$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft File: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft (raw, json) Hash identifier: JojGYKAOafGY6K9d0iFk2U3VML/xbV1giULN4582gsY= Subject key identifier: BB:7B:F9:C0:0A:D1:B8:02:DA:21:02:C5:5D:6C:55:0B:7F:FC:3E:3B Authority key identifier: C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 Certificate issuer: /CN=A91E3BF2/serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Certificate serial: 036A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft Manifest number: 0362 Signing time: Wed 13 May 2026 00:59:50 +0000 Manifest this update: Wed 13 May 2026 00:59:50 +0000 Manifest next update: Wed 20 May 2026 00:59:50 +0000 Files and hashes: 1: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl (hash: qrx53nQ7rZOa//EQ2HrlFbBh5+K9MKqgS2ByDrO7sNg=) 2: 6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa (hash: OXdwgZN4vaFZ6nWyjvt24Xk4nrgBuF6Vr7LgDqZpHIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:59:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 874 (0x36a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BF2, serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Validity Not Before: May 13 00:59:50 2026 GMT Not After : May 20 00:59:50 2026 GMT Subject: CN=6a03cd06-9862 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1e:02:81:11:3e:0c:2c:a3:44:3c:62:f3:16: c0:41:d0:aa:86:86:39:19:6a:29:f1:25:e1:75:95: 5a:7f:7e:1c:4f:a5:38:84:23:dd:62:ec:fa:c2:d8: 5e:8e:a3:84:18:b7:75:45:c0:ff:60:26:78:c7:f8: 06:cd:d7:24:60:ef:a2:1d:0a:07:1f:ce:6d:9b:3e: 27:f9:e0:79:76:dc:53:a4:91:38:08:b2:8e:8b:97: 71:77:15:f4:79:19:35:1c:1a:f9:a3:e1:4a:29:11: 64:29:82:4a:60:d2:ff:ed:09:78:f3:f9:22:1f:64: ce:0d:09:f2:bf:c4:42:4b:20:c5:b0:7e:77:e8:64: 09:c0:f1:38:4e:58:f0:84:d7:ad:82:1c:b2:de:2b: 8f:99:84:01:f9:31:09:9e:2f:cd:94:06:9e:a9:15: 3a:43:2c:cf:40:50:5b:0d:64:d1:45:26:93:30:a5: be:07:03:0e:d9:95:e3:89:71:21:f6:99:db:fe:e9: f0:f7:1c:ac:ca:8c:8b:c2:98:d1:c2:93:8e:f7:f0: 72:04:d4:2f:25:94:6e:41:d0:8b:a6:58:89:f0:8c: 21:fb:53:e2:58:f5:82:be:68:81:f5:2e:5b:73:b4: cb:95:67:82:2e:ae:ca:07:64:dd:82:67:5a:f1:0f: 0a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:7B:F9:C0:0A:D1:B8:02:DA:21:02:C5:5D:6C:55:0B:7F:FC:3E:3B X509v3 Authority Key Identifier: keyid:C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:10:84:34:75:b7:8e:dd:6c:3b:f0:24:ec:20:ba:a6:56:70: 9b:6c:6d:73:e2:bf:23:6f:6c:d8:37:96:2d:40:97:11:e3:fc: 3d:b4:bf:0c:16:a2:c9:16:78:64:18:de:30:5b:40:bc:0b:bd: d2:2e:6f:52:bf:57:b8:dc:6c:4b:5e:ad:64:65:3b:49:55:00: d4:a4:91:f1:5a:04:18:78:da:8b:96:bd:f8:a5:9a:50:bc:c5: 10:17:f9:8d:b7:75:f9:bc:4b:4a:24:c2:85:a8:34:32:99:1f: 18:b5:4d:bd:5b:de:6a:fb:2c:73:86:f0:e5:46:91:98:89:4a: ba:e5:70:5d:ba:73:5d:e5:88:ac:b0:58:41:8f:26:e8:69:3c: f6:3a:93:9d:2e:75:4a:50:8d:e0:b8:48:79:0b:3f:98:d9:a2: 4b:fd:49:c0:63:90:97:70:9a:aa:8e:ac:ff:88:44:da:29:2f: 2e:41:0a:69:12:ab:b0:9e:b5:0e:5e:74:b5:31:77:a3:f0:b7: 0b:87:af:f9:e8:94:1b:94:4b:98:ac:bd:e6:4a:8e:0d:51:a5: 42:d8:40:12:ec:a9:02:c5:8b:fe:4c:4b:04:49:95:bb:05:9b: c2:8d:66:0c:66:1b:9f:ee:bc:ca:56:2a:50:33:63:99:df:30: a6:9d:3c:4c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCRjIxMTAvBgNVBAUTKEM0NzFBNTZFRTk0RjA1QjQzN0MwOUVFRTBGNDQyMDNG QTQ1OTI3MzYwHhcNMjYwNTEzMDA1OTUwWhcNMjYwNTIwMDA1OTUwWjAYMRYwFAYD VQQDEw02YTAzY2QwNi05ODYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnB4CgRE+DCyjRDxi8xbAQdCqhoY5GWop8SXhdZVaf34cT6U4hCPdYuz6wthe jqOEGLd1RcD/YCZ4x/gGzdckYO+iHQoHH85tmz4n+eB5dtxTpJE4CLKOi5dxdxX0 eRk1HBr5o+FKKRFkKYJKYNL/7Ql48/kiH2TODQnyv8RCSyDFsH536GQJwPE4Tljw hNetghyy3iuPmYQB+TEJni/NlAaeqRU6QyzPQFBbDWTRRSaTMKW+BwMO2ZXjiXEh 9pnb/unw9xysyoyLwpjRwpOO9/ByBNQvJZRuQdCLpliJ8Iwh+1PiWPWCvmiB9S5b c7TLlWeCLq7KB2Tdgmda8Q8KUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLt7+cAK 0bgC2iECxV1sVQt//D47MB8GA1UdIwQYMBaAFMRxpW7pTwW0N8Ce7g9EID+kWSc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JGMi81MDkwOTZBOEY2 QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJiUTN3Sjd1RDBRZ1A2UlpK elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIR2xidWxQQmJRM3dKN3VEMFFnUDZSWkp6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JGMi81MDkwOTZBOEY2QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJi UTN3Sjd1RDBRZ1A2UlpKelkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVhCENHW3jt1sO/Ak7CC6plZwm2xtc+K/I29s2DeWLUCXEeP8PbS/DBaiyRZ4 ZBjeMFtAvAu90i5vUr9XuNxsS16tZGU7SVUA1KSR8VoEGHjai5a9+KWaULzFEBf5 jbd1+bxLSiTChag0MpkfGLVNvVveavssc4bw5UaRmIlKuuVwXbpzXeWIrLBYQY8m 6Gk89jqTnS51SlCN4LhIeQs/mNmiS/1JwGOQl3Caqo6s/4hE2ikvLkEKaRKrsJ61 Dl50tTF3o/C3C4ev+eiUG5RLmKy95kqODVGlQthAEuypAsWL/kxLBEmVuwWbwo1m DGYbn+68ylYqUDNjmd8wpp08TA== -----END CERTIFICATE-----Generated at Wed May 13 14:06:05 2026 by rpki-client