$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft File: XdRoWi6WsUFvfNM1zetK0YIvfes.mft (raw, json) Hash identifier: bu6HhfrHJKHAiUf5uYfK8SIuVkRc9Duf/un1/d6W3zY= Subject key identifier: 01:38:50:FB:4F:36:36:46:E9:71:B8:C3:01:0D:02:D6:A6:5B:45:AE Authority key identifier: 5D:D4:68:5A:2E:96:B1:41:6F:7C:D3:35:CD:EB:4A:D1:82:2F:7D:EB Certificate issuer: /CN=A91AF01C/serialNumber=5DD4685A2E96B1416F7CD335CDEB4AD1822F7DEB Certificate serial: 023D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft Manifest number: 0234 Signing time: Mon 11 May 2026 02:40:42 +0000 Manifest this update: Mon 11 May 2026 02:40:42 +0000 Manifest next update: Mon 18 May 2026 02:40:42 +0000 Files and hashes: 1: XdRoWi6WsUFvfNM1zetK0YIvfes.crl (hash: 6v+N752hR5DhbfDuQBcq9XkBYOYYWy9dY2tuKpd/jJE=) 2: 3474AD64FAD311ED9CEE0E29C4F9AE02.roa (hash: FBiK3jMFORAxcsSdpQP7q8Wx8eDul+Eyz34pvhVQP2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.crl rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 02:40:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 573 (0x23d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF01C, serialNumber=5DD4685A2E96B1416F7CD335CDEB4AD1822F7DEB Validity Not Before: May 11 02:40:42 2026 GMT Not After : May 18 02:40:42 2026 GMT Subject: CN=6a0141aa-7c38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:30:81:1e:21:60:e6:e8:e7:ba:12:f8:28:7a: 9f:f4:cc:98:74:44:9a:a2:d7:a0:91:76:89:66:34: 69:07:5c:d2:93:4c:05:f0:53:43:b5:57:e6:1e:d9: 44:31:35:a3:ee:05:09:f1:bc:3f:b1:23:4b:cb:e3: 37:27:ab:9a:f9:c2:a3:9c:ff:b5:fe:41:49:9d:f2: c8:01:93:be:48:5d:e8:88:26:0d:94:32:57:bf:48: b8:10:ad:4b:85:14:59:9f:44:17:32:92:8f:04:c4: cc:8a:f2:45:3a:26:b8:d4:f7:57:28:f3:84:9b:63: 68:04:55:e3:5b:1b:95:07:de:cd:54:4b:44:2d:15: ec:8d:6c:34:d6:21:a7:e4:1f:93:e9:06:26:9f:e5: 93:7c:e0:8b:41:ea:5c:7f:ec:68:47:f7:3a:a3:77: 24:5f:93:bc:5a:a7:2f:8a:53:2b:53:1a:db:de:a1: 44:6e:c7:ef:db:3c:5e:9f:ba:94:a8:04:b7:93:17: 5d:b9:de:b8:eb:54:bd:2c:81:66:39:b5:76:fd:c5: 95:57:b4:39:4a:bd:bb:d2:b5:d2:d0:0c:b7:ba:d4: f1:9c:59:1f:1a:3f:13:9d:97:bd:45:99:c8:2c:18: 93:79:32:f8:04:43:9f:32:11:7f:b3:d3:a5:eb:e7: 5f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:38:50:FB:4F:36:36:46:E9:71:B8:C3:01:0D:02:D6:A6:5B:45:AE X509v3 Authority Key Identifier: keyid:5D:D4:68:5A:2E:96:B1:41:6F:7C:D3:35:CD:EB:4A:D1:82:2F:7D:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:f1:22:31:52:74:46:49:b2:13:ab:c5:e6:8a:5f:3d:f1:e9: 23:5f:c8:19:29:53:21:fd:ca:ca:5a:26:41:8c:35:a1:f7:b9: 22:bd:4d:81:bd:1e:f3:4c:2b:0c:cf:27:f7:da:7e:28:2b:90: 1f:49:c8:1b:c7:16:bc:54:58:8d:a3:02:11:72:44:f0:b7:f7: 14:09:d0:fc:13:37:90:6b:08:73:2c:cf:be:cc:4e:4c:8e:7d: 30:2a:65:f7:e4:44:f8:7f:37:6f:f1:c0:28:3d:15:96:eb:9d: 6f:d1:fb:1d:c5:99:aa:59:86:b0:6e:ef:20:9c:64:ad:a2:f8: 48:b5:c7:0f:e3:12:2e:3b:83:d4:a3:ef:51:c4:39:9c:bb:93: 61:88:0e:c1:fa:1d:c7:7f:52:02:86:80:43:4e:d5:55:f6:ec: 70:85:4f:c1:b2:0e:4e:72:2f:3e:a0:7c:03:65:ab:53:59:3c: 5b:92:8f:f4:90:61:81:82:76:02:e7:75:1b:16:60:c4:bf:ff: 0d:86:8a:19:52:2c:61:9a:4a:4a:a9:8b:de:e0:f0:16:78:5d: de:f4:d9:5e:ab:4a:51:43:26:74:c6:a8:f1:15:c7:60:c7:ad: fd:ba:ca:84:e3:56:b2:b2:38:08:0f:b7:38:35:07:8f:c7:ee: 05:20:cc:04 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwMUMxMTAvBgNVBAUTKDVERDQ2ODVBMkU5NkIxNDE2RjdDRDMzNUNERUI0QUQx ODIyRjdERUIwHhcNMjYwNTExMDI0MDQyWhcNMjYwNTE4MDI0MDQyWjAYMRYwFAYD VQQDEw02YTAxNDFhYS03YzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5TCBHiFg5ujnuhL4KHqf9MyYdESaotegkXaJZjRpB1zSk0wF8FNDtVfmHtlE MTWj7gUJ8bw/sSNLy+M3J6ua+cKjnP+1/kFJnfLIAZO+SF3oiCYNlDJXv0i4EK1L hRRZn0QXMpKPBMTMivJFOia41PdXKPOEm2NoBFXjWxuVB97NVEtELRXsjWw01iGn 5B+T6QYmn+WTfOCLQepcf+xoR/c6o3ckX5O8WqcvilMrUxrb3qFEbsfv2zxen7qU qAS3kxddud6461S9LIFmObV2/cWVV7Q5Sr270rXS0Ay3utTxnFkfGj8TnZe9RZnI LBiTeTL4BEOfMhF/s9Ol6+dfUQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAE4UPtP NjZG6XG4wwENAtamW0WuMB8GA1UdIwQYMBaAFF3UaFoulrFBb3zTNc3rStGCL33r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjAxQy9FNUQ5RTczNEZB Q0IxMUVEQjhGOTdEODVDNEY5QUUwMi9YZFJvV2k2V3NVRnZmTk0xemV0SzBZSXZm ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hkUm9XaTZXc1VGdmZOTTF6ZXRLMFlJdmZlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjAxQy9FNUQ5RTczNEZBQ0IxMUVEQjhGOTdEODVDNEY5QUUwMi9YZFJvV2k2V3NV RnZmTk0xemV0SzBZSXZmZXMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATvEiMVJ0RkmyE6vF5opfPfHpI1/IGSlTIf3KylomQYw1ofe5Ir1Ngb0e80wr DM8n99p+KCuQH0nIG8cWvFRYjaMCEXJE8Lf3FAnQ/BM3kGsIcyzPvsxOTI59MCpl 9+RE+H83b/HAKD0Vluudb9H7HcWZqlmGsG7vIJxkraL4SLXHD+MSLjuD1KPvUcQ5 nLuTYYgOwfodx39SAoaAQ07VVfbscIVPwbIOTnIvPqB8A2WrU1k8W5KP9JBhgYJ2 Aud1GxZgxL//DYaKGVIsYZpKSqmL3uDwFnhd3vTZXqtKUUMmdMao8RXHYMet/brK hONWsrI4CA+3ODUHj8fuBSDMBA== -----END CERTIFICATE-----Generated at Wed May 13 03:38:08 2026 by rpki-client