d6:d2:de:1b: 0d:0f:28:ab:df:36:6a:5e:12:37:76:b9:cb:66:be:46:de:d0: b5:4c:3c:e2:51:0a:e3:31:76:17:14:48:85:f4:1e:1c:6b:9f: 02:50:f4:93:92:13:8c:34:5f:7f:04:01:6e:da:8f:ed:87:a7: 5a:b6:d0:ce:76:74:35:e3:7a:0f:4b:f2:1c:dc:ce:8f:04:a0: eb:f4:27:f3:56:8f:37:63:f6:3f:0d:14:3d:3b:0c:84:ee:24: 52:5a:50:84:2d:64:6a:c6:eb:fc:44:40:8d:e7:61:7b:0c:f2: b7:f9:bc:16 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF N0I4OTExMC8GA1UEBRMoNUU3ODY0MkIwM0NDMzdFMjZGRDQxNUU3RDc2MUJFNDg0 NzM2QzU2NjAeFw0yNjA1MTUwODIzMzdaFw0yNjA1MjIwODIzMzdaMBgxFjAUBgNV BAMTDTZhMDZkODBhLTJlNjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8M7jaUQoGyDZZDSEx1fUPjra7nIdL1PqIP4EwGmA2xM0yPGD1/SW7NgsElbQK v9kbeKDwuUgl102NdgSpg7r1s7JsY/J/ShV4hk8TwXeUHQD/+IruT571HEBpwvhX Mez283AQlqSjGYbVd7RwZflU2hRjSce+9HIt+9WFxpcNkb+d9Cb9CR9md2gUjsWr OazWaBG/fu8NPm13qv69+l5c3jPd/HQzaLrbyGnbKJoRFJvr4bpF908rudmOlGV/ KHNcW3a2oJU4u5TEGz68ub7q7OAhyWyxMq5A6P05HGCgElvFo/CUZ/FtmGnpSL2k 4ae0x8a/rFI3IkOBayAb1hTHAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQULFQeX2Ha 8qUFe2a+3RwvC2BmAYwwHwYDVR0jBBgwFoAUXnhkKwPMN+Jv1BXn12G+SEc2xWYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3Qjg5LzQxQkU0RjQ0RDlB MDExRjA5MzEzMEUwNzY4RDM2NDFEL1huaGtLd1BNTi1KdjFCWG4xMkctU0VjMnhX WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWG5oa0t3UE1OLUp2MUJYbjEyRy1TRWMyeFdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3 Qjg5LzQxQkU0RjQ0RDlBMDExRjA5MzEzMEUwNzY4RDM2NDFEL1huaGtLd1BNTi1K djFCWG4xMkctU0VjMnhXWS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBzBi3OVSY1TBe48PVsjZgAifB/hFx3IE527jhzHI8yMMzKkKVM3m839xiq9edr XOdJPIVA1Pk8bw/8BLZgDID8WxZuMKgHmZF0tLvY/LpXYs2U0kjzl95B946gREwV bQ0p59gcBmy/QgQC8+EYpQulO2oEXMB5tgNqcmuAAAYYd7WFIzjxx0L34Iv90dbS 3hsNDyir3zZqXhI3drnLZr5G3tC1TDziUQrjMXYXFEiF9B4ca58CUPSTkhOMNF9/ BAFu2o/th6dattDOdnQ143oPS/Ic3M6PBKDr9CfzVo83Y/Y/DRQ9OwyE7iRSWlCE LWRqxuv8RECN52F7DPK3+bwW -----END CERTIFICATE-----Generated at Sun May 17 04:38:36 2026 by rpki-client