$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft File: Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft (raw, json) Hash identifier: LfuGxO6d8l7k5imoFokWAxLEAWzl3vDqkRvsjBAYQaE= Subject key identifier: 6A:96:10:A1:B5:E1:C3:37:6D:6F:76:5D:A0:E3:EE:23:95:90:D5:3C Authority key identifier: 5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC Certificate issuer: /CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Certificate serial: 0478 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft Manifest number: 0445 Signing time: Wed 13 May 2026 00:28:13 +0000 Manifest this update: Wed 13 May 2026 00:28:13 +0000 Manifest next update: Wed 20 May 2026 00:28:13 +0000 Files and hashes: 1: Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl (hash: S+BnuKlz6Sp+EZN4ZpBW1zlQbEaLKj4LIN4me/SnW5k=) 2: 7AA94F3CE03811EFAC3C5652C4F9AE02.roa (hash: Xwopv44IWtrA47h99nFS1HcICRmL98rRNkBLnVkufOs=) 3: 7B6F6276E03811EFAC3C5652C4F9AE02.roa (hash: W4goqtPYzyLcCdBI7xc2Qn8MqCV+FsXgvw4MFdwTxhk=) 4: 79C2D638E03811EFAC3C5652C4F9AE02.roa (hash: htWOUsGCluqo+bDLkY52m9kGHamjAwjskMqRyVdOAVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:28:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1144 (0x478) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E8E, serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Validity Not Before: May 13 00:28:13 2026 GMT Not After : May 20 00:28:13 2026 GMT Subject: CN=6a03c59d-959f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:54:23:5b:0a:29:d4:a7:46:8c:62:c9:bd:99: 6a:8e:81:c4:ed:b9:67:8c:2d:63:9f:93:25:a1:da: ce:45:a0:e1:b4:73:ee:22:db:78:3d:75:f4:71:ef: 1d:4e:48:0d:7a:ec:1f:df:ec:88:fc:94:72:fa:c2: c4:b6:39:51:0b:e0:82:8b:c2:66:8e:6e:38:ee:7e: af:ac:47:c4:52:3b:0e:56:7b:98:d8:91:33:90:b2: 73:8d:e4:76:d2:f3:70:5b:b8:e9:80:f4:f1:e1:43: 71:b3:4b:63:88:3c:d1:99:0e:e8:b3:57:82:ef:90: 7c:55:82:c0:fe:40:52:13:8f:2b:57:6c:12:a2:16: fa:bf:20:05:6d:93:61:57:5b:33:e7:89:75:fc:42: c4:86:fe:40:06:f6:50:66:d3:49:62:e6:7b:15:4d: 29:37:98:94:62:ce:d0:df:2b:24:cc:db:39:ff:90: e0:5d:78:c9:2e:0a:9c:ba:16:58:c6:64:a4:c3:96: 95:8f:14:ac:e4:24:be:2b:5b:d3:ed:dc:54:66:81: 73:41:76:ab:e4:e2:8a:1c:8f:bb:92:26:97:a1:e6: bc:e1:cd:33:7f:5a:c2:1d:dc:cf:a0:42:c2:b7:fc: 42:d3:89:80:be:13:37:ab:c6:38:49:fe:a9:f8:e1: a8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:96:10:A1:B5:E1:C3:37:6D:6F:76:5D:A0:E3:EE:23:95:90:D5:3C X509v3 Authority Key Identifier: keyid:5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:5d:20:21:33:c2:98:12:af:54:5d:34:7b:6e:94:05:33:be: 05:11:47:e4:b0:5b:09:74:5e:44:6f:d6:03:31:9f:12:bd:0a: bd:d3:f9:9b:25:5c:e1:23:d8:9d:38:f8:78:9d:7d:ba:3e:17: 76:9e:97:02:9c:a8:6c:51:78:ee:cd:75:8f:92:a2:c3:cc:13: 97:33:49:00:7f:86:9b:b0:de:0e:44:fd:55:e0:e0:e9:da:93: 0c:65:ed:8c:6b:37:3e:22:50:c0:94:28:07:9c:e2:8e:68:2b: ed:21:27:e8:6e:85:47:17:1b:3e:3c:76:61:0f:22:2d:0f:f8: 0d:5d:dd:58:d1:05:6a:e9:47:70:86:e1:a1:53:d5:49:05:85: 2f:2d:79:4e:63:19:d3:23:4d:91:30:46:81:9c:0d:34:d6:ef: 67:83:c0:ae:d1:b8:3f:9c:c6:2d:f5:33:5b:a0:94:b9:cc:ec: 0e:6a:3b:9f:20:9e:2e:16:2b:ba:a3:98:0c:4c:04:6a:2b:00: cc:3c:0d:7b:53:a7:03:57:e4:24:87:cc:19:10:f5:f4:9b:4d: a8:cc:0e:0f:34:9c:a3:52:c9:51:ba:a9:94:6f:0d:53:78:a3: 23:23:95:7c:02:ef:e6:66:23:b4:6f:2e:d5:c0:ae:fb:44:a8: 6a:79:10:dd -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFOEUxMTAvBgNVBAUTKDVGMkU1RTYyOTMyQkI1MEE4NUZGMkY5QTVGMzFCMkJB REQ1RjM0QUMwHhcNMjYwNTEzMDAyODEzWhcNMjYwNTIwMDAyODEzWjAYMRYwFAYD VQQDEw02YTAzYzU5ZC05NTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxlQjWwop1KdGjGLJvZlqjoHE7blnjC1jn5MlodrORaDhtHPuItt4PXX0ce8d TkgNeuwf3+yI/JRy+sLEtjlRC+CCi8Jmjm447n6vrEfEUjsOVnuY2JEzkLJzjeR2 0vNwW7jpgPTx4UNxs0tjiDzRmQ7os1eC75B8VYLA/kBSE48rV2wSohb6vyAFbZNh V1sz54l1/ELEhv5ABvZQZtNJYuZ7FU0pN5iUYs7Q3yskzNs5/5DgXXjJLgqcuhZY xmSkw5aVjxSs5CS+K1vT7dxUZoFzQXar5OKKHI+7kiaXoea84c0zf1rCHdzPoELC t/xC04mAvhM3q8Y4Sf6p+OGoiQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGqWEKG1 4cM3bW92XaDj7iOVkNU8MB8GA1UdIwQYMBaAFF8uXmKTK7UKhf8vml8xsrrdXzSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEU4RS8wNEZCQjhGMEFF MEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRRcUZfeS1hWHpHeXV0MWZO S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5NWVZcE1ydFFxRl95LWFYekd5dXQxZk5Ldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEU4RS8wNEZCQjhGMEFFMEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRR cUZfeS1hWHpHeXV0MWZOS3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAn10gITPCmBKvVF00e26UBTO+BRFH5LBbCXReRG/WAzGfEr0KvdP5myVc4SPY nTj4eJ19uj4Xdp6XApyobFF47s11j5Kiw8wTlzNJAH+Gm7DeDkT9VeDg6dqTDGXt jGs3PiJQwJQoB5zijmgr7SEn6G6FRxcbPjx2YQ8iLQ/4DV3dWNEFaulHcIbhoVPV SQWFLy15TmMZ0yNNkTBGgZwNNNbvZ4PArtG4P5zGLfUzW6CUuczsDmo7nyCeLhYr uqOYDEwEaisAzDwNe1OnA1fkJIfMGRD19JtNqMwODzSco1LJUbqplG8NU3ijIyOV fALv5mYjtG8u1cCu+0SoankQ3Q== -----END CERTIFICATE-----Generated at Wed May 13 11:51:51 2026 by rpki-client