$ rpki-client -vvf rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.mft File: xeslRrtzrOaT4ZqxB9g_JmYyzug.mft (raw, json) Hash identifier: UbBaJMl3p8Oyswn6FSfxGfJW9nwzM9TrPuVyRNGhBns= Subject key identifier: 8C:33:44:C5:13:7D:1C:05:42:1C:F5:2A:41:4B:A8:B8:B1:A2:C1:B9 Authority key identifier: C5:EB:25:46:BB:73:AC:E6:93:E1:9A:B1:07:D8:3F:26:66:32:CE:E8 Certificate issuer: /CN=A9197A55/serialNumber=C5EB2546BB73ACE693E19AB107D83F266632CEE8 Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/xeslRrtzrOaT4ZqxB9g_JmYyzug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.mft Manifest number: 42 Signing time: Wed 13 May 2026 08:39:56 +0000 Manifest this update: Wed 13 May 2026 08:39:55 +0000 Manifest next update: Wed 20 May 2026 08:39:55 +0000 Files and hashes: 1: xeslRrtzrOaT4ZqxB9g_JmYyzug.crl (hash: 5vqCYK6eKcVcPS09qcgDMwXSSQIMyOmOvKVXdUI/P4I=) 2: 40E6AE74FAAA11F0BBD6BD435A6F56BC.roa (hash: rFUINwctLdCKpeYymZBC+HyAkWIaWkc+ZM7j+MzLgis=) 3: 21DB5BC4FAAA11F0A3B995435A6F56BC.roa (hash: LbeaZF1XRjLI75LU93fIN8JRsM753tbKTBrRQHfA4hk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.crl rsync://rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/xeslRrtzrOaT4ZqxB9g_JmYyzug.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197A55, serialNumber=C5EB2546BB73ACE693E19AB107D83F266632CEE8 Validity Not Before: May 13 08:39:55 2026 GMT Not After : May 20 08:39:55 2026 GMT Subject: CN=6a0438db-296c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:82:9f:31:67:6c:bb:39:9d:80:84:68:9f:42: 78:1a:49:9f:5a:4e:04:90:b8:fa:01:16:e8:75:ca: e5:b3:72:e7:59:49:83:8c:b9:d2:5d:31:3e:7e:f3: e6:c6:b9:25:43:e3:15:52:bf:65:39:0a:f3:8c:72: e3:be:f2:cb:b1:b6:83:1d:54:2f:14:6d:4c:06:09: 4a:18:74:3a:d5:85:a1:13:b4:c1:ce:1e:df:f9:2c: cd:d2:d8:af:44:d7:49:7a:68:84:83:a1:3e:f8:fb: 2a:fd:9d:9b:be:59:43:34:f3:77:99:d4:52:44:1e: 2d:20:a5:3a:26:bd:40:3f:07:85:1c:cc:42:b0:22: 20:80:9b:74:97:a9:69:51:be:bc:23:fa:b2:32:72: 0c:2e:84:7b:12:0f:04:34:2a:b3:4f:cf:c8:3c:b9: 0f:dd:7f:d5:d1:1b:4d:ae:cf:14:4c:bb:9b:08:06: fa:60:86:91:55:24:6d:1d:4e:26:9c:91:a6:60:17: 71:55:eb:4e:cf:6f:22:22:ba:6b:38:a0:c1:3b:ab: 66:25:e9:3d:46:f8:99:83:fa:b2:f3:b7:fc:a3:8a: a2:0b:0e:97:8d:88:b0:4a:08:70:e3:90:55:63:5a: 28:c6:46:3c:a1:9b:45:16:52:dd:22:7c:be:1e:8d: 01:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:33:44:C5:13:7D:1C:05:42:1C:F5:2A:41:4B:A8:B8:B1:A2:C1:B9 X509v3 Authority Key Identifier: keyid:C5:EB:25:46:BB:73:AC:E6:93:E1:9A:B1:07:D8:3F:26:66:32:CE:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/xeslRrtzrOaT4ZqxB9g_JmYyzug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197A55/B32B5028F7A511F087E51F16556F56BC/xeslRrtzrOaT4ZqxB9g_JmYyzug.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:ff:b1:0c:28:16:24:6e:f9:59:df:c6:53:54:75:c4:e7:fc: 9e:5b:75:36:bb:18:c1:e0:c5:d1:d1:55:4c:06:01:54:2f:51: 00:af:69:8f:a1:71:ac:d5:7c:80:d4:ef:28:29:c0:eb:64:b6: 19:ba:e2:8f:e5:14:6d:55:cf:9d:ea:37:7d:bf:cf:02:90:17: 98:cd:61:ea:fd:03:56:e0:f3:73:a1:77:c7:2c:12:12:28:af: 9c:76:0f:8d:b5:13:39:97:ac:ec:4e:15:01:bc:82:23:65:c3: 79:72:f2:98:30:ee:cc:e1:a1:dc:10:03:bb:79:cb:a2:cf:67: bc:0e:56:17:47:d5:3b:b9:e7:27:c6:a5:3d:65:6e:fb:d4:2f: 91:02:b8:dc:1d:6c:a5:67:c3:8a:c3:11:7f:88:14:f9:81:c1: cf:74:a9:2e:95:0d:e2:d4:77:79:65:18:0f:c6:8d:36:1a:b2: 15:d0:61:13:f5:bd:cd:49:86:7c:ff:d8:3b:be:3d:14:df:c8: 63:a1:7f:23:6e:84:c2:81:41:7c:26:5a:ed:c6:94:67:6f:08: 3c:d2:41:70:7b:31:c6:f9:cd:12:b3:ff:27:27:65:e6:a2:02: 99:fd:63:81:d9:ad:e0:83:0a:dd:d5:94:cc:dd:13:5f:5b:8e: 9b:1b:a0:2d -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 N0E1NTExMC8GA1UEBRMoQzVFQjI1NDZCQjczQUNFNjkzRTE5QUIxMDdEODNGMjY2 NjMyQ0VFODAeFw0yNjA1MTMwODM5NTVaFw0yNjA1MjAwODM5NTVaMBgxFjAUBgNV BAMTDTZhMDQzOGRiLTI5NmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJgp8xZ2y7OZ2AhGifQngaSZ9aTgSQuPoBFuh1yuWzcudZSYOMudJdMT5+8+bG uSVD4xVSv2U5CvOMcuO+8suxtoMdVC8UbUwGCUoYdDrVhaETtMHOHt/5LM3S2K9E 10l6aISDoT74+yr9nZu+WUM083eZ1FJEHi0gpTomvUA/B4UczEKwIiCAm3SXqWlR vrwj+rIycgwuhHsSDwQ0KrNPz8g8uQ/df9XRG02uzxRMu5sIBvpghpFVJG0dTiac kaZgF3FV607PbyIiums4oME7q2Yl6T1G+JmD+rLzt/yjiqILDpeNiLBKCHDjkFVj WijGRjyhm0UWUt0ifL4ejQHZAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUjDNExRN9 HAVCHPUqQUuouLGiwbkwHwYDVR0jBBgwFoAUxeslRrtzrOaT4ZqxB9g/JmYyzugw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3QTU1L0IzMkI1MDI4RjdB NTExRjA4N0U1MUYxNjU1NkY1NkJDL3hlc2xScnR6ck9hVDRacXhCOWdfSm1ZeXp1 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIveGVzbFJydHpyT2FUNFpxeEI5Z19KbVl5enVnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3 QTU1L0IzMkI1MDI4RjdBNTExRjA4N0U1MUYxNjU1NkY1NkJDL3hlc2xScnR6ck9h VDRacXhCOWdfSm1ZeXp1Zy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQA4/7EMKBYkbvlZ38ZTVHXE5/yeW3U2uxjB4MXR0VVMBgFUL1EAr2mPoXGs1XyA 1O8oKcDrZLYZuuKP5RRtVc+d6jd9v88CkBeYzWHq/QNW4PNzoXfHLBISKK+cdg+N tRM5l6zsThUBvIIjZcN5cvKYMO7M4aHcEAO7ecuiz2e8DlYXR9U7uecnxqU9ZW77 1C+RArjcHWylZ8OKwxF/iBT5gcHPdKkulQ3i1Hd5ZRgPxo02GrIV0GET9b3NSYZ8 /9g7vj0U38hjoX8jboTCgUF8JlrtxpRnbwg80kFwezHG+c0Ss/8nJ2XmogKZ/WOB 2a3ggwrd1ZTM3RNfW46bG6At -----END CERTIFICATE-----Generated at Wed May 13 13:19:34 2026 by rpki-client