$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft File: XYnzqvmxOgelsmTy3rpk1cUAZRw.mft (raw, json) Hash identifier: btxFjjk7g2kqs037bVldJLa5ELgi8GF/Alpq204k7U4= Subject key identifier: D9:6C:D3:F2:74:56:7F:16:B1:CE:6D:6D:60:D1:82:80:93:6B:67:41 Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 0282 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft Manifest number: 0271 Signing time: Wed 13 May 2026 02:07:50 +0000 Manifest this update: Wed 13 May 2026 02:07:50 +0000 Manifest next update: Wed 20 May 2026 02:07:50 +0000 Files and hashes: 1: XYnzqvmxOgelsmTy3rpk1cUAZRw.crl (hash: PcpaHUMHAX2ZRn9TO8YUB5DbjyEgvsZi+OcyfmOVzaw=) 2: 9EA7B7D8A63911ED874E6630C4F9AE02.roa (hash: DHZLT6kRWzcG3+2PiBnd4pNnMfMfwzitkH/VyFmiyhk=) 3: 9FBA5FCCA63911ED874E6630C4F9AE02.roa (hash: ClwvMUH1LVLekjvPCckwoGuRynW5TD4w0EqiLo6Abj0=) 4: 5DCE1A1AA63C11ED9306165AC4F9AE02.roa (hash: ry8gAyMl/oF2tDrb6QBcr0lUpoct2VpMmyLx0Y2gIls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:07:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 642 (0x282) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240, serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: May 13 02:07:50 2026 GMT Not After : May 20 02:07:50 2026 GMT Subject: CN=6a03dcf6-d458 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:66:c4:30:58:f3:0c:2e:3b:0d:44:ed:70:6a: ff:e6:bf:78:90:30:da:82:69:18:3a:08:00:df:c7: bd:bc:fb:cf:92:b3:53:5a:e2:ad:79:df:75:66:fa: fe:35:d4:53:47:31:b4:78:2d:73:64:3d:c1:22:ec: d6:4e:ed:35:9a:c0:b7:55:d5:6e:1c:46:a5:a8:96: 2b:fc:c9:76:5a:d5:b5:46:e7:e0:3f:a7:e5:86:9c: 02:7f:19:41:12:ff:27:2d:aa:df:f6:77:d4:d0:a6: cb:f5:7b:d9:76:b4:a9:16:4c:8b:ae:ae:01:61:00: f6:3f:e1:01:40:53:f6:c9:e7:7d:b4:f5:2b:9a:37: c1:33:0b:6a:8d:8b:f9:52:c2:59:37:a2:1b:1c:1a: 89:1c:83:4a:81:21:8d:f7:68:b6:17:7a:a5:02:03: 9c:1b:ad:7a:05:f4:13:72:cf:ff:d6:40:ef:b1:5c: b5:a6:bd:ca:02:4a:e0:bc:ef:bd:21:b3:98:79:b2: e0:5a:d8:47:d2:eb:a3:d3:b2:5b:42:8a:28:84:24: cb:8b:a2:de:91:d0:52:d6:b4:57:13:71:ce:75:22: c9:17:e0:7c:50:25:00:47:ac:64:6d:bc:7c:25:64: 09:fd:f0:a5:39:b9:94:3f:38:8d:9c:a0:9e:d2:65: 32:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:6C:D3:F2:74:56:7F:16:B1:CE:6D:6D:60:D1:82:80:93:6B:67:41 X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:15:26:ee:96:ad:dd:f2:4d:78:47:be:29:9e:c6:49:c3:b9: 1e:3a:5b:2a:a5:00:57:e0:ad:90:32:1c:29:da:82:8a:82:52: 20:6a:fe:01:6d:d7:ca:7f:0a:f6:fb:a1:03:af:c4:e1:35:da: 73:5d:39:ca:30:d4:b2:4e:68:41:40:cd:77:b0:2b:a3:6f:15: 54:53:79:b7:07:a7:33:3f:55:6f:d6:61:6c:bb:f2:23:e3:28: 66:34:3d:db:c5:a1:87:5f:e4:b5:b7:f9:11:d3:ce:62:b1:89: 0a:41:66:e7:a5:7b:93:2e:f0:7c:f6:f3:96:17:c7:0b:4e:95: 4e:22:9b:87:05:dd:0b:09:da:61:24:6a:5c:ed:73:36:83:1d: 41:3c:ac:2e:0a:d0:2b:74:68:12:d8:2f:e4:9b:24:f7:ef:67: ce:8c:0e:08:7f:58:b7:0a:b8:1f:78:5a:9a:f2:25:88:5a:a8: fd:e8:ff:17:14:6d:3f:89:65:f6:bf:44:9e:7e:03:5c:bc:b0: d0:f3:b8:5e:c3:0e:45:24:fd:c4:8f:d5:4b:19:a5:45:db:4c: f9:6c:14:18:42:d2:15:30:08:32:5a:4c:a6:8f:e4:24:be:37: 08:0f:da:94:73:cb:9a:b8:7a:82:c8:27:a0:66:16:9e:ed:17: cd:7c:1b:a9 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjYwNTEzMDIwNzUwWhcNMjYwNTIwMDIwNzUwWjAYMRYwFAYD VQQDEw02YTAzZGNmNi1kNDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWbEMFjzDC47DUTtcGr/5r94kDDagmkYOggA38e9vPvPkrNTWuKted91Zvr+ NdRTRzG0eC1zZD3BIuzWTu01msC3VdVuHEalqJYr/Ml2WtW1RufgP6flhpwCfxlB Ev8nLarf9nfU0KbL9XvZdrSpFkyLrq4BYQD2P+EBQFP2yed9tPUrmjfBMwtqjYv5 UsJZN6IbHBqJHINKgSGN92i2F3qlAgOcG616BfQTcs//1kDvsVy1pr3KAkrgvO+9 IbOYebLgWthH0uuj07JbQooohCTLi6LekdBS1rRXE3HOdSLJF+B8UCUAR6xkbbx8 JWQJ/fClObmUPziNnKCe0mUyqwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNls0/J0 Vn8Wsc5tbWDRgoCTa2dBMB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTI0MC8yN0RERTdEODlCN0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9n ZWxzbVR5M3JwazFjVUFaUncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAThUm7pat3fJNeEe+KZ7GScO5HjpbKqUAV+CtkDIcKdqCioJSIGr+AW3Xyn8K 9vuhA6/E4TXac105yjDUsk5oQUDNd7Aro28VVFN5twenMz9Vb9ZhbLvyI+MoZjQ9 28Whh1/ktbf5EdPOYrGJCkFm56V7ky7wfPbzlhfHC06VTiKbhwXdCwnaYSRqXO1z NoMdQTysLgrQK3RoEtgv5Jsk9+9nzowOCH9Ytwq4H3hamvIliFqo/ej/FxRtP4ll 9r9Enn4DXLyw0PO4XsMORST9xI/VSxmlRdtM+WwUGELSFTAIMlpMpo/kJL43CA/a lHPLmrh6gsgnoGYWnu0XzXwbqQ== -----END CERTIFICATE-----Generated at Wed May 13 15:33:42 2026 by rpki-client