$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.mft File: XTDuvxHkF41iO-G95Nu0y1nMhDc.mft (raw, json) Hash identifier: 4c5cLghO5JrVkV+LaTsMYcFiidi4mfkhOGiNqJD4HFc= Subject key identifier: 3A:DA:C1:30:D8:A5:DE:84:24:F3:00:50:2B:F1:2C:D7:34:69:0A:4C Authority key identifier: 5D:30:EE:BF:11:E4:17:8D:62:3B:E1:BD:E4:DB:B4:CB:59:CC:84:37 Certificate issuer: /CN=A91AB1C2/serialNumber=5D30EEBF11E4178D623BE1BDE4DBB4CB59CC8437 Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTDuvxHkF41iO-G95Nu0y1nMhDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.mft Manifest number: 52 Signing time: Wed 13 May 2026 08:27:02 +0000 Manifest this update: Wed 13 May 2026 08:27:01 +0000 Manifest next update: Wed 20 May 2026 08:27:01 +0000 Files and hashes: 1: XTDuvxHkF41iO-G95Nu0y1nMhDc.crl (hash: +Lpyd3D7f4lVarTiQ8krwOR/hWmB7FEBzefsIdjoEFM=) 2: 24992E62E0FC11F0B50D6A7D5F6F56BC.roa (hash: eAx7dd7W8IzFugozPftJzHrtY4Ej4f42CnK31HLLaRE=) 3: 253978EAE0FC11F0B50D6A7D5F6F56BC.roa (hash: 6RxldyO2/Y3wToEhzB/mHNRPtNgIGcUmqFl9NgQBrdA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.crl rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTDuvxHkF41iO-G95Nu0y1nMhDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 08:27:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB1C2, serialNumber=5D30EEBF11E4178D623BE1BDE4DBB4CB59CC8437 Validity Not Before: May 13 08:27:01 2026 GMT Not After : May 20 08:27:01 2026 GMT Subject: CN=6a0435d6-cccb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6c:3e:b7:4d:63:42:fc:7d:81:3b:bf:9e:4e: 33:52:66:29:36:13:ec:36:55:16:5c:01:dc:9c:1c: 18:b1:cf:a2:fe:90:b4:08:4c:49:e3:f8:3f:a6:8a: 0e:be:c9:ce:1a:f0:11:dc:99:d6:39:48:fd:cd:95: 7a:e0:5e:3a:ae:2d:c9:94:2c:cb:f3:11:99:a1:85: f0:28:a4:dc:7b:fb:36:98:d2:cd:cb:23:23:f2:d1: 71:c4:e3:27:be:e1:1f:7e:cc:2e:00:18:9a:94:d4: 81:ad:1d:67:7c:3a:98:bb:b5:6f:31:1a:de:2e:70: 4f:24:fc:1a:a7:40:32:27:23:93:3b:b0:ad:73:be: d7:42:7f:78:ff:39:63:d1:08:ff:9e:68:f3:8a:99: b7:1a:99:72:d0:7a:f5:2b:1e:07:9b:27:ab:5f:bf: 3a:dd:b4:39:08:35:e0:3d:d7:1a:32:e8:05:de:84: 2a:8f:cd:79:49:2f:4f:81:0f:aa:6e:b5:0e:63:e8: 5b:cd:3e:62:19:d0:9a:2e:93:74:55:39:c0:7d:08: 7e:8e:de:75:ee:90:3c:05:3c:7d:33:4d:54:dc:8e: 7f:c1:c8:8a:cc:43:40:0a:34:fc:35:51:99:6b:a0: 6b:bc:4d:5f:f9:2b:df:db:d9:d2:02:f4:43:3c:b5: 75:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:DA:C1:30:D8:A5:DE:84:24:F3:00:50:2B:F1:2C:D7:34:69:0A:4C X509v3 Authority Key Identifier: keyid:5D:30:EE:BF:11:E4:17:8D:62:3B:E1:BD:E4:DB:B4:CB:59:CC:84:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTDuvxHkF41iO-G95Nu0y1nMhDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:d0:13:3c:a1:92:9e:e8:d1:70:c7:cd:a4:b8:e4:f0:f9:0a: 97:8f:1a:76:92:9f:04:f6:87:7d:2a:02:26:d3:5e:1b:2c:2b: 09:e0:cf:c2:1d:18:13:b2:d1:5b:57:ea:2c:d4:60:0a:a0:40: 3c:1c:f9:30:33:3f:04:e4:49:94:20:c5:87:ae:9c:01:8a:68: fc:f1:98:46:2f:18:85:d1:68:e4:ae:b1:cc:31:ed:12:6b:42: df:ab:0a:5a:c4:f0:8f:6f:2a:60:e6:d3:9a:91:15:7f:b9:1e: 7d:da:7a:2f:ce:85:87:42:ea:b8:8a:5a:a7:b1:72:b8:2a:19: 83:2a:56:db:9e:23:7c:57:0a:cf:0d:53:cf:cd:75:2d:af:5c: 88:fe:0c:0c:37:8b:a7:ac:d1:a1:de:57:b8:13:46:63:cc:dd: 60:5f:52:b5:4d:81:6c:8d:c6:54:fa:ba:3a:50:97:b2:2c:36: 52:75:fe:01:a1:14:42:1b:f6:d4:30:4b:95:be:5b:51:96:c7: cd:bd:59:3e:4e:f3:91:06:47:3d:f3:a7:88:ba:ed:89:43:31: c7:4e:e8:c3:d3:97:8e:55:bd:8b:d6:4b:92:44:4d:d9:eb:c0: 30:3c:86:d4:98:da:76:e8:49:a8:54:df:02:79:46:5d:c2:8d: af:3b:b5:aa -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QjFDMjExMC8GA1UEBRMoNUQzMEVFQkYxMUU0MTc4RDYyM0JFMUJERTREQkI0Q0I1 OUNDODQzNzAeFw0yNjA1MTMwODI3MDFaFw0yNjA1MjAwODI3MDFaMBgxFjAUBgNV BAMTDTZhMDQzNWQ2LWNjY2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1bD63TWNC/H2BO7+eTjNSZik2E+w2VRZcAdycHBixz6L+kLQITEnj+D+mig6+ yc4a8BHcmdY5SP3NlXrgXjquLcmULMvzEZmhhfAopNx7+zaY0s3LIyPy0XHE4ye+ 4R9+zC4AGJqU1IGtHWd8Opi7tW8xGt4ucE8k/BqnQDInI5M7sK1zvtdCf3j/OWPR CP+eaPOKmbcamXLQevUrHgebJ6tfvzrdtDkINeA91xoy6AXehCqPzXlJL0+BD6pu tQ5j6FvNPmIZ0Jouk3RVOcB9CH6O3nXukDwFPH0zTVTcjn/ByIrMQ0AKNPw1UZlr oGu8TV/5K9/b2dIC9EM8tXUNAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUOtrBMNil 3oQk8wBQK/Es1zRpCkwwHwYDVR0jBBgwFoAUXTDuvxHkF41iO+G95Nu0y1nMhDcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFCMUMyLzBGOTEwNzU0RENB MzExRjA4NUQ2RjE1QjQzNkY1NkJDL1hURHV2eEhrRjQxaU8tRzk1TnUweTFuTWhE Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWFREdXZ4SGtGNDFpTy1HOTVOdTB5MW5NaERjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFC MUMyLzBGOTEwNzU0RENBMzExRjA4NUQ2RjE1QjQzNkY1NkJDL1hURHV2eEhrRjQx aU8tRzk1TnUweTFuTWhEYy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAG0BM8oZKe6NFwx82kuOTw+QqXjxp2kp8E9od9KgIm014bLCsJ4M/CHRgTstFb V+os1GAKoEA8HPkwMz8E5EmUIMWHrpwBimj88ZhGLxiF0WjkrrHMMe0Sa0Lfqwpa xPCPbypg5tOakRV/uR592novzoWHQuq4ilqnsXK4KhmDKlbbniN8VwrPDVPPzXUt r1yI/gwMN4unrNGh3le4E0ZjzN1gX1K1TYFsjcZU+ro6UJeyLDZSdf4BoRRCG/bU MEuVvltRlsfNvVk+TvORBkc986eIuu2JQzHHTujD05eOVb2L1kuSRE3Z68AwPIbU mNp26EmoVN8CeUZdwo2vO7Wq -----END CERTIFICATE-----Generated at Wed May 13 15:18:14 2026 by rpki-client