$ rpki-client -vvf rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.mft File: ZrIU0Rx_lhqVxCVnA0KOk8unKYY.mft (raw, json) Hash identifier: il2InggVpgO60FDRItLm9uVI9z416RDN8OU1pZfKN5Q= Subject key identifier: CD:C7:C0:3A:58:39:9F:71:A4:04:A3:14:8C:54:93:C0:50:45:60:27 Authority key identifier: 66:B2:14:D1:1C:7F:96:1A:95:C4:25:67:03:42:8E:93:CB:A7:29:86 Certificate issuer: /CN=A9121836/serialNumber=66B214D11C7F961A95C4256703428E93CBA72986 Certificate serial: 0253 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.mft Manifest number: 022D Signing time: Sun 05 Apr 2026 02:21:06 +0000 Manifest this update: Sun 05 Apr 2026 02:21:05 +0000 Manifest next update: Sun 12 Apr 2026 02:21:05 +0000 Files and hashes: 1: ZrIU0Rx_lhqVxCVnA0KOk8unKYY.crl (hash: iqiuPNRifk+B5ByPixtD0+RgUflHGChfMeDNyZTrE1Q=) 2: 63DC5AA6C67611EEB1126C70C4F9AE02.roa (hash: rEWhYy1UCSjrp88bbpBi55rBTDmAa96ZWrodZhYuVDE=) 3: 6CE6E15ECEF311EEBCE7894DC4F9AE02.roa (hash: UaAm3ns+UzSlENWFg3alL8LgQQM37DkVyV1vadmtNwg=) 4: 118AB342249511EFBF275B73C4F9AE02.roa (hash: NqwTwG+Agr5XJi4bwI9im7xWQxdq8IuBPwpMhYcCze0=) 5: 02D36C86F50211ED8A235C4EC4F9AE02.roa (hash: B+OeWoqQTwfm38iUF7sb5sL9h1ZJ6wXXxhu4Wl/m0EM=) 6: 6ABFFBC6F53811EDBAE7E351C4F9AE02.roa (hash: f58bvx3dukaGpN5ndoezdAfl/VXBXL0ui+Vo9iVwwM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.crl rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 02:21:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 595 (0x253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121836, serialNumber=66B214D11C7F961A95C4256703428E93CBA72986 Validity Not Before: Apr 5 02:21:05 2026 GMT Not After : Apr 12 02:21:05 2026 GMT Subject: CN=69d1c712-1261 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:cf:cc:5b:8a:45:06:cd:bc:81:42:da:1f:83: 0f:df:32:28:7c:50:1e:f5:e0:a1:4b:a3:36:24:da: 35:62:cb:87:eb:ef:bc:93:35:2f:8f:fe:25:95:d1: f2:cd:cb:f4:e3:1f:73:84:b7:f3:95:30:c5:cc:c8: b5:ea:17:5d:39:a5:bb:37:aa:a8:56:2f:40:89:82: c5:fc:c1:82:e1:cd:92:62:ae:34:69:45:74:1f:ba: a8:e2:04:1e:12:6e:56:88:a4:0c:49:5a:cc:62:3c: b6:bb:a4:c9:f1:39:cf:6d:77:1d:4f:1d:4f:f9:8f: 09:3b:88:ce:79:ec:8d:ed:0a:48:06:3e:66:a6:25: f8:4d:ac:11:29:0d:66:a7:08:6b:e3:59:b1:af:30: f1:7f:83:5b:50:5f:68:a6:f7:d2:d2:ba:33:81:6d: 05:9b:9d:cd:aa:13:9a:fa:c0:aa:35:74:72:93:24: 0c:53:94:33:44:6e:cf:93:eb:39:5a:58:cb:e6:82: 39:65:06:b2:da:68:3c:d6:d7:e9:ff:49:7a:fa:7b: 66:f1:28:c7:30:76:59:58:77:f8:bb:d8:d5:b8:47: 26:77:9b:7c:e0:3c:fc:67:45:2c:f2:f2:86:26:f5: 90:ac:8b:0b:68:93:30:58:00:7b:2a:79:cf:8a:44: 95:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:C7:C0:3A:58:39:9F:71:A4:04:A3:14:8C:54:93:C0:50:45:60:27 X509v3 Authority Key Identifier: keyid:66:B2:14:D1:1C:7F:96:1A:95:C4:25:67:03:42:8E:93:CB:A7:29:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:08:2f:99:e8:78:66:45:a8:ee:5c:7d:25:d5:63:79:8f:14: e9:15:86:f8:ad:62:5b:6e:43:d3:5d:ad:00:d3:b2:4e:f4:97: db:76:53:0b:0f:eb:7c:bb:f3:1e:bc:53:2a:3c:1c:9f:b4:5e: 30:b0:89:a7:19:6e:ad:a2:02:3e:86:8e:a4:83:67:1b:90:2b: 3c:e5:bd:85:c5:b9:bf:09:5e:0d:03:dd:a8:c5:fa:dc:0c:29: 9b:9a:70:0f:09:b9:f3:41:1f:22:18:65:ba:96:ef:eb:15:7e: a9:cf:89:d7:c4:a2:a3:06:95:b1:ae:25:2a:c3:3f:d2:6b:1d: 42:65:7c:c9:d7:02:8d:72:43:2b:23:55:3a:e4:75:dc:bf:c6: b9:e5:79:e0:87:a6:b5:12:44:ef:44:e3:a5:50:35:67:61:c7: fd:45:a3:ed:30:fa:e1:42:56:43:05:f0:54:4c:6c:e7:00:13: f6:cb:02:35:77:7e:2d:b9:be:d7:33:a6:6b:08:bf:e6:1d:f5: 0f:5f:9c:c5:fd:04:30:5f:4d:b2:b6:39:f4:c7:52:08:62:7a: f7:35:41:2c:2d:21:72:1a:ab:af:1d:ba:31:f3:00:f6:37:9c: ed:19:ce:69:8e:6e:bd:15:2d:cd:3d:ad:5c:12:71:cf:43:cc: 17:2f:60:9e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE4MzYxMTAvBgNVBAUTKDY2QjIxNEQxMUM3Rjk2MUE5NUM0MjU2NzAzNDI4RTkz Q0JBNzI5ODYwHhcNMjYwNDA1MDIyMTA1WhcNMjYwNDEyMDIyMTA1WjAYMRYwFAYD VQQDEw02OWQxYzcxMi0xMjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmM/MW4pFBs28gULaH4MP3zIofFAe9eChS6M2JNo1YsuH6++8kzUvj/4lldHy zcv04x9zhLfzlTDFzMi16hddOaW7N6qoVi9AiYLF/MGC4c2SYq40aUV0H7qo4gQe Em5WiKQMSVrMYjy2u6TJ8TnPbXcdTx1P+Y8JO4jOeeyN7QpIBj5mpiX4TawRKQ1m pwhr41mxrzDxf4NbUF9opvfS0rozgW0Fm53NqhOa+sCqNXRykyQMU5QzRG7Pk+s5 WljL5oI5ZQay2mg81tfp/0l6+ntm8SjHMHZZWHf4u9jVuEcmd5t84Dz8Z0Us8vKG JvWQrIsLaJMwWAB7KnnPikSVqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFM3HwDpY OZ9xpASjFIxUk8BQRWAnMB8GA1UdIwQYMBaAFGayFNEcf5YalcQlZwNCjpPLpymG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTgzNi9GMURCMUQ0NEY0 RkIxMUVEOTM4Rjk0NDdDNEY5QUUwMi9acklVMFJ4X2xocVZ4Q1ZuQTBLT2s4dW5L WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pySVUwUnhfbGhxVnhDVm5BMEtPazh1bktZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTgzNi9GMURCMUQ0NEY0RkIxMUVEOTM4Rjk0NDdDNEY5QUUwMi9acklVMFJ4X2xo cVZ4Q1ZuQTBLT2s4dW5LWVkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARQgvmeh4ZkWo7lx9JdVjeY8U6RWG+K1iW25D012tANOyTvSX23ZTCw/rfLvz HrxTKjwcn7ReMLCJpxluraICPoaOpINnG5ArPOW9hcW5vwleDQPdqMX63Awpm5pw Dwm580EfIhhlupbv6xV+qc+J18SiowaVsa4lKsM/0msdQmV8ydcCjXJDKyNVOuR1 3L/GueV54IemtRJE70TjpVA1Z2HH/UWj7TD64UJWQwXwVExs5wAT9ssCNXd+Lbm+ 1zOmawi/5h31D1+cxf0EMF9NsrY59MdSCGJ69zVBLC0hchqrrx26MfMA9jec7RnO aY5uvRUtzT2tXBJxz0PMFy9gng== -----END CERTIFICATE-----Generated at Sun Apr 5 19:58:49 2026 by rpki-client