$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft File: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft (raw, json) Hash identifier: E6jllLaSX6AEzHfhEC04ObsmCntqomloi7zLF8IV010= Subject key identifier: 86:6E:B6:F0:F7:D3:CE:35:0A:E3:CC:22:71:50:DB:AA:9B:E0:AA:11 Authority key identifier: C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 Certificate issuer: /CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Certificate serial: 01F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft Manifest number: 01EB Signing time: Wed 13 May 2026 03:24:26 +0000 Manifest this update: Wed 13 May 2026 03:24:26 +0000 Manifest next update: Wed 20 May 2026 03:24:26 +0000 Files and hashes: 1: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl (hash: TvZ4Yv6Q5WVN7czxkDI81eXms27cOATU378UzeVLy5Q=) 2: 4B2F1F725E7811EE9307D234C4F9AE02.roa (hash: EcFjmxSDjXYlszuf2oD+q8KIZL69XyX6Am534xbF5Os=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 496 (0x1f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF73, serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Validity Not Before: May 13 03:24:26 2026 GMT Not After : May 20 03:24:26 2026 GMT Subject: CN=6a03eeea-6724 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c8:28:b3:07:a4:15:26:01:bf:7b:ab:a1:66: 70:d8:41:e3:97:67:2d:b8:52:3b:1a:64:2a:fd:c2: bb:42:a4:5e:86:07:d4:bb:df:e3:9d:1f:56:bc:1c: 80:20:f5:97:f6:6d:6b:6a:e4:d3:4b:c3:8c:35:9d: 7d:77:ac:6e:fe:a6:bc:1d:8c:37:5d:e4:c8:1b:5f: 78:82:c3:c6:67:ab:4f:69:82:9c:57:59:5f:26:f2: d7:5d:4c:34:8a:8d:cd:77:7b:d9:99:62:f9:ea:6d: 9e:1f:11:f0:5f:02:f7:15:b7:f8:ea:60:35:3a:f1: b2:26:4d:22:75:fd:ed:45:b6:d8:77:57:31:3d:86: 60:5b:ad:8b:9c:0f:a9:18:91:53:ef:c9:69:15:3d: 53:8f:18:9a:d8:06:14:db:a1:bb:b1:04:f9:19:3b: 66:8b:9a:ba:02:b0:d5:65:1d:37:57:7a:94:3c:f1: a8:a6:0f:58:44:1a:b6:ad:67:2c:38:c1:bb:78:5c: 42:76:1e:6b:02:7c:63:11:7d:bb:43:04:6a:7a:50: 7e:09:e1:19:e7:7e:83:92:fd:1a:ca:f1:c3:f2:44: de:47:dd:66:09:25:86:3f:5b:20:95:8a:d0:2b:f6: 4a:c3:b0:f7:23:33:1f:ef:bf:9a:74:36:df:f4:31: d3:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:6E:B6:F0:F7:D3:CE:35:0A:E3:CC:22:71:50:DB:AA:9B:E0:AA:11 X509v3 Authority Key Identifier: keyid:C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:1c:cb:08:16:c5:ab:39:05:da:85:1e:de:27:eb:a6:73:b3: c9:eb:8d:1f:00:5e:94:ba:9d:a9:97:38:10:10:7c:b0:b6:c6: d9:82:98:a7:48:33:a8:4d:38:80:78:08:b2:89:5a:59:e1:d3: 46:02:d0:4e:1f:30:b5:db:c9:ec:45:6d:f7:4d:17:96:9a:b7: 02:ad:6b:50:f8:cb:75:ab:1d:e0:10:12:ef:d4:e6:10:27:82: 2e:28:54:e2:a6:1a:08:f1:24:23:31:6e:e1:6e:c2:7e:35:53: 09:aa:1a:88:b4:3e:b7:3a:4f:11:13:43:64:3f:3f:77:45:29: 31:ff:ee:c9:12:45:f2:5a:ce:eb:5d:0d:bd:97:3d:47:9c:04: bc:fe:8a:5c:c6:70:4d:3e:3e:d7:16:4b:01:c1:bd:1f:47:6b: 1b:3b:7f:2b:1c:af:66:20:ef:41:ea:cb:68:c8:51:f4:6d:91: 46:d4:39:a2:4d:20:fc:9f:69:d7:03:5e:f9:6f:e6:4a:a9:c1: fe:e7:23:bf:f1:3a:7d:72:c7:f3:fa:35:1d:f9:e5:b5:8c:eb: f5:62:c3:06:aa:96:b9:84:af:09:19:b7:6c:42:f2:0e:db:73: d1:61:ce:a0:24:80:f4:8f:94:fa:f9:1d:39:d1:f4:95:86:10: b5:5c:b2:82 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGNzMxMTAvBgNVBAUTKEM0MDVGMDYxRTMzQjA3MTdDOTA0RkMxREYzRTc5QkNE Nzk1MjBGQTYwHhcNMjYwNTEzMDMyNDI2WhcNMjYwNTIwMDMyNDI2WjAYMRYwFAYD VQQDEw02YTAzZWVlYS02NzI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx8goswekFSYBv3uroWZw2EHjl2ctuFI7GmQq/cK7QqRehgfUu9/jnR9WvByA IPWX9m1rauTTS8OMNZ19d6xu/qa8HYw3XeTIG194gsPGZ6tPaYKcV1lfJvLXXUw0 io3Nd3vZmWL56m2eHxHwXwL3Fbf46mA1OvGyJk0idf3tRbbYd1cxPYZgW62LnA+p GJFT78lpFT1Tjxia2AYU26G7sQT5GTtmi5q6ArDVZR03V3qUPPGopg9YRBq2rWcs OMG7eFxCdh5rAnxjEX27QwRqelB+CeEZ536Dkv0ayvHD8kTeR91mCSWGP1sglYrQ K/ZKw7D3IzMf77+adDbf9DHTuQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIZutvD3 0841CuPMInFQ26qb4KoRMB8GA1UdIwQYMBaAFMQF8GHjOwcXyQT8HfPnm815Ug+m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUY3My9ENUZGMUY0MDVF NzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4ZkpCUHdkOC1lYnpYbFNE NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBWHdZZU03QnhmSkJQd2Q4LWVielhsU0Q2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUY3My9ENUZGMUY0MDVFNzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4 ZkpCUHdkOC1lYnpYbFNENlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAYRzLCBbFqzkF2oUe3ifrpnOzyeuNHwBelLqdqZc4EBB8sLbG2YKYp0gzqE04 gHgIsolaWeHTRgLQTh8wtdvJ7EVt900Xlpq3Aq1rUPjLdasd4BAS79TmECeCLihU 4qYaCPEkIzFu4W7CfjVTCaoaiLQ+tzpPERNDZD8/d0UpMf/uyRJF8lrO610NvZc9 R5wEvP6KXMZwTT4+1xZLAcG9H0drGzt/KxyvZiDvQerLaMhR9G2RRtQ5ok0g/J9p 1wNe+W/mSqnB/ucjv/E6fXLH8/o1HfnltYzr9WLDBqqWuYSvCRm3bELyDttz0WHO oCSA9I+U+vkdOdH0lYYQtVyygg== -----END CERTIFICATE-----Generated at Wed May 13 06:47:22 2026 by rpki-client