$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: P+spmQbhwtfq0PU/NFOxFI23jCFCqeIeW9O/jW6A0v8= Subject key identifier: A0:00:8F:38:61:A4:12:AE:DC:8E:81:BF:B7:61:EC:91:79:18:50:CB Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 25BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 25BE Signing time: Tue 12 May 2026 14:33:01 +0000 Manifest this update: Tue 12 May 2026 14:33:01 +0000 Manifest next update: Tue 19 May 2026 14:33:01 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: nWlY956nGR6HNw5NsJxtfh1frSvEqd2NRb4j335oWhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9662 (0x25be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Validity Not Before: May 12 14:33:01 2026 GMT Not After : May 19 14:33:01 2026 GMT Subject: CN=6a033a1d-1933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:36:68:1a:b0:eb:b9:90:f1:6a:d8:42:d1:ef: 02:d5:64:ec:7e:15:c3:bc:af:26:4d:ec:cc:64:a6: 0a:96:e8:48:85:f9:2b:d0:d5:b0:73:54:2a:bb:18: 52:00:fb:7c:0e:d9:95:b3:d8:09:cc:35:4e:99:02: 04:4a:93:d8:9c:d6:05:d3:ab:33:9f:d6:23:1e:57: ea:8b:00:ff:22:55:5d:2c:c8:bb:e6:ac:97:aa:f2: f1:85:14:36:d3:6b:44:55:41:43:cb:7f:e2:79:7d: a9:0d:9a:bb:47:59:2e:a2:c0:80:a8:02:62:60:e5: cb:bb:37:0d:32:d1:1b:32:18:50:4e:94:0e:95:9c: e9:a9:d5:f8:4f:d8:57:41:84:28:5e:8e:b7:8b:0f: 90:21:59:76:5b:59:e4:df:1b:2f:19:7d:62:fe:dd: c5:8e:2e:20:a8:1a:eb:87:6c:30:f1:89:a7:ec:d0: d7:29:d8:bc:4a:68:ba:70:40:6f:58:09:d5:69:3d: 17:22:4a:89:99:4f:de:ed:f0:c7:b5:d5:ce:4c:61: 5d:d0:5f:1a:3e:75:c2:53:30:15:e0:db:e9:4d:a3: 52:ce:75:ef:41:70:b8:4d:93:a0:c2:21:90:ee:6a: 26:e0:83:d6:86:d4:5a:c8:26:c2:48:f4:b6:63:55: 37:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:00:8F:38:61:A4:12:AE:DC:8E:81:BF:B7:61:EC:91:79:18:50:CB X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:65:7c:37:73:83:c0:61:26:58:ca:10:19:eb:a6:e2:ad:67: 63:6d:af:7f:93:dd:f0:1f:ea:40:47:67:b1:e7:d3:54:54:e9: ad:00:8a:07:42:b4:67:b7:29:14:f5:57:46:6b:78:e4:8a:72: 6c:13:b8:be:05:20:d3:ae:06:59:39:31:66:11:e6:34:15:61: ee:3e:3c:60:ba:36:cc:85:6c:af:87:43:56:ea:f4:2f:34:1b: 05:d6:44:80:12:4c:eb:22:96:7f:6e:f1:e1:b3:0a:fa:bc:29: 29:9e:a2:93:46:c7:f6:3b:f8:4f:36:b1:95:26:73:6a:d2:b8: eb:5a:5a:2a:eb:1f:6e:e7:2a:e7:1d:9b:50:7a:6a:ec:ff:75: 4b:7b:2f:10:cf:2b:63:aa:96:26:af:3c:be:56:d7:44:bf:39: a8:a6:90:46:22:dc:0f:b3:69:f0:69:31:de:a8:20:14:48:ca: c8:59:6b:7c:a8:de:c1:86:5a:3f:67:41:97:93:6c:1b:33:4e: 31:59:78:cc:44:b7:cc:15:86:08:d4:91:fd:f1:12:eb:b3:e2: 32:3e:24:ed:e9:06:b6:aa:ab:e0:b8:27:7b:76:e8:80:63:b0: ec:81:35:62:1c:8a:bb:08:d2:97:8d:e1:7a:ea:01:ca:71:06: 3d:46:32:ca -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICJb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjYwNTEyMTQzMzAxWhcNMjYwNTE5MTQzMzAxWjAYMRYwFAYD VQQDEw02YTAzM2ExZC0xOTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTZoGrDruZDxathC0e8C1WTsfhXDvK8mTezMZKYKluhIhfkr0NWwc1QquxhS APt8DtmVs9gJzDVOmQIESpPYnNYF06szn9YjHlfqiwD/IlVdLMi75qyXqvLxhRQ2 02tEVUFDy3/ieX2pDZq7R1kuosCAqAJiYOXLuzcNMtEbMhhQTpQOlZzpqdX4T9hX QYQoXo63iw+QIVl2W1nk3xsvGX1i/t3Fji4gqBrrh2ww8Ymn7NDXKdi8Smi6cEBv WAnVaT0XIkqJmU/e7fDHtdXOTGFd0F8aPnXCUzAV4NvpTaNSznXvQXC4TZOgwiGQ 7mom4IPWhtRayCbCSPS2Y1U3lQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKAAjzhh pBKu3I6Bv7dh7JF5GFDLMB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABWV8N3ODwGEmWMoQGeum4q1nY22vf5Pd8B/qQEdnsefTVFTprQCKB0K0Z7cp FPVXRmt45IpybBO4vgUg064GWTkxZhHmNBVh7j48YLo2zIVsr4dDVur0LzQbBdZE gBJM6yKWf27x4bMK+rwpKZ6ik0bH9jv4TzaxlSZzatK461paKusfbucq5x2bUHpq 7P91S3svEM8rY6qWJq88vlbXRL85qKaQRiLcD7Np8Gkx3qggFEjKyFlrfKjewYZa P2dBl5NsGzNOMVl4zES3zBWGCNSR/fES67PiMj4k7ekGtqqr4Lgne3bogGOw7IE1 YhyKuwjSl43heuoBynEGPUYyyg== -----END CERTIFICATE-----Generated at Wed May 13 08:47:08 2026 by rpki-client