$ rpki-client -vvf rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft File: ZI5HI0RBcbar4W19wDDonAbwUNw.mft (raw, json) Hash identifier: pVfzQZFLsyecNOS90MRCbYYXFHG7VYlrOS2KpWBirn4= Subject key identifier: B9:CD:1A:F1:0B:91:9F:01:21:27:6C:23:50:A5:82:5E:9A:DB:B2:A1 Authority key identifier: 64:8E:47:23:44:41:71:B6:AB:E1:6D:7D:C0:30:E8:9C:06:F0:50:DC Certificate issuer: /CN=A91408BE/serialNumber=648E4723444171B6ABE16D7DC030E89C06F050DC Certificate serial: 0BC6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft Manifest number: 0BB1 Signing time: Sat 04 Apr 2026 18:48:46 +0000 Manifest this update: Sat 04 Apr 2026 18:48:45 +0000 Manifest next update: Sat 11 Apr 2026 18:48:45 +0000 Files and hashes: 1: ZI5HI0RBcbar4W19wDDonAbwUNw.crl (hash: rKo+mzvBb++asuz5P8RrOc4U9Rxa/gybISiPmpFk4zg=) 2: 5DCB0A0C410C11EA8A6C412DC4F9AE02.roa (hash: 4eqOlSLRPKjeL1TFzyh0NXLTAo0Vu3W9omx4TqqCWjg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.crl rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:48:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3014 (0xbc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91408BE, serialNumber=648E4723444171B6ABE16D7DC030E89C06F050DC Validity Not Before: Apr 4 18:48:45 2026 GMT Not After : Apr 11 18:48:45 2026 GMT Subject: CN=69d15d0d-b961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:68:b9:fa:84:da:2d:35:a1:e8:d0:b6:d7:e0: 7b:32:ba:2b:81:24:8c:a5:72:c6:6d:ab:db:b7:ae: 35:c3:0d:ca:1e:bb:c8:59:e2:14:6e:41:34:50:8a: e8:a5:6d:8d:e0:31:bd:66:96:20:3b:c6:65:ec:c9: a9:5b:a6:d9:88:49:af:c0:f2:a8:c1:2c:bf:4b:e2: b4:da:70:ae:43:33:a0:6a:e3:da:dd:04:70:b8:81: 0e:4b:43:0b:01:6c:47:63:de:94:f4:27:47:8a:b8: 50:28:94:3a:85:cf:2c:89:71:2e:c0:56:90:d0:3f: fa:02:54:8c:2a:fe:2c:39:43:57:76:9f:ff:63:bc: 78:5e:19:71:0a:68:75:ea:a5:e8:b9:94:b0:e6:88: 33:70:2b:ba:20:39:14:86:22:3e:25:fd:71:7c:cc: 46:90:08:ac:0d:2f:c0:e6:7b:40:33:43:3d:e4:1c: 34:d3:c8:ba:b1:09:bb:60:48:55:e1:cc:b3:0d:16: 75:8f:a0:d4:0d:65:94:4c:ef:89:50:0d:27:6b:3a: 2f:b4:e2:ea:7c:a3:38:56:91:00:45:fc:5f:d0:2d: 71:e5:3d:a0:08:06:71:c9:6d:ab:02:c2:b2:d4:88: b9:39:c2:63:6e:6e:b3:2a:4d:83:8a:12:29:68:5e: fa:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:CD:1A:F1:0B:91:9F:01:21:27:6C:23:50:A5:82:5E:9A:DB:B2:A1 X509v3 Authority Key Identifier: keyid:64:8E:47:23:44:41:71:B6:AB:E1:6D:7D:C0:30:E8:9C:06:F0:50:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:66:09:27:d9:14:2e:6d:21:54:66:28:45:c9:17:0a:0f:37: 52:e8:7b:58:16:b9:39:95:05:f6:4a:f8:ac:f5:3e:47:08:a9: c4:13:94:31:70:3c:0e:86:22:60:02:dd:4d:27:dc:c0:cc:7f: f1:e2:7c:ad:52:29:64:94:1a:17:9e:aa:0f:95:2b:cb:fb:85: 76:0b:6c:aa:04:f0:4d:b7:63:8c:48:ca:80:83:8c:e7:eb:9f: 1e:2f:1f:f0:3e:3b:6b:20:f3:0c:f2:92:9a:1a:79:cc:a0:24: eb:76:f0:62:88:c6:20:62:ea:57:77:98:a3:51:53:6b:e6:45: f4:51:87:19:42:91:cf:fa:6f:72:fb:90:cd:53:cf:b4:da:db: 0d:96:21:92:d9:cc:78:f3:f8:ca:3e:72:5e:d3:4e:e9:59:40: 60:09:06:cd:41:d4:7c:b7:00:df:ca:34:b7:68:b7:74:1b:61: 49:73:55:cf:0f:72:7a:3f:f5:fe:ea:ec:66:3f:75:a4:11:5b: e8:4e:e6:4e:0a:86:7e:2c:3c:15:45:9c:ca:0d:50:90:4a:34: 41:58:9a:87:4c:33:be:0d:e0:1f:94:36:59:5c:19:e7:f9:17: 44:ed:61:ad:a4:59:b9:42:4b:bb:91:28:02:3f:fe:ed:1c:2b: fd:5b:37:5c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA4QkUxMTAvBgNVBAUTKDY0OEU0NzIzNDQ0MTcxQjZBQkUxNkQ3REMwMzBFODlD MDZGMDUwREMwHhcNMjYwNDA0MTg0ODQ1WhcNMjYwNDExMTg0ODQ1WjAYMRYwFAYD VQQDEw02OWQxNWQwZC1iOTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Wi5+oTaLTWh6NC21+B7MrorgSSMpXLGbavbt641ww3KHrvIWeIUbkE0UIro pW2N4DG9ZpYgO8Zl7MmpW6bZiEmvwPKowSy/S+K02nCuQzOgauPa3QRwuIEOS0ML AWxHY96U9CdHirhQKJQ6hc8siXEuwFaQ0D/6AlSMKv4sOUNXdp//Y7x4XhlxCmh1 6qXouZSw5ogzcCu6IDkUhiI+Jf1xfMxGkAisDS/A5ntAM0M95Bw008i6sQm7YEhV 4cyzDRZ1j6DUDWWUTO+JUA0nazovtOLqfKM4VpEARfxf0C1x5T2gCAZxyW2rAsKy 1Ii5OcJjbm6zKk2DihIpaF76nwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLnNGvEL kZ8BISdsI1Clgl6a27KhMB8GA1UdIwQYMBaAFGSORyNEQXG2q+FtfcAw6JwG8FDc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDhCRS9BMkM4MjdFRTQx MEIxMUVBQjY5NTRBMkNDNEY5QUUwMi9aSTVISTBSQmNiYXI0VzE5d0REb25BYndV TncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pJNUhJMFJCY2JhcjRXMTl3RERvbkFid1VOdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDhCRS9BMkM4MjdFRTQxMEIxMUVBQjY5NTRBMkNDNEY5QUUwMi9aSTVISTBSQmNi YXI0VzE5d0REb25BYndVTncubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkWYJJ9kULm0hVGYoRckXCg83Uuh7WBa5OZUF9kr4rPU+RwipxBOUMXA8DoYi YALdTSfcwMx/8eJ8rVIpZJQaF56qD5Ury/uFdgtsqgTwTbdjjEjKgIOM5+ufHi8f 8D47ayDzDPKSmhp5zKAk63bwYojGIGLqV3eYo1FTa+ZF9FGHGUKRz/pvcvuQzVPP tNrbDZYhktnMePP4yj5yXtNO6VlAYAkGzUHUfLcA38o0t2i3dBthSXNVzw9yej/1 /ursZj91pBFb6E7mTgqGfiw8FUWcyg1QkEo0QViah0wzvg3gH5Q2WVwZ5/kXRO1h raRZuUJLu5EoAj/+7Rwr/Vs3XA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:30:51 2026 by rpki-client