$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft File: XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft (raw, json) Hash identifier: JZBLBsUNBj9KiUYR0WFBf3X7MootJZrZKQdF0ul1xeQ= Subject key identifier: 67:2A:C8:E9:83:CF:DA:EE:15:F6:67:59:45:3F:7E:76:C6:4F:32:89 Authority key identifier: 5F:30:7E:62:74:AC:39:E5:4E:99:86:6D:AB:B8:5C:2C:9E:FD:16:B1 Certificate issuer: /CN=A91E9F89/serialNumber=5F307E6274AC39E54E99866DABB85C2C9EFD16B1 Certificate serial: 0924 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft Manifest number: 091B Signing time: Wed 20 May 2026 20:17:08 +0000 Manifest this update: Wed 20 May 2026 20:17:08 +0000 Manifest next update: Wed 27 May 2026 20:17:08 +0000 Files and hashes: 1: XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl (hash: TY/D8UaguB9Aua2qbb1OQdZh3BVueFjhxJ4n9VS6Ink=) 2: 05B67AF8C6A011EAA70D183FC4F9AE02.roa (hash: cUXww9pLUmzXMLoFEIgXrShzexTLcuKYoU1Hg9CwYj8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 20:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2340 (0x924) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9F89, serialNumber=5F307E6274AC39E54E99866DABB85C2C9EFD16B1 Validity Not Before: May 20 20:17:08 2026 GMT Not After : May 27 20:17:08 2026 GMT Subject: CN=6a0e16c4-2052 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:76:93:85:ca:33:e5:c1:92:69:2f:b9:d7:0d: bd:52:aa:c9:30:38:0a:1e:90:28:5b:cb:52:37:f9: 09:88:9c:ea:69:83:8d:fa:74:57:e4:6d:ae:02:13: 39:0b:3a:99:85:d3:05:62:42:aa:ce:d9:1b:e8:4e: c6:39:ce:ce:ae:05:49:a8:59:5a:29:b8:b5:81:b2: b2:78:33:d8:d2:eb:f1:3c:57:87:7e:8e:f5:30:0d: ce:61:aa:d5:06:00:54:37:15:cb:78:93:dc:da:8e: 18:d9:ec:bc:bb:8c:22:98:9a:f7:2e:62:eb:14:f0: 40:e5:e0:b3:f6:de:d5:f0:c8:47:7c:fe:1f:0f:81: 04:17:f2:b3:7f:a8:ef:a2:6b:e4:ba:6c:43:82:ed: 9c:14:2b:45:a9:a7:7f:70:9f:51:e9:04:d2:2e:b6: 12:e4:e0:aa:86:54:6f:12:de:34:d3:7a:74:5b:a3: a8:28:fe:40:bc:39:6c:00:f2:15:49:8b:59:ed:23: 27:e3:b0:7d:80:03:cb:97:65:23:1e:80:07:97:65: 1d:27:79:71:52:58:5f:cc:86:57:99:06:39:1b:7d: 16:06:ec:7b:5a:c1:51:3c:4c:ba:df:15:2f:61:fe: d8:5f:6a:1a:09:a0:d2:d9:a7:d5:05:65:40:1f:ef: 8e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:2A:C8:E9:83:CF:DA:EE:15:F6:67:59:45:3F:7E:76:C6:4F:32:89 X509v3 Authority Key Identifier: keyid:5F:30:7E:62:74:AC:39:E5:4E:99:86:6D:AB:B8:5C:2C:9E:FD:16:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:80:51:ca:cb:f9:ab:cb:f7:2c:0e:fa:b6:7b:12:51:59:e9: f9:14:c6:b9:62:0c:88:1b:d6:d9:92:ad:04:90:30:f6:73:91: 4f:fa:88:22:95:35:a6:4a:fd:8d:e1:e6:04:5a:ed:e3:63:fc: e6:66:28:66:e9:b3:5d:04:d0:c3:94:ea:c7:df:a1:35:d1:7a: 9d:46:c3:93:42:42:91:08:ea:26:0b:22:25:5e:f7:46:06:bb: 1c:bb:42:e0:60:78:6b:2b:a7:46:95:de:13:78:4e:a1:7e:33: 84:1a:1f:59:a6:26:21:a1:52:2c:54:1d:9d:88:f4:61:ae:36: 29:23:97:a5:e8:a7:b9:a8:95:ef:36:51:7c:36:3f:23:e4:56: e2:16:f5:9d:20:b9:6d:3a:8b:1e:bd:3f:a5:47:c1:fe:2c:4b: 85:97:bb:82:16:41:52:c0:9a:c7:7d:4b:a7:be:e7:f6:be:54: ff:07:b3:74:14:40:d9:d4:82:e3:d8:24:7d:c6:fc:cd:f2:32: 30:a7:75:a9:3e:01:7b:c4:42:ac:3f:50:25:46:45:d9:1b:d1: f7:b7:fe:38:34:6d:9d:88:69:08:d9:50:32:ba:82:be:33:11: 5c:6d:3d:e1:df:fd:6e:9a:44:3d:f4:92:86:02:24:fa:6e:3f: d6:ea:06:f7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCSQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlGODkxMTAvBgNVBAUTKDVGMzA3RTYyNzRBQzM5RTU0RTk5ODY2REFCQjg1QzJD OUVGRDE2QjEwHhcNMjYwNTIwMjAxNzA4WhcNMjYwNTI3MjAxNzA4WjAYMRYwFAYD VQQDEw02YTBlMTZjNC0yMDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6HaThcoz5cGSaS+51w29UqrJMDgKHpAoW8tSN/kJiJzqaYON+nRX5G2uAhM5 CzqZhdMFYkKqztkb6E7GOc7OrgVJqFlaKbi1gbKyeDPY0uvxPFeHfo71MA3OYarV BgBUNxXLeJPc2o4Y2ey8u4wimJr3LmLrFPBA5eCz9t7V8MhHfP4fD4EEF/Kzf6jv omvkumxDgu2cFCtFqad/cJ9R6QTSLrYS5OCqhlRvEt4003p0W6OoKP5AvDlsAPIV SYtZ7SMn47B9gAPLl2UjHoAHl2UdJ3lxUlhfzIZXmQY5G30WBux7WsFRPEy63xUv Yf7YX2oaCaDS2afVBWVAH++O6wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGcqyOmD z9ruFfZnWUU/fnbGTzKJMB8GA1UdIwQYMBaAFF8wfmJ0rDnlTpmGbau4XCye/Rax MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUY4OS81QkU3NDg3OEM2 OUUxMUVBOUJGOEEzM0NDNEY5QUUwMi9YekItWW5Tc09lVk9tWVp0cTdoY0xKNzlG ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h6Qi1ZblNzT2VWT21ZWnRxN2hjTEo3OUZyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUY4OS81QkU3NDg3OEM2OUUxMUVBOUJGOEEzM0NDNEY5QUUwMi9YekItWW5Tc09l Vk9tWVp0cTdoY0xKNzlGckUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAOoBRysv5q8v3LA76tnsSUVnp+RTGuWIMiBvW2ZKtBJAw9nORT/qIIpU1pkr9 jeHmBFrt42P85mYoZumzXQTQw5Tqx9+hNdF6nUbDk0JCkQjqJgsiJV73Rga7HLtC 4GB4ayunRpXeE3hOoX4zhBofWaYmIaFSLFQdnYj0Ya42KSOXpeinuaiV7zZRfDY/ I+RW4hb1nSC5bTqLHr0/pUfB/ixLhZe7ghZBUsCax31Lp77n9r5U/wezdBRA2dSC 49gkfcb8zfIyMKd1qT4Be8RCrD9QJUZF2RvR97f+ODRtnYhpCNlQMrqCvjMRXG09 4d/9bppEPfSShgIk+m4/1uoG9w== -----END CERTIFICATE-----Generated at Thu May 21 10:39:31 2026 by rpki-client