$ rpki-client -vvf rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft File: XAq0JfK0I14cgVaDvWyOi3uAtyc.mft (raw, json) Hash identifier: FLYDtHoofAXN1eTESq+JxBP7fk+k5FPDtxRhuv2muXU= Subject key identifier: 17:69:5A:01:9C:43:DB:F8:31:A5:7B:95:51:A0:4A:4E:08:4E:F9:F1 Authority key identifier: 5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 Certificate issuer: /CN=A917F8A9/serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Certificate serial: 0A3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft Manifest number: 0A23 Signing time: Tue 12 May 2026 19:51:04 +0000 Manifest this update: Tue 12 May 2026 19:51:03 +0000 Manifest next update: Tue 19 May 2026 19:51:03 +0000 Files and hashes: 1: XAq0JfK0I14cgVaDvWyOi3uAtyc.crl (hash: s17hmSp4X5kGteFKZN1bNiKp+o6fPGIg/uvCz+FxHkI=) 2: 0774A2C894F211EAB30E7682C4F9AE02.roa (hash: phoNlFrzl7WYjyRvdppnlSL/FBRV8iS5x5iyLwB+dTc=) 3: 83DC30E0D0DB11EA9336962FC4F9AE02.roa (hash: V4TtDHDwWfSTPDtmdJxLiYpQrBPMzCI9Mup9QQhSTOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:51:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2622 (0xa3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F8A9, serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Validity Not Before: May 12 19:51:03 2026 GMT Not After : May 19 19:51:03 2026 GMT Subject: CN=6a0384a8-0bba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:53:07:f4:00:ea:d9:3e:10:40:70:81:90:f1: d7:f2:bd:46:96:cd:f5:f4:74:5f:55:94:30:67:3f: 3d:f4:01:2b:e0:2e:63:30:35:b8:18:2d:84:1e:13: 54:43:ce:73:15:f3:0f:66:03:8a:78:8c:75:ab:4e: 26:be:ab:47:09:53:1f:b3:7e:28:5a:08:e3:83:04: 09:7a:b5:e4:a7:27:7f:45:77:6f:b1:8a:ae:f2:f7: 8c:6e:40:9c:86:d5:78:d1:1b:a8:78:5d:78:16:9c: ad:7b:95:71:19:1b:b5:ff:e6:25:d5:2a:c8:26:76: a9:8f:95:cc:cd:5b:4f:7f:9f:92:20:1d:ed:f5:86: f1:12:38:b0:e2:12:01:a5:11:3e:fc:9a:95:30:12: d1:cf:9d:b1:4c:bf:cd:46:4c:24:a1:10:a5:1b:01: cd:1a:75:6c:f3:83:18:b1:8b:26:c8:34:78:6c:72: 4a:c1:18:1d:0f:78:4d:ad:7a:5d:c8:52:d8:33:e9: 81:d3:14:ba:7a:26:00:67:94:ce:52:00:e9:f1:33: 4a:05:cf:50:13:8b:5e:53:b9:b5:44:fe:27:2e:ef: e4:f5:32:16:41:8f:34:5e:44:ad:cd:b3:a9:01:09: c0:bb:c0:4d:5b:bb:12:59:e9:cb:dc:c6:93:a7:b0: 7b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:69:5A:01:9C:43:DB:F8:31:A5:7B:95:51:A0:4A:4E:08:4E:F9:F1 X509v3 Authority Key Identifier: keyid:5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e9:50:49:35:2f:be:04:d9:21:50:58:50:00:af:4d:4d:0b:8a: af:d9:de:16:2a:63:d4:d2:d1:aa:75:10:fe:c0:57:0f:6f:84: 5e:00:27:99:cc:cf:eb:4d:02:7e:1e:0e:06:0b:cf:5c:2e:d9: 36:77:b3:5a:fa:2b:c5:1d:60:62:2f:b0:fe:0a:ec:14:4c:bb: ae:18:77:20:47:62:14:a4:e3:e7:76:18:bd:f1:6f:e0:ca:50: 5d:8a:92:b5:cb:b2:17:93:1b:7b:e9:97:37:a0:56:53:4d:bf: a8:72:27:95:6e:39:35:37:7b:11:26:dd:e8:70:24:af:fb:52: 5e:84:b7:ee:55:a7:bf:34:89:ab:c8:2e:c0:dc:8f:f2:1a:a4: 4e:da:36:c8:18:65:7a:7a:e1:35:d2:22:fd:6a:96:58:da:07: 71:31:80:6c:75:79:e1:29:35:d0:cf:9d:66:cf:01:13:1e:29: 1b:78:ef:7c:ca:bc:60:b0:3a:e1:d2:7b:c9:86:a3:72:32:ca: bf:ca:32:76:9a:08:3e:a6:32:aa:bf:3d:1e:15:5e:c9:7b:f2: ef:c0:bd:db:e5:ba:41:b7:c1:24:45:ab:d5:e9:23:2e:4b:fe: 73:be:19:9b:5d:4b:97:ff:7e:5a:3a:01:3a:fa:40:c9:f7:f7: d7:e1:82:9f -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4QTkxMTAvBgNVBAUTKDVDMEFCNDI1RjJCNDIzNUUxQzgxNTY4M0JENkM4RThC N0I4MEI3MjcwHhcNMjYwNTEyMTk1MTAzWhcNMjYwNTE5MTk1MTAzWjAYMRYwFAYD VQQDEw02YTAzODRhOC0wYmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk1MH9ADq2T4QQHCBkPHX8r1Gls319HRfVZQwZz899AEr4C5jMDW4GC2EHhNU Q85zFfMPZgOKeIx1q04mvqtHCVMfs34oWgjjgwQJerXkpyd/RXdvsYqu8veMbkCc htV40RuoeF14Fpyte5VxGRu1/+Yl1SrIJnapj5XMzVtPf5+SIB3t9YbxEjiw4hIB pRE+/JqVMBLRz52xTL/NRkwkoRClGwHNGnVs84MYsYsmyDR4bHJKwRgdD3hNrXpd yFLYM+mB0xS6eiYAZ5TOUgDp8TNKBc9QE4teU7m1RP4nLu/k9TIWQY80XkStzbOp AQnAu8BNW7sSWenL3MaTp7B7zQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBdpWgGc Q9v4MaV7lVGgSk4ITvnxMB8GA1UdIwQYMBaAFFwKtCXytCNeHIFWg71sjot7gLcn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjhBOS8yQUEwNDMzMDk0 RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkxNGNnVmFEdld5T2kzdUF0 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBcTBKZkswSTE0Y2dWYUR2V3lPaTN1QXR5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjhBOS8yQUEwNDMzMDk0RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkx NGNnVmFEdld5T2kzdUF0eWMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA6VBJNS++BNkhUFhQAK9NTQuKr9neFipj1NLRqnUQ/sBXD2+EXgAnmczP600C fh4OBgvPXC7ZNnezWvorxR1gYi+w/grsFEy7rhh3IEdiFKTj53YYvfFv4MpQXYqS tcuyF5Mbe+mXN6BWU02/qHInlW45NTd7ESbd6HAkr/tSXoS37lWnvzSJq8guwNyP 8hqkTto2yBhlenrhNdIi/WqWWNoHcTGAbHV54Sk10M+dZs8BEx4pG3jvfMq8YLA6 4dJ7yYajcjLKv8oydpoIPqYyqr89HhVeyXvy78C92+W6QbfBJEWr1ekjLkv+c74Z m11Ll/9+WjoBOvpAyff31+GCnw== -----END CERTIFICATE-----Generated at Wed May 13 08:04:48 2026 by rpki-client