$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft File: xbajYOSK75Kf3CcpbR1S9b9umRY.mft (raw, json) Hash identifier: H8GCCoO5a6YlTk+CQFCzOno4W61ZFpCkuNeQPtpvY6E= Subject key identifier: BE:F8:DE:95:7F:25:81:48:18:20:7F:20:45:F3:C5:1F:41:21:2E:1E Authority key identifier: C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 Certificate issuer: /CN=A91FD088/serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Certificate serial: 0878 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft Manifest number: 086D Signing time: Wed 20 May 2026 20:45:02 +0000 Manifest this update: Wed 20 May 2026 20:45:01 +0000 Manifest next update: Wed 27 May 2026 20:45:01 +0000 Files and hashes: 1: xbajYOSK75Kf3CcpbR1S9b9umRY.crl (hash: igcuy/RFW6EaIC7QWeycZ9NN/sierR1F0h2gCHaBwbM=) 2: 423EA4CC039B11EBB3C1465CC4F9AE02.roa (hash: 6Topyg8bWLl5O5LsyGLXYfvkh05TDjr30BTYJNqKf6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 20:45:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2168 (0x878) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD088, serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Validity Not Before: May 20 20:45:01 2026 GMT Not After : May 27 20:45:01 2026 GMT Subject: CN=6a0e1d4d-2c77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:10:ec:9a:ba:ed:85:33:8d:f1:24:c0:b0:a0: 05:03:2a:d3:3c:27:87:5a:c4:ac:50:67:24:f4:1e: 2f:e2:92:df:8a:8b:6c:83:26:57:9e:af:d6:b3:89: 47:d1:7a:c9:81:4b:6d:f7:1a:b9:3d:f0:94:6e:ab: d1:33:12:47:a8:b9:2e:3b:70:92:d6:b4:ab:d5:b5: fa:bd:9c:aa:6a:eb:95:34:4d:c6:5f:f4:b3:e3:c4: f8:c3:1c:55:3b:2a:23:ea:0d:25:52:23:c7:96:11: 5d:75:59:06:aa:cb:bf:35:be:6e:b9:f0:90:89:0d: ad:3f:f5:2a:70:c0:01:11:13:f9:54:b4:c4:d2:d5: 92:9f:2a:d6:98:50:03:c9:be:e9:4b:5c:36:54:10: c6:73:55:6c:89:f0:cc:d5:9a:20:87:0f:1b:bc:be: b5:46:ce:a9:eb:61:ab:6a:f9:06:84:c8:18:53:53: 0f:d0:b7:b3:10:ea:dd:04:e8:d5:85:9a:ad:6c:a5: 0d:fd:49:86:31:26:57:66:ed:8f:bc:61:d8:3e:8e: 4e:9e:cb:6c:a0:17:8d:e7:ee:be:a7:83:a8:87:a4: c3:6b:ee:04:68:b3:fd:1e:69:49:f4:0b:4a:4d:38: 92:50:66:7d:e8:aa:38:9b:23:da:28:7f:5c:8f:37: f1:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:F8:DE:95:7F:25:81:48:18:20:7F:20:45:F3:C5:1F:41:21:2E:1E X509v3 Authority Key Identifier: keyid:C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:e9:e9:94:40:91:16:8f:21:09:be:7d:7c:f8:dc:8f:cb:cd: 5a:d1:45:bb:4f:d5:32:3f:44:f4:0d:3c:89:bf:dc:74:bc:2c: ab:91:81:e4:5f:5e:a0:2c:00:37:45:2b:24:7d:17:d6:d6:f0: 27:2f:1b:e1:df:0f:a8:f9:3c:39:a5:67:93:64:c4:24:80:22: ea:88:3e:26:a5:c2:d6:0f:d9:aa:bf:10:0a:a1:50:31:e8:c1: c9:78:d3:69:bd:87:2c:80:4f:5a:df:83:f9:be:6e:ca:c9:f0: da:bd:55:53:31:0e:fa:04:f2:94:7e:1e:87:1a:d5:1b:90:0d: 2c:68:2b:67:99:31:73:b6:d6:4f:3a:15:c5:41:c4:f3:6c:51: 65:f2:36:97:93:68:c8:a2:30:6b:e4:37:e4:14:87:fd:3d:47: f7:ce:4a:1f:cd:60:ff:42:72:30:10:a3:f6:42:aa:ac:c3:63: 28:fb:67:57:d6:00:c7:3e:e4:59:2e:76:08:65:1d:0c:31:97: 00:3d:eb:88:69:c3:d9:99:72:0b:12:36:40:39:95:28:0b:3f: 0c:6d:d0:7a:1e:b5:5d:c0:23:b5:66:80:f4:0f:04:59:8e:99: 0f:be:23:e7:b1:83:c9:ad:3c:58:a0:20:7c:58:ab:ef:36:b0: c8:f0:b1:80 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQwODgxMTAvBgNVBAUTKEM1QjZBMzYwRTQ4QUVGOTI5RkRDMjcyOTZEMUQ1MkY1 QkY2RTk5MTYwHhcNMjYwNTIwMjA0NTAxWhcNMjYwNTI3MjA0NTAxWjAYMRYwFAYD VQQDEw02YTBlMWQ0ZC0yYzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApRDsmrrthTON8STAsKAFAyrTPCeHWsSsUGck9B4v4pLfiotsgyZXnq/Ws4lH 0XrJgUtt9xq5PfCUbqvRMxJHqLkuO3CS1rSr1bX6vZyqauuVNE3GX/Sz48T4wxxV Oyoj6g0lUiPHlhFddVkGqsu/Nb5uufCQiQ2tP/UqcMABERP5VLTE0tWSnyrWmFAD yb7pS1w2VBDGc1VsifDM1Zoghw8bvL61Rs6p62GravkGhMgYU1MP0LezEOrdBOjV hZqtbKUN/UmGMSZXZu2PvGHYPo5OnstsoBeN5+6+p4Ooh6TDa+4EaLP9HmlJ9AtK TTiSUGZ96Ko4myPaKH9cjzfxDQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFL743pV/ JYFIGCB/IEXzxR9BIS4eMB8GA1UdIwQYMBaAFMW2o2Dkiu+Sn9wnKW0dUvW/bpkW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDA4OC80NEJBN0NBMkZE OUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1S2YzQ2NwYlIxUzliOXVt UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hiYWpZT1NLNzVLZjNDY3BiUjFTOWI5dW1SWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDA4OC80NEJBN0NBMkZEOUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1 S2YzQ2NwYlIxUzliOXVtUlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAT+nplECRFo8hCb59fPjcj8vNWtFFu0/VMj9E9A08ib/cdLwsq5GB5F9eoCwA N0UrJH0X1tbwJy8b4d8PqPk8OaVnk2TEJIAi6og+JqXC1g/Zqr8QCqFQMejByXjT ab2HLIBPWt+D+b5uysnw2r1VUzEO+gTylH4ehxrVG5ANLGgrZ5kxc7bWTzoVxUHE 82xRZfI2l5NoyKIwa+Q35BSH/T1H985KH81g/0JyMBCj9kKqrMNjKPtnV9YAxz7k WS52CGUdDDGXAD3riGnD2ZlyCxI2QDmVKAs/DG3Qeh61XcAjtWaA9A8EWY6ZD74j 57GDya08WKAgfFir7zawyPCxgA== -----END CERTIFICATE-----Generated at Thu May 21 09:28:51 2026 by rpki-client