$ rpki-client -vvf rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft File: XLz7z59AY6eYAiqPHiafvf6jb_g.mft (raw, json) Hash identifier: 5cwEC3nk9gkZuenKGhwnSPy5Th45Hau1u2KO4agWQrM= Subject key identifier: DB:A6:76:67:23:BF:9E:FD:C5:0C:14:EB:93:D1:EC:D5:61:AA:D1:73 Authority key identifier: 5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 Certificate issuer: /CN=A917F4F2/serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Certificate serial: 03A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft Manifest number: 039B Signing time: Wed 13 May 2026 00:51:37 +0000 Manifest this update: Wed 13 May 2026 00:51:36 +0000 Manifest next update: Wed 20 May 2026 00:51:36 +0000 Files and hashes: 1: XLz7z59AY6eYAiqPHiafvf6jb_g.crl (hash: hD8GTE3O9APL71lTOUWgjEgrq+UuUC5ZK+IlMckF+JA=) 2: CA455C5CE0B311ECBC9BEA63C4F9AE02.roa (hash: sOH/2aZPjUSz0+vCYyAKkajRj0VfjNfhE/C/qw+lG4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:51:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 928 (0x3a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F4F2, serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Validity Not Before: May 13 00:51:36 2026 GMT Not After : May 20 00:51:36 2026 GMT Subject: CN=6a03cb19-d37e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:5a:24:3d:d2:a6:75:da:d6:c4:3b:b8:85:9b: 88:c6:99:88:37:e2:bb:67:1d:7d:a9:f0:74:77:13: 87:68:ae:eb:9d:bd:d3:07:cf:e7:32:93:76:5f:b5: 88:6b:bd:0e:55:95:86:42:68:31:61:cf:95:bc:02: d0:bc:b1:98:16:b5:94:c7:67:92:3d:5a:00:f3:5c: 38:d7:36:7f:f0:34:40:19:75:f6:0f:20:b5:51:7d: 28:ff:e1:37:0e:fe:1b:d5:04:c4:6c:d2:01:70:49: a0:99:d5:3a:d9:b8:86:c9:bd:d3:70:cf:52:b3:43: ad:ff:45:84:ac:2c:de:e5:dc:c4:52:b1:cb:8c:10: 0e:8e:2b:2b:f6:0c:4d:27:5a:90:bc:89:dd:3b:e4: 90:38:37:03:aa:68:c0:f3:41:35:83:89:12:18:c7: 93:55:8d:a9:31:c1:09:58:58:2a:de:19:c9:02:be: 5a:34:db:cd:0d:c7:fb:db:1f:4e:1e:d2:e5:70:8d: f1:69:c2:98:d6:0a:88:1e:85:6b:3a:76:b7:d6:bd: 50:5f:49:1c:8b:90:a2:29:1b:94:44:b9:f8:80:f5: bb:90:3e:6c:9a:bf:8d:54:4e:52:f1:b4:b2:eb:6c: 77:ce:fd:bc:61:be:57:5b:69:b3:f0:11:e0:a5:35: 1c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:A6:76:67:23:BF:9E:FD:C5:0C:14:EB:93:D1:EC:D5:61:AA:D1:73 X509v3 Authority Key Identifier: keyid:5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:2c:53:40:62:54:89:62:8b:49:47:3d:f8:5c:22:2b:80:ea: 82:fc:da:bd:b2:41:f4:21:50:01:59:b4:09:b0:b4:97:e1:33: 0a:a1:e3:0b:78:e8:f7:50:31:43:c1:a2:ff:6c:c0:c7:e8:23: 0c:c5:86:4e:18:ff:fc:d4:05:91:96:83:bf:bd:94:57:d5:96: 1f:18:ed:69:00:04:af:fe:d1:29:e0:5f:e4:ae:08:3a:98:f8: 1c:f4:bc:33:2d:94:e1:8d:08:14:67:43:da:d0:96:2e:62:37: e3:48:be:58:8e:a3:42:10:74:e3:dc:28:e4:cf:e8:e9:11:bf: 5d:89:b2:e7:54:86:bf:16:52:02:9c:5c:57:15:6c:07:20:9b: 30:45:cd:5b:42:ed:98:52:29:b6:6e:8f:1c:3f:d1:cc:44:63: ba:c6:37:be:bd:ce:a2:bf:5a:60:d9:9f:45:c4:b1:07:ea:da: 63:8e:d6:fd:de:b7:8f:44:f8:8a:10:5b:b0:b8:e1:46:9d:0d: a5:b3:20:1c:cb:b8:a9:3f:d8:18:27:e6:0d:ae:c1:25:e9:df: c2:7a:d0:5b:6d:6b:83:1d:97:a7:4e:2a:bb:c6:89:dc:fb:70: 95:f9:0a:bd:e9:0b:0f:7c:c4:65:b5:6c:fd:2e:19:8e:17:d7: 70:82:84:d9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y0RjIxMTAvBgNVBAUTKDVDQkNGQkNGOUY0MDYzQTc5ODAyMkE4RjFFMjY5RkJE RkVBMzZGRjgwHhcNMjYwNTEzMDA1MTM2WhcNMjYwNTIwMDA1MTM2WjAYMRYwFAYD VQQDEw02YTAzY2IxOS1kMzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2VokPdKmddrWxDu4hZuIxpmIN+K7Zx19qfB0dxOHaK7rnb3TB8/nMpN2X7WI a70OVZWGQmgxYc+VvALQvLGYFrWUx2eSPVoA81w41zZ/8DRAGXX2DyC1UX0o/+E3 Dv4b1QTEbNIBcEmgmdU62biGyb3TcM9Ss0Ot/0WErCze5dzEUrHLjBAOjisr9gxN J1qQvIndO+SQODcDqmjA80E1g4kSGMeTVY2pMcEJWFgq3hnJAr5aNNvNDcf72x9O HtLlcI3xacKY1gqIHoVrOna31r1QX0kci5CiKRuURLn4gPW7kD5smr+NVE5S8bSy 62x3zv28Yb5XW2mz8BHgpTUckwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNumdmcj v579xQwU65PR7NVhqtFzMB8GA1UdIwQYMBaAFFy8+8+fQGOnmAIqjx4mn73+o2/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjRGMi8zNEQ1NTQzMkUw QUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2ZVlBaXFQSGlhZnZmNmpi X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hMejd6NTlBWTZlWUFpcVBIaWFmdmY2amJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjRGMi8zNEQ1NTQzMkUwQUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2 ZVlBaXFQSGlhZnZmNmpiX2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAzyxTQGJUiWKLSUc9+FwiK4DqgvzavbJB9CFQAVm0CbC0l+EzCqHjC3jo91Ax Q8Gi/2zAx+gjDMWGThj//NQFkZaDv72UV9WWHxjtaQAEr/7RKeBf5K4IOpj4HPS8 My2U4Y0IFGdD2tCWLmI340i+WI6jQhB049wo5M/o6RG/XYmy51SGvxZSApxcVxVs ByCbMEXNW0LtmFIptm6PHD/RzERjusY3vr3Oor9aYNmfRcSxB+raY47W/d63j0T4 ihBbsLjhRp0NpbMgHMu4qT/YGCfmDa7BJenfwnrQW21rgx2Xp04qu8aJ3PtwlfkK vekLD3zEZbVs/S4ZjhfXcIKE2Q== -----END CERTIFICATE-----Generated at Wed May 13 07:19:36 2026 by rpki-client