$ rpki-client -vvf rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft File: XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft (raw, json) Hash identifier: HdK7xyN6XgyMj3C+mTIYqPv2S4yhCgwyI3v26M+8NlA= Subject key identifier: 76:A9:AE:BE:AF:A1:76:9C:F4:E0:33:88:24:41:E6:AF:43:39:A6:FB Authority key identifier: 5E:A1:A7:B8:02:E7:E7:EF:C7:7C:A1:A3:8E:52:F7:2A:CD:46:39:30 Certificate issuer: /CN=A919A998/serialNumber=5EA1A7B802E7E7EFC77CA1A38E52F72ACD463930 Certificate serial: 0DD3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqGnuALn5-_HfKGjjlL3Ks1GOTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft Manifest number: 0D96 Signing time: Tue 12 May 2026 18:01:03 +0000 Manifest this update: Tue 12 May 2026 18:01:03 +0000 Manifest next update: Tue 19 May 2026 18:01:03 +0000 Files and hashes: 1: XqGnuALn5-_HfKGjjlL3Ks1GOTA.crl (hash: SkZmy6vA4/Qmf1HSYJ2AqORIh4fiedNLePkYA5IeWoY=) 2: 653CF2F6F25A11E9937D9D73C4F9AE02.roa (hash: DcSbAXQAEFzo+aMwVJQyGPJY+2j/avyksp+4rQcX5Ms=) 3: 65DCB430F25A11E9937D9D73C4F9AE02.roa (hash: QPmbfdGsqWZkIC2TmmDA+d/UeO6FqSYc32flQMZ3H+k=) 4: 3BC4C576426D11EFAD9E7D10C4F9AE02.roa (hash: lSWyLiWx5JQuG+eztxmoGvsgjDFaH0ydZKTaI2SA5oE=) 5: 762C16422E9811F1A14B442FB4833773.roa (hash: 6dVRqPwjNiBJWT/1IpcKvHD9YdgtV5RR7uiRlRvanfU=) 6: 49ADA7183C6111F0BB3B1A85C4F9AE02.roa (hash: swrCPqokaD5gtVZiwh46FSPGf/pjIaVEfTgshjOCQ+A=) 7: 6EA46446646511EFA9435879C4F9AE02.roa (hash: Rm8WBz8x56PvMmTC5b3xeemfV4sCOqTUTfsfsAfIyMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.crl rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqGnuALn5-_HfKGjjlL3Ks1GOTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3539 (0xdd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A998, serialNumber=5EA1A7B802E7E7EFC77CA1A38E52F72ACD463930 Validity Not Before: May 12 18:01:03 2026 GMT Not After : May 19 18:01:03 2026 GMT Subject: CN=6a036adf-b870 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:0b:e0:8f:5d:82:3f:33:19:80:53:9b:2d:bd: e6:a7:02:40:59:be:51:3b:cf:04:15:b7:cd:ff:a0: 87:45:22:43:dc:ea:a5:3f:91:d3:dc:45:bc:27:86: de:ab:53:12:0a:63:53:a1:58:9e:3b:ac:c2:63:e3: bb:40:21:bc:d3:02:a7:65:3a:6e:bf:fc:e4:c8:ad: 80:f3:1d:8a:18:5e:ea:d9:de:61:c8:45:38:24:91: c1:99:f1:0b:0b:7e:e6:82:c7:8f:49:33:a4:f5:32: d6:ae:00:2e:25:f4:63:3d:02:74:60:14:09:91:b7: 79:59:a7:de:b8:c5:4c:fb:07:86:46:c0:17:c8:a7: 76:23:fa:17:1b:0d:46:d9:44:21:a0:40:8b:22:93: 09:54:89:40:f1:42:e9:78:85:21:83:59:db:03:02: ef:2e:d7:48:fb:ad:ef:98:3c:89:8c:9f:cf:64:51: 93:40:27:40:75:90:49:51:10:d9:0a:2d:f1:11:ed: d8:d5:5c:ee:c0:b0:12:c8:cd:52:a6:05:06:7a:c0: cf:88:38:4d:c6:fd:4a:ca:22:56:91:ad:c4:05:a7: d2:cf:27:66:9c:fa:e3:63:81:52:9e:65:71:11:93: 67:98:94:c3:a1:f1:4b:51:b5:82:15:6b:0f:ed:86: 6e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:A9:AE:BE:AF:A1:76:9C:F4:E0:33:88:24:41:E6:AF:43:39:A6:FB X509v3 Authority Key Identifier: keyid:5E:A1:A7:B8:02:E7:E7:EF:C7:7C:A1:A3:8E:52:F7:2A:CD:46:39:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqGnuALn5-_HfKGjjlL3Ks1GOTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:60:e4:8d:88:82:78:05:64:99:62:1c:9d:04:92:25:e1:2c: aa:20:07:70:5c:a0:1e:b2:f3:7e:3c:d0:85:74:d0:57:43:0a: 0b:ae:4b:16:af:f5:b9:c5:4b:16:79:b8:bc:6a:93:a6:70:c7: cc:94:79:60:09:b0:9c:df:27:ff:49:df:21:60:68:a7:88:f5: c6:c0:7e:21:d4:1a:1c:da:0c:aa:eb:f4:4b:b4:85:96:0a:ad: c2:aa:87:82:fe:37:ff:a6:62:86:49:ca:c0:08:79:3e:22:a8: 4a:c4:27:a9:b3:a2:83:5d:7f:e9:c1:ba:12:33:3a:6f:40:d3: 78:ad:89:fc:e8:65:1a:62:f2:f9:57:3c:47:26:41:dd:f8:d3: 95:e9:31:41:ed:66:9f:60:63:86:71:2c:ae:08:0e:4e:21:30: 3e:c0:8c:84:e6:f5:6e:ee:97:1b:08:de:59:52:12:bf:22:d6: 58:96:99:4c:cc:d6:2e:fc:9c:ec:bd:ca:7d:51:96:ba:86:fc: bf:b4:7c:6f:e9:ce:af:b8:5f:ff:49:48:26:21:ab:2d:30:90: 8e:18:e6:a9:e7:bd:11:17:00:ef:d4:56:72:9f:c9:60:76:78: 2c:7b:b5:e0:5f:b5:1f:45:32:07:a7:4f:bd:23:f2:b1:b0:5f: 11:6d:f1:c7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5OTgxMTAvBgNVBAUTKDVFQTFBN0I4MDJFN0U3RUZDNzdDQTFBMzhFNTJGNzJB Q0Q0NjM5MzAwHhcNMjYwNTEyMTgwMTAzWhcNMjYwNTE5MTgwMTAzWjAYMRYwFAYD VQQDEw02YTAzNmFkZi1iODcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Avgj12CPzMZgFObLb3mpwJAWb5RO88EFbfN/6CHRSJD3OqlP5HT3EW8J4be q1MSCmNToVieO6zCY+O7QCG80wKnZTpuv/zkyK2A8x2KGF7q2d5hyEU4JJHBmfEL C37mgsePSTOk9TLWrgAuJfRjPQJ0YBQJkbd5WafeuMVM+weGRsAXyKd2I/oXGw1G 2UQhoECLIpMJVIlA8ULpeIUhg1nbAwLvLtdI+63vmDyJjJ/PZFGTQCdAdZBJURDZ Ci3xEe3Y1VzuwLASyM1SpgUGesDPiDhNxv1KyiJWka3EBafSzydmnPrjY4FSnmVx EZNnmJTDofFLUbWCFWsP7YZu/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHaprr6v oXac9OAziCRB5q9DOab7MB8GA1UdIwQYMBaAFF6hp7gC5+fvx3yho45S9yrNRjkw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTk5OC9BQjM0RkJENEYy NTgxMUU5Qjc1RTNDNzBDNEY5QUUwMi9YcUdudUFMbjUtX0hmS0dqamxMM0tzMUdP VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxR251QUxuNS1fSGZLR2pqbEwzS3MxR09UQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTk5OC9BQjM0RkJENEYyNTgxMUU5Qjc1RTNDNzBDNEY5QUUwMi9YcUdudUFMbjUt X0hmS0dqamxMM0tzMUdPVEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAe2DkjYiCeAVkmWIcnQSSJeEsqiAHcFygHrLzfjzQhXTQV0MKC65LFq/1ucVL Fnm4vGqTpnDHzJR5YAmwnN8n/0nfIWBop4j1xsB+IdQaHNoMquv0S7SFlgqtwqqH gv43/6ZihknKwAh5PiKoSsQnqbOig11/6cG6EjM6b0DTeK2J/OhlGmLy+Vc8RyZB 3fjTlekxQe1mn2BjhnEsrggOTiEwPsCMhOb1bu6XGwjeWVISvyLWWJaZTMzWLvyc 7L3KfVGWuob8v7R8b+nOr7hf/0lIJiGrLTCQjhjmqee9ERcA79RWcp/JYHZ4LHu1 4F+1H0UyB6dPvSPysbBfEW3xxw== -----END CERTIFICATE-----Generated at Wed May 13 10:02:22 2026 by rpki-client