$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft File: xbajYOSK75Kf3CcpbR1S9b9umRY.mft (raw, json) Hash identifier: jLSvGRWoowX+DO+N/r+8XmXiSB4KbiK+IOrgHdJajkk= Subject key identifier: CD:86:EC:2E:D6:32:A3:85:FC:CE:A1:CD:01:53:15:06:CD:57:44:58 Authority key identifier: C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 Certificate issuer: /CN=A91FD088/serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Certificate serial: 0874 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft Manifest number: 0869 Signing time: Tue 12 May 2026 20:47:47 +0000 Manifest this update: Tue 12 May 2026 20:47:46 +0000 Manifest next update: Tue 19 May 2026 20:47:46 +0000 Files and hashes: 1: xbajYOSK75Kf3CcpbR1S9b9umRY.crl (hash: Mdlg/Y7OuFEzGVbAM2FoZsl3nxTbIrpUiVYeIcEAyPI=) 2: 423EA4CC039B11EBB3C1465CC4F9AE02.roa (hash: 6Topyg8bWLl5O5LsyGLXYfvkh05TDjr30BTYJNqKf6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 19:57:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2164 (0x874) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD088, serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Validity Not Before: May 12 20:47:46 2026 GMT Not After : May 19 20:47:46 2026 GMT Subject: CN=6a0391f3-a1e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:f5:a8:f4:59:a0:ab:fc:c6:61:38:a7:21:88: 83:c4:6e:7d:eb:14:27:e8:fc:9f:cb:53:a9:7e:ec: ee:0d:f0:2a:cf:06:6b:a1:be:c5:61:f9:25:78:3d: 56:1a:3e:0b:8a:d5:f7:78:dc:78:16:9d:94:ac:17: 56:8c:56:2b:7c:d6:b9:23:c5:92:e2:ea:0a:c3:80: 29:2c:70:64:5d:34:23:f8:8c:87:7a:dd:42:97:bc: 38:70:93:bc:48:bd:da:32:c3:45:43:5a:e7:64:a5: 7f:24:6a:50:09:77:41:ef:7f:d9:03:8c:f9:0f:8f: 10:b3:ba:d3:d5:ff:25:1e:65:b1:f0:47:ad:47:c7: 65:bd:e2:f9:f4:0c:ac:ab:de:69:76:c1:2a:b9:f5: 8e:85:f5:94:74:6f:a4:e9:f2:21:0b:97:88:4d:2a: 40:03:14:80:21:56:6b:93:6b:f7:30:04:c1:0f:da: 40:87:2d:36:c8:99:c9:7e:66:7b:50:84:56:72:b9: 70:59:23:74:aa:b5:0f:85:36:29:79:b9:ff:37:eb: 96:08:d6:97:50:6e:d9:aa:fc:f0:0f:b0:1e:56:46: 95:c0:8c:a1:bd:c2:05:e0:ea:bd:ed:14:31:fe:93: 81:26:be:5a:f7:e4:0c:05:af:bf:f8:2a:32:c9:b0: 40:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:86:EC:2E:D6:32:A3:85:FC:CE:A1:CD:01:53:15:06:CD:57:44:58 X509v3 Authority Key Identifier: keyid:C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:54:b7:a0:1c:a5:78:ed:f7:25:fe:fa:ac:a8:32:40:94:59: 9b:31:9e:7d:b1:e4:78:6e:28:78:bb:98:75:ae:57:c0:5d:6e: 1e:5f:f1:65:86:68:06:24:ee:13:cf:98:34:ba:1f:11:1f:d6: 7b:e6:63:73:99:50:36:9e:2f:83:45:f4:02:99:22:06:3b:6e: fe:eb:10:e0:67:28:57:b4:0b:1d:c1:62:a9:51:a7:e7:63:69: 63:6c:c9:3d:b7:22:68:9f:33:d2:35:45:b4:47:c0:82:d4:07: 7b:28:39:95:66:fe:f5:b4:7f:cc:c0:73:3b:db:e3:02:18:c9: 54:0c:1c:d4:c0:be:44:76:5b:f8:55:f9:f9:b3:be:f4:d5:a9: 60:19:bb:6d:62:c5:ac:e0:5f:b4:29:ca:7b:f4:6b:76:1d:6d: 88:ec:68:e5:3f:49:e5:94:44:46:d3:f5:fd:2d:34:19:eb:26: 3a:83:7e:59:f7:47:98:81:24:aa:d6:9f:ca:82:33:01:2e:51: a0:39:ad:9b:a5:98:27:fd:19:9c:53:33:40:f2:8e:2b:78:12: a7:54:0b:06:33:db:45:25:b3:cf:44:39:8e:6a:61:17:a0:62: a1:66:9f:06:91:92:ed:e1:e9:f5:4a:3d:68:11:aa:5c:8f:1b: a1:99:69:df -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQwODgxMTAvBgNVBAUTKEM1QjZBMzYwRTQ4QUVGOTI5RkRDMjcyOTZEMUQ1MkY1 QkY2RTk5MTYwHhcNMjYwNTEyMjA0NzQ2WhcNMjYwNTE5MjA0NzQ2WjAYMRYwFAYD VQQDEw02YTAzOTFmMy1hMWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmPWo9Fmgq/zGYTinIYiDxG596xQn6Pyfy1OpfuzuDfAqzwZrob7FYfkleD1W Gj4LitX3eNx4Fp2UrBdWjFYrfNa5I8WS4uoKw4ApLHBkXTQj+IyHet1Cl7w4cJO8 SL3aMsNFQ1rnZKV/JGpQCXdB73/ZA4z5D48Qs7rT1f8lHmWx8EetR8dlveL59Ays q95pdsEqufWOhfWUdG+k6fIhC5eITSpAAxSAIVZrk2v3MATBD9pAhy02yJnJfmZ7 UIRWcrlwWSN0qrUPhTYpebn/N+uWCNaXUG7ZqvzwD7AeVkaVwIyhvcIF4Oq97RQx /pOBJr5a9+QMBa+/+CoyybBA6QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM2G7C7W MqOF/M6hzQFTFQbNV0RYMB8GA1UdIwQYMBaAFMW2o2Dkiu+Sn9wnKW0dUvW/bpkW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDA4OC80NEJBN0NBMkZE OUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1S2YzQ2NwYlIxUzliOXVt UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hiYWpZT1NLNzVLZjNDY3BiUjFTOWI5dW1SWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDA4OC80NEJBN0NBMkZEOUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1 S2YzQ2NwYlIxUzliOXVtUlkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIFS3oByleO33Jf76rKgyQJRZmzGefbHkeG4oeLuYda5XwF1uHl/xZYZoBiTu E8+YNLofER/We+Zjc5lQNp4vg0X0ApkiBjtu/usQ4GcoV7QLHcFiqVGn52NpY2zJ PbciaJ8z0jVFtEfAgtQHeyg5lWb+9bR/zMBzO9vjAhjJVAwc1MC+RHZb+FX5+bO+ 9NWpYBm7bWLFrOBftCnKe/Rrdh1tiOxo5T9J5ZRERtP1/S00GesmOoN+WfdHmIEk qtafyoIzAS5RoDmtm6WYJ/0ZnFMzQPKOK3gSp1QLBjPbRSWzz0Q5jmphF6BioWaf BpGS7eHp9Uo9aBGqXI8boZlp3w== -----END CERTIFICATE-----Generated at Tue May 12 22:44:31 2026 by rpki-client