$ rpki-client -vvf rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.mft File: 7ZsOYIWiXfJnSf8nWBpOi8fBhsw.mft (raw, json) Hash identifier: uK9lCj04TE74OJiyX7gKgwIYEd5zD3qT6wKVsfvJFmU= Subject key identifier: 44:21:D5:FC:10:BA:95:01:5D:D9:CE:4D:42:D6:CB:F7:DE:A8:DF:74 Authority key identifier: ED:9B:0E:60:85:A2:5D:F2:67:49:FF:27:58:1A:4E:8B:C7:C1:86:CC Certificate issuer: /CN=A91A02D8/serialNumber=ED9B0E6085A25DF26749FF27581A4E8BC7C186CC Certificate serial: 0166 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.mft Manifest number: 0159 Signing time: Sun 05 Apr 2026 04:28:56 +0000 Manifest this update: Sun 05 Apr 2026 04:28:55 +0000 Manifest next update: Sun 12 Apr 2026 04:28:55 +0000 Files and hashes: 1: 7ZsOYIWiXfJnSf8nWBpOi8fBhsw.crl (hash: RmZtzgCmGOdD4PaiaKwMXWkZMzcPYhWm/5KvQCO6XAw=) 2: 86F9CBCC2AB711EF996EC819C4F9AE02.roa (hash: Ug9ILiDXqWcLa6yuD4ODzV/AkZeAMrnjdmuMuL/P0OM=) 3: 2C7C9DD2258E11F0B42E1529C4F9AE02.roa (hash: ooDmK99ixwmZHb01igd9edAZRWXI26i5vbPS7c6NFw0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.crl rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:28:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 358 (0x166) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A02D8, serialNumber=ED9B0E6085A25DF26749FF27581A4E8BC7C186CC Validity Not Before: Apr 5 04:28:55 2026 GMT Not After : Apr 12 04:28:55 2026 GMT Subject: CN=69d1e508-0c3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:54:55:67:48:99:9d:ad:e8:af:2e:13:6c:1e: 58:95:97:bb:d1:9a:7a:92:ce:16:cc:b0:86:eb:cb: 81:24:ba:42:85:bc:ee:28:00:55:b9:db:29:0b:38: 53:99:da:fb:35:dc:99:2a:5b:d4:83:0a:b2:b1:e9: 62:32:b3:a1:3d:bd:ef:2b:e2:f0:fa:a8:4a:82:81: 19:c5:2b:0a:8a:0c:78:ee:6b:c5:35:bc:63:94:db: 10:20:60:2a:da:4e:30:d2:b0:67:7b:5a:80:1c:77: bb:de:1f:a2:f5:07:bb:0d:d1:26:16:d1:8c:b0:b0: 15:0c:f4:2c:d1:c0:05:bf:3f:26:57:c9:ea:2f:eb: 73:74:80:a7:fd:99:73:5b:73:1a:f6:6b:05:16:cf: 07:45:6e:60:22:51:b6:36:97:21:09:89:37:d5:d6: 67:fc:c1:06:cb:6b:23:27:0e:ef:90:57:33:43:e5: 36:3d:5b:73:23:e6:df:a1:54:ac:b3:3c:73:07:64: 10:3e:35:ce:2f:e4:3a:3c:a4:8f:5f:46:8a:f9:73: bc:e8:f9:a9:73:13:85:52:6b:e9:18:1c:5c:94:93: 21:94:75:fb:ba:6e:82:f1:88:08:6c:7f:4e:2a:23: 14:65:61:46:7e:cc:1f:67:6a:12:3b:c3:c3:b9:64: db:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:21:D5:FC:10:BA:95:01:5D:D9:CE:4D:42:D6:CB:F7:DE:A8:DF:74 X509v3 Authority Key Identifier: keyid:ED:9B:0E:60:85:A2:5D:F2:67:49:FF:27:58:1A:4E:8B:C7:C1:86:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:b5:23:7c:2a:66:10:f3:8e:0a:e1:77:94:4e:9e:55:a6:7a: bc:79:e7:f9:25:59:e8:d5:f6:b0:dc:79:71:70:f6:b0:33:97: 7a:14:2b:2a:39:21:42:68:31:50:b8:bc:be:13:5c:82:af:e9: 61:b1:98:f9:ea:09:d7:e4:78:f1:47:47:03:5c:a9:ba:49:56: 2b:f2:7d:b4:4d:db:54:62:c2:08:3d:0b:16:14:e9:09:c7:fb: 49:2c:4a:bd:9b:d4:92:af:25:b5:8a:8c:5e:0b:04:81:a5:3d: 29:21:ba:55:ed:d4:0f:ec:5b:80:65:59:53:17:73:b7:d8:5b: 1b:0b:1e:a9:fa:58:4e:f1:2a:ce:37:db:fa:bd:e6:35:1e:2f: fb:11:a8:df:86:9d:7d:ce:3d:6c:2e:ae:be:a7:61:9c:a3:03: 6b:47:52:bf:2e:80:08:1d:c1:43:b9:00:78:b5:15:4c:ed:13: 2a:ad:fe:9a:84:4e:b7:a3:5f:81:2a:44:c3:59:04:1a:e1:3d: f6:de:ee:05:e1:05:46:96:28:59:12:8a:0d:94:d3:f7:3b:cb: 64:64:de:8b:c7:18:c2:52:67:23:9a:1a:93:b6:09:b9:8d:10: 23:09:79:90:5b:5a:fc:ce:8f:71:0d:46:d1:8e:4a:50:ad:86: f6:92:2d:cc -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAyRDgxMTAvBgNVBAUTKEVEOUIwRTYwODVBMjVERjI2NzQ5RkYyNzU4MUE0RThC QzdDMTg2Q0MwHhcNMjYwNDA1MDQyODU1WhcNMjYwNDEyMDQyODU1WjAYMRYwFAYD VQQDEw02OWQxZTUwOC0wYzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjlRVZ0iZna3ory4TbB5YlZe70Zp6ks4WzLCG68uBJLpChbzuKABVudspCzhT mdr7NdyZKlvUgwqyseliMrOhPb3vK+Lw+qhKgoEZxSsKigx47mvFNbxjlNsQIGAq 2k4w0rBne1qAHHe73h+i9Qe7DdEmFtGMsLAVDPQs0cAFvz8mV8nqL+tzdICn/Zlz W3Ma9msFFs8HRW5gIlG2NpchCYk31dZn/MEGy2sjJw7vkFczQ+U2PVtzI+bfoVSs szxzB2QQPjXOL+Q6PKSPX0aK+XO86PmpcxOFUmvpGBxclJMhlHX7um6C8YgIbH9O KiMUZWFGfswfZ2oSO8PDuWTbfQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEQh1fwQ upUBXdnOTULWy/feqN90MB8GA1UdIwQYMBaAFO2bDmCFol3yZ0n/J1gaTovHwYbM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDJEOC9FMDkyNDhFQTJB QjYxMUVGQjMzOUZEODFDNEY5QUUwMi83WnNPWUlXaVhmSm5TZjhuV0JwT2k4ZkJo c3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdac09ZSVdpWGZKblNmOG5XQnBPaThmQmhzdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDJEOC9FMDkyNDhFQTJBQjYxMUVGQjMzOUZEODFDNEY5QUUwMi83WnNPWUlXaVhm Sm5TZjhuV0JwT2k4ZkJoc3cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmrUjfCpmEPOOCuF3lE6eVaZ6vHnn+SVZ6NX2sNx5cXD2sDOXehQrKjkhQmgx ULi8vhNcgq/pYbGY+eoJ1+R48UdHA1ypuklWK/J9tE3bVGLCCD0LFhTpCcf7SSxK vZvUkq8ltYqMXgsEgaU9KSG6Ve3UD+xbgGVZUxdzt9hbGwseqfpYTvEqzjfb+r3m NR4v+xGo34adfc49bC6uvqdhnKMDa0dSvy6ACB3BQ7kAeLUVTO0TKq3+moROt6Nf gSpEw1kEGuE99t7uBeEFRpYoWRKKDZTT9zvLZGTei8cYwlJnI5oak7YJuY0QIwl5 kFta/M6PcQ1G0Y5KUK2G9pItzA== -----END CERTIFICATE-----Generated at Sun Apr 5 19:42:43 2026 by rpki-client