$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json) Hash identifier: SZIAO1SgDl+R5HRPkMFlxJaLeeEXCrE2UPXL/+G/NuY= Subject key identifier: 67:14:66:AC:EB:E6:EA:07:33:6B:66:B8:63:CF:B3:94:CA:A9:6B:69 Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft Manifest number: 0128 Signing time: Wed 13 May 2026 05:47:02 +0000 Manifest this update: Wed 13 May 2026 05:47:01 +0000 Manifest next update: Wed 20 May 2026 05:47:01 +0000 Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: fEG4fPVgHQ582acrLPaCfODqC8nYc1o//aMmeLWwLZA=) 2: CB24F37C033711F0B76A8520C4F9AE02.roa (hash: XEgsmSONdO5QmyZ+W6pwM4gqDm2Ruw04W/Sgse84F1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 05:47:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Validity Not Before: May 13 05:47:01 2026 GMT Not After : May 20 05:47:01 2026 GMT Subject: CN=6a041056-63bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:be:a3:16:9b:3a:b4:ff:25:a8:20:09:83:02: 12:d0:7c:0a:6d:c6:b1:b4:d9:48:16:a2:5d:de:f0: 28:09:25:3b:ee:42:3b:9b:97:3b:c8:49:70:f8:27: ec:da:f3:ae:69:37:8d:c8:58:8b:cd:6b:84:6a:dd: dd:a2:bb:d5:43:8f:72:87:c2:dd:99:54:b4:0d:79: 24:40:6a:ac:c0:48:82:aa:d1:1c:1b:f9:9c:51:a9: bd:5f:69:81:ff:3b:99:09:9f:de:14:94:c4:be:46: 2f:9a:0d:27:2b:4a:33:2f:35:1e:13:b0:8f:5c:90: 61:c0:ff:f1:4e:00:3f:8f:b2:d0:9c:9e:51:52:11: ba:e9:75:d8:33:15:9b:6d:bb:8f:f3:03:ec:fa:18: 23:22:de:56:28:2d:b3:b6:78:d6:37:f7:76:84:a6: 40:39:9b:bc:4f:c7:94:1a:f3:40:f1:2a:6c:0c:7d: 15:b4:da:4e:74:a7:92:6b:c4:dd:ba:8e:a1:5a:57: f8:4b:54:e5:6f:0f:fa:b1:57:89:24:67:64:87:f9: c6:2f:57:53:a1:8a:7b:f8:8a:83:f5:a6:10:3c:d9: f6:28:bc:3c:e9:91:c8:5d:8e:8f:41:2a:07:2b:55: dd:71:26:ae:c7:39:17:fb:ca:01:af:94:cd:60:f6: 00:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:14:66:AC:EB:E6:EA:07:33:6B:66:B8:63:CF:B3:94:CA:A9:6B:69 X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:89:80:e9:86:df:f7:03:ad:7e:13:87:76:b3:8b:9b:9c:d4: e3:16:be:c7:4d:5a:8f:3b:27:21:07:91:3e:e6:9b:32:10:c3: 7e:83:79:0c:ad:53:c7:c8:a6:cd:fe:3c:10:29:83:56:46:da: 81:85:ea:95:13:c8:4e:c7:c4:33:4a:63:10:66:53:1a:e8:66: b4:2d:01:83:f3:fc:77:c4:82:5c:88:8a:c8:c5:4f:a4:05:c9: 32:8e:21:63:cc:90:ec:f2:e5:ab:bf:cd:ad:5c:83:5e:9f:71: 23:60:de:19:10:8d:13:f5:7b:2a:58:39:e0:c6:f0:5e:3c:b0: 60:39:c7:56:cc:7f:cc:fc:1a:74:0a:51:a8:d7:d2:59:0d:f5: cf:49:c8:d1:5c:92:91:10:a2:cd:5c:62:49:3d:a6:95:39:ca: ec:ca:21:92:8e:92:2f:92:ef:97:52:a7:93:06:eb:bf:1b:2b: be:1f:34:d6:47:be:e9:0e:63:5d:ab:7f:71:79:44:e0:b7:4f: 29:a0:b6:07:34:e7:24:ee:84:0d:36:79:10:5a:6c:82:7d:20: 6f:fa:de:7b:0b:c1:c9:75:53:34:69:2d:fb:f9:6f:a6:db:3c: 52:ca:e8:bc:10:eb:3a:50:21:3c:33:48:09:8f:5f:a1:e4:7c: c7:1e:51:56 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI3ODcxMTAvBgNVBAUTKDVEOTQ2RDRGNDc5RDM3QkNFMTcwMENCMEJBREQ1MUEy QzNERjYyMEYwHhcNMjYwNTEzMDU0NzAxWhcNMjYwNTIwMDU0NzAxWjAYMRYwFAYD VQQDEw02YTA0MTA1Ni02M2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlL6jFps6tP8lqCAJgwIS0HwKbcaxtNlIFqJd3vAoCSU77kI7m5c7yElw+Cfs 2vOuaTeNyFiLzWuEat3dorvVQ49yh8LdmVS0DXkkQGqswEiCqtEcG/mcUam9X2mB /zuZCZ/eFJTEvkYvmg0nK0ozLzUeE7CPXJBhwP/xTgA/j7LQnJ5RUhG66XXYMxWb bbuP8wPs+hgjIt5WKC2ztnjWN/d2hKZAOZu8T8eUGvNA8SpsDH0VtNpOdKeSa8Td uo6hWlf4S1Tlbw/6sVeJJGdkh/nGL1dToYp7+IqD9aYQPNn2KLw86ZHIXY6PQSoH K1XdcSauxzkX+8oBr5TNYPYADQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGcUZqzr 5uoHM2tmuGPPs5TKqWtpMB8GA1UdIwQYMBaAFF2UbU9HnTe84XAMsLrdUaLD32IP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mjc4Ny8yMjg2NTYyQThG NzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43emhjQXl3dXQxUm9zUGZZ ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZllnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mjc4Ny8yMjg2NTYyQThGNzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43 emhjQXl3dXQxUm9zUGZZZzgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAiImA6Ybf9wOtfhOHdrOLm5zU4xa+x01ajzsnIQeRPuabMhDDfoN5DK1Tx8im zf48ECmDVkbagYXqlRPITsfEM0pjEGZTGuhmtC0Bg/P8d8SCXIiKyMVPpAXJMo4h Y8yQ7PLlq7/NrVyDXp9xI2DeGRCNE/V7Klg54MbwXjywYDnHVsx/zPwadApRqNfS WQ31z0nI0VySkRCizVxiST2mlTnK7Mohko6SL5Lvl1Knkwbrvxsrvh801ke+6Q5j Xat/cXlE4LdPKaC2BzTnJO6EDTZ5EFpsgn0gb/reewvByXVTNGkt+/lvpts8Usro vBDrOlAhPDNICY9foeR8xx5RVg== -----END CERTIFICATE-----Generated at Wed May 13 09:56:03 2026 by rpki-client