$ rpki-client -vvf rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft File: XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft (raw, json) Hash identifier: ntfmB/kqIHcX7yMIkyCmdA7oJd0sk6nxNTACi1SEU3Q= Subject key identifier: 5F:9B:EE:80:8D:ED:19:2C:98:AD:91:99:02:C1:F6:8B:EC:75:C8:CA Authority key identifier: 5D:B7:5B:2D:F9:4D:04:47:4A:6E:5E:2D:4B:78:CC:08:4B:FC:2A:6C Certificate issuer: /CN=A912698E/serialNumber=5DB75B2DF94D04474A6E5E2D4B78CC084BFC2A6C Certificate serial: CD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XbdbLflNBEdKbl4tS3jMCEv8Kmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft Manifest number: C7 Signing time: Tue 12 May 2026 17:37:24 +0000 Manifest this update: Tue 12 May 2026 17:37:23 +0000 Manifest next update: Tue 19 May 2026 17:37:23 +0000 Files and hashes: 1: XbdbLflNBEdKbl4tS3jMCEv8Kmw.crl (hash: hLlEFdCKfgKnqap0tsEEA2CSvWW3RNP8IouQYF0xZVk=) 2: 87087F00267E11F09183092AC4F9AE02.roa (hash: ZonpCT+5ZZuP5erM6WjI5zX2DJGXZb7/2jDh35lgn00=) 3: D5271A183ADB11F0BC52A042C4F9AE02.roa (hash: 4a6PLPW/gOHUVu6+aFebgQ5/qx4vCQg4zTQoTmjp9Rk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.crl rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XbdbLflNBEdKbl4tS3jMCEv8Kmw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912698E, serialNumber=5DB75B2DF94D04474A6E5E2D4B78CC084BFC2A6C Validity Not Before: May 12 17:37:23 2026 GMT Not After : May 19 17:37:23 2026 GMT Subject: CN=6a036554-8a84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:02:a8:e2:cf:a3:d4:b7:db:84:88:f9:ff:47: 59:a7:4b:27:fd:00:55:6e:ab:f8:ff:a5:c8:7c:c1: 1e:13:d7:8f:e5:f2:0a:46:e7:b2:42:b3:ba:03:ff: bf:17:9c:bf:47:4b:1b:ec:de:b6:c0:0c:21:a9:00: 21:6e:66:81:67:e3:13:a2:72:82:df:78:4e:56:62: f1:05:ff:a1:e3:d8:65:a0:f2:98:dc:a6:49:60:2f: 1d:ae:fe:3f:b2:5a:f8:ed:8d:01:51:ce:ed:1a:ab: 81:de:94:e3:4a:5f:61:f5:37:5b:a5:de:96:ca:7e: e3:58:9b:91:95:fe:f6:a1:bc:90:c3:bd:6f:11:78: f8:72:f9:d5:7b:a7:a3:95:c9:b4:55:65:fb:88:02: 5b:aa:6b:4c:9f:81:e7:6b:b8:2c:e7:73:9f:b3:46: 0b:da:72:7c:61:81:ca:df:06:ed:19:e6:b3:8d:34: 73:67:55:40:28:9f:03:fd:cd:c8:75:40:e5:6f:ae: 85:48:27:c5:62:45:fc:17:f9:b5:7d:30:0f:8a:2e: f6:b2:67:55:6e:57:b5:9e:4d:ca:5f:3c:90:a0:0a: 81:ad:5a:56:2f:37:84:93:be:3e:ad:11:1f:da:72: 0a:de:0a:16:32:e6:60:3c:37:a3:e5:62:09:6d:7c: 5e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:9B:EE:80:8D:ED:19:2C:98:AD:91:99:02:C1:F6:8B:EC:75:C8:CA X509v3 Authority Key Identifier: keyid:5D:B7:5B:2D:F9:4D:04:47:4A:6E:5E:2D:4B:78:CC:08:4B:FC:2A:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XbdbLflNBEdKbl4tS3jMCEv8Kmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912698E/095F6C8C267C11F09677F80BC4F9AE02/XbdbLflNBEdKbl4tS3jMCEv8Kmw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:e8:d7:24:d9:9f:44:5b:08:2c:32:f6:e5:a8:39:c7:a0:a9: db:b0:a2:fa:7a:16:5b:50:02:68:d2:ee:2e:36:87:8c:62:1a: 90:73:a5:f4:5e:fa:1f:7e:fd:04:a8:00:67:42:fc:ab:6c:e4: 31:50:c2:40:13:27:b2:32:7c:cd:40:32:f2:91:99:23:89:51: 15:b3:5e:72:7d:c6:a0:b5:51:16:c2:4e:91:4d:61:1a:40:b6: ac:44:24:c4:30:ce:e9:01:28:7a:c7:bd:dc:9c:09:80:38:23: f4:f7:9f:a3:1d:5b:14:eb:2e:03:63:97:03:d8:fc:28:8d:0c: 14:a2:50:78:57:e2:7d:52:fe:bf:e1:8c:c7:c6:ef:e9:d3:5f: 8b:0d:e5:d0:3a:79:51:2c:25:7f:b1:95:d6:6e:51:43:f5:cf: 0b:0e:f7:89:da:d2:39:72:ca:d4:83:1c:77:f5:83:b9:5f:f7: 29:3a:46:ce:ff:86:2d:e4:ae:28:93:a2:4a:8b:9b:d6:2f:a0: 02:df:0d:34:b9:da:f3:5d:b9:8f:cb:bb:8d:f4:ea:68:40:65: 17:55:d9:68:a3:00:79:24:5c:82:aa:eb:e4:bf:6d:fe:59:ac: f3:73:5d:1a:ac:f0:f4:08:59:d4:50:32:14:bf:3e:07:b5:f4: 1f:28:b0:9a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjY5OEUxMTAvBgNVBAUTKDVEQjc1QjJERjk0RDA0NDc0QTZFNUUyRDRCNzhDQzA4 NEJGQzJBNkMwHhcNMjYwNTEyMTczNzIzWhcNMjYwNTE5MTczNzIzWjAYMRYwFAYD VQQDEw02YTAzNjU1NC04YTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgKo4s+j1LfbhIj5/0dZp0sn/QBVbqv4/6XIfMEeE9eP5fIKRueyQrO6A/+/ F5y/R0sb7N62wAwhqQAhbmaBZ+MTonKC33hOVmLxBf+h49hloPKY3KZJYC8drv4/ slr47Y0BUc7tGquB3pTjSl9h9Tdbpd6Wyn7jWJuRlf72obyQw71vEXj4cvnVe6ej lcm0VWX7iAJbqmtMn4Hna7gs53Ofs0YL2nJ8YYHK3wbtGeazjTRzZ1VAKJ8D/c3I dUDlb66FSCfFYkX8F/m1fTAPii72smdVble1nk3KXzyQoAqBrVpWLzeEk74+rREf 2nIK3goWMuZgPDej5WIJbXxeNQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF+b7oCN 7RksmK2RmQLB9ovsdcjKMB8GA1UdIwQYMBaAFF23Wy35TQRHSm5eLUt4zAhL/Cps MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjk4RS8wOTVGNkM4QzI2 N0MxMUYwOTY3N0Y4MEJDNEY5QUUwMi9YYmRiTGZsTkJFZEtibDR0UzNqTUNFdjhL bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hiZGJMZmxOQkVkS2JsNHRTM2pNQ0V2OEttdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Njk4RS8wOTVGNkM4QzI2N0MxMUYwOTY3N0Y4MEJDNEY5QUUwMi9YYmRiTGZsTkJF ZEtibDR0UzNqTUNFdjhLbXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAqOjXJNmfRFsILDL25ag5x6Cp27Ci+noWW1ACaNLuLjaHjGIakHOl9F76H379 BKgAZ0L8q2zkMVDCQBMnsjJ8zUAy8pGZI4lRFbNecn3GoLVRFsJOkU1hGkC2rEQk xDDO6QEoese93JwJgDgj9Pefox1bFOsuA2OXA9j8KI0MFKJQeFfifVL+v+GMx8bv 6dNfiw3l0Dp5USwlf7GV1m5RQ/XPCw73idrSOXLK1IMcd/WDuV/3KTpGzv+GLeSu KJOiSoub1i+gAt8NNLna8125j8u7jfTqaEBlF1XZaKMAeSRcgqrr5L9t/lms83Nd Gqzw9AhZ1FAyFL8+B7X0Hyiwmg== -----END CERTIFICATE-----Generated at Wed May 13 03:26:24 2026 by rpki-client