$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: JaczVh+w02+rV3vGSDVdbUfJ/8TbkaSuXiL7+J3LnZs= Subject key identifier: EA:E4:F3:8D:0A:86:BF:5A:18:F4:92:21:97:58:AD:6A:32:F7:F9:4F Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 25C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 25C9 Signing time: Tue 02 Jun 2026 14:32:32 +0000 Manifest this update: Tue 02 Jun 2026 14:32:32 +0000 Manifest next update: Tue 09 Jun 2026 14:32:32 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: QlT5qPI8dejt2VV3susZVrhxMl+LDgzgua/Dosg0K8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 14:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9673 (0x25c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Validity Not Before: Jun 2 14:32:32 2026 GMT Not After : Jun 9 14:32:32 2026 GMT Subject: CN=6a1ee980-1c29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4f:50:f0:f0:01:9f:05:25:2a:12:26:8c:db: 51:68:b6:a0:47:80:2d:84:89:e5:e7:f3:05:3f:f2: 5b:ac:e5:31:1f:c3:17:fb:4f:58:fc:c4:27:4a:0e: e4:1e:b4:84:ef:15:a7:83:e8:6c:6c:3f:59:cc:b2: 47:fc:6f:7b:bc:58:9f:59:bf:ec:c4:31:15:53:de: a4:66:09:15:e9:a5:b6:ac:94:90:eb:76:04:46:27: c8:df:76:d8:71:a1:10:61:6c:d7:26:6e:50:5b:d7: bd:5c:40:82:7a:d3:38:6f:37:90:8b:9a:6f:9c:65: 32:93:cb:7d:e4:5e:34:d4:62:61:dc:a0:28:f5:1f: d9:5a:84:37:4c:ff:87:be:1d:9e:a6:fb:23:37:0c: bf:c4:f2:24:0a:b2:f8:7d:63:06:29:bf:59:d3:13: 9a:e9:a9:a7:f8:73:78:df:de:07:59:4a:ca:0c:40: e0:d5:43:ab:d1:b9:36:a6:0d:6c:66:5a:7c:87:5e: fe:12:43:98:1e:dd:a7:ce:58:68:2a:35:40:a4:89: cd:88:ef:aa:f3:22:48:0f:9b:92:42:38:f4:14:44: 70:3c:60:92:5e:d0:f9:a6:41:00:ce:2d:05:10:11: be:2d:3b:83:f3:dc:ba:b2:ac:04:5d:36:02:e7:7a: dc:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:E4:F3:8D:0A:86:BF:5A:18:F4:92:21:97:58:AD:6A:32:F7:F9:4F X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:fb:6b:df:c2:f5:71:e8:67:5e:0b:b6:e5:3c:f7:b1:3f:84: ad:ed:9c:79:0f:82:38:3d:5a:76:69:26:72:a5:4f:5c:e1:dc: a2:2c:ce:00:d3:8c:d6:78:a6:d1:01:39:f1:ae:47:29:2b:77: 87:34:38:07:be:e4:bc:4f:47:d8:97:8d:4f:e8:c6:18:d2:92: 98:08:f0:86:c7:bb:cf:88:cb:2f:aa:7c:70:22:7f:bd:a2:02: be:7c:6e:01:e4:88:d8:ba:8e:e4:b9:5e:9e:92:c3:7f:b6:46: 9e:e3:e9:76:6d:d0:25:44:1f:9b:1b:cd:29:fb:6c:a0:52:8e: 8d:1f:91:40:7c:db:61:9d:bd:1c:43:c5:f2:33:48:e0:bb:0e: 93:d3:a6:ad:3c:92:e6:5d:96:80:fe:bf:a9:91:35:c9:22:53: 7a:ec:43:a9:8f:2e:80:2c:36:b1:04:79:fc:ba:59:7f:9b:dd: 46:92:bd:0f:a3:16:e1:60:1a:89:59:26:b2:fb:5b:9b:72:17: 81:e2:43:a2:4b:15:7e:59:73:e6:a8:fc:a6:da:27:7b:55:a5: 1d:a0:55:fc:60:53:d2:ab:e3:88:b7:80:b5:b6:45:1f:fb:fe: d9:1b:28:29:fe:68:f6:55:10:7b:8e:a5:8a:b1:22:da:eb:92: 91:0a:8f:08 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjYwNjAyMTQzMjMyWhcNMjYwNjA5MTQzMjMyWjAYMRYwFAYD VQQDEw02YTFlZTk4MC0xYzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxk9Q8PABnwUlKhImjNtRaLagR4AthInl5/MFP/JbrOUxH8MX+09Y/MQnSg7k HrSE7xWng+hsbD9ZzLJH/G97vFifWb/sxDEVU96kZgkV6aW2rJSQ63YERifI33bY caEQYWzXJm5QW9e9XECCetM4bzeQi5pvnGUyk8t95F401GJh3KAo9R/ZWoQ3TP+H vh2epvsjNwy/xPIkCrL4fWMGKb9Z0xOa6amn+HN4394HWUrKDEDg1UOr0bk2pg1s Zlp8h17+EkOYHt2nzlhoKjVApInNiO+q8yJID5uSQjj0FERwPGCSXtD5pkEAzi0F EBG+LTuD89y6sqwEXTYC53rctwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOrk840K hr9aGPSSIZdYrWoy9/lPMB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdvtr38L1cehnXgu25Tz3sT+Ere2ceQ+COD1admkmcqVPXOHcoizOANOM1nim 0QE58a5HKSt3hzQ4B77kvE9H2JeNT+jGGNKSmAjwhse7z4jLL6p8cCJ/vaICvnxu AeSI2LqO5LlenpLDf7ZGnuPpdm3QJUQfmxvNKftsoFKOjR+RQHzbYZ29HEPF8jNI 4LsOk9OmrTyS5l2WgP6/qZE1ySJTeuxDqY8ugCw2sQR5/LpZf5vdRpK9D6MW4WAa iVkmsvtbm3IXgeJDoksVfllz5qj8ptone1WlHaBV/GBT0qvjiLeAtbZFH/v+2Rso Kf5o9lUQe46lirEi2uuSkQqPCA== -----END CERTIFICATE-----Generated at Tue Jun 2 21:44:02 2026 by rpki-client