$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft File: zPWB9MM8pEQeGAfjlsXv51-oLdA.mft (raw, json) Hash identifier: 4/urT3Fewvh4VIOzp46gUqCC5q0q12/P2XMHF/LvKYo= Subject key identifier: 62:94:81:00:AA:A8:F7:F2:DB:F4:75:D4:E1:14:CD:BE:67:0D:79:E5 Authority key identifier: CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 Certificate issuer: /CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Certificate serial: 0AE0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft Manifest number: 0AD1 Signing time: Sat 04 Apr 2026 19:15:44 +0000 Manifest this update: Sat 04 Apr 2026 19:15:44 +0000 Manifest next update: Sat 11 Apr 2026 19:15:44 +0000 Files and hashes: 1: zPWB9MM8pEQeGAfjlsXv51-oLdA.crl (hash: zA+jr22FjyeFmbZB+y/grHoqatXXR2Dabt5u17CRg3k=) 2: EECBCEBE6E3511EABDE26D73C4F9AE02.roa (hash: r1pD0Q+gqTEwuW8+FxM3DxEOTWIuAGXXddrFG01zuI0=) 3: 4A644958BA0311F084B11F0DC4F9AE02.roa (hash: jYg6q/W/0HVfh05DuMfHV7pRX1CgQotQsytTOYFkR4g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:15:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2784 (0xae0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A27, serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Validity Not Before: Apr 4 19:15:44 2026 GMT Not After : Apr 11 19:15:44 2026 GMT Subject: CN=69d16360-1e74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bf:9b:3d:ef:51:66:a5:ac:3d:9b:03:90:56: bf:27:c7:75:59:2b:fd:47:c9:45:01:dd:bd:b2:c6: 4d:24:25:5e:e1:db:a7:7f:7b:95:26:18:c6:51:2a: b2:f5:3d:76:27:53:81:61:b3:cf:9e:08:b2:eb:bc: 27:21:4f:af:6e:1c:7a:91:a3:ca:15:a3:77:fa:34: 0f:bf:40:c3:8b:40:c7:d9:76:02:1b:a9:19:b3:ac: c4:a4:31:54:e5:65:4f:b1:74:ef:32:25:a4:01:06: 10:1f:67:cc:9f:de:3d:f6:11:7c:fc:4b:a3:c8:14: b5:8d:ca:1b:91:d7:0b:d6:e7:4d:53:f5:d2:0a:90: 63:03:05:a0:7f:c4:f3:88:e3:a6:e2:74:9c:b9:91: 46:7a:6e:12:ff:9c:02:da:1a:47:1d:49:02:a3:8d: 9e:2e:ea:26:d9:20:09:34:d8:f3:41:c8:e1:c7:eb: 95:b2:8c:dc:5f:b6:e3:d4:32:b7:4a:5e:3f:38:e2: fb:36:44:60:e7:48:10:2a:72:83:4a:c7:03:a8:d3: 84:b6:a0:62:8b:95:c9:56:e5:50:cf:bf:8d:7e:9f: 12:21:04:16:c0:02:df:d3:0b:5b:08:37:32:f9:12: 56:81:eb:57:32:4a:ee:c6:68:50:1c:30:ee:60:5e: af:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:94:81:00:AA:A8:F7:F2:DB:F4:75:D4:E1:14:CD:BE:67:0D:79:E5 X509v3 Authority Key Identifier: keyid:CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:55:62:ce:45:c4:ca:91:1a:cf:85:73:4d:eb:62:d7:9e:c4: af:f4:6d:48:91:33:15:5f:c6:38:73:3b:78:13:74:6b:74:17: 91:23:ac:83:cb:33:7c:b2:45:11:56:c5:69:e9:04:36:40:f3: 27:6c:26:99:3f:07:08:4c:45:fe:5a:2b:8b:03:0f:eb:26:36: fc:2b:24:16:28:c7:e5:4f:b8:67:82:81:cf:42:4b:f6:4f:cf: 6a:76:a4:bc:bf:04:6b:ac:9e:fa:b1:b3:23:05:b4:4e:ed:61: db:e6:0c:de:f4:cd:a3:92:c9:e9:35:40:e5:2e:a9:60:49:a8: 49:91:78:36:22:93:6c:04:6b:c8:6e:01:90:1f:35:62:78:82: 5b:d1:dd:ab:fb:04:21:43:95:85:d5:f5:20:3e:cd:48:45:e5: b6:d7:c6:84:34:30:29:0b:dd:5b:b1:83:36:45:f5:70:79:6e: 63:1a:43:33:09:b8:ae:ea:c1:d3:d9:ef:1f:89:c2:b3:ff:14: 33:89:85:5f:18:4a:e2:5c:cb:99:a8:34:ea:10:ff:c5:09:b5: 10:60:ae:f2:3f:a5:f3:5c:44:33:c7:e6:01:d0:a5:4c:79:84: c6:41:3c:c7:61:50:8b:39:3a:20:4f:06:29:93:cd:06:d2:4d: 62:3e:b5:76 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBMjcxMTAvBgNVBAUTKENDRjU4MUY0QzMzQ0E0NDQxRTE4MDdFMzk2QzVFRkU3 NUZBODJERDAwHhcNMjYwNDA0MTkxNTQ0WhcNMjYwNDExMTkxNTQ0WjAYMRYwFAYD VQQDEw02OWQxNjM2MC0xZTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuL+bPe9RZqWsPZsDkFa/J8d1WSv9R8lFAd29ssZNJCVe4dunf3uVJhjGUSqy 9T12J1OBYbPPngiy67wnIU+vbhx6kaPKFaN3+jQPv0DDi0DH2XYCG6kZs6zEpDFU 5WVPsXTvMiWkAQYQH2fMn9499hF8/EujyBS1jcobkdcL1udNU/XSCpBjAwWgf8Tz iOOm4nScuZFGem4S/5wC2hpHHUkCo42eLuom2SAJNNjzQcjhx+uVsozcX7bj1DK3 Sl4/OOL7NkRg50gQKnKDSscDqNOEtqBii5XJVuVQz7+Nfp8SIQQWwALf0wtbCDcy +RJWgetXMkruxmhQHDDuYF6viQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGKUgQCq qPfy2/R11OEUzb5nDXnlMB8GA1UdIwQYMBaAFMz1gfTDPKREHhgH45bF7+dfqC3Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUEyNy82NjI1MThCRTZF MzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBFUWVHQWZqbHNYdjUxLW9M ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQV0I5TU04cEVRZUdBZmpsc1h2NTEtb0xkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUEyNy82NjI1MThCRTZFMzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBF UWVHQWZqbHNYdjUxLW9MZEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUVVizkXEypEaz4VzTeti157Er/RtSJEzFV/GOHM7eBN0a3QXkSOsg8szfLJF EVbFaekENkDzJ2wmmT8HCExF/loriwMP6yY2/CskFijH5U+4Z4KBz0JL9k/Panak vL8Ea6ye+rGzIwW0Tu1h2+YM3vTNo5LJ6TVA5S6pYEmoSZF4NiKTbARryG4BkB81 YniCW9Hdq/sEIUOVhdX1ID7NSEXlttfGhDQwKQvdW7GDNkX1cHluYxpDMwm4rurB 09nvH4nCs/8UM4mFXxhK4lzLmag06hD/xQm1EGCu8j+l81xEM8fmAdClTHmExkE8 x2FQizk6IE8GKZPNBtJNYj61dg== -----END CERTIFICATE-----Generated at Sun Apr 5 19:39:19 2026 by rpki-client