$ rpki-client -vvf rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft File: z-PzHk8zetOBIBvzOgGmhfsBal4.mft (raw, json) Hash identifier: 6JDixt0rQ38OlAL+GwLv+er9PWjGJdX2Sd+7lic9XQM= Subject key identifier: 2C:A2:10:4F:ED:B3:DF:35:37:4A:55:B1:F2:2F:C2:9D:CB:C0:5F:E5 Authority key identifier: CF:E3:F3:1E:4F:33:7A:D3:81:20:1B:F3:3A:01:A6:85:FB:01:6A:5E Certificate issuer: /CN=A9128E00/serialNumber=CFE3F31E4F337AD381201BF33A01A685FB016A5E Certificate serial: 0DAF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z-PzHk8zetOBIBvzOgGmhfsBal4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft Manifest number: 0DA5 Signing time: Sat 04 Apr 2026 17:47:28 +0000 Manifest this update: Sat 04 Apr 2026 17:47:28 +0000 Manifest next update: Sat 11 Apr 2026 17:47:28 +0000 Files and hashes: 1: z-PzHk8zetOBIBvzOgGmhfsBal4.crl (hash: HTnzpmoI3VCEK/EP+7cfIJvrH7WUGLS/CITZF9JnJag=) 2: D23C5270E02111E9B4A3923FC4F9AE02.roa (hash: DgN4HYG0Ge4rNgYzbp7pU5juBkf2LCQihGrPJdM6ERY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.crl rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z-PzHk8zetOBIBvzOgGmhfsBal4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:47:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3503 (0xdaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128E00, serialNumber=CFE3F31E4F337AD381201BF33A01A685FB016A5E Validity Not Before: Apr 4 17:47:28 2026 GMT Not After : Apr 11 17:47:28 2026 GMT Subject: CN=69d14eb0-a3fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:e0:70:09:e4:f4:e8:df:4b:eb:1d:fb:c6:3e: 58:53:bb:92:00:23:47:b8:1d:d9:8c:19:06:39:4f: a2:16:fe:3a:df:a3:d3:01:b2:0e:b3:94:fc:3a:e2: e2:ce:3c:1a:db:82:ed:06:94:44:c1:63:74:8f:ee: 54:fa:61:ff:54:69:39:17:50:7d:b2:9f:16:bf:1f: e5:e8:32:f7:b2:3d:60:d0:4b:c1:7d:7c:f3:d8:09: 96:cf:16:64:6f:56:ed:a1:e1:87:45:96:a7:55:db: bc:1a:0e:f9:a7:51:18:9a:53:5a:95:13:fc:b3:0b: ab:39:30:a5:43:cc:cd:3c:e9:5b:35:6e:7f:5f:4d: 82:f2:d5:1f:e6:71:5b:4a:77:b2:63:ac:fa:93:93: 67:69:32:e7:ef:78:52:0e:16:5d:77:cc:c0:c9:30: 20:3e:f5:d0:96:e6:c8:89:0e:6a:0c:7f:15:c7:0e: c9:93:62:e8:ff:a7:b3:fc:45:91:50:e6:8b:7f:49: a3:f1:65:e3:01:42:87:52:25:91:7a:2f:e2:5a:46: 35:75:d0:26:a6:9e:7e:82:ea:77:da:40:95:88:f9: 90:16:e3:a0:60:08:fd:13:2f:27:83:1d:b9:fb:e1: d2:22:58:89:f5:3d:7e:4a:b8:1f:16:90:44:c4:4f: ce:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:A2:10:4F:ED:B3:DF:35:37:4A:55:B1:F2:2F:C2:9D:CB:C0:5F:E5 X509v3 Authority Key Identifier: keyid:CF:E3:F3:1E:4F:33:7A:D3:81:20:1B:F3:3A:01:A6:85:FB:01:6A:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z-PzHk8zetOBIBvzOgGmhfsBal4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:d8:f9:34:96:27:ee:87:7e:c4:ff:50:10:2c:7d:b2:cc:d6: 00:ea:2b:37:ad:05:33:fd:49:ba:ef:35:5e:c1:10:77:1c:71: 76:b2:d0:c2:93:33:3e:99:6b:c3:59:4b:6e:e1:95:35:04:fd: c1:c5:56:62:dc:bb:c8:65:fc:08:38:4d:2d:f8:b9:9a:19:c4: 7a:5c:29:3f:37:88:09:20:f7:a8:a9:38:7c:ff:9c:5a:48:68: 0d:fd:b8:5b:a9:0a:12:e1:42:73:a4:0c:dd:32:a1:a6:ba:b4: 90:e8:cb:b7:d5:d7:74:9d:1f:5e:98:28:a8:4d:84:0b:b6:51: f6:90:09:83:0a:df:00:88:23:6c:e0:39:5b:cd:a1:39:74:54: 99:80:1d:63:fe:0d:6a:72:78:33:dd:78:82:ce:54:b6:60:ae: 60:d2:49:25:0b:e6:f5:7e:be:1c:d2:de:25:89:ae:b5:7f:2e: 6a:f2:0f:21:81:9b:4a:73:09:10:5f:05:71:d5:c6:40:bc:e3: 67:00:3e:66:f1:40:26:0e:06:4c:d0:ee:f2:02:66:d5:ae:1b: a1:d2:6f:1d:65:c6:e3:91:dd:65:8b:88:11:d6:61:5e:4d:ad: 83:ef:92:e8:00:e2:de:da:dc:30:87:3f:0a:a0:a4:47:6f:08: 27:45:3d:e8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhFMDAxMTAvBgNVBAUTKENGRTNGMzFFNEYzMzdBRDM4MTIwMUJGMzNBMDFBNjg1 RkIwMTZBNUUwHhcNMjYwNDA0MTc0NzI4WhcNMjYwNDExMTc0NzI4WjAYMRYwFAYD VQQDEw02OWQxNGViMC1hM2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj+BwCeT06N9L6x37xj5YU7uSACNHuB3ZjBkGOU+iFv4636PTAbIOs5T8OuLi zjwa24LtBpREwWN0j+5U+mH/VGk5F1B9sp8Wvx/l6DL3sj1g0EvBfXzz2AmWzxZk b1btoeGHRZanVdu8Gg75p1EYmlNalRP8swurOTClQ8zNPOlbNW5/X02C8tUf5nFb SneyY6z6k5NnaTLn73hSDhZdd8zAyTAgPvXQlubIiQ5qDH8Vxw7Jk2Lo/6ez/EWR UOaLf0mj8WXjAUKHUiWRei/iWkY1ddAmpp5+gup32kCViPmQFuOgYAj9Ey8ngx25 ++HSIliJ9T1+SrgfFpBExE/OjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCyiEE/t s981N0pVsfIvwp3LwF/lMB8GA1UdIwQYMBaAFM/j8x5PM3rTgSAb8zoBpoX7AWpe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEUwMC84OTkxRUI5RUUw MjAxMUU5ODJCMzdBM0FDNEY5QUUwMi96LVB6SGs4emV0T0JJQnZ6T2dHbWhmc0Jh bDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3otUHpIazh6ZXRPQklCdnpPZ0dtaGZzQmFsNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEUwMC84OTkxRUI5RUUwMjAxMUU5ODJCMzdBM0FDNEY5QUUwMi96LVB6SGs4emV0 T0JJQnZ6T2dHbWhmc0JhbDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAF9j5NJYn7od+xP9QECx9sszWAOorN60FM/1Juu81XsEQdxxxdrLQwpMzPplr w1lLbuGVNQT9wcVWYty7yGX8CDhNLfi5mhnEelwpPzeICSD3qKk4fP+cWkhoDf24 W6kKEuFCc6QM3TKhprq0kOjLt9XXdJ0fXpgoqE2EC7ZR9pAJgwrfAIgjbOA5W82h OXRUmYAdY/4NanJ4M914gs5UtmCuYNJJJQvm9X6+HNLeJYmutX8uavIPIYGbSnMJ EF8FcdXGQLzjZwA+ZvFAJg4GTNDu8gJm1a4bodJvHWXG45HdZYuIEdZhXk2tg++S 6ADi3trcMIc/CqCkR28IJ0U96A== -----END CERTIFICATE-----Generated at Mon Apr 6 08:39:57 2026 by rpki-client