$ rpki-client -vvf rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft File: XUXapVj_ZfZmNblniAm4rPBAc9I.mft (raw, json) Hash identifier: FMj4Kp7b3sLb7ct06MIvPeXFG2bwRNyTelYZC84qgrs= Subject key identifier: F4:A9:5D:AD:C9:29:59:6E:84:16:93:30:88:B5:6A:35:B0:79:42:17 Authority key identifier: 5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 Certificate issuer: /CN=A91F52FD/serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Certificate serial: 068E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft Manifest number: 067E Signing time: Sat 04 Apr 2026 22:20:46 +0000 Manifest this update: Sat 04 Apr 2026 22:20:45 +0000 Manifest next update: Sat 11 Apr 2026 22:20:45 +0000 Files and hashes: 1: XUXapVj_ZfZmNblniAm4rPBAc9I.crl (hash: JpMro7MLLEvGzrjcO833tlSlL8XBE30UepEeoPvGknE=) 2: 68A88182237011F191BDBAA2B9833773.roa (hash: jJN2AkLqxp991N6LCfgyPrQsqtyTKtHrIpXKhu8DnZs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 22:20:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1678 (0x68e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F52FD, serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Validity Not Before: Apr 4 22:20:45 2026 GMT Not After : Apr 11 22:20:45 2026 GMT Subject: CN=69d18ebe-2f92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:5b:3e:92:77:33:64:12:a2:14:40:a4:5f:b7: 86:28:0c:32:f6:e5:92:93:33:6b:4e:33:52:c3:87: 3a:bb:0a:9d:f9:4d:5c:de:1d:e6:e5:98:df:33:6f: 5f:b2:e4:a9:8a:e5:a0:de:c4:62:e2:51:f9:3c:0a: d3:db:08:72:89:fc:6a:ab:88:28:d5:12:4d:63:1e: ac:dd:39:b8:57:c9:d4:8b:ec:e5:17:ae:d2:69:fe: 73:57:9d:48:d4:67:dc:a9:96:bf:a7:12:3d:4e:c0: 6f:8d:b5:ea:0a:07:0e:44:48:40:e2:f7:82:f3:94: 0c:5e:c4:6b:25:41:06:cf:23:ac:fb:18:47:e1:70: ef:d9:fd:4d:7b:2f:32:f8:93:b4:37:ec:c5:66:1c: 7b:b5:d4:26:0a:9b:4b:d2:1a:f9:67:74:71:fd:0f: 9f:40:e4:81:0f:3a:d1:97:3a:b8:5a:7d:5e:36:21: 99:03:fe:2f:0a:ea:f2:1d:f9:89:f3:85:5b:18:08: 96:54:38:2b:bd:fb:49:22:50:2e:5c:96:06:d8:51: ab:7c:db:6c:5d:56:5f:1b:0c:1b:27:33:ff:74:8e: e2:42:5a:d5:73:37:31:9a:59:4b:7c:d0:17:85:ae: 7e:87:51:12:03:0b:1f:c6:d1:b6:56:5d:ba:f9:63: 75:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A9:5D:AD:C9:29:59:6E:84:16:93:30:88:B5:6A:35:B0:79:42:17 X509v3 Authority Key Identifier: keyid:5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:49:82:ca:90:f2:92:4c:9a:48:35:26:57:16:3d:ab:f7:96: 23:27:65:7c:b0:1b:cd:98:f6:04:15:36:44:fc:46:ac:f0:e6: 3b:43:1a:c6:82:97:70:cb:8b:e0:f7:c5:33:5d:cb:a4:35:54: ac:5a:31:76:5f:53:6a:28:92:59:47:53:3c:22:77:15:04:b6: ad:64:5b:49:ec:40:2e:44:1c:57:1a:1f:0a:3a:ee:63:d0:41: 9f:26:b4:bc:2b:34:42:28:6e:9c:49:40:d4:03:db:67:d8:65: 51:5c:7a:07:a4:3a:69:8a:ea:25:fc:53:ed:6c:2c:49:68:a6: 28:13:d5:0a:ca:92:5a:ea:77:1b:4b:c9:21:e5:a6:11:d3:93: 17:2d:02:86:56:5c:7c:59:7b:11:42:b9:8b:ba:ce:7f:e9:6d: fe:4e:69:aa:33:1b:62:c4:15:0c:0a:1d:77:a2:bd:b9:a9:f6: c6:b0:d9:e7:03:d8:c0:89:31:9f:4e:63:25:8d:ae:0a:eb:ba: d8:34:83:ac:db:13:06:f5:d3:9b:2d:a1:2c:85:8a:db:81:68: 2b:d7:63:09:57:19:4a:32:5c:59:41:67:94:50:ca:74:6f:fa: 21:89:ea:ab:c9:ba:df:d8:b7:bf:d6:22:d9:56:97:49:54:21: 3a:44:f4:4e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyRkQxMTAvBgNVBAUTKDVENDVEQUE1NThGRjY1RjY2NjM1Qjk2Nzg4MDlCOEFD RjA0MDczRDIwHhcNMjYwNDA0MjIyMDQ1WhcNMjYwNDExMjIyMDQ1WjAYMRYwFAYD VQQDEw02OWQxOGViZS0yZjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFs+knczZBKiFECkX7eGKAwy9uWSkzNrTjNSw4c6uwqd+U1c3h3m5ZjfM29f suSpiuWg3sRi4lH5PArT2whyifxqq4go1RJNYx6s3Tm4V8nUi+zlF67Saf5zV51I 1GfcqZa/pxI9TsBvjbXqCgcOREhA4veC85QMXsRrJUEGzyOs+xhH4XDv2f1Ney8y +JO0N+zFZhx7tdQmCptL0hr5Z3Rx/Q+fQOSBDzrRlzq4Wn1eNiGZA/4vCuryHfmJ 84VbGAiWVDgrvftJIlAuXJYG2FGrfNtsXVZfGwwbJzP/dI7iQlrVczcxmllLfNAX ha5+h1ESAwsfxtG2Vl26+WN1rQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPSpXa3J KVluhBaTMIi1ajWweUIXMB8GA1UdIwQYMBaAFF1F2qVY/2X2ZjW5Z4gJuKzwQHPS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTJGRC82MjVGMEYwQUJB Q0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pmWm1OYmxuaUFtNHJQQkFj OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVWGFwVmpfWmZabU5ibG5pQW00clBCQWM5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTJGRC82MjVGMEYwQUJBQ0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pm Wm1OYmxuaUFtNHJQQkFjOUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAE0mCypDykkyaSDUmVxY9q/eWIydlfLAbzZj2BBU2RPxGrPDmO0MaxoKXcMuL 4PfFM13LpDVUrFoxdl9TaiiSWUdTPCJ3FQS2rWRbSexALkQcVxofCjruY9BBnya0 vCs0QihunElA1APbZ9hlUVx6B6Q6aYrqJfxT7WwsSWimKBPVCsqSWup3G0vJIeWm EdOTFy0ChlZcfFl7EUK5i7rOf+lt/k5pqjMbYsQVDAodd6K9uan2xrDZ5wPYwIkx n05jJY2uCuu62DSDrNsTBvXTmy2hLIWK24FoK9djCVcZSjJcWUFnlFDKdG/6IYnq q8m639i3v9Yi2VaXSVQhOkT0Tg== -----END CERTIFICATE-----Generated at Mon Apr 6 09:51:44 2026 by rpki-client