$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.mft File: ZLG7hwJN3720QVqQHYB-Pd2Kc2E.mft (raw, json) Hash identifier: pIRhyBgJ+CC8dsYB31rj+cN8rQIgSxR8t0ql/l83PM8= Subject key identifier: 2D:7F:E7:5A:9A:18:80:40:F6:38:B8:0F:E3:79:EF:0C:04:C0:FE:7C Authority key identifier: 64:B1:BB:87:02:4D:DF:BD:B4:41:5A:90:1D:80:7E:3D:DD:8A:73:61 Certificate issuer: /CN=A91CE0FB/serialNumber=64B1BB87024DDFBDB4415A901D807E3DDD8A7361 Certificate serial: 0571 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.mft Manifest number: 0569 Signing time: Sat 04 Apr 2026 23:06:58 +0000 Manifest this update: Sat 04 Apr 2026 23:06:58 +0000 Manifest next update: Sat 11 Apr 2026 23:06:58 +0000 Files and hashes: 1: ZLG7hwJN3720QVqQHYB-Pd2Kc2E.crl (hash: ktcyZhH0wlC+FqP8T1NgT9k9W4OODTcLp5B6cxTcFjE=) 2: 47170244259D11ECA74AC10AC4F9AE02.roa (hash: TifDEeF2JOdL8j7fTV6ymoUhmjRmDa6hW57MtSf6qzw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.crl rsync://rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:06:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1393 (0x571) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE0FB, serialNumber=64B1BB87024DDFBDB4415A901D807E3DDD8A7361 Validity Not Before: Apr 4 23:06:58 2026 GMT Not After : Apr 11 23:06:58 2026 GMT Subject: CN=69d19992-91e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a7:cf:8d:a8:44:ec:f6:f4:93:91:07:e7:0d: ba:55:cf:19:54:b9:8c:94:21:72:ae:f5:82:d5:32: 97:f2:cb:9e:6a:5b:76:19:07:3d:9f:4d:bd:67:b0: 63:56:71:d7:0e:c1:da:4a:fd:35:eb:7f:9c:83:bc: bd:3a:a8:29:18:9e:a9:15:af:84:c5:fa:c7:6c:40: ab:34:4a:4c:b5:73:14:a4:65:76:a4:18:30:2f:f4: ff:40:0c:dd:ca:4e:b7:fa:ed:da:41:d5:34:cc:f8: 2b:6c:25:f1:af:1c:54:1a:d4:04:93:28:44:27:ce: de:4e:bc:6b:53:9f:87:9d:66:c0:9b:d0:fe:4f:54: 3c:2e:a5:8b:c2:eb:98:b4:96:98:86:20:5d:de:05: a5:a2:1a:50:8c:fa:49:0e:27:1d:6b:ed:8e:47:05: 99:d0:3d:26:6f:a7:32:79:e6:7f:6a:cb:a0:31:13: 62:01:81:ea:95:31:aa:03:5d:5e:ff:d1:2a:52:d5: 8e:94:13:f0:f2:35:f8:44:55:07:c8:2a:8b:e8:29: 2e:32:c4:49:9a:71:22:dd:01:08:62:07:f1:35:e6: 5a:a8:3d:03:42:75:bd:e7:59:4f:28:c0:ed:e2:ac: 5c:5b:d5:69:8d:75:b6:25:cf:4c:24:e8:49:63:ba: cb:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:7F:E7:5A:9A:18:80:40:F6:38:B8:0F:E3:79:EF:0C:04:C0:FE:7C X509v3 Authority Key Identifier: keyid:64:B1:BB:87:02:4D:DF:BD:B4:41:5A:90:1D:80:7E:3D:DD:8A:73:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:bc:35:9a:a2:d2:35:ec:7e:e1:21:39:1d:c0:e3:7e:bd:67: 73:29:60:a5:9a:86:03:45:c2:3b:61:ea:05:15:ba:21:9b:9b: f6:58:85:4d:6c:4a:e7:f5:04:f1:26:d0:a9:98:24:23:5b:11: 22:ff:8c:14:8a:2b:28:49:d4:41:5a:a6:2e:c3:0a:7d:a2:ff: 00:2e:4e:b5:92:43:0a:e7:59:cf:9e:ca:e0:20:3e:3a:82:e3: 4b:2f:d6:52:93:40:32:af:28:cf:23:31:91:32:66:a6:67:cd: d7:d2:8a:11:00:d4:22:b6:d8:ec:b4:55:7c:f5:ca:9e:65:7c: 83:97:70:82:87:2d:7b:4d:3c:bc:8f:71:43:92:67:69:9a:6b: 7e:15:89:09:b5:3e:24:f7:25:04:ee:d5:67:f8:68:51:d4:46: ca:3b:f4:42:05:f4:71:22:66:f3:f4:48:ec:26:76:5c:ff:69: 56:cf:ed:54:3e:3d:c1:8c:11:68:52:e3:2c:d7:52:79:ad:64: a1:bf:65:22:2e:92:ec:3a:e3:48:54:9e:6e:8d:d0:03:73:9d: 44:e5:ff:7a:c0:ef:72:33:8b:a0:5c:98:68:e5:4f:71:5e:53: 43:3f:35:a7:e1:0c:ba:08:e5:fd:1c:73:34:a6:aa:9d:06:86: 69:f7:f4:e0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UwRkIxMTAvBgNVBAUTKDY0QjFCQjg3MDI0RERGQkRCNDQxNUE5MDFEODA3RTNE REQ4QTczNjEwHhcNMjYwNDA0MjMwNjU4WhcNMjYwNDExMjMwNjU4WjAYMRYwFAYD VQQDEw02OWQxOTk5Mi05MWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKfPjahE7Pb0k5EH5w26Vc8ZVLmMlCFyrvWC1TKX8suealt2GQc9n029Z7Bj VnHXDsHaSv0163+cg7y9OqgpGJ6pFa+ExfrHbECrNEpMtXMUpGV2pBgwL/T/QAzd yk63+u3aQdU0zPgrbCXxrxxUGtQEkyhEJ87eTrxrU5+HnWbAm9D+T1Q8LqWLwuuY tJaYhiBd3gWlohpQjPpJDicda+2ORwWZ0D0mb6cyeeZ/asugMRNiAYHqlTGqA11e /9EqUtWOlBPw8jX4RFUHyCqL6CkuMsRJmnEi3QEIYgfxNeZaqD0DQnW951lPKMDt 4qxcW9VpjXW2Jc9MJOhJY7rLJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC1/51qa GIBA9ji4D+N57wwEwP58MB8GA1UdIwQYMBaAFGSxu4cCTd+9tEFakB2Afj3dinNh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTBGQi84NkY2ODlCQTI1 OTkxMUVDOTIwMzFBNzlDNEY5QUUwMi9aTEc3aHdKTjM3MjBRVnFRSFlCLVBkMktj MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pMRzdod0pOMzcyMFFWcVFIWUItUGQyS2MyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTBGQi84NkY2ODlCQTI1OTkxMUVDOTIwMzFBNzlDNEY5QUUwMi9aTEc3aHdKTjM3 MjBRVnFRSFlCLVBkMktjMkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAc7w1mqLSNex+4SE5HcDjfr1ncylgpZqGA0XCO2HqBRW6IZub9liFTWxK5/UE 8SbQqZgkI1sRIv+MFIorKEnUQVqmLsMKfaL/AC5OtZJDCudZz57K4CA+OoLjSy/W UpNAMq8ozyMxkTJmpmfN19KKEQDUIrbY7LRVfPXKnmV8g5dwgocte008vI9xQ5Jn aZprfhWJCbU+JPclBO7VZ/hoUdRGyjv0QgX0cSJm8/RI7CZ2XP9pVs/tVD49wYwR aFLjLNdSea1kob9lIi6S7DrjSFSebo3QA3OdROX/esDvcjOLoFyYaOVPcV5TQz81 p+EMugjl/RxzNKaqnQaGaff04A== -----END CERTIFICATE-----Generated at Sun Apr 5 19:50:50 2026 by rpki-client