$ rpki-client -vvf rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft File: ZH5crcsfv367iZpyGcOg8D0_ew0.mft (raw, json) Hash identifier: p6n1/KzFvd0pKqQC3o0J22N8STvJiCBkeMCvQUFgbdI= Subject key identifier: A3:7E:92:1D:39:DF:22:8A:25:0F:D8:F4:C8:4D:82:FA:87:81:17:96 Authority key identifier: 64:7E:5C:AD:CB:1F:BF:7E:BB:89:9A:72:19:C3:A0:F0:3D:3F:7B:0D Certificate issuer: /CN=A91951DE/serialNumber=647E5CADCB1FBF7EBB899A7219C3A0F03D3F7B0D Certificate serial: 94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft Manifest number: 8C Signing time: Sun 05 Apr 2026 06:56:49 +0000 Manifest this update: Sun 05 Apr 2026 06:56:48 +0000 Manifest next update: Sun 12 Apr 2026 06:56:48 +0000 Files and hashes: 1: ZH5crcsfv367iZpyGcOg8D0_ew0.crl (hash: KiC4Pm0Bc+y/p8BT9wJjzLnE3345aLFQewuxTltrkks=) 2: 533DC25E60B511F0AB567568C4F9AE02.roa (hash: 3eyoBtxWZnVo9d8QTWGg5n0zVCETmWq673Im+Ia8NGk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.crl rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 148 (0x94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91951DE, serialNumber=647E5CADCB1FBF7EBB899A7219C3A0F03D3F7B0D Validity Not Before: Apr 5 06:56:48 2026 GMT Not After : Apr 12 06:56:48 2026 GMT Subject: CN=69d207b1-542c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:77:e3:bb:2a:3f:af:de:85:9e:44:70:f0:36: d0:60:4b:00:33:2a:c6:89:b1:af:9c:f2:98:aa:b0: da:d2:59:22:90:5c:49:ca:7a:9f:71:c7:cd:ff:e7: 2d:67:26:67:04:07:ee:c0:07:a0:2d:c9:dd:21:47: d6:dc:ec:e1:0e:0a:aa:26:2b:5e:15:ae:70:4f:0f: 7f:7a:9a:d1:50:29:1e:f3:6b:28:51:d2:89:19:e0: f9:f9:79:3a:52:cd:e6:67:fa:46:38:4c:46:f6:69: 5a:db:1a:e0:e6:49:46:3c:0c:20:c7:33:5d:74:77: b1:fa:36:25:a7:7a:bb:30:d0:13:21:6e:f2:46:3b: 9a:b0:3e:82:d3:40:1e:bf:bf:ae:75:a2:1e:70:7f: 99:21:16:ce:29:17:02:9e:6a:88:6a:dd:89:a5:2d: f1:5d:d3:0a:8a:9c:87:23:9d:5e:d2:ff:9f:c2:d7: b8:6b:39:e2:3d:55:5c:9f:77:68:52:04:83:f8:e6: 6f:36:3e:52:09:47:9e:3f:11:af:6d:af:7e:59:a0: 93:27:c5:3f:59:78:46:26:d8:08:aa:7c:93:09:8a: 82:80:cd:d7:f6:0a:4d:21:50:f8:34:7a:1d:7d:bf: de:ea:65:c7:26:b7:00:68:fa:b8:5a:42:9b:c2:50: 1a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:7E:92:1D:39:DF:22:8A:25:0F:D8:F4:C8:4D:82:FA:87:81:17:96 X509v3 Authority Key Identifier: keyid:64:7E:5C:AD:CB:1F:BF:7E:BB:89:9A:72:19:C3:A0:F0:3D:3F:7B:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:7a:42:53:7f:94:c0:db:84:32:2a:b5:7c:61:6b:8d:b5:b7: 1b:43:5a:f1:6b:99:48:91:4f:23:ed:41:ea:26:91:d7:6c:b0: fa:02:ba:4f:a0:71:e5:ff:5c:37:17:c3:41:59:ed:40:10:36: f9:5d:2b:9e:46:98:3e:8e:61:ef:6d:f4:b3:b2:eb:3c:d7:29: 00:51:80:46:02:05:ee:5e:df:f6:b3:52:53:85:6e:2c:41:11: 4b:0f:33:64:e8:7b:59:bf:94:2d:fc:a1:4a:50:57:cb:ee:d7: 9b:a4:7e:f5:cc:cf:9b:d5:30:70:8f:17:3d:ca:da:1c:d6:79: 01:06:e5:0e:1a:66:d0:cb:55:ef:c7:eb:57:dd:ad:84:13:ae: ef:0f:6a:72:fd:2c:e5:96:05:68:c6:05:f5:53:db:a2:db:be: d8:59:00:d3:3f:f7:92:92:4b:6f:f0:e7:65:99:63:5d:b4:06: 0d:43:1f:67:63:36:be:1c:f7:81:e0:72:ad:e6:d9:22:2e:a5: f6:b9:f3:61:22:ab:1d:df:5f:55:de:98:87:89:c2:5b:b4:15: a4:eb:01:36:bd:28:25:e7:8f:53:8e:7c:33:47:dc:53:0b:e7: c3:19:ba:05:d6:57:27:a6:70:85:9a:4d:65:06:72:91:31:3f: 63:fa:e7:da -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUxREUxMTAvBgNVBAUTKDY0N0U1Q0FEQ0IxRkJGN0VCQjg5OUE3MjE5QzNBMEYw M0QzRjdCMEQwHhcNMjYwNDA1MDY1NjQ4WhcNMjYwNDEyMDY1NjQ4WjAYMRYwFAYD VQQDEw02OWQyMDdiMS01NDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunfjuyo/r96FnkRw8DbQYEsAMyrGibGvnPKYqrDa0lkikFxJynqfccfN/+ct ZyZnBAfuwAegLcndIUfW3OzhDgqqJiteFa5wTw9/eprRUCke82soUdKJGeD5+Xk6 Us3mZ/pGOExG9mla2xrg5klGPAwgxzNddHex+jYlp3q7MNATIW7yRjuasD6C00Ae v7+udaIecH+ZIRbOKRcCnmqIat2JpS3xXdMKipyHI51e0v+fwte4azniPVVcn3do UgSD+OZvNj5SCUeePxGvba9+WaCTJ8U/WXhGJtgIqnyTCYqCgM3X9gpNIVD4NHod fb/e6mXHJrcAaPq4WkKbwlAaxQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFKN+kh05 3yKKJQ/Y9MhNgvqHgReWMB8GA1UdIwQYMBaAFGR+XK3LH79+u4machnDoPA9P3sN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTFERS85MDRGODcwQTYw QjQxMUYwOEVEN0FFNjNDNEY5QUUwMi9aSDVjcmNzZnYzNjdpWnB5R2NPZzhEMF9l dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pINWNyY3NmdjM2N2lacHlHY09nOEQwX2V3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTFERS85MDRGODcwQTYwQjQxMUYwOEVEN0FFNjNDNEY5QUUwMi9aSDVjcmNzZnYz NjdpWnB5R2NPZzhEMF9ldzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAo3pCU3+UwNuEMiq1fGFrjbW3G0Na8WuZSJFPI+1B6iaR12yw+gK6T6Bx5f9c NxfDQVntQBA2+V0rnkaYPo5h7230s7LrPNcpAFGARgIF7l7f9rNSU4VuLEERSw8z ZOh7Wb+ULfyhSlBXy+7Xm6R+9czPm9UwcI8XPcraHNZ5AQblDhpm0MtV78frV92t hBOu7w9qcv0s5ZYFaMYF9VPbotu+2FkA0z/3kpJLb/DnZZljXbQGDUMfZ2M2vhz3 geByrebZIi6l9rnzYSKrHd9fVd6Yh4nCW7QVpOsBNr0oJeePU458M0fcUwvnwxm6 BdZXJ6ZwhZpNZQZykTE/Y/rn2g== -----END CERTIFICATE-----Generated at Sun Apr 5 19:42:31 2026 by rpki-client