$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft File: iWZCPuKkFWMfevMU5NiEAHqEaLY.mft (raw, json) Hash identifier: 757jha1W4AjP7CnndNk3cmAAKIljecGDbzeEDZtrZsM= Subject key identifier: E0:E5:14:CF:A2:07:B2:DF:29:DD:24:50:09:C9:A9:D9:DA:73:C3:68 Authority key identifier: 89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 Certificate issuer: /CN=A91A91CB/serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft Manifest number: D9 Signing time: Sun 05 Apr 2026 06:03:05 +0000 Manifest this update: Sun 05 Apr 2026 06:03:05 +0000 Manifest next update: Sun 12 Apr 2026 06:03:05 +0000 Files and hashes: 1: iWZCPuKkFWMfevMU5NiEAHqEaLY.crl (hash: 1qQ9j4InqshT03d9VktuASwHChrKeKq3bFhr0iflR6U=) 2: 0EB302DCEA5B11EFABB07C6DC4F9AE02.roa (hash: yxcEwj+JBBXiVTX+aFQc5ddxq/vEi232S7B1rwDfWO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:03:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91CB, serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Validity Not Before: Apr 5 06:03:05 2026 GMT Not After : Apr 12 06:03:05 2026 GMT Subject: CN=69d1fb19-38fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:92:f4:88:03:99:96:30:f7:86:3d:da:49:f0: 4a:21:b9:d7:09:f6:a8:71:78:07:36:d4:8a:09:1c: 30:84:ee:ce:97:96:42:12:10:f8:b3:ee:16:98:8a: 53:8f:a6:6b:34:03:2d:9b:ef:03:77:d4:27:a5:34: bc:50:61:4b:aa:51:a2:f3:41:cf:70:e4:c5:90:3d: b3:34:93:cf:ff:d0:39:c4:e2:be:f1:38:7e:7b:6f: b8:2c:c3:50:53:8b:a7:16:ea:74:82:05:33:53:54: d0:6b:00:ba:ef:e7:9d:07:71:71:a9:cf:b0:70:51: ae:fd:36:e3:ba:78:31:39:3d:a9:86:9e:fe:7f:ae: 1e:07:dd:31:29:fd:f4:44:1a:97:ca:a2:79:b7:44: 90:2b:28:5d:b7:72:45:ff:af:02:0b:44:c8:9f:f1: e0:de:3b:d7:cf:ff:b7:6a:6b:45:6e:bc:b0:5c:8f: 14:47:a6:f8:13:ae:38:01:f0:46:43:2d:de:8c:f5: 1f:8e:40:bb:4d:6c:1b:b1:46:b8:0a:7d:11:82:f7: e3:52:8d:ff:99:d5:4c:0c:da:3d:44:12:fb:16:6b: 74:31:f2:f9:84:20:f6:2c:e2:c3:7d:6e:30:35:b4: ac:f6:43:1f:5a:6a:dd:4f:0c:13:cb:00:30:10:22: 69:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:E5:14:CF:A2:07:B2:DF:29:DD:24:50:09:C9:A9:D9:DA:73:C3:68 X509v3 Authority Key Identifier: keyid:89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:f5:1e:14:af:2f:48:03:5c:12:02:bd:04:39:d1:71:94:ac: f5:41:64:c8:c8:e9:b1:d5:93:21:c0:09:f8:9c:78:80:55:7c: a2:3b:bd:de:17:56:e9:36:3d:89:20:b3:be:0a:94:70:17:0c: 82:0f:9a:ef:57:3f:fb:3f:46:02:80:bb:6c:1f:2b:f5:89:1b: fb:f5:c6:69:b2:20:89:9d:ba:05:c7:d1:31:6a:8b:c2:20:3f: 84:a2:6a:15:a1:fd:7a:fe:75:05:bf:2a:5f:ed:38:88:17:4e: 37:d0:37:b3:13:94:fc:b1:14:d5:41:5c:89:76:84:f7:d9:5f: 2d:7d:3a:40:2d:45:d7:6a:11:08:ab:68:93:76:34:5d:5a:83: 6d:18:15:80:d0:20:83:dc:b1:b2:bb:6a:eb:7d:23:8d:64:c8: 63:ad:13:dc:2d:8a:92:2d:55:be:08:3f:46:8d:a4:3b:92:c3: 92:fc:cc:dd:c2:3f:50:5d:31:39:c6:44:ca:da:e7:b4:5b:89: a4:4a:97:5d:26:be:45:9e:a6:ec:c7:40:ff:19:9e:10:15:11: 00:79:91:e6:b8:29:6b:12:bd:79:53:1e:8b:08:54:16:ca:3d: e8:2a:d0:06:5b:50:26:d4:a6:07:ca:07:0d:df:40:c8:6a:0b: 2d:db:28:2d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkxQ0IxMTAvBgNVBAUTKDg5NjY0MjNFRTJBNDE1NjMxRjdBRjMxNEU0RDg4NDAw N0E4NDY4QjYwHhcNMjYwNDA1MDYwMzA1WhcNMjYwNDEyMDYwMzA1WjAYMRYwFAYD VQQDEw02OWQxZmIxOS0zOGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA35L0iAOZljD3hj3aSfBKIbnXCfaocXgHNtSKCRwwhO7Ol5ZCEhD4s+4WmIpT j6ZrNAMtm+8Dd9QnpTS8UGFLqlGi80HPcOTFkD2zNJPP/9A5xOK+8Th+e2+4LMNQ U4unFup0ggUzU1TQawC67+edB3Fxqc+wcFGu/TbjungxOT2php7+f64eB90xKf30 RBqXyqJ5t0SQKyhdt3JF/68CC0TIn/Hg3jvXz/+3amtFbrywXI8UR6b4E644AfBG Qy3ejPUfjkC7TWwbsUa4Cn0RgvfjUo3/mdVMDNo9RBL7Fmt0MfL5hCD2LOLDfW4w NbSs9kMfWmrdTwwTywAwECJpVwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFODlFM+i B7LfKd0kUAnJqdnac8NoMB8GA1UdIwQYMBaAFIlmQj7ipBVjH3rzFOTYhAB6hGi2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTFDQi82NTBFNjAwQUVB NUExMUVGQjg0QUU0NjhDNEY5QUUwMi9pV1pDUHVLa0ZXTWZldk1VNU5pRUFIcUVh TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lXWkNQdUtrRldNZmV2TVU1TmlFQUhxRWFMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTFDQi82NTBFNjAwQUVBNUExMUVGQjg0QUU0NjhDNEY5QUUwMi9pV1pDUHVLa0ZX TWZldk1VNU5pRUFIcUVhTFkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAX/UeFK8vSANcEgK9BDnRcZSs9UFkyMjpsdWTIcAJ+Jx4gFV8oju93hdW6TY9 iSCzvgqUcBcMgg+a71c/+z9GAoC7bB8r9Ykb+/XGabIgiZ26BcfRMWqLwiA/hKJq FaH9ev51Bb8qX+04iBdON9A3sxOU/LEU1UFciXaE99lfLX06QC1F12oRCKtok3Y0 XVqDbRgVgNAgg9yxsrtq630jjWTIY60T3C2Kki1Vvgg/Ro2kO5LDkvzM3cI/UF0x OcZEytrntFuJpEqXXSa+RZ6m7MdA/xmeEBURAHmR5rgpaxK9eVMeiwhUFso96CrQ BltQJtSmB8oHDd9AyGoLLdsoLQ== -----END CERTIFICATE-----Generated at Sun Apr 5 22:24:43 2026 by rpki-client