$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft File: r_zmN5iBZebFG_v-vRKD1REkAZA.mft (raw, json) Hash identifier: XDXvOcerwUL9q9JU45ac2Loz6t71BdB+YBmlsTHLJFU= Subject key identifier: 99:B6:C8:4F:20:9C:31:07:19:CE:74:8A:69:09:AB:DF:6A:B2:91:8B Authority key identifier: AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 Certificate issuer: /CN=A91E4468/serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Certificate serial: 01EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft Manifest number: 01C5 Signing time: Sun 05 Apr 2026 03:22:57 +0000 Manifest this update: Sun 05 Apr 2026 03:22:57 +0000 Manifest next update: Sun 12 Apr 2026 03:22:57 +0000 Files and hashes: 1: r_zmN5iBZebFG_v-vRKD1REkAZA.crl (hash: aE8dk1aN16vqOHsAFmpgjzgUuukk7XG9VgdqCcypWxA=) 2: C531DD12226F11EF8D24AD63C4F9AE02.roa (hash: 4apUkb/9OAkWGMu7J3h8tdbWlfEZR8ZKAMbBcPjKoaU=) 3: C608133C226F11EF8D24AD63C4F9AE02.roa (hash: ySADP91L9zzRBTSfDoHJ50+Ik7XzeYcUmFcCyfVbDoY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 491 (0x1eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4468, serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Validity Not Before: Apr 5 03:22:57 2026 GMT Not After : Apr 12 03:22:57 2026 GMT Subject: CN=69d1d591-bb72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f9:b8:17:50:87:7a:ed:35:d3:e6:b3:11:ef: c4:a1:82:27:5c:6e:c7:06:d9:27:6c:2d:30:a0:84: 2f:02:6d:10:43:cf:0c:21:bf:11:39:e5:3d:64:f7: e1:66:f5:98:ec:df:71:33:1e:ec:d2:89:2c:da:f0: 7c:ac:d8:46:41:38:b5:c2:be:f3:60:1b:3c:26:18: 32:b3:3d:cc:1d:d4:f7:0d:13:b0:a1:fc:cb:a0:77: 9a:62:7d:3b:37:4e:88:16:22:f3:d0:c0:4c:49:07: f7:00:3b:39:17:7f:be:8c:d9:fd:91:c6:1e:fa:89: 29:64:d3:d3:5c:6b:bc:1e:52:17:fc:e7:06:c9:be: 41:e2:13:a7:3f:84:a2:8e:6a:14:f0:c1:51:9e:42: 24:5a:33:cc:93:e0:1d:b9:6f:1f:84:a2:af:a4:9a: e1:82:4d:42:b1:1f:ab:47:e7:67:e0:0c:c2:28:99: d9:2c:8c:f5:9b:e9:21:89:24:9d:29:43:ef:1e:6c: b0:dd:f5:3f:7e:c2:f2:35:e5:03:de:21:59:8f:0f: 29:b0:dd:b2:f9:88:82:6d:57:08:fa:17:be:8d:4b: 9e:9b:17:7d:2a:2d:71:3b:ea:47:99:77:62:92:d5: 56:11:dc:a7:4e:6a:1b:73:8c:39:c8:46:d6:57:a4: 0c:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:B6:C8:4F:20:9C:31:07:19:CE:74:8A:69:09:AB:DF:6A:B2:91:8B X509v3 Authority Key Identifier: keyid:AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:35:e2:f9:20:80:bb:48:5d:5e:9c:d7:d3:3a:e7:47:1a:03: a6:a0:da:96:14:5d:ef:0d:19:b6:74:9d:95:50:a1:df:65:7c: 1f:3b:d5:e6:d5:90:eb:32:55:a0:cb:c0:d1:bb:0a:c2:66:6d: 63:d7:7e:b1:c0:ae:21:a1:49:b0:3f:f8:22:9f:0b:f2:d2:67: 7c:41:e8:5a:a4:73:26:c9:67:76:bb:82:f5:e3:fe:a8:43:e6: ab:a3:65:f1:a9:3a:bf:38:ec:69:37:fd:51:2f:ee:9f:d7:2c: 66:b8:b4:2c:74:1e:77:5f:1f:61:f8:c2:b8:3c:02:f3:2c:a3: 4f:cb:ce:e2:af:cd:a5:ad:18:ac:ac:f9:08:8f:6a:ab:15:76: 84:4f:68:1a:f8:d2:52:65:60:87:2b:d8:6b:b0:cc:e1:05:ea: 8e:8f:3f:9e:e0:fe:8c:a0:5b:b9:4a:6c:eb:ab:1b:11:8f:2e: 38:9f:75:04:f8:e7:36:95:b1:18:ae:bd:14:d6:5d:ec:1c:7e: 51:38:bb:8f:27:c2:3d:b4:df:a9:5a:8a:e3:55:1d:4f:e5:6e: 83:25:b7:47:01:26:3b:3c:63:1f:e4:b0:86:11:31:5e:89:7b: fe:45:4f:09:82:6f:bb:04:9c:e9:bd:d4:a5:a2:cb:e5:78:32: 3e:4f:db:be -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ0NjgxMTAvBgNVBAUTKEFGRkNFNjM3OTg4MTY1RTZDNTFCRkJGRUJEMTI4M0Q1 MTEyNDAxOTAwHhcNMjYwNDA1MDMyMjU3WhcNMjYwNDEyMDMyMjU3WjAYMRYwFAYD VQQDEw02OWQxZDU5MS1iYjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3/m4F1CHeu010+azEe/EoYInXG7HBtknbC0woIQvAm0QQ88MIb8ROeU9ZPfh ZvWY7N9xMx7s0oks2vB8rNhGQTi1wr7zYBs8Jhgysz3MHdT3DROwofzLoHeaYn07 N06IFiLz0MBMSQf3ADs5F3++jNn9kcYe+okpZNPTXGu8HlIX/OcGyb5B4hOnP4Si jmoU8MFRnkIkWjPMk+AduW8fhKKvpJrhgk1CsR+rR+dn4AzCKJnZLIz1m+khiSSd KUPvHmyw3fU/fsLyNeUD3iFZjw8psN2y+YiCbVcI+he+jUuemxd9Ki1xO+pHmXdi ktVWEdynTmobc4w5yEbWV6QMOwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJm2yE8g nDEHGc50imkJq99qspGLMB8GA1UdIwQYMBaAFK/85jeYgWXmxRv7/r0Sg9URJAGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDQ2OC84Mjc1MjRFODhF RTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlplYkZHX3YtdlJLRDFSRWtB WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jfem1ONWlCWmViRkdfdi12UktEMVJFa0FaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDQ2OC84Mjc1MjRFODhFRTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlpl YkZHX3YtdlJLRDFSRWtBWkEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAHjXi+SCAu0hdXpzX0zrnRxoDpqDalhRd7w0ZtnSdlVCh32V8HzvV5tWQ6zJV oMvA0bsKwmZtY9d+scCuIaFJsD/4Ip8L8tJnfEHoWqRzJslndruC9eP+qEPmq6Nl 8ak6vzjsaTf9US/un9csZri0LHQed18fYfjCuDwC8yyjT8vO4q/Npa0YrKz5CI9q qxV2hE9oGvjSUmVghyvYa7DM4QXqjo8/nuD+jKBbuUps66sbEY8uOJ91BPjnNpWx GK69FNZd7Bx+UTi7jyfCPbTfqVqK41UdT+VugyW3RwEmOzxjH+SwhhExXol7/kVP CYJvuwSc6b3UpaLL5XgyPk/bvg== -----END CERTIFICATE-----Generated at Sun Apr 5 19:42:53 2026 by rpki-client