$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft File: XpnXCH3VTqLn519cgIcHE4Posp4.mft (raw, json) Hash identifier: AMep2r6HSXXpQ9q4k80M+kzNJOneKJXpmO8v4Lxr9Kg= Subject key identifier: 52:D7:BD:E5:C0:26:56:6A:6C:AC:CC:D0:20:BB:00:3A:97:2D:73:24 Authority key identifier: 5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E Certificate issuer: /CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Certificate serial: 0BAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft Manifest number: 0B86 Signing time: Wed 20 May 2026 19:10:41 +0000 Manifest this update: Wed 20 May 2026 19:10:41 +0000 Manifest next update: Wed 27 May 2026 19:10:41 +0000 Files and hashes: 1: XpnXCH3VTqLn519cgIcHE4Posp4.crl (hash: mb3uFi3FAxPfbu5tIhML8fa5t8mKXDOrqyoIEdVECQA=) 2: 1ECAB88C1AD811F193E57F8A3E3D8C67.roa (hash: fuUoAX7qold+hBso2xjm+AtCXw9QMD6MxM+hCTTXcPw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 19:10:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2986 (0xbaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81D3, serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Validity Not Before: May 20 19:10:41 2026 GMT Not After : May 27 19:10:41 2026 GMT Subject: CN=6a0e0731-9b65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:96:b8:20:75:aa:a6:a7:02:34:86:ae:16:aa: 79:9e:11:29:fa:88:b1:f7:15:48:da:4d:16:10:b5: e8:0f:99:85:be:3f:31:b0:22:6f:26:eb:aa:aa:00: 8e:67:0d:5d:6b:f9:b2:c6:ee:f9:17:ef:69:17:2c: 02:1b:3e:9b:f6:c8:e4:9b:c6:98:bf:5d:da:06:31: af:db:30:08:fe:d0:dc:fa:e0:8a:83:06:78:de:33: e1:e2:42:8a:85:25:6b:15:97:b4:c5:c9:f3:3a:25: 88:6d:ba:cb:27:fd:24:91:2e:14:ec:b1:8a:9b:c2: 29:02:84:12:53:61:90:a4:da:cc:29:2e:7e:9f:5a: 1a:37:97:98:b3:2d:ce:a0:6b:82:95:38:07:3e:8c: aa:b5:62:59:53:9a:a0:ba:7b:e4:08:b3:be:c2:3b: 89:92:68:b5:fa:7a:84:cf:d8:a6:bd:3f:45:c2:d0: f8:d9:c7:38:1b:34:2f:6f:f7:2b:f2:e7:0e:64:0e: 90:76:4f:72:0f:5b:5f:88:3e:48:03:53:a2:08:6f: b5:14:8b:6b:ce:bf:dc:d9:3c:e8:c6:2a:78:e3:61: 1c:53:d2:06:83:8e:c9:57:38:81:5d:8e:73:71:92: 39:61:64:bb:2e:7c:1e:db:a7:bf:7d:71:26:17:04: 78:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:D7:BD:E5:C0:26:56:6A:6C:AC:CC:D0:20:BB:00:3A:97:2D:73:24 X509v3 Authority Key Identifier: keyid:5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:32:c9:f1:ef:ad:8e:4a:be:6e:ed:1f:df:2e:8a:88:03:a1: 9a:1e:6a:10:e6:c3:f0:05:1e:7d:dc:31:6e:f5:f3:5e:a5:d8: 24:20:cc:1c:72:26:ce:b1:36:5e:ef:1d:c7:e4:91:d0:8a:ef: 5b:77:01:ac:7d:e4:22:b0:d8:f9:c0:23:d3:80:2d:16:d2:34: cc:3a:f7:23:dc:20:50:56:ee:60:e2:47:e0:31:be:d2:02:c6: bd:9d:63:51:66:1e:9b:3e:11:ce:d1:60:43:15:01:e5:ee:43: 2f:29:57:23:80:36:66:ab:ed:ed:e9:68:33:42:60:6e:6b:5f: 51:de:4c:99:50:76:52:0d:bd:e8:f5:a4:87:17:91:0b:e5:83: 21:12:10:32:d4:e2:c1:a3:3e:d2:4c:d6:b6:6a:92:bb:dd:4a: d8:de:e4:81:e6:17:45:ad:d6:60:a4:c4:df:ab:a9:05:03:52: f4:73:35:79:26:f9:ed:9d:4e:ea:bd:c7:73:18:25:4b:97:4f: c6:f6:fd:2f:c1:58:11:42:e1:8f:9a:ed:0a:26:24:73:45:c0: 01:31:82:2b:65:76:29:30:97:39:b4:b0:d9:99:be:c8:be:11: 6e:81:5f:36:6a:9f:19:96:e3:a5:be:1c:74:e3:e3:92:02:b9: 22:d0:a8:f3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxRDMxMTAvBgNVBAUTKDVFOTlENzA4N0RENTRFQTJFN0U3NUY1QzgwODcwNzEz ODNFOEIyOUUwHhcNMjYwNTIwMTkxMDQxWhcNMjYwNTI3MTkxMDQxWjAYMRYwFAYD VQQDEw02YTBlMDczMS05YjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArpa4IHWqpqcCNIauFqp5nhEp+oix9xVI2k0WELXoD5mFvj8xsCJvJuuqqgCO Zw1da/myxu75F+9pFywCGz6b9sjkm8aYv13aBjGv2zAI/tDc+uCKgwZ43jPh4kKK hSVrFZe0xcnzOiWIbbrLJ/0kkS4U7LGKm8IpAoQSU2GQpNrMKS5+n1oaN5eYsy3O oGuClTgHPoyqtWJZU5qgunvkCLO+wjuJkmi1+nqEz9imvT9FwtD42cc4GzQvb/cr 8ucOZA6Qdk9yD1tfiD5IA1OiCG+1FItrzr/c2Tzoxip442EcU9IGg47JVziBXY5z cZI5YWS7Lnwe26e/fXEmFwR4AQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFLXveXA JlZqbKzM0CC7ADqXLXMkMB8GA1UdIwQYMBaAFF6Z1wh91U6i5+dfXICHBxOD6LKe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFEMy8wQTg0NTlGNDUy MzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRxTG41MTljZ0ljSEU0UG9z cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hwblhDSDNWVHFMbjUxOWNnSWNIRTRQb3NwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODFEMy8wQTg0NTlGNDUyMzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRx TG41MTljZ0ljSEU0UG9zcDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA0DLJ8e+tjkq+bu0f3y6KiAOhmh5qEObD8AUefdwxbvXzXqXYJCDMHHImzrE2 Xu8dx+SR0IrvW3cBrH3kIrDY+cAj04AtFtI0zDr3I9wgUFbuYOJH4DG+0gLGvZ1j UWYemz4RztFgQxUB5e5DLylXI4A2Zqvt7eloM0JgbmtfUd5MmVB2Ug296PWkhxeR C+WDIRIQMtTiwaM+0kzWtmqSu91K2N7kgeYXRa3WYKTE36upBQNS9HM1eSb57Z1O 6r3HcxglS5dPxvb9L8FYEULhj5rtCiYkc0XAATGCK2V2KTCXObSw2Zm+yL4RboFf NmqfGZbjpb4cdOPjkgK5ItCo8w== -----END CERTIFICATE-----Generated at Thu May 21 10:15:31 2026 by rpki-client