$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft File: XSeFtU0WPtAepUGLz6NPG3RWtxM.mft (raw, json) Hash identifier: KszACvzvB2il1M9GwccyMQiDoWVWPy75rQe6Bm/ilNA= Subject key identifier: F7:1F:79:5D:54:20:68:98:07:4A:80:E8:16:87:AE:83:04:FE:55:64 Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 0552 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft Manifest number: 0531 Signing time: Tue 12 May 2026 23:39:29 +0000 Manifest this update: Tue 12 May 2026 23:39:28 +0000 Manifest next update: Tue 19 May 2026 23:39:28 +0000 Files and hashes: 1: XSeFtU0WPtAepUGLz6NPG3RWtxM.crl (hash: WFkWDOOorjKIWPbKUCAMB55Mjo8Ec6CHjuCY5xs5chw=) 2: 6337963E4C3D11ECB5FF844FC4F9AE02.roa (hash: YlLnh1haCAguuDMWLHxz+klHykWczeyMGFHRpbzDxJg=) 3: 1F77EFA44C4011EC952D5A23C4F9AE02.roa (hash: TtIgh6p3MeT87i0AxcRjiCaJmw5Zn2R/2iZkAkCBffQ=) 4: ACE844F047AA11ECA0F05026C4F9AE02.roa (hash: xF2IvoVXmAincHuvdv8xT2emt6/vG3hUCriU6a0X2F4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 23:31:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1362 (0x552) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5, serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: May 12 23:39:28 2026 GMT Not After : May 19 23:39:28 2026 GMT Subject: CN=6a03ba31-0817 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:99:f5:ae:0a:4d:a8:95:ea:55:df:6f:41:e9: 18:75:86:93:1d:2e:50:4f:5a:8b:cc:c4:b0:53:14: d0:9b:07:3f:69:b9:7c:f1:d0:b3:18:87:5f:49:d0: 46:5a:89:fd:69:36:ba:a1:29:7f:fb:5c:0e:cc:ea: d4:89:c1:ed:6b:ea:1b:f6:12:3d:6b:0d:55:ae:3c: 2d:09:cf:4c:a9:d1:d3:84:b8:b5:b6:a0:7c:b3:fd: a7:e5:ae:46:70:f3:92:00:4e:c7:de:4f:36:26:91: 14:ba:7e:52:38:6c:03:70:51:c3:42:09:3c:7b:6b: 27:c4:0b:36:a0:40:db:1a:6a:d5:ca:04:89:a3:70: df:34:eb:93:06:ef:a0:e8:1c:da:35:d0:d8:b9:8d: 49:f0:26:64:f1:0d:0b:c0:4e:ac:bc:70:a3:33:38: 6d:5b:d1:0e:4d:b1:2f:b3:a7:72:53:8c:46:a6:69: 85:6c:e2:0d:a8:51:9b:6a:2d:c4:1c:b6:ad:fb:b1: e5:55:05:df:9f:52:d6:5d:7e:8d:b0:b7:5f:68:e9: 28:1a:f9:15:6a:40:71:63:82:b2:74:8b:e6:af:ff: 9b:56:62:49:31:82:1e:cb:14:d4:0a:cc:2c:1e:0c: 13:83:5d:76:2a:70:c4:44:aa:19:ff:d5:cf:9c:c3: a1:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:1F:79:5D:54:20:68:98:07:4A:80:E8:16:87:AE:83:04:FE:55:64 X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:93:9b:aa:be:86:ab:4c:c5:f1:51:f6:fd:18:13:f7:37:4b: 98:ff:0e:38:ef:5f:c9:2a:95:e1:5b:bb:46:10:99:58:75:c9: c3:e3:79:f1:30:ca:0b:e7:18:9d:c7:e6:89:57:98:d1:b6:12: 39:1b:de:5f:e5:2f:04:7c:58:0e:81:90:e5:4a:72:51:be:f3: 17:05:6d:3e:5e:da:b8:c3:88:92:9a:d3:02:b1:9d:50:c7:b5: 75:31:75:2d:06:5d:6c:9d:df:39:28:47:35:b1:10:a6:8a:e0: 58:a2:7d:3f:47:b5:a8:80:7a:87:cf:f1:1c:f9:42:e3:89:07: 12:77:0a:b0:db:4d:7a:00:35:0a:51:35:ec:7f:d8:e9:03:3c: cb:38:b8:44:2c:94:85:34:8a:bb:7a:a2:5f:54:82:89:5c:64: 4e:1d:56:a5:42:ec:9b:e4:32:fe:a8:8e:fa:2f:fb:d4:78:3a: 2d:ac:8c:6c:4e:e2:79:a1:2a:fd:38:a5:f3:2d:8b:01:87:63: d1:64:c1:64:1e:2e:82:c0:d9:86:cf:2a:00:9b:ca:08:fa:8a: 7a:96:d2:ae:e4:87:2a:6c:04:a4:91:c2:89:ee:db:00:9d:e1: 9a:f0:35:44:03:fd:9a:7e:ab:b1:5b:8f:cb:f2:19:c8:9e:84: 5f:37:e9:69 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjYwNTEyMjMzOTI4WhcNMjYwNTE5MjMzOTI4WjAYMRYwFAYD VQQDEw02YTAzYmEzMS0wODE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5n1rgpNqJXqVd9vQekYdYaTHS5QT1qLzMSwUxTQmwc/abl88dCzGIdfSdBG Won9aTa6oSl/+1wOzOrUicHta+ob9hI9aw1VrjwtCc9MqdHThLi1tqB8s/2n5a5G cPOSAE7H3k82JpEUun5SOGwDcFHDQgk8e2snxAs2oEDbGmrVygSJo3DfNOuTBu+g 6BzaNdDYuY1J8CZk8Q0LwE6svHCjMzhtW9EOTbEvs6dyU4xGpmmFbOINqFGbai3E HLat+7HlVQXfn1LWXX6NsLdfaOkoGvkVakBxY4KydIvmr/+bVmJJMYIeyxTUCsws HgwTg112KnDERKoZ/9XPnMOhaQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPcfeV1U IGiYB0qA6BaHroME/lVkMB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NDNS8yQUM0RDMzRTQ2QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0 QWVwVUdMejZOUEczUld0eE0ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXZObqr6Gq0zF8VH2/RgT9zdLmP8OOO9fySqV4Vu7RhCZWHXJw+N58TDKC+cY ncfmiVeY0bYSORveX+UvBHxYDoGQ5UpyUb7zFwVtPl7auMOIkprTArGdUMe1dTF1 LQZdbJ3fOShHNbEQporgWKJ9P0e1qIB6h8/xHPlC44kHEncKsNtNegA1ClE17H/Y 6QM8yzi4RCyUhTSKu3qiX1SCiVxkTh1WpULsm+Qy/qiO+i/71Hg6LayMbE7ieaEq /Til8y2LAYdj0WTBZB4ugsDZhs8qAJvKCPqKepbSruSHKmwEpJHCie7bAJ3hmvA1 RAP9mn6rsVuPy/IZyJ6EXzfpaQ== -----END CERTIFICATE-----Generated at Wed May 13 03:04:45 2026 by rpki-client