$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: I1up63T/M02soTI/Z4SJqRj+xqGgzuQGYno2DCRTCI4= Subject key identifier: 8D:FB:BC:D7:79:A0:5F:70:5E:DE:39:0D:3A:C1:76:56:64:A9:3F:C5 Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 25B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 25B2 Signing time: Sat 18 Apr 2026 14:32:24 +0000 Manifest this update: Sat 18 Apr 2026 14:32:23 +0000 Manifest next update: Sat 25 Apr 2026 14:32:23 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: yGbZk6ljFPbT/SVmT9+0M/1Vh+AfcHb/MYyzVWiJsfY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 14:32:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9650 (0x25b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Validity Not Before: Apr 18 14:32:23 2026 GMT Not After : Apr 25 14:32:23 2026 GMT Subject: CN=69e395f7-2231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:74:79:34:3e:eb:31:d9:ae:41:e3:8b:33:f2: 89:bd:91:2a:ef:ed:ce:d2:09:ba:7b:2e:9e:06:eb: b6:94:fc:6b:cf:a4:59:23:c9:02:03:4f:0e:51:bd: 84:0e:3f:d6:21:7e:e1:4c:65:9c:69:8e:39:a7:c8: c1:7d:f5:3b:6c:cd:96:f8:c4:72:23:6c:f6:a4:8f: d7:b2:3f:b3:29:32:ab:06:6c:1d:6c:16:82:d9:6d: 72:88:e1:06:67:fe:67:b1:92:80:52:a5:fa:e0:9f: 1d:34:1e:01:c8:b4:6f:d5:9c:80:2c:2d:24:55:dc: 10:6f:c5:b0:8c:37:6c:80:57:72:5d:a8:3d:a7:02: 1a:b5:58:1a:12:6c:10:7f:f3:f2:22:33:48:3b:d8: e8:cb:0b:7b:85:1d:3d:55:00:76:d2:d7:7b:29:eb: 18:58:e9:14:db:ac:85:07:5b:a1:da:ce:25:17:74: fc:e0:20:9a:6b:1e:51:8e:9e:8d:9d:e3:ec:c8:da: c0:0d:55:1b:89:cf:34:ee:63:0b:36:4b:9c:57:c3: a3:20:c5:af:1d:61:4b:77:6e:37:7d:2f:f9:4f:76: 32:3d:93:54:10:4d:f2:88:12:8d:69:9e:ee:e4:be: 79:02:95:12:cf:b6:23:bf:e0:b9:ee:94:72:be:c8: 16:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:FB:BC:D7:79:A0:5F:70:5E:DE:39:0D:3A:C1:76:56:64:A9:3F:C5 X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:89:3f:fe:78:ef:8d:8e:49:1c:f0:99:e5:87:0b:7d:95:d7: 41:f1:7c:3a:c1:75:35:b4:8e:52:85:43:44:36:b6:12:89:5f: f8:cd:7a:47:da:33:fe:ac:1d:bb:94:61:06:8e:60:b0:44:5c: ca:0f:3c:b2:bc:fd:a7:80:04:95:40:5e:ef:09:b7:5b:7a:b2: 45:25:5b:15:a7:72:cf:ce:a9:c1:c5:9b:f1:62:f9:d3:e9:44: df:0e:0a:f4:18:62:a2:5e:b7:24:d1:87:1c:87:f6:e2:36:60: a0:b5:2f:4e:14:7f:be:56:1e:bb:7e:d7:38:2c:db:71:c3:3b: 50:49:df:66:02:9d:b8:dc:98:38:89:64:ae:33:25:84:19:83: 42:6b:35:4f:af:db:8e:25:d1:8d:ef:c8:0a:50:24:a7:3b:2a: 1a:8f:cb:46:21:47:0c:6f:f6:a7:07:59:5e:d9:c3:36:8a:22: 2b:c9:16:8e:d6:af:5a:11:39:17:63:4d:12:bb:46:7f:ca:6c: e4:32:e2:00:b0:87:ee:2b:c0:bd:b3:e6:8b:c9:bd:a1:d8:42: 46:ca:9b:ec:2f:24:4a:1c:0b:3a:c5:7a:86:f3:ec:b2:58:3d: ba:ff:fe:6b:7b:fa:5b:7c:da:62:c6:d5:6f:20:1b:04:fa:75: 04:59:f0:92 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjYwNDE4MTQzMjIzWhcNMjYwNDI1MTQzMjIzWjAYMRYwFAYD VQQDEw02OWUzOTVmNy0yMjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnHR5ND7rMdmuQeOLM/KJvZEq7+3O0gm6ey6eBuu2lPxrz6RZI8kCA08OUb2E Dj/WIX7hTGWcaY45p8jBffU7bM2W+MRyI2z2pI/Xsj+zKTKrBmwdbBaC2W1yiOEG Z/5nsZKAUqX64J8dNB4ByLRv1ZyALC0kVdwQb8WwjDdsgFdyXag9pwIatVgaEmwQ f/PyIjNIO9joywt7hR09VQB20td7KesYWOkU26yFB1uh2s4lF3T84CCaax5Rjp6N nePsyNrADVUbic807mMLNkucV8OjIMWvHWFLd243fS/5T3YyPZNUEE3yiBKNaZ7u 5L55ApUSz7Yjv+C57pRyvsgWzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFI37vNd5 oF9wXt45DTrBdlZkqT/FMB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXYk//njvjY5JHPCZ5YcLfZXXQfF8OsF1NbSOUoVDRDa2Eolf+M16R9oz/qwd u5RhBo5gsERcyg88srz9p4AElUBe7wm3W3qyRSVbFadyz86pwcWb8WL50+lE3w4K 9Bhiol63JNGHHIf24jZgoLUvThR/vlYeu37XOCzbccM7UEnfZgKduNyYOIlkrjMl hBmDQms1T6/bjiXRje/IClAkpzsqGo/LRiFHDG/2pwdZXtnDNooiK8kWjtavWhE5 F2NNErtGf8ps5DLiALCH7ivAvbPmi8m9odhCRsqb7C8kShwLOsV6hvPsslg9uv/+ a3v6W3zaYsbVbyAbBPp1BFnwkg== -----END CERTIFICATE-----Generated at Sat Apr 18 21:07:41 2026 by rpki-client