$ rpki-client -vvf rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft File: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft (raw, json) Hash identifier: iDrxVDGqRk/tw6aK10j976nCAIi+s+diKAmC3YLhPXg= Subject key identifier: F3:D6:03:4F:79:9C:92:DB:A6:BA:0D:B4:DE:9D:81:A7:BB:F0:6A:DA Authority key identifier: 5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 Certificate issuer: /CN=A918B0B9/serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Certificate serial: 0A5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft Manifest number: 0A41 Signing time: Tue 12 May 2026 19:48:07 +0000 Manifest this update: Tue 12 May 2026 19:48:06 +0000 Manifest next update: Tue 19 May 2026 19:48:06 +0000 Files and hashes: 1: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl (hash: 1YbTOcGRx08MXZIPGT70SD2D9IXUAXt2pS/gO0c+YFE=) 2: BED54F1A9B1611EA939F5A3FC4F9AE02.roa (hash: onxrfn2R6ig2K9q93zM3JJGyF8TFo8y2BhAaG52JL84=) 3: 52F955A89B1511EA9BEFA53BC4F9AE02.roa (hash: mNeRqaSY4bVJ7ErHkgjVt3OEqspS9nVqduSxSH22Fmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:48:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2651 (0xa5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B0B9, serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Validity Not Before: May 12 19:48:06 2026 GMT Not After : May 19 19:48:06 2026 GMT Subject: CN=6a0383f7-cee4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:1a:35:3c:4b:18:d2:96:a1:89:5f:ff:c0:06: 62:f5:bf:d4:05:f9:bb:cb:65:97:1d:50:f4:84:51: 9f:d9:35:8b:bd:c0:05:c6:98:f3:8e:b1:26:40:0e: f2:c3:c8:4b:ea:5e:7a:75:e5:5b:51:38:0b:e2:6f: 33:ae:a1:85:73:f2:2d:6a:d8:2a:d1:3c:92:94:96: 13:77:82:4d:b5:e4:d9:d4:5e:37:eb:f5:70:6d:75: be:f4:80:d6:75:05:6a:60:5f:22:05:1e:c9:07:bd: 01:89:cd:65:a4:95:93:5e:82:07:fc:97:26:e4:7b: 1c:d2:76:05:95:d2:15:a0:d5:1e:a8:51:43:c8:aa: 4f:c2:32:8b:89:f0:2e:ed:0e:b8:3b:36:94:8a:8c: f0:ff:47:e3:cd:61:a4:99:1d:4b:39:ac:27:35:ac: 02:9d:f6:20:36:c0:9e:6b:7b:4f:3f:b2:6e:5f:cd: 91:d1:97:02:cf:f4:53:8b:c6:25:03:f4:6b:52:12: 9f:1e:0c:e0:15:e4:09:6d:4b:ad:62:ca:62:fd:45: 87:db:f5:c5:ec:51:82:1e:9a:43:b3:88:f0:03:a4: fb:1d:a4:ad:e0:cd:89:66:40:23:34:68:c2:8a:f2: ef:e7:e2:8d:fb:8b:43:f2:80:b5:29:4b:e5:d6:b7: 09:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:D6:03:4F:79:9C:92:DB:A6:BA:0D:B4:DE:9D:81:A7:BB:F0:6A:DA X509v3 Authority Key Identifier: keyid:5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:88:f0:0f:00:9b:f2:b4:7b:51:9b:dd:6e:ff:3a:a9:49:10: ac:2e:b6:dd:15:ad:44:65:f2:d7:dd:d1:23:86:af:71:2c:e1: 85:72:73:c1:1c:b9:55:38:6e:bd:1f:fa:ea:e0:02:8d:b8:f3: fa:f3:45:7b:39:00:06:c4:cd:3e:15:3b:1a:bd:0a:d3:9e:ba: 43:06:73:87:18:9a:76:97:c1:47:ba:ae:6f:c9:9a:41:3f:75: 7b:f8:11:4e:b5:4c:f0:29:56:84:67:e4:a9:20:ba:75:1d:ef: 3b:e4:03:a5:50:26:1d:82:d4:6b:66:09:e7:c5:c2:67:16:66: 0e:73:c0:33:24:4c:f2:de:68:89:35:20:72:e1:9f:30:72:e8: ec:14:7d:cf:42:43:b8:35:35:87:63:35:44:a1:16:1d:8a:c5: 99:cf:22:06:ed:f6:53:d3:67:c8:25:c3:e7:b3:61:a8:16:a3: 60:2a:1d:cf:2e:31:d4:af:87:0d:1c:25:05:b5:33:2f:e2:15: f1:35:22:5d:5b:50:ae:b2:fe:c9:8d:d1:8f:11:87:1c:fe:56: 5a:97:31:7a:6c:dd:13:14:13:a7:b3:f8:b1:df:45:84:5e:d3: 58:58:8d:a8:4b:ef:d0:01:e9:70:a1:6e:57:ee:9b:fc:ea:27: 9c:28:dc:11 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICClswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIwQjkxMTAvBgNVBAUTKDVDNUE0RkFFNEFGMDFGRkRDOTI3NTM1NUNDQkFCOEM4 MTAxODlGNTQwHhcNMjYwNTEyMTk0ODA2WhcNMjYwNTE5MTk0ODA2WjAYMRYwFAYD VQQDEw02YTAzODNmNy1jZWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Bo1PEsY0pahiV//wAZi9b/UBfm7y2WXHVD0hFGf2TWLvcAFxpjzjrEmQA7y w8hL6l56deVbUTgL4m8zrqGFc/Itatgq0TySlJYTd4JNteTZ1F436/VwbXW+9IDW dQVqYF8iBR7JB70Bic1lpJWTXoIH/Jcm5Hsc0nYFldIVoNUeqFFDyKpPwjKLifAu 7Q64OzaUiozw/0fjzWGkmR1LOawnNawCnfYgNsCea3tPP7JuX82R0ZcCz/RTi8Yl A/RrUhKfHgzgFeQJbUutYspi/UWH2/XF7FGCHppDs4jwA6T7HaSt4M2JZkAjNGjC ivLv5+KN+4tD8oC1KUvl1rcJUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPPWA095 nJLbproNtN6dgae78GraMB8GA1UdIwQYMBaAFFxaT65K8B/9ySdTVcy6uMgQGJ9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjBCOS85Q0JGM0Q5MDhG QTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hfM0pKMU5WekxxNHlCQVlu MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hGcFBya3J3SF8zSkoxTlZ6THE0eUJBWW4xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjBCOS85Q0JGM0Q5MDhGQTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hf M0pKMU5WekxxNHlCQVluMVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGojwDwCb8rR7UZvdbv86qUkQrC623RWtRGXy193RI4avcSzhhXJzwRy5VThu vR/66uACjbjz+vNFezkABsTNPhU7Gr0K0566QwZzhxiadpfBR7qub8maQT91e/gR TrVM8ClWhGfkqSC6dR3vO+QDpVAmHYLUa2YJ58XCZxZmDnPAMyRM8t5oiTUgcuGf MHLo7BR9z0JDuDU1h2M1RKEWHYrFmc8iBu32U9NnyCXD57NhqBajYCodzy4x1K+H DRwlBbUzL+IV8TUiXVtQrrL+yY3RjxGHHP5WWpcxemzdExQTp7P4sd9FhF7TWFiN qEvv0AHpcKFuV+6b/OonnCjcEQ== -----END CERTIFICATE-----Generated at Wed May 13 09:09:59 2026 by rpki-client