$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft File: XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft (raw, json) Hash identifier: mGOFVBdHM/rd6neHhJN6rDrHRRCkePim3T65ITj8t7U= Subject key identifier: A9:D6:E4:CF:D7:E8:C1:70:C8:1A:C1:3F:0E:49:85:CA:11:90:54:B9 Authority key identifier: 5F:30:7E:62:74:AC:39:E5:4E:99:86:6D:AB:B8:5C:2C:9E:FD:16:B1 Certificate issuer: /CN=A91E9F89/serialNumber=5F307E6274AC39E54E99866DABB85C2C9EFD16B1 Certificate serial: 090D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft Manifest number: 0904 Signing time: Sat 04 Apr 2026 20:06:16 +0000 Manifest this update: Sat 04 Apr 2026 20:06:15 +0000 Manifest next update: Sat 11 Apr 2026 20:06:15 +0000 Files and hashes: 1: XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl (hash: nvXnwMiGJmoabditMWAN0OIEyYPfUlFqbUQa4q6P5A4=) 2: 05B67AF8C6A011EAA70D183FC4F9AE02.roa (hash: cUXww9pLUmzXMLoFEIgXrShzexTLcuKYoU1Hg9CwYj8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:06:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2317 (0x90d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9F89, serialNumber=5F307E6274AC39E54E99866DABB85C2C9EFD16B1 Validity Not Before: Apr 4 20:06:15 2026 GMT Not After : Apr 11 20:06:15 2026 GMT Subject: CN=69d16f38-d6d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:32:68:da:84:e7:db:d7:97:34:2f:ca:f9:69: 1b:4b:f3:c7:0f:3b:c6:eb:f7:90:9a:60:51:e7:83: 3d:bc:a7:93:19:8a:c4:31:df:8e:15:82:6e:a5:4a: 21:d2:ac:d2:13:ae:cb:4c:d3:f6:39:52:02:11:21: 5d:6b:b1:14:af:34:b7:9f:83:cb:a1:8a:c4:58:75: 1d:c5:d8:e0:3c:23:a8:9b:2d:2d:b0:45:f5:89:9a: c3:2e:2e:d9:6a:25:d0:e9:16:f0:6b:30:1f:8e:34: a5:14:7b:76:8a:dc:b8:85:de:d1:f1:09:ec:82:73: c2:fa:1c:9f:df:bf:b5:14:1a:fd:93:04:5e:c6:f2: 2b:98:34:dd:1b:ca:1a:df:64:65:2e:c2:fa:0f:e1: a2:12:ec:e2:3b:f9:56:b2:8a:95:3c:9e:5d:50:10: 3c:11:2b:4f:b6:13:a0:cb:14:b5:a7:cb:d2:9b:58: 4c:4f:42:06:b0:db:6a:cc:b3:70:9b:1f:f9:9d:3e: c2:ea:90:d5:6c:f5:f3:cb:32:07:f4:5c:7b:b3:4c: 43:f1:86:fe:3d:f2:9c:26:ec:32:b1:5d:cb:84:de: cf:f7:80:ce:14:02:f9:f0:a9:d3:69:11:40:54:df: 71:10:12:59:ae:7e:73:36:83:58:bd:4f:f5:69:5b: 18:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:D6:E4:CF:D7:E8:C1:70:C8:1A:C1:3F:0E:49:85:CA:11:90:54:B9 X509v3 Authority Key Identifier: keyid:5F:30:7E:62:74:AC:39:E5:4E:99:86:6D:AB:B8:5C:2C:9E:FD:16:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d6:d4:15:aa:50:62:62:fd:78:f7:13:03:da:7c:ac:98:e8:5c: 96:8a:b7:67:0f:78:04:6e:03:38:6f:6e:6b:ec:4b:48:07:75: e5:15:ba:67:ea:c2:db:d5:8d:8f:84:75:57:84:a2:42:87:83: da:db:5a:b4:35:4b:2a:b0:06:66:ab:42:b4:37:48:57:5d:42: e9:1b:b8:97:21:0e:45:eb:98:b5:48:97:47:47:93:cd:77:d1: ec:a8:96:f0:c9:3b:09:9d:0f:ea:c4:b5:ce:e2:79:5a:b3:67: 5c:8e:c3:7e:20:7e:f8:b3:c1:47:44:34:24:df:28:61:cf:0b: 80:45:77:4d:d4:0a:1c:a4:d8:a8:ce:bb:16:e4:a0:aa:9a:22: cf:bc:d5:e3:d1:6a:3d:4f:43:e6:a6:3e:7b:22:4b:ed:90:94: e9:d1:36:b2:41:2e:ca:55:3a:ee:76:a9:8c:44:47:54:f5:9b: 26:c5:dc:a2:be:19:71:89:36:82:e7:46:15:72:16:17:d9:1a: 5a:48:46:7d:6d:89:fc:b1:29:8f:97:dc:ba:d1:52:22:07:7a: 74:16:f1:0a:94:43:f2:d1:5d:76:7f:fa:4f:27:c5:07:22:28: 41:71:5a:32:e1:b3:9f:f4:89:fb:d5:15:e4:9e:65:a8:8b:f8: de:5b:08:de -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlGODkxMTAvBgNVBAUTKDVGMzA3RTYyNzRBQzM5RTU0RTk5ODY2REFCQjg1QzJD OUVGRDE2QjEwHhcNMjYwNDA0MjAwNjE1WhcNMjYwNDExMjAwNjE1WjAYMRYwFAYD VQQDEw02OWQxNmYzOC1kNmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTJo2oTn29eXNC/K+WkbS/PHDzvG6/eQmmBR54M9vKeTGYrEMd+OFYJupUoh 0qzSE67LTNP2OVICESFda7EUrzS3n4PLoYrEWHUdxdjgPCOomy0tsEX1iZrDLi7Z aiXQ6RbwazAfjjSlFHt2ity4hd7R8QnsgnPC+hyf37+1FBr9kwRexvIrmDTdG8oa 32RlLsL6D+GiEuziO/lWsoqVPJ5dUBA8EStPthOgyxS1p8vSm1hMT0IGsNtqzLNw mx/5nT7C6pDVbPXzyzIH9Fx7s0xD8Yb+PfKcJuwysV3LhN7P94DOFAL58KnTaRFA VN9xEBJZrn5zNoNYvU/1aVsYCQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKnW5M/X 6MFwyBrBPw5JhcoRkFS5MB8GA1UdIwQYMBaAFF8wfmJ0rDnlTpmGbau4XCye/Rax MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUY4OS81QkU3NDg3OEM2 OUUxMUVBOUJGOEEzM0NDNEY5QUUwMi9YekItWW5Tc09lVk9tWVp0cTdoY0xKNzlG ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h6Qi1ZblNzT2VWT21ZWnRxN2hjTEo3OUZyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUY4OS81QkU3NDg3OEM2OUUxMUVBOUJGOEEzM0NDNEY5QUUwMi9YekItWW5Tc09l Vk9tWVp0cTdoY0xKNzlGckUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA1tQVqlBiYv149xMD2nysmOhcloq3Zw94BG4DOG9ua+xLSAd15RW6Z+rC29WN j4R1V4SiQoeD2ttatDVLKrAGZqtCtDdIV11C6Ru4lyEOReuYtUiXR0eTzXfR7KiW 8Mk7CZ0P6sS1zuJ5WrNnXI7DfiB++LPBR0Q0JN8oYc8LgEV3TdQKHKTYqM67FuSg qpoiz7zV49FqPU9D5qY+eyJL7ZCU6dE2skEuylU67napjERHVPWbJsXcor4ZcYk2 gudGFXIWF9kaWkhGfW2J/LEpj5fcutFSIgd6dBbxCpRD8tFddn/6TyfFByIoQXFa MuGzn/SJ+9UV5J5lqIv43lsI3g== -----END CERTIFICATE-----Generated at Mon Apr 6 08:53:45 2026 by rpki-client