$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft File: PusZaI0z1iGZTls9nkbsqqUJ9CM.mft (raw, json) Hash identifier: xfMW9Vbj2+QJLyILuAQABNgAUbHiLj+fNJyYo0dhVLY= Subject key identifier: 9D:6F:CF:B8:B2:03:B8:81:A0:6E:E0:20:43:3C:74:6B:A2:A3:DC:95 Authority key identifier: 3E:EB:19:68:8D:33:D6:21:99:4E:5B:3D:9E:46:EC:AA:A5:09:F4:23 Certificate issuer: /CN=A91DE4AC/serialNumber=3EEB19688D33D621994E5B3D9E46ECAAA509F423 Certificate serial: 04BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft Manifest number: 04B7 Signing time: Sat 04 Apr 2026 23:41:54 +0000 Manifest this update: Sat 04 Apr 2026 23:41:54 +0000 Manifest next update: Sat 11 Apr 2026 23:41:54 +0000 Files and hashes: 1: PusZaI0z1iGZTls9nkbsqqUJ9CM.crl (hash: z/DWCORvZq+WukT1QpsuM0UrMFq3vAzkFfWsF7b0KlY=) 2: 0716B2646C7111EC8C5E6967C4F9AE02.roa (hash: akFdIS8T4ygGEH19KrreAopTx3AYoRm8050s/UPNIrg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.crl rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1214 (0x4be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE4AC, serialNumber=3EEB19688D33D621994E5B3D9E46ECAAA509F423 Validity Not Before: Apr 4 23:41:54 2026 GMT Not After : Apr 11 23:41:54 2026 GMT Subject: CN=69d1a1c2-c9bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:cb:7e:16:72:1e:ac:82:82:fc:6f:5e:a6:a2: 9c:c5:c7:45:3e:79:17:70:0d:81:e6:0c:20:55:c7: ae:d6:e1:d5:0b:bd:34:f8:49:fd:a5:49:78:ea:21: d5:00:00:8b:7c:07:81:33:ef:b7:80:4e:64:ae:0e: 60:6a:52:1c:13:d1:07:f5:b3:d9:ae:94:d8:34:57: bd:75:bc:0e:ea:4b:bd:73:2d:15:47:46:e8:56:04: 52:e9:c1:28:8c:60:6f:f0:66:27:b1:36:31:5d:50: 8b:bf:ef:6b:9d:16:fb:aa:b5:c6:f4:8f:8b:25:09: 63:a3:a3:45:9e:cd:c7:13:ba:ee:4d:11:ed:5e:da: 21:5b:3d:3b:be:ac:5a:4d:b0:0a:3b:f5:2e:d5:d3: c1:c6:ae:2d:cb:0c:f8:8f:1a:98:a4:3f:ba:5a:58: ed:ce:ad:7a:f7:33:7b:95:ba:c9:4f:d4:01:57:57: fb:3a:1c:4b:d3:dc:87:02:47:ed:97:bb:91:b9:a7: a1:97:63:ee:d3:d7:80:5a:0f:5c:95:c9:18:f9:db: 3c:3e:e2:cd:5a:41:21:14:c4:b3:0d:8a:52:ff:22: 77:f1:24:24:18:e5:13:e2:f2:d4:20:13:d0:ec:ac: dd:af:50:04:31:cb:f4:64:c2:05:ad:e4:1f:be:2b: 38:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:6F:CF:B8:B2:03:B8:81:A0:6E:E0:20:43:3C:74:6B:A2:A3:DC:95 X509v3 Authority Key Identifier: keyid:3E:EB:19:68:8D:33:D6:21:99:4E:5B:3D:9E:46:EC:AA:A5:09:F4:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:6b:85:c0:bc:82:21:de:ff:43:b1:4d:c2:02:f0:a2:33:a1: 11:65:96:8b:11:cc:1a:be:4e:7f:3f:b2:af:72:8d:4a:a1:ed: 86:91:bb:32:eb:9c:d0:be:29:25:0c:6d:fa:49:d3:6f:10:67: 1e:45:a5:cf:3d:7c:45:56:42:c5:dd:54:88:43:c4:3d:de:12: bf:d1:6a:dd:64:51:6f:f9:a7:7d:1b:91:a5:9d:fb:5b:e3:e2: b6:5d:a8:d0:cf:de:24:d0:26:b3:d9:b8:b0:bf:7a:c5:71:38: 5c:2b:eb:56:97:a3:bd:b7:6d:bc:ca:5e:e6:91:fe:83:e7:84: 67:02:af:a8:d0:c2:03:05:50:ea:40:18:18:0f:98:c9:6c:23: 7c:9b:44:03:2f:88:2f:03:82:83:8d:91:4c:56:01:ca:e0:36: 80:2b:f8:25:b5:55:16:29:b6:65:19:da:22:74:ed:f3:5a:dd: 98:7e:37:96:36:c9:87:e5:79:91:98:49:f4:d8:f0:60:4f:06: c2:be:fb:9d:0d:fb:a1:6f:e6:8e:7a:7e:7c:9b:1d:f6:0c:ce: b6:87:f8:25:4c:90:ce:4f:b2:e8:12:81:b3:b6:ec:e9:99:50: d4:8c:e2:b6:a3:cb:80:26:2b:84:c6:1b:78:ce:11:a0:66:54: f6:ed:97:cf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU0QUMxMTAvBgNVBAUTKDNFRUIxOTY4OEQzM0Q2MjE5OTRFNUIzRDlFNDZFQ0FB QTUwOUY0MjMwHhcNMjYwNDA0MjM0MTU0WhcNMjYwNDExMjM0MTU0WjAYMRYwFAYD VQQDEw02OWQxYTFjMi1jOWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjct+FnIerIKC/G9epqKcxcdFPnkXcA2B5gwgVceu1uHVC700+En9pUl46iHV AACLfAeBM++3gE5krg5galIcE9EH9bPZrpTYNFe9dbwO6ku9cy0VR0boVgRS6cEo jGBv8GYnsTYxXVCLv+9rnRb7qrXG9I+LJQljo6NFns3HE7ruTRHtXtohWz07vqxa TbAKO/Uu1dPBxq4tywz4jxqYpD+6Wljtzq169zN7lbrJT9QBV1f7OhxL09yHAkft l7uRuaehl2Pu09eAWg9clckY+ds8PuLNWkEhFMSzDYpS/yJ38SQkGOUT4vLUIBPQ 7Kzdr1AEMcv0ZMIFreQfvis4iwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ1vz7iy A7iBoG7gIEM8dGuio9yVMB8GA1UdIwQYMBaAFD7rGWiNM9YhmU5bPZ5G7KqlCfQj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTRBQy8zNDQxRDJEMDZD NkUxMUVDQjIzM0ZCNjFDNEY5QUUwMi9QdXNaYUkwejFpR1pUbHM5bmtic3FxVUo5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B1c1phSTB6MWlHWlRsczlua2JzcXFVSjlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTRBQy8zNDQxRDJEMDZDNkUxMUVDQjIzM0ZCNjFDNEY5QUUwMi9QdXNaYUkwejFp R1pUbHM5bmtic3FxVUo5Q00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhmuFwLyCId7/Q7FNwgLwojOhEWWWixHMGr5Ofz+yr3KNSqHthpG7Muuc0L4p JQxt+knTbxBnHkWlzz18RVZCxd1UiEPEPd4Sv9Fq3WRRb/mnfRuRpZ37W+Pitl2o 0M/eJNAms9m4sL96xXE4XCvrVpejvbdtvMpe5pH+g+eEZwKvqNDCAwVQ6kAYGA+Y yWwjfJtEAy+ILwOCg42RTFYByuA2gCv4JbVVFim2ZRnaInTt81rdmH43ljbJh+V5 kZhJ9NjwYE8Gwr77nQ37oW/mjnp+fJsd9gzOtof4JUyQzk+y6BKBs7bs6ZlQ1Izi tqPLgCYrhMYbeM4RoGZU9u2Xzw== -----END CERTIFICATE-----Generated at Sun Apr 5 19:43:53 2026 by rpki-client