$ rpki-client -vvf rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft File: XctT6r5qkI7KhlLekkgHxQnFLTA.mft (raw, json) Hash identifier: 6ThEqTW083fCwg/gVWntP/AF9Y50YCTLjss4FlMIQ64= Subject key identifier: 3F:4F:D0:20:8D:5D:10:BB:97:08:B1:E8:96:0A:1A:80:E3:7F:D5:63 Authority key identifier: 5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 Certificate issuer: /CN=A918560D/serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Certificate serial: 0DA4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft Manifest number: 0D98 Signing time: Tue 12 May 2026 17:58:26 +0000 Manifest this update: Tue 12 May 2026 17:58:26 +0000 Manifest next update: Tue 19 May 2026 17:58:26 +0000 Files and hashes: 1: XctT6r5qkI7KhlLekkgHxQnFLTA.crl (hash: lT6xOhL6iN7CXv5ocOkaKvFLHRU195Y5jE2dTjEBngg=) 2: 41A8E738045111EA9C7DF516C4F9AE02.roa (hash: g7Y2fTPIrRGmI+yyaq93Q8oA6ahVmpPa/2gUU/U5QQ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:58:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3492 (0xda4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918560D, serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Validity Not Before: May 12 17:58:26 2026 GMT Not After : May 19 17:58:26 2026 GMT Subject: CN=6a036a42-3112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:18:dd:4c:9e:6f:0f:63:d0:07:a6:f2:7c:f0: 60:35:a8:67:49:53:b2:6f:70:23:00:6b:7e:7c:5d: 4c:1b:06:7d:13:92:5a:90:ab:5c:7e:33:43:50:f9: 24:c1:c5:b7:eb:7c:b7:44:17:6c:d5:f1:96:20:7f: 99:3d:92:43:3c:90:65:27:ff:c0:93:98:97:19:b2: e0:3f:c3:4e:96:cf:90:7c:90:fc:2f:9a:a2:f4:06: 83:d0:db:f3:bc:49:df:b5:9c:88:00:4e:f7:20:f2: db:cb:c2:56:1d:66:af:f9:74:d5:f7:99:ec:a6:00: a0:a9:a2:79:0c:15:93:1b:f5:6f:11:d9:6a:45:a0: 56:79:6c:d3:11:e9:19:5c:f4:12:31:0f:fa:cc:6c: f3:30:4b:96:ac:b6:21:b9:e1:79:3a:65:66:90:ec: dc:e0:a2:a6:8c:2e:85:9a:39:cf:e5:bf:cf:ac:27: 6c:60:7e:f8:47:c5:0d:e6:a1:08:f0:3f:90:f3:d4: ab:3c:da:d8:26:7f:e7:e8:0b:6f:fa:16:ba:67:a5: 67:c1:f6:ae:d7:a1:a9:2f:52:6b:ed:ac:97:95:65: 45:21:6c:0e:be:05:f0:ff:e6:07:26:ed:7f:42:cd: 84:f6:65:c3:ef:23:71:ac:40:90:65:81:61:f0:78: 6c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:4F:D0:20:8D:5D:10:BB:97:08:B1:E8:96:0A:1A:80:E3:7F:D5:63 X509v3 Authority Key Identifier: keyid:5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:dd:89:7a:32:ee:68:d8:b3:fa:93:d1:64:15:94:c2:ea:16: fc:12:20:22:e1:9f:61:86:f9:59:ee:8e:40:80:52:6b:39:66: 9d:b7:f2:ba:77:44:aa:89:20:dd:0f:24:81:a2:d7:fd:08:73: 84:e6:a5:5d:e4:33:58:92:a1:c8:3f:4c:39:ac:25:64:82:a9: 56:0e:69:39:16:c4:7b:41:75:4e:a6:f9:9d:44:ff:80:fd:90: c9:a0:78:e3:36:e8:41:5f:8e:11:fb:81:a2:d6:ee:03:04:9c: fc:99:01:22:cb:a3:16:b6:50:da:43:45:d0:70:6b:f4:d3:1a: b5:e7:f9:48:5f:0c:f2:5f:49:fe:67:1c:e8:86:6a:bf:8a:76: 96:f7:ba:ea:11:c1:41:dc:b9:3e:ed:b2:66:f2:17:66:0c:82: 8a:a9:01:ef:a3:90:ed:cf:4c:cc:2f:f5:72:61:90:8a:c3:53: ce:a7:f4:5e:65:f5:90:94:c9:75:31:bd:9c:97:b1:be:06:36: fc:21:f9:ad:23:cf:ff:be:d8:b3:4c:a2:b9:d1:77:ae:8d:92: 69:c6:ba:38:b8:a0:49:e8:c0:78:33:e7:9f:3c:2f:7e:69:67: 66:23:6c:aa:ce:2b:0e:bc:fd:05:be:af:56:f9:32:f1:7b:93: 63:0b:b0:eb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2MEQxMTAvBgNVBAUTKDVEQ0I1M0VBQkU2QTkwOEVDQTg2NTJERTkyNDgwN0M1 MDlDNTJEMzAwHhcNMjYwNTEyMTc1ODI2WhcNMjYwNTE5MTc1ODI2WjAYMRYwFAYD VQQDEw02YTAzNmE0Mi0zMTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAphjdTJ5vD2PQB6byfPBgNahnSVOyb3AjAGt+fF1MGwZ9E5JakKtcfjNDUPkk wcW363y3RBds1fGWIH+ZPZJDPJBlJ//Ak5iXGbLgP8NOls+QfJD8L5qi9AaD0Nvz vEnftZyIAE73IPLby8JWHWav+XTV95nspgCgqaJ5DBWTG/VvEdlqRaBWeWzTEekZ XPQSMQ/6zGzzMEuWrLYhueF5OmVmkOzc4KKmjC6FmjnP5b/PrCdsYH74R8UN5qEI 8D+Q89SrPNrYJn/n6Atv+ha6Z6Vnwfau16GpL1Jr7ayXlWVFIWwOvgXw/+YHJu1/ Qs2E9mXD7yNxrECQZYFh8HhskQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD9P0CCN XRC7lwix6JYKGoDjf9VjMB8GA1UdIwQYMBaAFF3LU+q+apCOyoZS3pJIB8UJxS0w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTYwRC9GNURDQTZENEU1 QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJN0tobExla2tnSHhRbkZM VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjdFQ2cjVxa0k3S2hsTGVra2dIeFFuRkxUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTYwRC9GNURDQTZENEU1QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJ N0tobExla2tnSHhRbkZMVEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXd2JejLuaNiz+pPRZBWUwuoW/BIgIuGfYYb5We6OQIBSazlmnbfyundEqokg 3Q8kgaLX/QhzhOalXeQzWJKhyD9MOawlZIKpVg5pORbEe0F1Tqb5nUT/gP2QyaB4 4zboQV+OEfuBotbuAwSc/JkBIsujFrZQ2kNF0HBr9NMatef5SF8M8l9J/mcc6IZq v4p2lve66hHBQdy5Pu2yZvIXZgyCiqkB76OQ7c9MzC/1cmGQisNTzqf0XmX1kJTJ dTG9nJexvgY2/CH5rSPP/77Ys0yiudF3ro2Saca6OLigSejAeDPnnzwvfmlnZiNs qs4rDrz9Bb6vVvky8XuTYwuw6w== -----END CERTIFICATE-----Generated at Wed May 13 14:28:46 2026 by rpki-client