$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft File: zOnFYkus-dCYXj8tbjHmsthtgq4.mft (raw, json) Hash identifier: rkoWts6lNxHhlAefCHeQqi52Te9mQTKERcFGHFeiz9A= Subject key identifier: 2B:84:83:6F:71:54:D3:AF:21:6C:07:72:39:09:77:47:6C:63:2D:26 Authority key identifier: CC:E9:C5:62:4B:AC:F9:D0:98:5E:3F:2D:6E:31:E6:B2:D8:6D:82:AE Certificate issuer: /CN=A9157B07/serialNumber=CCE9C5624BACF9D0985E3F2D6E31E6B2D86D82AE Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOnFYkus-dCYXj8tbjHmsthtgq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft Manifest number: 6A Signing time: Sun 05 Apr 2026 07:15:48 +0000 Manifest this update: Sun 05 Apr 2026 07:15:47 +0000 Manifest next update: Sun 12 Apr 2026 07:15:47 +0000 Files and hashes: 1: zOnFYkus-dCYXj8tbjHmsthtgq4.crl (hash: IsSBDFjCNCEITeCsK2DbUStzzaYSVuiVlXhePekSD00=) 2: 8CA88A568FD611F09FFCA92CC4F9AE02.roa (hash: TxrrC9wYr/I+aWhB4yIA14fUgs+AJHTP94jMCdYeTOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.crl rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOnFYkus-dCYXj8tbjHmsthtgq4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 07:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B07, serialNumber=CCE9C5624BACF9D0985E3F2D6E31E6B2D86D82AE Validity Not Before: Apr 5 07:15:47 2026 GMT Not After : Apr 12 07:15:47 2026 GMT Subject: CN=69d20c23-9925 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e6:01:f5:2b:bd:1c:d4:f4:e4:ef:83:b0:7f: 3e:d2:7b:c3:90:ac:28:34:b7:14:fd:c6:1e:66:6c: 21:af:e7:a0:1d:47:86:bb:fb:12:2e:31:9b:1f:4c: be:94:46:b3:30:a6:d7:01:1a:b9:9b:14:80:33:74: 04:a8:e5:d8:70:4b:23:10:63:34:76:b7:64:25:75: 29:e0:b0:60:8f:68:86:04:fc:82:9d:b9:72:08:a6: d9:4f:ac:90:a6:ac:d9:e4:17:d2:c5:3e:47:b1:9e: 13:71:d7:83:b5:04:3b:5a:a1:bb:ae:c5:b1:01:23: 92:ad:89:79:0e:c6:0d:8d:78:3f:e9:10:bf:d5:c5: 0e:89:af:a2:3d:2f:6e:9d:93:fe:33:9c:27:94:e2: 85:09:0c:71:9e:3a:42:cd:2f:d4:bb:00:55:e7:ce: 9f:c2:06:78:79:43:bd:91:f4:ec:99:49:66:07:11: 62:22:92:b9:63:5d:44:f7:26:55:dc:45:93:e5:4b: 39:27:49:e0:0e:ce:2b:1e:93:67:cd:f5:c9:34:43: 14:af:95:e6:07:53:c6:8d:f2:9e:c9:11:a5:fe:a7: cb:ee:45:e2:95:5b:01:92:66:17:f1:0a:e7:bb:8a: d7:38:b1:ce:19:f1:64:5a:4d:81:38:01:d4:7d:02: d9:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:84:83:6F:71:54:D3:AF:21:6C:07:72:39:09:77:47:6C:63:2D:26 X509v3 Authority Key Identifier: keyid:CC:E9:C5:62:4B:AC:F9:D0:98:5E:3F:2D:6E:31:E6:B2:D8:6D:82:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOnFYkus-dCYXj8tbjHmsthtgq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:39:15:7f:6b:68:79:7e:e1:45:08:ef:c5:cd:35:bf:18:d7: 1d:ca:1f:dc:c2:57:bd:ae:a5:7e:9a:1d:f7:78:1f:d5:21:52: 55:61:e6:a4:46:7c:32:69:13:45:77:47:c5:7e:79:75:fb:cc: b4:e6:d3:35:11:88:97:6d:18:8d:86:3c:76:47:0f:62:7e:0e: 45:55:9b:46:71:c9:62:e1:fd:5a:5c:38:8b:cb:42:d4:b2:06: c4:e8:5a:e7:2e:81:d4:94:af:8b:d9:83:90:79:26:d8:dd:ec: 9c:76:62:ef:68:01:ab:28:a9:9f:d1:fd:2d:2b:74:46:87:f8: 31:05:36:1b:13:1d:80:ed:19:95:e0:6b:d4:48:22:b2:3c:4a: cc:2c:d4:c1:5e:d1:1d:70:f4:38:24:11:4e:ba:4f:8e:be:f0: 73:60:fa:53:be:8b:5b:63:28:3d:aa:43:bb:05:ca:39:79:b8: ff:c9:6a:cf:e8:01:2a:f0:32:10:7a:22:47:33:c2:1b:36:91: 3f:e5:87:90:ad:2c:ca:e1:8f:93:81:2d:9b:99:62:78:05:f4: ad:8f:ff:b7:bf:ba:9a:9d:7c:bc:6a:0b:86:3a:bf:64:30:09: c4:95:1d:fd:30:9b:88:09:ab:2c:d1:02:71:f5:6f:9f:0a:ed: 30:65:5e:94 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0IwNzExMC8GA1UEBRMoQ0NFOUM1NjI0QkFDRjlEMDk4NUUzRjJENkUzMUU2QjJE ODZEODJBRTAeFw0yNjA0MDUwNzE1NDdaFw0yNjA0MTIwNzE1NDdaMBgxFjAUBgNV BAMTDTY5ZDIwYzIzLTk5MjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDE5gH1K70c1PTk74Owfz7Se8OQrCg0txT9xh5mbCGv56AdR4a7+xIuMZsfTL6U RrMwptcBGrmbFIAzdASo5dhwSyMQYzR2t2QldSngsGCPaIYE/IKduXIIptlPrJCm rNnkF9LFPkexnhNx14O1BDtaobuuxbEBI5KtiXkOxg2NeD/pEL/VxQ6Jr6I9L26d k/4znCeU4oUJDHGeOkLNL9S7AFXnzp/CBnh5Q72R9OyZSWYHEWIikrljXUT3JlXc RZPlSzknSeAOzisek2fN9ck0QxSvleYHU8aN8p7JEaX+p8vuReKVWwGSZhfxCue7 itc4sc4Z8WRaTYE4AdR9AtkLAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUK4SDb3FU 068hbAdyOQl3R2xjLSYwHwYDVR0jBBgwFoAUzOnFYkus+dCYXj8tbjHmsthtgq4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3QjA3L0Q4ODU0NDkyOEZE NTExRjBBNjFDOUIyQkM0RjlBRTAyL3pPbkZZa3VzLWRDWVhqOHRiakhtc3RodGdx NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvek9uRllrdXMtZENZWGo4dGJqSG1zdGh0Z3E0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3 QjA3L0Q4ODU0NDkyOEZENTExRjBBNjFDOUIyQkM0RjlBRTAyL3pPbkZZa3VzLWRD WVhqOHRiakhtc3RodGdxNC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBnORV/a2h5fuFFCO/FzTW/GNcdyh/cwle9rqV+mh33eB/VIVJVYeakRnwyaRNF d0fFfnl1+8y05tM1EYiXbRiNhjx2Rw9ifg5FVZtGccli4f1aXDiLy0LUsgbE6Frn LoHUlK+L2YOQeSbY3eycdmLvaAGrKKmf0f0tK3RGh/gxBTYbEx2A7RmV4GvUSCKy PErMLNTBXtEdcPQ4JBFOuk+OvvBzYPpTvotbYyg9qkO7Bco5ebj/yWrP6AEq8DIQ eiJHM8IbNpE/5YeQrSzK4Y+TgS2bmWJ4BfStj/+3v7qanXy8aguGOr9kMAnElR39 MJuICass0QJx9W+fCu0wZV6U -----END CERTIFICATE-----Generated at Mon Apr 6 08:30:51 2026 by rpki-client