$ rpki-client -vvf rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft File: XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft (raw, json) Hash identifier: YfxrQ9Vi0aB10EZtfiWbCZ/7JZ+xnFAbDh/yBnGaKOw= Subject key identifier: 37:3F:B9:F8:88:6F:A0:7F:EF:F9:E7:EF:3B:C5:B3:90:3C:09:3A:AD Authority key identifier: 5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A Certificate issuer: /CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Certificate serial: 0580 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft Manifest number: 052B Signing time: Tue 12 May 2026 23:44:22 +0000 Manifest this update: Tue 12 May 2026 23:44:21 +0000 Manifest next update: Tue 19 May 2026 23:44:21 +0000 Files and hashes: 1: XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl (hash: 4EDCNEC/uIiPDfF5J9rcyF3UVXf8IyiRqsL1g/M9kEI=) 2: BEB34436FE3211EFAA1D9A4EC4F9AE02.roa (hash: rcOga+YGZldqreiF0WCdj8lf5Z59J1hOmyY6+goJTWY=) 3: 87840F3AFBD111EFB4804F27C4F9AE02.roa (hash: vIEtRSxvBa0Xc/IiKtnrGRDGvVh6iD/nJgJJDv2I0S0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 23:31:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1408 (0x580) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91524AF, serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Validity Not Before: May 12 23:44:21 2026 GMT Not After : May 19 23:44:21 2026 GMT Subject: CN=6a03bb56-1ac0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:37:60:2c:7f:45:cb:9d:2f:08:06:42:e0:01: db:52:69:0c:a3:90:58:3d:df:60:ee:04:c1:d2:53: 83:11:7b:ac:e3:1d:18:80:3e:1f:7b:2f:14:a3:e3: 5e:8b:f1:2e:d4:a2:53:40:2d:44:41:68:e9:06:8a: 36:44:77:d5:3a:30:22:d5:d7:da:12:73:75:06:51: 99:4b:88:8f:e0:ca:36:02:7e:60:c1:24:ee:30:38: f7:d5:ff:0a:58:a8:b0:77:5c:e3:fc:ad:0a:18:cb: 35:39:3b:f8:a1:68:d9:97:8d:4c:84:d5:cb:73:1d: 4d:39:bb:af:fb:c4:d6:3e:84:a0:07:12:4c:42:2a: 9a:45:de:2d:f3:b3:4c:0c:da:46:04:c0:43:44:ea: 70:4c:f2:6b:c3:3c:6d:4e:0a:4c:ee:1e:c7:c6:59: 6e:14:ef:bc:d7:08:25:f4:75:47:c0:eb:07:dc:1b: 82:99:3c:08:ac:dc:24:28:80:59:64:4c:ee:4a:c8: 02:00:f6:a6:d8:39:15:96:bd:e0:6b:0a:70:7a:0f: 64:09:2e:af:99:13:68:b1:f7:02:29:db:f7:7f:97: 5f:a1:c9:20:8e:29:e3:6e:87:bf:78:55:64:5a:97: d5:ad:14:60:a5:27:83:4d:b0:68:7e:04:4c:91:b1: 25:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:3F:B9:F8:88:6F:A0:7F:EF:F9:E7:EF:3B:C5:B3:90:3C:09:3A:AD X509v3 Authority Key Identifier: keyid:5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:52:e0:db:65:cd:ca:7c:b0:ec:54:5b:71:5b:a8:91:e6:5a: 28:eb:e1:c7:8f:3c:19:a4:8a:55:f5:48:94:8d:63:bb:92:54: 03:f2:5e:e9:2c:d0:65:a3:ea:b7:84:5c:3f:61:60:02:c8:fe: 13:ee:a9:5f:9a:03:55:00:e7:28:6b:d7:cf:01:7e:1a:ce:20: 91:77:f1:39:97:5a:70:70:39:86:7e:f8:ff:4c:a8:96:58:41: 51:58:6c:bd:b8:db:ac:1b:d1:48:0c:4a:57:d6:f1:5a:ab:72: 33:32:ff:39:61:ef:c3:3c:39:29:e0:18:fe:9a:54:18:42:8b: 0a:63:45:d1:7e:b5:a9:71:48:a3:db:98:c0:64:b0:6d:d3:ae: ee:f8:12:ce:98:26:ac:cc:53:1d:01:0d:54:23:cf:25:ef:10: 99:3c:d2:70:0e:cf:44:ac:1d:25:e7:11:a1:ec:c0:0b:1b:fa: e0:66:13:b7:01:14:c6:8e:60:97:de:d2:86:1f:4b:f6:98:89: b8:1f:92:6b:cd:d8:1e:6b:67:ff:e1:80:1d:6f:77:d3:01:f0: 00:bf:9d:79:14:e9:f6:38:c1:6d:8b:98:c2:0a:45:34:8f:79: 69:0d:1f:8e:7e:5c:b3:a2:c1:67:e9:e3:c7:b3:5d:4c:8d:35: 77:e4:e1:ac -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0QUYxMTAvBgNVBAUTKDVDMzE1REFGQzUzQTgyRkRENjJDNzIwMDVDNzY0NDMz M0JDMDI5N0EwHhcNMjYwNTEyMjM0NDIxWhcNMjYwNTE5MjM0NDIxWjAYMRYwFAYD VQQDEw02YTAzYmI1Ni0xYWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnjdgLH9Fy50vCAZC4AHbUmkMo5BYPd9g7gTB0lODEXus4x0YgD4fey8Uo+Ne i/Eu1KJTQC1EQWjpBoo2RHfVOjAi1dfaEnN1BlGZS4iP4Mo2An5gwSTuMDj31f8K WKiwd1zj/K0KGMs1OTv4oWjZl41MhNXLcx1NObuv+8TWPoSgBxJMQiqaRd4t87NM DNpGBMBDROpwTPJrwzxtTgpM7h7HxlluFO+81wgl9HVHwOsH3BuCmTwIrNwkKIBZ ZEzuSsgCAPam2DkVlr3gawpweg9kCS6vmRNosfcCKdv3f5dfockgjinjboe/eFVk WpfVrRRgpSeDTbBofgRMkbElcwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDc/ufiI b6B/7/nn7zvFs5A8CTqtMB8GA1UdIwQYMBaAFFwxXa/FOoL91ixyAFx2RDM7wCl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjRBRi83NkM3RjBGNDUx RjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2M1dMSElBWEhaRU16dkFL WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hERmRyOFU2Z3YzV0xISUFYSFpFTXp2QUtYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjRBRi83NkM3RjBGNDUxRjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2 M1dMSElBWEhaRU16dkFLWG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWVLg22XNynyw7FRbcVuokeZaKOvhx488GaSKVfVIlI1ju5JUA/Je6SzQZaPq t4RcP2FgAsj+E+6pX5oDVQDnKGvXzwF+Gs4gkXfxOZdacHA5hn74/0yollhBUVhs vbjbrBvRSAxKV9bxWqtyMzL/OWHvwzw5KeAY/ppUGEKLCmNF0X61qXFIo9uYwGSw bdOu7vgSzpgmrMxTHQENVCPPJe8QmTzScA7PRKwdJecRoezACxv64GYTtwEUxo5g l97Shh9L9piJuB+Sa83YHmtn/+GAHW930wHwAL+deRTp9jjBbYuYwgpFNI95aQ0f jn5cs6LBZ+njx7NdTI01d+ThrA== -----END CERTIFICATE-----Generated at Wed May 13 02:58:15 2026 by rpki-client