$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft File: XAo1I_02RadjWvJRmtzQAuEy-84.mft (raw, json) Hash identifier: pXqhOIQREwQW77IIXY5DIOJNWlbG6lrJullN0ny61HA= Subject key identifier: 8B:C6:DD:A2:FC:2E:F0:60:9C:60:A3:54:07:C3:9A:E3:C6:56:A5:73 Authority key identifier: 5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE Certificate issuer: /CN=A91B0F90/serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Certificate serial: FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft Manifest number: F2 Signing time: Mon 11 May 2026 06:34:43 +0000 Manifest this update: Mon 11 May 2026 06:34:43 +0000 Manifest next update: Mon 18 May 2026 06:34:43 +0000 Files and hashes: 1: XAo1I_02RadjWvJRmtzQAuEy-84.crl (hash: 5UEVB0AAr2v//ElA1lccevNYneYWKu7EXlmes6n6RM0=) 2: 304DD002EFAB11EF97C9610FC4F9AE02.roa (hash: t1JjvZDB24X6k3Mu8SErmmJoER7kOsUM0Jx228MJLJ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 06:34:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0F90, serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Validity Not Before: May 11 06:34:43 2026 GMT Not After : May 18 06:34:43 2026 GMT Subject: CN=6a017883-d2bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:3d:88:2f:b6:7e:64:6b:e8:4d:06:d6:59:3f: 09:de:aa:cf:12:c2:a6:bd:7a:3d:5e:59:90:4b:68: 2a:65:02:5c:ed:bd:9b:90:45:a2:ae:b3:88:7d:c6: d6:c5:05:32:4b:01:24:78:4f:c6:ee:a0:76:fd:be: fd:a7:90:dd:53:d8:0e:21:3e:e5:d7:be:52:64:8d: 8d:ee:13:c6:35:85:79:46:e6:cc:f5:5e:9e:cf:7a: 51:77:39:2f:a1:9b:94:e1:42:e6:e4:7d:70:17:37: 99:68:8c:08:6d:4f:53:1f:e3:c8:bc:fa:90:17:11: 94:ed:82:59:7e:25:e5:77:de:c6:2e:5b:2a:75:b6: 26:f0:02:58:2e:42:ae:72:77:d5:09:eb:27:30:6b: 5d:17:7a:95:d9:92:bb:81:03:6d:61:48:e6:e7:87: a5:2e:f3:4f:56:f3:99:33:f7:e7:0e:5e:02:de:af: 4d:36:a6:b5:71:a0:77:95:68:28:f4:8e:28:c5:60: 74:1f:9e:65:23:40:ec:7e:bf:1a:db:19:1d:8e:61: ff:db:d2:23:f1:37:b1:ed:e2:7c:55:42:67:79:4e: b6:d8:16:15:03:b5:55:03:14:d9:08:ff:a7:15:4b: f3:18:43:7a:6c:af:d9:ea:0d:cd:de:a1:e6:2d:72: a3:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:C6:DD:A2:FC:2E:F0:60:9C:60:A3:54:07:C3:9A:E3:C6:56:A5:73 X509v3 Authority Key Identifier: keyid:5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:0e:aa:9b:f6:a3:68:b9:e3:80:8b:ad:cd:a0:61:06:2e:71: 8b:fd:74:ef:80:a6:2c:11:f6:ec:5d:6b:27:cc:2a:2f:68:72: d4:88:30:ef:c6:c0:48:ca:77:48:96:a5:1e:4f:a7:6c:42:9c: 79:70:57:88:f8:e7:e4:e4:54:78:b7:16:54:24:12:80:c0:f7: 97:ef:14:93:ab:68:51:b7:3b:ac:1e:f0:fb:c6:37:a6:9d:61: 0e:f7:fd:0c:6a:5b:d8:7c:9b:b6:04:df:7d:81:36:c1:80:46: 91:f4:ab:1d:79:53:26:95:97:cb:d7:9b:c7:6d:4e:00:2a:c5: 38:60:dd:2c:6e:e8:d9:b2:a1:a7:80:3a:15:a7:91:61:4c:b8: cc:10:86:29:c4:6e:62:f4:68:d9:96:08:8c:ec:b5:dc:d6:9f: 48:97:5a:8c:93:ca:03:40:1f:ba:1a:38:75:e6:4e:87:18:ff: 4c:f6:90:13:d4:ee:4f:ce:2b:0a:86:0e:8b:e7:96:5f:b5:50: 85:bb:d9:2f:82:98:41:a0:07:f8:14:1b:2f:3b:3b:fc:e1:a8: 33:7d:f7:2d:cf:a0:1a:74:44:4f:c5:c6:4d:ee:44:87:fc:3d: 02:b7:e0:4b:d6:24:39:18:b5:5c:75:bb:61:49:25:53:7f:b9: c2:af:02:51 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBGOTAxMTAvBgNVBAUTKDVDMEEzNTIzRkQzNjQ1QTc2MzVBRjI1MTlBRENEMDAy RTEzMkZCQ0UwHhcNMjYwNTExMDYzNDQzWhcNMjYwNTE4MDYzNDQzWjAYMRYwFAYD VQQDEw02YTAxNzg4My1kMmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5j2IL7Z+ZGvoTQbWWT8J3qrPEsKmvXo9XlmQS2gqZQJc7b2bkEWirrOIfcbW xQUySwEkeE/G7qB2/b79p5DdU9gOIT7l175SZI2N7hPGNYV5RubM9V6ez3pRdzkv oZuU4ULm5H1wFzeZaIwIbU9TH+PIvPqQFxGU7YJZfiXld97GLlsqdbYm8AJYLkKu cnfVCesnMGtdF3qV2ZK7gQNtYUjm54elLvNPVvOZM/fnDl4C3q9NNqa1caB3lWgo 9I4oxWB0H55lI0Dsfr8a2xkdjmH/29Ij8Tex7eJ8VUJneU622BYVA7VVAxTZCP+n FUvzGEN6bK/Z6g3N3qHmLXKjHwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIvG3aL8 LvBgnGCjVAfDmuPGVqVzMB8GA1UdIwQYMBaAFFwKNSP9NkWnY1ryUZrc0ALhMvvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEY5MC8wNDc3OUI5Q0VE ODExMUVGQTAwMzY2MTZDNEY5QUUwMi9YQW8xSV8wMlJhZGpXdkpSbXR6UUF1RXkt ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBbzFJXzAyUmFkald2SlJtdHpRQXVFeS04NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MEY5MC8wNDc3OUI5Q0VEODExMUVGQTAwMzY2MTZDNEY5QUUwMi9YQW8xSV8wMlJh ZGpXdkpSbXR6UUF1RXktODQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApg6qm/ajaLnjgIutzaBhBi5xi/1074CmLBH27F1rJ8wqL2hy1Igw78bASMp3 SJalHk+nbEKceXBXiPjn5ORUeLcWVCQSgMD3l+8Uk6toUbc7rB7w+8Y3pp1hDvf9 DGpb2HybtgTffYE2wYBGkfSrHXlTJpWXy9ebx21OACrFOGDdLG7o2bKhp4A6FaeR YUy4zBCGKcRuYvRo2ZYIjOy13NafSJdajJPKA0Afuho4deZOhxj/TPaQE9TuT84r CoYOi+eWX7VQhbvZL4KYQaAH+BQbLzs7/OGoM333Lc+gGnRET8XGTe5Eh/w9Arfg S9YkORi1XHW7YUklU3+5wq8CUQ== -----END CERTIFICATE-----Generated at Wed May 13 06:28:40 2026 by rpki-client