$ rpki-client -vvf rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft File: XKzlv2VarPfLxicsXGl_N3oGzow.mft (raw, json) Hash identifier: uHw++nHwPCKxKZMVivxn/tIpUaLgwgVXSTMn8eO6pbo= Subject key identifier: 9F:04:37:67:0B:24:D7:D4:F2:86:B6:9F:A6:5D:68:9A:9A:A5:C7:F5 Authority key identifier: 5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C Certificate issuer: /CN=A917C9BF/serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Certificate serial: 013E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft Manifest number: 0138 Signing time: Mon 11 May 2026 05:35:03 +0000 Manifest this update: Mon 11 May 2026 05:35:03 +0000 Manifest next update: Mon 18 May 2026 05:35:03 +0000 Files and hashes: 1: XKzlv2VarPfLxicsXGl_N3oGzow.crl (hash: 82CzCBdcVCX44k471JYSEjhKdzr+zXWUt5Y9xLoqZgU=) 2: 15875DC27B5E11EFAB71253BC4F9AE02.roa (hash: zbGwECDik3OAcu543q9pzZB/RKrVhWGvUuUO/9+kdaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 05:35:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 318 (0x13e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C9BF, serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Validity Not Before: May 11 05:35:03 2026 GMT Not After : May 18 05:35:03 2026 GMT Subject: CN=6a016a87-508f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:fc:6e:a6:5c:2c:c1:3d:4a:3f:7a:df:6b:65: 9c:8f:6e:1d:8f:19:3a:fd:a3:94:cd:53:b6:69:ce: 24:20:30:ce:6c:2d:3e:88:96:5d:e2:38:7a:d6:12: 04:d2:0f:ce:86:26:73:eb:e0:f1:9b:98:16:7e:92: eb:87:7c:ad:6e:7b:32:f3:ca:79:6e:28:5f:2f:dc: 3e:48:e0:32:85:9b:35:c2:89:c3:d6:5c:b6:2f:2f: 52:1b:f9:f8:f7:1c:79:35:66:3f:22:89:4f:72:52: c2:aa:3e:b0:f1:94:89:04:e9:b0:d4:fb:c9:da:9c: 23:b3:4b:a9:c2:b0:e5:87:90:97:c3:b5:a6:d0:f5: 6e:d6:cc:04:2a:73:d9:a7:b1:79:9a:d7:45:e7:f6: 40:f1:3f:d9:e4:d3:a7:9e:0c:bc:7a:a3:03:f7:fd: c4:50:e0:cf:0d:87:22:24:f2:48:bf:bc:6a:8c:2c: c3:8e:ca:ff:a3:3e:64:58:8f:b8:49:e7:ed:36:e2: 5d:92:12:17:3b:92:4a:8f:01:8b:9f:4c:81:46:03: cf:57:cd:72:20:46:22:18:14:3f:52:7f:41:67:97: 46:db:98:c4:69:94:f2:68:8a:58:ae:db:1e:f7:70: c7:60:ee:28:7a:ae:39:80:d0:32:ab:90:1e:88:f9: 78:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:04:37:67:0B:24:D7:D4:F2:86:B6:9F:A6:5D:68:9A:9A:A5:C7:F5 X509v3 Authority Key Identifier: keyid:5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:ec:51:dd:87:22:fd:10:22:19:c9:ee:59:7a:68:5e:ea:67: 59:47:5a:7b:f9:8e:84:75:c5:42:06:73:0e:5f:39:cf:3d:d8: ff:5f:b3:e1:92:6c:67:aa:aa:d8:7d:ae:a8:49:a1:b4:93:81: 20:e7:d0:73:3f:ee:47:29:c3:08:6c:d9:85:d3:90:c8:cb:08: df:52:eb:ff:02:5e:61:c1:da:36:08:64:b3:c4:be:8e:33:c7: 14:33:94:83:01:85:a8:4c:d2:f0:ae:8c:de:2b:da:07:57:94: 36:4f:31:f4:24:31:7f:72:52:02:1c:61:fc:d9:8c:81:5f:3a: eb:20:21:10:0e:99:d0:94:c4:ce:34:65:61:da:28:a1:0f:aa: ac:d4:31:e0:df:be:88:86:7f:c6:a2:10:2e:b1:d2:19:d8:ad: b7:8b:28:0b:c4:b9:f2:46:5c:32:66:c8:a5:a2:c4:96:bd:2f: c0:f0:63:9b:57:01:ed:e8:14:af:5c:3c:00:a0:60:70:80:60: 9b:9d:ba:34:5f:76:63:18:25:19:02:33:03:b8:be:92:96:53: fd:ff:1f:85:8c:aa:26:2c:10:44:ca:3a:b4:67:5a:a8:ca:8f: a8:fd:65:7f:b6:73:ed:25:45:e9:db:a6:84:c9:f9:81:d0:01: e3:a0:9f:19 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5QkYxMTAvBgNVBAUTKDVDQUNFNUJGNjU1QUFDRjdDQkM2MjcyQzVDNjk3RjM3 N0EwNkNFOEMwHhcNMjYwNTExMDUzNTAzWhcNMjYwNTE4MDUzNTAzWjAYMRYwFAYD VQQDEw02YTAxNmE4Ny01MDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4vxuplwswT1KP3rfa2Wcj24djxk6/aOUzVO2ac4kIDDObC0+iJZd4jh61hIE 0g/OhiZz6+Dxm5gWfpLrh3ytbnsy88p5bihfL9w+SOAyhZs1wonD1ly2Ly9SG/n4 9xx5NWY/IolPclLCqj6w8ZSJBOmw1PvJ2pwjs0upwrDlh5CXw7Wm0PVu1swEKnPZ p7F5mtdF5/ZA8T/Z5NOnngy8eqMD9/3EUODPDYciJPJIv7xqjCzDjsr/oz5kWI+4 SeftNuJdkhIXO5JKjwGLn0yBRgPPV81yIEYiGBQ/Un9BZ5dG25jEaZTyaIpYrtse 93DHYO4oeq45gNAyq5AeiPl4RQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ8EN2cL JNfU8oa2n6ZdaJqapcf1MB8GA1UdIwQYMBaAFFys5b9lWqz3y8YnLFxpfzd6Bs6M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzlCRi9CRTFENEEzNDdC NEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQZkx4aWNzWEdsX04zb0d6 b3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLemx2MlZhclBmTHhpY3NYR2xfTjNvR3pvdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzlCRi9CRTFENEEzNDdCNEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQ Zkx4aWNzWEdsX04zb0d6b3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARuxR3Yci/RAiGcnuWXpoXupnWUdae/mOhHXFQgZzDl85zz3Y/1+z4ZJsZ6qq 2H2uqEmhtJOBIOfQcz/uRynDCGzZhdOQyMsI31Lr/wJeYcHaNghks8S+jjPHFDOU gwGFqEzS8K6M3ivaB1eUNk8x9CQxf3JSAhxh/NmMgV866yAhEA6Z0JTEzjRlYdoo oQ+qrNQx4N++iIZ/xqIQLrHSGditt4soC8S58kZcMmbIpaLElr0vwPBjm1cB7egU r1w8AKBgcIBgm526NF92YxglGQIzA7i+kpZT/f8fhYyqJiwQRMo6tGdaqMqPqP1l f7Zz7SVF6dumhMn5gdAB46CfGQ== -----END CERTIFICATE-----Generated at Wed May 13 04:27:36 2026 by rpki-client