$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft File: iV-zzi-cLke5FLsqa2bHfVOXpAo.mft (raw, json) Hash identifier: uigkHKJDtzta40uxO5mzmirmgqsltVeb1H19r8gfY9E= Subject key identifier: 78:3E:5D:4F:2C:BA:64:63:D9:12:67:DB:7A:F8:D9:22:39:B6:D4:29 Authority key identifier: 89:5F:B3:CE:2F:9C:2E:47:B9:14:BB:2A:6B:66:C7:7D:53:97:A4:0A Certificate issuer: /CN=A91E6419/serialNumber=895FB3CE2F9C2E47B914BB2A6B66C77D5397A40A Certificate serial: 0294 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft Manifest number: 028C Signing time: Sun 05 Apr 2026 01:20:13 +0000 Manifest this update: Sun 05 Apr 2026 01:20:12 +0000 Manifest next update: Sun 12 Apr 2026 01:20:12 +0000 Files and hashes: 1: iV-zzi-cLke5FLsqa2bHfVOXpAo.crl (hash: ri1bquhzfC0R+1k7B7G5qkldJWeMAIAaFsSO2CrlNac=) 2: 38DEC3C04ED611ED84336740C4F9AE02.roa (hash: lsL1bzm7xgDwCWDuOlZQ/MIqVfUaWity48F6FNEzoq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.crl rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 01:20:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 660 (0x294) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6419, serialNumber=895FB3CE2F9C2E47B914BB2A6B66C77D5397A40A Validity Not Before: Apr 5 01:20:12 2026 GMT Not After : Apr 12 01:20:12 2026 GMT Subject: CN=69d1b8cc-b88b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c4:4e:d5:0f:17:dd:49:74:b1:50:0b:fd:40: 58:dc:e9:b7:ce:4f:0e:2d:c9:3d:e5:60:66:6e:87: 25:cd:19:43:6a:b9:45:af:fd:74:9d:61:7b:f0:dd: c1:74:14:f7:04:71:0d:c8:04:78:32:05:b3:08:22: 63:3e:f8:c8:61:73:6e:c3:04:00:af:59:c5:e1:50: c1:a2:f4:38:42:6c:f0:12:5d:50:74:05:74:27:fa: 20:45:73:bf:f0:5a:4f:eb:66:01:5f:1d:bc:28:21: c8:81:f0:8a:56:bc:29:db:4a:62:da:85:62:89:3c: a4:50:41:89:09:6c:8b:4b:6d:3f:46:77:6e:66:d3: e1:17:e1:ef:46:f9:7b:ba:ba:b8:75:5c:6e:c9:3b: c8:9b:8e:d8:1d:43:dc:b0:66:43:a8:57:d2:00:1f: d3:d6:4e:ca:7e:e4:16:0f:52:9b:27:ce:d4:fd:4b: 6a:c8:9a:da:93:17:13:32:57:f9:5f:09:7f:24:b7: b9:76:c6:fb:a1:71:8f:8b:08:6f:73:14:db:f4:35: 1c:fc:e0:02:8e:a1:2e:1f:ce:84:a4:4d:6b:17:df: d7:4f:00:23:dc:de:bc:ef:92:63:a8:2d:46:3f:af: 89:bc:67:ab:a4:bb:3f:3e:c0:7e:f8:5d:89:a1:70: 88:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:3E:5D:4F:2C:BA:64:63:D9:12:67:DB:7A:F8:D9:22:39:B6:D4:29 X509v3 Authority Key Identifier: keyid:89:5F:B3:CE:2F:9C:2E:47:B9:14:BB:2A:6B:66:C7:7D:53:97:A4:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:3b:99:2a:cd:44:e7:fa:4c:7a:eb:6d:2e:61:2b:87:e2:3f: b8:c9:89:7e:ba:53:75:e4:9c:99:3f:4e:1c:73:f9:b8:72:26: 52:f5:fa:0c:e0:8b:1f:a6:36:15:4e:25:4e:81:c5:69:71:be: ca:72:77:3a:26:19:c8:54:3a:50:60:78:2d:28:e2:74:92:37: 3e:35:25:8e:99:c7:74:89:d3:82:b6:fa:9a:7e:52:f1:e1:a8: 3a:16:59:dd:aa:48:c9:4e:88:60:08:7c:1c:9f:19:95:d4:e3: c5:a6:1a:33:6c:d6:bd:41:0b:28:98:3c:87:a0:06:0c:5d:58: aa:4e:6c:f8:7e:c2:26:04:a3:69:f2:58:d9:69:88:4f:85:bd: 96:58:e1:5c:d4:40:c2:1e:19:08:fe:ff:cf:b8:16:00:9f:aa: 08:90:e9:71:f6:5b:22:ef:1e:f3:20:da:fb:37:92:0b:87:9d: ef:5d:9f:e5:33:40:c6:f3:11:60:2a:5b:bc:3c:2b:b6:ca:ba: 81:45:2e:f3:5d:f4:6d:e4:ab:e6:7a:ab:f5:ae:27:2d:2a:34: 03:83:26:0d:a5:19:56:a4:48:12:79:02:0b:9a:ed:29:7e:df: 9e:9a:f8:31:bb:68:06:ac:5d:83:69:78:c7:85:27:9b:0f:2f: ac:ec:46:28 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICApQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY0MTkxMTAvBgNVBAUTKDg5NUZCM0NFMkY5QzJFNDdCOTE0QkIyQTZCNjZDNzdE NTM5N0E0MEEwHhcNMjYwNDA1MDEyMDEyWhcNMjYwNDEyMDEyMDEyWjAYMRYwFAYD VQQDEw02OWQxYjhjYy1iODhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnsRO1Q8X3Ul0sVAL/UBY3Om3zk8OLck95WBmboclzRlDarlFr/10nWF78N3B dBT3BHENyAR4MgWzCCJjPvjIYXNuwwQAr1nF4VDBovQ4QmzwEl1QdAV0J/ogRXO/ 8FpP62YBXx28KCHIgfCKVrwp20pi2oViiTykUEGJCWyLS20/RnduZtPhF+HvRvl7 urq4dVxuyTvIm47YHUPcsGZDqFfSAB/T1k7KfuQWD1KbJ87U/UtqyJrakxcTMlf5 Xwl/JLe5dsb7oXGPiwhvcxTb9DUc/OACjqEuH86EpE1rF9/XTwAj3N6875JjqC1G P6+JvGerpLs/PsB++F2JoXCItwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHg+XU8s umRj2RJn23r42SI5ttQpMB8GA1UdIwQYMBaAFIlfs84vnC5HuRS7Kmtmx31Tl6QK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjQxOS9GQTZFMzZDQzRF RDMxMUVEQTVFNTMwNDBDNEY5QUUwMi9pVi16emktY0xrZTVGTHNxYTJiSGZWT1hw QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWLXp6aS1jTGtlNUZMc3FhMmJIZlZPWHBBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjQxOS9GQTZFMzZDQzRFRDMxMUVEQTVFNTMwNDBDNEY5QUUwMi9pVi16emktY0xr ZTVGTHNxYTJiSGZWT1hwQW8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACzuZKs1E5/pMeuttLmErh+I/uMmJfrpTdeScmT9OHHP5uHImUvX6DOCLH6Y2 FU4lToHFaXG+ynJ3OiYZyFQ6UGB4LSjidJI3PjUljpnHdInTgrb6mn5S8eGoOhZZ 3apIyU6IYAh8HJ8ZldTjxaYaM2zWvUELKJg8h6AGDF1Yqk5s+H7CJgSjafJY2WmI T4W9lljhXNRAwh4ZCP7/z7gWAJ+qCJDpcfZbIu8e8yDa+zeSC4ed712f5TNAxvMR YCpbvDwrtsq6gUUu8130beSr5nqr9a4nLSo0A4MmDaUZVqRIEnkCC5rtKX7fnpr4 MbtoBqxdg2l4x4Unmw8vrOxGKA== -----END CERTIFICATE-----Generated at Sun Apr 5 20:58:06 2026 by rpki-client