$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft File: XozcAfwJtFN0mgHuUjmzXt4kvmw.mft (raw, json) Hash identifier: 3/YNj1H8Wonj0gBdsQ1YUoE4Cc2FJOvQNMX2+R6TJNw= Subject key identifier: 96:F4:A5:61:83:44:66:D0:5C:8A:7B:B4:E8:D8:A7:0A:E2:99:F6:7C Authority key identifier: 5E:8C:DC:01:FC:09:B4:53:74:9A:01:EE:52:39:B3:5E:DE:24:BE:6C Certificate issuer: /CN=A91F4CFA/serialNumber=5E8CDC01FC09B453749A01EE5239B35EDE24BE6C Certificate serial: 07DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft Manifest number: 07D5 Signing time: Sat 04 Apr 2026 21:08:43 +0000 Manifest this update: Sat 04 Apr 2026 21:08:42 +0000 Manifest next update: Sat 11 Apr 2026 21:08:42 +0000 Files and hashes: 1: XozcAfwJtFN0mgHuUjmzXt4kvmw.crl (hash: 3DBzHS4Bo+9RojauLxmpKHRlXm0wVfku/luWZdQVK/I=) 2: A5D573E4305A11EB921D6332C4F9AE02.roa (hash: EXIodqZO0EV9Q7D8N2AnvfLDO9Fid8uBbsf7/azJXeA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.crl rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:08:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2013 (0x7dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4CFA, serialNumber=5E8CDC01FC09B453749A01EE5239B35EDE24BE6C Validity Not Before: Apr 4 21:08:42 2026 GMT Not After : Apr 11 21:08:42 2026 GMT Subject: CN=69d17ddb-fccd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2e:67:11:a2:c5:74:85:df:e9:1b:39:db:45: fc:86:49:98:43:14:b1:39:8c:ef:ff:6f:83:09:e4: d3:0f:c4:ba:89:e4:46:53:53:94:f4:3f:81:4f:9f: 84:db:8f:d5:d1:3d:bc:0a:6a:59:a7:ca:33:bc:4d: ed:e3:93:6b:db:f7:d1:35:b2:03:85:d1:0c:d9:d8: 6d:e6:7b:15:c8:74:2e:87:1f:ed:4e:e0:1d:66:db: 88:35:55:82:8f:61:34:69:fb:85:ee:3c:f2:12:a7: c4:99:d5:f3:28:7f:79:48:89:39:9a:30:39:6f:e9: bb:ec:44:a1:6e:ca:5a:b9:d8:67:45:f9:19:d6:3e: 22:a7:72:e3:59:a2:9d:cc:b7:9e:20:a5:5e:66:61: 85:21:1e:10:71:d2:47:92:3d:5b:f2:25:ba:b4:f2: 11:d7:0d:3e:44:8c:5f:1f:6a:b9:c7:45:28:dd:45: 68:16:96:ec:7f:43:c5:67:77:e2:7f:4c:b6:88:70: 3e:e6:dd:b6:0b:12:53:2f:e8:c9:80:8e:61:e6:ca: 46:13:50:f6:67:0d:c7:1b:77:62:75:60:33:5b:22: cb:d0:61:66:db:bb:3a:0a:3a:37:4b:db:17:2a:ae: 9d:d9:84:cb:e7:fa:0c:47:7e:5a:e1:79:e9:b9:9b: 72:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:F4:A5:61:83:44:66:D0:5C:8A:7B:B4:E8:D8:A7:0A:E2:99:F6:7C X509v3 Authority Key Identifier: keyid:5E:8C:DC:01:FC:09:B4:53:74:9A:01:EE:52:39:B3:5E:DE:24:BE:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:a8:a5:29:98:fa:95:68:9d:a9:5e:7c:28:fd:b6:8f:ce:6d: f6:12:24:0b:3c:81:1e:68:41:87:65:b5:6c:7a:47:ca:13:dd: 6e:17:4c:e7:51:c7:a8:3e:d3:bd:9d:59:cc:25:a0:86:45:8e: fc:34:79:77:d9:a3:5c:21:79:47:44:ab:13:f6:de:b9:b8:09: 52:47:16:2c:cf:e1:86:74:2b:af:e9:cf:63:c5:fc:69:c7:5c: 64:1c:85:05:06:31:60:63:a4:99:dd:13:c5:ab:09:2b:08:f6: a0:4e:44:63:64:b1:d0:69:93:3f:6d:af:45:7e:4d:91:5c:94: 81:e3:63:e0:62:a2:65:ec:7a:69:7d:a7:83:f8:69:ad:a3:ed: d3:72:8a:44:2f:0a:8f:b6:87:2e:37:98:5f:c4:74:23:00:33: d2:9e:ec:b6:20:c6:e3:77:7e:64:98:6b:32:29:ef:85:3d:34: 88:25:5b:74:1d:4b:02:04:52:a2:ee:f3:f8:bc:c1:d0:02:a3: b0:ae:9f:9e:ae:3c:dc:5c:86:91:ca:d7:d7:c8:ec:bd:25:be: fa:9d:4f:97:77:a3:25:51:18:b6:4c:50:13:32:25:34:4f:b0: 0f:b0:40:3b:4f:bf:43:44:af:be:a0:61:f4:3d:97:8e:be:98: ff:0a:d9:8c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICB90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRDRkExMTAvBgNVBAUTKDVFOENEQzAxRkMwOUI0NTM3NDlBMDFFRTUyMzlCMzVF REUyNEJFNkMwHhcNMjYwNDA0MjEwODQyWhcNMjYwNDExMjEwODQyWjAYMRYwFAYD VQQDEw02OWQxN2RkYi1mY2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsi5nEaLFdIXf6Rs520X8hkmYQxSxOYzv/2+DCeTTD8S6ieRGU1OU9D+BT5+E 24/V0T28CmpZp8ozvE3t45Nr2/fRNbIDhdEM2dht5nsVyHQuhx/tTuAdZtuINVWC j2E0afuF7jzyEqfEmdXzKH95SIk5mjA5b+m77EShbspaudhnRfkZ1j4ip3LjWaKd zLeeIKVeZmGFIR4QcdJHkj1b8iW6tPIR1w0+RIxfH2q5x0Uo3UVoFpbsf0PFZ3fi f0y2iHA+5t22CxJTL+jJgI5h5spGE1D2Zw3HG3didWAzWyLL0GFm27s6Cjo3S9sX Kq6d2YTL5/oMR35a4XnpuZty+QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJb0pWGD RGbQXIp7tOjYpwrimfZ8MB8GA1UdIwQYMBaAFF6M3AH8CbRTdJoB7lI5s17eJL5s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNENGQS8xQzJGQUIyRTMw NTkxMUVCQjgzNUMxMzBDNEY5QUUwMi9Yb3pjQWZ3SnRGTjBtZ0h1VWptelh0NGt2 bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvemNBZndKdEZOMG1nSHVVam16WHQ0a3Ztdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NENGQS8xQzJGQUIyRTMwNTkxMUVCQjgzNUMxMzBDNEY5QUUwMi9Yb3pjQWZ3SnRG TjBtZ0h1VWptelh0NGt2bXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApailKZj6lWidqV58KP22j85t9hIkCzyBHmhBh2W1bHpHyhPdbhdM51HHqD7T vZ1ZzCWghkWO/DR5d9mjXCF5R0SrE/beubgJUkcWLM/hhnQrr+nPY8X8acdcZByF BQYxYGOkmd0TxasJKwj2oE5EY2Sx0GmTP22vRX5NkVyUgeNj4GKiZex6aX2ng/hp raPt03KKRC8Kj7aHLjeYX8R0IwAz0p7stiDG43d+ZJhrMinvhT00iCVbdB1LAgRS ou7z+LzB0AKjsK6fnq483FyGkcrX18jsvSW++p1Pl3ejJVEYtkxQEzIlNE+wD7BA O0+/Q0SvvqBh9D2Xjr6Y/wrZjA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:52:01 2026 by rpki-client