$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft File: XHIqJhQciPfNQPObN0raf7wfmx8.mft (raw, json) Hash identifier: 9kp42QLdq8KUh5kL+Lb1tc2DAgqMPdxzhuZAj12yqf8= Subject key identifier: 9A:5F:F3:F0:7F:C6:CE:78:D5:FB:FF:D7:AC:CE:5B:D7:36:88:9B:F2 Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: 0165 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft Manifest number: 0150 Signing time: Mon 11 May 2026 05:18:17 +0000 Manifest this update: Mon 11 May 2026 05:18:16 +0000 Manifest next update: Mon 18 May 2026 05:18:16 +0000 Files and hashes: 1: XHIqJhQciPfNQPObN0raf7wfmx8.crl (hash: 2e8dDRNlYb5XGMK9mnbdM43t0vmycEGdR61/Hk1N8dA=) 2: D956F03AAB0211F083CD7E11C4F9AE02.roa (hash: rrKRhHeiohcyIqeCIJv+44R0SbRHPDcNTcaSyqFnNBQ=) 3: F0FCC9ECABF411F0B9E4F837C4F9AE02.roa (hash: yjLxdwzIuckVEpvjPtBFZMr56OhqZEN8C8fQw3Xhxos=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 05:18:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 357 (0x165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A, serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: May 11 05:18:16 2026 GMT Not After : May 18 05:18:16 2026 GMT Subject: CN=6a016699-2357 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:4b:a3:e7:e1:06:ec:99:df:46:42:fd:99:03: 5b:98:23:d5:c7:f6:89:1f:99:27:29:ce:ec:2a:b7: 35:36:e9:4e:c9:7d:63:1c:14:0c:15:05:1e:a6:a4: 36:0d:42:e5:53:0c:42:a4:39:4e:37:4d:cc:f8:eb: 28:a0:fd:72:ac:72:1d:e3:47:8f:2e:47:ed:1e:3e: 2f:4b:44:ac:0f:12:b0:94:39:93:77:cd:3d:8e:d3: a0:20:41:1a:4f:04:4f:6c:4f:d9:cb:38:e3:dc:f1: 52:08:aa:4a:50:ae:cf:64:9e:aa:42:ad:37:9a:c7: 62:3a:50:ba:07:8b:05:97:ed:e8:be:67:f3:15:3e: 20:6a:dd:e8:ff:53:56:0f:78:f5:d5:4e:f4:b1:d1: 6d:2a:15:ce:1d:f0:ab:ba:31:05:d8:53:f2:d0:fb: 6d:34:bd:24:47:59:d0:c2:8d:3f:71:cb:b2:ed:8b: c4:fe:98:ca:ae:fd:7c:d2:d6:49:84:70:3b:e2:1b: fd:bb:88:0c:1f:b5:76:6c:62:f3:a4:77:df:40:9c: 31:c4:da:9c:11:6e:23:fa:93:10:89:88:48:f0:b5: 48:52:7b:e5:0c:99:c5:78:ef:26:5e:4b:79:3f:dc: e3:bb:1f:51:bb:fc:89:40:25:58:78:3d:36:a1:da: b9:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:5F:F3:F0:7F:C6:CE:78:D5:FB:FF:D7:AC:CE:5B:D7:36:88:9B:F2 X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:82:39:2a:74:3c:6c:5a:a7:5f:a0:6a:19:c3:fa:80:e2:cb: d7:61:f5:15:a9:26:47:af:57:df:35:10:fd:fb:0f:2c:24:d8: 9a:07:29:4c:5f:72:5f:5b:81:3e:ba:fb:5f:55:ee:de:9d:07: 9c:62:79:61:69:12:36:d4:d6:ea:af:e6:96:be:bf:a2:41:94: 86:92:2e:67:59:c8:1f:4e:12:35:f2:5a:16:00:e4:8c:ae:3e: 1b:81:86:8d:cc:1a:e9:7d:b9:f9:06:d3:e8:7a:eb:93:d4:79: 4f:d4:c5:18:fa:01:69:dd:b0:ce:f2:77:f1:7a:95:28:ae:83: 1e:f1:db:63:ad:df:90:cf:09:63:be:08:7e:6d:35:8f:7c:0d: 5a:28:fe:b0:46:89:ea:c1:d8:03:ee:00:7b:07:c9:d9:4c:f3: 31:5b:13:6a:51:28:4f:2b:e4:90:ee:61:48:ef:50:66:04:9f: 30:e3:88:5b:fd:d9:3d:b7:68:a3:5a:d9:0f:bb:49:ac:cd:df: ed:29:e7:49:b1:9f:f4:af:e7:52:6f:3a:bb:40:69:d3:ff:70: 75:8b:c3:62:f5:e4:1a:8d:0b:61:34:4c:91:ea:f9:05:72:d7: b4:6b:96:be:aa:74:9c:52:30:98:cd:50:13:7a:90:8b:3c:5a: e1:a3:f7:e7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgyNEExMTAvBgNVBAUTKDVDNzIyQTI2MTQxQzg4RjdDRDQwRjM5QjM3NEFEQTdG QkMxRjlCMUYwHhcNMjYwNTExMDUxODE2WhcNMjYwNTE4MDUxODE2WjAYMRYwFAYD VQQDEw02YTAxNjY5OS0yMzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Euj5+EG7JnfRkL9mQNbmCPVx/aJH5knKc7sKrc1NulOyX1jHBQMFQUepqQ2 DULlUwxCpDlON03M+OsooP1yrHId40ePLkftHj4vS0SsDxKwlDmTd809jtOgIEEa TwRPbE/Zyzjj3PFSCKpKUK7PZJ6qQq03msdiOlC6B4sFl+3ovmfzFT4gat3o/1NW D3j11U70sdFtKhXOHfCrujEF2FPy0PttNL0kR1nQwo0/ccuy7YvE/pjKrv180tZJ hHA74hv9u4gMH7V2bGLzpHffQJwxxNqcEW4j+pMQiYhI8LVIUnvlDJnFeO8mXkt5 P9zjux9Ru/yJQCVYeD02odq5qQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJpf8/B/ xs541fv/16zOW9c2iJvyMB8GA1UdIwQYMBaAFFxyKiYUHIj3zUDzmzdK2n+8H5sf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODI0QS80QURGMzNGQzVC OUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQZk5RUE9iTjByYWY3d2Zt eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODI0QS80QURGMzNGQzVCOUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQ Zk5RUE9iTjByYWY3d2ZteDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAO4I5KnQ8bFqnX6BqGcP6gOLL12H1FakmR69X3zUQ/fsPLCTYmgcpTF9yX1uB Prr7X1Xu3p0HnGJ5YWkSNtTW6q/mlr6/okGUhpIuZ1nIH04SNfJaFgDkjK4+G4GG jcwa6X25+QbT6Hrrk9R5T9TFGPoBad2wzvJ38XqVKK6DHvHbY63fkM8JY74Ifm01 j3wNWij+sEaJ6sHYA+4AewfJ2UzzMVsTalEoTyvkkO5hSO9QZgSfMOOIW/3ZPbdo o1rZD7tJrM3f7SnnSbGf9K/nUm86u0Bp0/9wdYvDYvXkGo0LYTRMker5BXLXtGuW vqp0nFIwmM1QE3qQizxa4aP35w== -----END CERTIFICATE-----Generated at Wed May 13 05:23:27 2026 by rpki-client