$ rpki-client -vvf rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft File: XLKYvBpwUBeAXFYfCQoNR5UOar0.mft (raw, json) Hash identifier: j9r7T+SfWYW34QY/TPUJWAH3fUkkNw0YSoAKfUoMRoQ= Subject key identifier: 26:EB:1A:25:7C:AE:9B:DB:BF:CB:71:37:D1:70:DB:3E:BA:FE:7A:A8 Authority key identifier: 5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD Certificate issuer: /CN=A912BFC5/serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Certificate serial: 25B9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft Manifest number: 25B9 Signing time: Tue 12 May 2026 14:16:38 +0000 Manifest this update: Tue 12 May 2026 14:16:37 +0000 Manifest next update: Tue 19 May 2026 14:16:37 +0000 Files and hashes: 1: XLKYvBpwUBeAXFYfCQoNR5UOar0.crl (hash: LUZ8EuBsOj3LVr9aJxQQueqSNifqm5F5TpLiJM+BfCY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:16:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9657 (0x25b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BFC5, serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Validity Not Before: May 12 14:16:37 2026 GMT Not After : May 19 14:16:37 2026 GMT Subject: CN=6a033645-f35c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0c:5f:1e:7a:3f:ea:56:d9:e4:30:9d:b3:5c: 68:69:1b:44:aa:ef:ad:4c:fc:88:90:5c:ae:3b:8b: a0:46:ad:a6:10:77:35:d1:94:d5:52:9d:1c:e2:9d: da:49:67:e8:9f:34:da:68:7f:9b:a7:18:9a:56:8f: 73:77:44:4b:38:63:f5:cb:e7:2c:51:12:e7:a9:6f: d0:14:b7:20:e5:00:a8:2c:8c:cf:71:6f:7d:ae:e7: 3a:9e:19:02:ca:ab:07:69:4b:c3:51:0a:f5:87:97: 88:ff:10:70:62:d9:5e:51:9d:18:94:97:7c:af:0a: 91:25:d3:9b:c1:25:6c:a8:bc:95:42:73:c5:c0:22: bc:ad:c3:26:d9:0b:c1:93:bb:22:5c:38:66:67:17: 43:8d:57:4a:fc:c5:42:88:45:f2:f4:45:74:3f:67: 03:12:81:f2:b5:14:38:59:da:fa:8a:fe:ce:72:bc: e6:8a:94:43:33:a4:b3:60:d4:85:af:6e:a1:9e:8b: ba:f3:de:da:f8:ed:e0:74:bc:4c:f9:e2:5c:7b:67: e6:c4:58:b1:db:e7:71:71:31:5d:f7:21:e6:cd:ab: aa:46:0b:1d:16:8f:16:35:60:0e:21:a5:b6:6c:9e: 79:74:84:f2:73:58:c2:47:14:c7:9c:af:53:e5:d7: b0:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:EB:1A:25:7C:AE:9B:DB:BF:CB:71:37:D1:70:DB:3E:BA:FE:7A:A8 X509v3 Authority Key Identifier: keyid:5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:52:7a:6d:0c:87:ed:d0:21:19:4a:c7:f0:fa:91:ef:f1:ad: 00:62:54:12:ce:0a:06:60:27:16:83:41:07:f2:5c:b7:45:d3: 09:e3:f7:ac:b9:ad:23:f4:b6:ab:73:f5:04:a0:08:e1:e0:8c: c6:d0:25:5d:08:26:7b:cb:92:97:d8:91:45:12:dd:b2:6e:b2: 31:26:c7:87:84:27:8a:a2:e6:4f:0b:f3:bf:b0:e6:5f:9f:62: 3d:84:12:16:9b:ac:21:83:de:b7:11:86:60:2b:63:ee:f4:a1: 1f:85:23:32:e1:18:3b:01:d1:93:9a:82:2a:05:c3:b5:72:74: 32:4c:2c:fa:b0:78:05:0a:31:36:00:3a:56:f8:c3:be:2c:6d: 28:34:d8:37:5f:19:93:f6:99:b4:e7:46:45:e7:f4:c6:d9:9e: 9b:53:f8:19:a7:6e:dd:3f:6c:62:58:e9:44:e0:2c:04:a7:73: 9d:92:6e:1a:1f:5e:58:ba:bc:d4:2f:e9:19:e5:75:4f:bf:52: 1a:ad:94:c9:58:62:f8:d6:97:2f:0c:61:35:a3:ff:ab:98:d2: 02:7f:9c:d0:05:c3:ef:8e:c1:ac:f2:ef:e9:b8:89:a9:3a:01: 1f:ff:e2:42:86:fa:dd:3a:b1:67:57:6d:27:9e:08:78:5f:b2: 63:98:27:70 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJGQzUxMTAvBgNVBAUTKDVDQjI5OEJDMUE3MDUwMTc4MDVDNTYxRjA5MEEwRDQ3 OTUwRTZBQkQwHhcNMjYwNTEyMTQxNjM3WhcNMjYwNTE5MTQxNjM3WjAYMRYwFAYD VQQDEw02YTAzMzY0NS1mMzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwxfHno/6lbZ5DCds1xoaRtEqu+tTPyIkFyuO4ugRq2mEHc10ZTVUp0c4p3a SWfonzTaaH+bpxiaVo9zd0RLOGP1y+csURLnqW/QFLcg5QCoLIzPcW99ruc6nhkC yqsHaUvDUQr1h5eI/xBwYtleUZ0YlJd8rwqRJdObwSVsqLyVQnPFwCK8rcMm2QvB k7siXDhmZxdDjVdK/MVCiEXy9EV0P2cDEoHytRQ4Wdr6iv7OcrzmipRDM6SzYNSF r26hnou6897a+O3gdLxM+eJce2fmxFix2+dxcTFd9yHmzauqRgsdFo8WNWAOIaW2 bJ55dITyc1jCRxTHnK9T5dewvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCbrGiV8 rpvbv8txN9Fw2z66/nqoMB8GA1UdIwQYMBaAFFyymLwacFAXgFxWHwkKDUeVDmq9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkZDNS8zRjM0MjAzRTI5 MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VCZUFYRllmQ1FvTlI1VU9h cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hMS1l2QnB3VUJlQVhGWWZDUW9OUjVVT2FyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkZDNS8zRjM0MjAzRTI5MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VC ZUFYRllmQ1FvTlI1VU9hcjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQFJ6bQyH7dAhGUrH8PqR7/GtAGJUEs4KBmAnFoNBB/Jct0XTCeP3rLmtI/S2 q3P1BKAI4eCMxtAlXQgme8uSl9iRRRLdsm6yMSbHh4QniqLmTwvzv7DmX59iPYQS FpusIYPetxGGYCtj7vShH4UjMuEYOwHRk5qCKgXDtXJ0Mkws+rB4BQoxNgA6VvjD vixtKDTYN18Zk/aZtOdGRef0xtmem1P4Gadu3T9sYljpROAsBKdznZJuGh9eWLq8 1C/pGeV1T79SGq2UyVhi+NaXLwxhNaP/q5jSAn+c0AXD747BrPLv6biJqToBH//i Qob63TqxZ1dtJ54IeF+yY5gncA== -----END CERTIFICATE-----Generated at Wed May 13 07:36:55 2026 by rpki-client