$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft File: XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft (raw, json) Hash identifier: h9gADBHGvVouz7pilK4r1+Mw3k1TkVXWl/q5qdEoUxM= Subject key identifier: 5F:7D:3F:4D:69:A6:AF:90:00:93:B4:E4:98:18:2C:1B:B4:EA:23:13 Authority key identifier: 5E:78:64:2B:03:CC:37:E2:6F:D4:15:E7:D7:61:BE:48:47:36:C5:66 Certificate issuer: /CN=A91E7B89/serialNumber=5E78642B03CC37E26FD415E7D761BE484736C566 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnhkKwPMN-Jv1BXn12G-SEc2xWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft Manifest number: 4F Signing time: Wed 13 May 2026 08:24:37 +0000 Manifest this update: Wed 13 May 2026 08:24:36 +0000 Manifest next update: Wed 20 May 2026 08:24:36 +0000 Files and hashes: 1: XnhkKwPMN-Jv1BXn12G-SEc2xWY.crl (hash: IP3+BhsiACj0UExsBngOu1C1XzYZBjNoMUeeD3v15mY=) 2: 72480DC0D9A111F0989DD75268D3641D.roa (hash: /m7dePdPhCd+iFe1dsv0pa92EOKO9ZVeLTSq8mVj9oY=) 3: 1BD6E18E1D1A11F1B8E79D60103D8C67.roa (hash: FWUBzi+iodYXnW4vMdTTKwC/KG79KdBqlOoiZl/TPEw=) 4: 1C61CBFA1D1A11F1B8E79D60103D8C67.roa (hash: wYka0Jo+ri8cUtmDcLdxLnFG7gW5TQTaHwdh/jeTkn4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.crl rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnhkKwPMN-Jv1BXn12G-SEc2xWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 08:24:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7B89, serialNumber=5E78642B03CC37E26FD415E7D761BE484736C566 Validity Not Before: May 13 08:24:36 2026 GMT Not After : May 20 08:24:36 2026 GMT Subject: CN=6a043544-a908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:99:d0:c3:89:30:f7:65:15:9e:f7:f7:19:e1: d7:ac:e3:36:21:c8:a1:34:e2:97:02:ca:11:5a:29: 4c:91:06:10:29:f9:29:42:8e:42:1b:ed:d1:1c:e0: 18:68:9a:c4:9e:e7:b3:3a:76:d1:a4:6f:f0:73:a6: 7c:2b:5e:4d:b2:89:f8:2a:d5:73:34:73:a8:0c:57: 13:1b:b8:e0:7b:a9:5f:31:c0:61:32:55:8f:5e:a5: 13:fe:ce:ce:51:58:f0:77:bb:71:78:05:3d:d3:22: 90:36:3d:9e:f1:a3:fd:64:a5:67:0d:0e:5b:44:78: e1:48:ba:a4:00:7a:d5:02:2f:14:fa:aa:3e:03:2d: d0:81:1d:2c:95:d1:4d:5e:8c:f6:94:d0:ad:87:58: 3f:9d:f3:1d:e8:9a:29:33:fc:eb:43:0b:5b:cd:7d: 06:1c:52:1c:94:1f:ff:e5:92:1a:30:78:19:14:12: 97:ea:5d:29:9b:fd:61:60:de:d3:17:29:b6:af:79: f6:65:af:60:2f:30:20:ed:15:5f:04:90:63:96:d3: 51:76:ab:5b:d6:7d:f5:64:6b:17:11:49:81:35:68: 10:60:2a:e5:de:0b:de:e3:b4:d7:ae:4b:9c:50:de: 27:9e:0d:d2:1d:47:8c:0d:eb:66:bb:83:5a:78:dc: df:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:7D:3F:4D:69:A6:AF:90:00:93:B4:E4:98:18:2C:1B:B4:EA:23:13 X509v3 Authority Key Identifier: keyid:5E:78:64:2B:03:CC:37:E2:6F:D4:15:E7:D7:61:BE:48:47:36:C5:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnhkKwPMN-Jv1BXn12G-SEc2xWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7B89/41BE4F44D9A011F093130E0768D3641D/XnhkKwPMN-Jv1BXn12G-SEc2xWY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:d3:0d:d9:a5:b2:26:d6:12:af:cc:f1:23:3f:6b:97:c4:2f: 7b:50:ae:62:ba:44:73:79:bd:d6:15:60:fc:48:cc:09:99:84: ce:c6:ca:6a:25:f6:3a:54:c0:45:13:91:48:b0:58:52:4e:fb: f7:6a:b2:12:46:14:3d:c6:03:6d:d9:e8:43:88:51:4d:89:72: d4:5f:d6:ae:2c:9e:6e:94:8c:ee:14:f3:7c:36:9c:59:5d:ff: 76:d6:c8:a4:bd:89:65:fe:fa:ce:48:d6:c1:a7:f5:da:73:35: 88:8d:03:f8:6f:a6:7d:9a:27:20:c8:0d:7c:b0:e9:c3:82:40: de:5b:67:82:16:cc:a0:f1:7d:2a:d3:94:26:f5:6b:10:12:36: 8e:f0:b2:2c:8c:2e:74:ae:ab:d6:fd:07:e4:dc:dd:44:ad:87: 56:79:d1:c7:3f:26:91:a2:c8:a8:f0:2d:7e:9b:26:97:00:a1: b7:61:93:da:63:24:f1:49:27:38:1c:c6:9c:ed:63:84:b6:0e: 42:41:e8:f4:6e:eb:ff:2d:11:79:c3:99:a0:f9:5a:ed:95:4a: da:45:1f:ac:06:71:60:f5:8e:06:97:0d:d3:ae:1e:c0:9b:4c: 56:f3:15:3f:89:08:01:14:7b:1b:cb:01:78:db:17:15:f7:b8: 38:5c:95:cd -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF N0I4OTExMC8GA1UEBRMoNUU3ODY0MkIwM0NDMzdFMjZGRDQxNUU3RDc2MUJFNDg0 NzM2QzU2NjAeFw0yNjA1MTMwODI0MzZaFw0yNjA1MjAwODI0MzZaMBgxFjAUBgNV BAMTDTZhMDQzNTQ0LWE5MDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOmdDDiTD3ZRWe9/cZ4des4zYhyKE04pcCyhFaKUyRBhAp+SlCjkIb7dEc4Bho msSe57M6dtGkb/BzpnwrXk2yifgq1XM0c6gMVxMbuOB7qV8xwGEyVY9epRP+zs5R WPB3u3F4BT3TIpA2PZ7xo/1kpWcNDltEeOFIuqQAetUCLxT6qj4DLdCBHSyV0U1e jPaU0K2HWD+d8x3omikz/OtDC1vNfQYcUhyUH//lkhoweBkUEpfqXSmb/WFg3tMX KbavefZlr2AvMCDtFV8EkGOW01F2q1vWffVkaxcRSYE1aBBgKuXeC97jtNeuS5xQ 3ieeDdIdR4wN62a7g1p43N+zAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUX30/TWmm r5AAk7TkmBgsG7TqIxMwHwYDVR0jBBgwFoAUXnhkKwPMN+Jv1BXn12G+SEc2xWYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3Qjg5LzQxQkU0RjQ0RDlB MDExRjA5MzEzMEUwNzY4RDM2NDFEL1huaGtLd1BNTi1KdjFCWG4xMkctU0VjMnhX WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWG5oa0t3UE1OLUp2MUJYbjEyRy1TRWMyeFdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3 Qjg5LzQxQkU0RjQ0RDlBMDExRjA5MzEzMEUwNzY4RDM2NDFEL1huaGtLd1BNTi1K djFCWG4xMkctU0VjMnhXWS5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQCD0w3ZpbIm1hKvzPEjP2uXxC97UK5iukRzeb3WFWD8SMwJmYTOxspqJfY6VMBF E5FIsFhSTvv3arISRhQ9xgNt2ehDiFFNiXLUX9auLJ5ulIzuFPN8NpxZXf921sik vYll/vrOSNbBp/XaczWIjQP4b6Z9micgyA18sOnDgkDeW2eCFsyg8X0q05Qm9WsQ EjaO8LIsjC50rqvW/Qfk3N1ErYdWedHHPyaRosio8C1+myaXAKG3YZPaYyTxSSc4 HMac7WOEtg5CQej0buv/LRF5w5mg+VrtlUraRR+sBnFg9Y4Glw3Trh7Am0xW8xU/ iQgBFHsbywF42xcV97g4XJXN -----END CERTIFICATE-----Generated at Wed May 13 15:53:46 2026 by rpki-client