$ rpki-client -vvf rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft File: zWXmdAuufrM71eU4ye5t6LM1RDE.mft (raw, json) Hash identifier: 94tOAuT0IR1jzfBVXQls60Q1bbb7MXNj0IOXOe6s0T4= Subject key identifier: 2D:49:D6:89:0F:2A:2E:A8:26:6E:83:00:3D:F3:9D:67:7A:C5:2D:C1 Authority key identifier: CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 Certificate issuer: /CN=A916FA49/serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft Manifest number: 01CE Signing time: Sat 18 Apr 2026 16:42:00 +0000 Manifest this update: Sat 18 Apr 2026 16:42:00 +0000 Manifest next update: Sat 25 Apr 2026 16:42:00 +0000 Files and hashes: 1: zWXmdAuufrM71eU4ye5t6LM1RDE.crl (hash: ezv6ulTX8nZ9Fyddt70gSPEy/2JblZ2pycf1r2sP4Ug=) 2: 74F996F62F2511EF8D78DC62C4F9AE02.roa (hash: sPimiMMVQ8HhWMH3h4YYvgrI9mvp3guGNNGoHKdWxG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 14:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FA49, serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Validity Not Before: Apr 18 16:42:00 2026 GMT Not After : Apr 25 16:42:00 2026 GMT Subject: CN=69e3b458-bb11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9c:d0:5a:7f:7a:b6:19:a5:6d:f2:75:36:3b: 79:ff:79:38:37:6a:f8:19:e9:c2:42:f4:89:70:f5: 52:d3:f6:42:ba:e4:c1:58:aa:d1:ba:7e:50:3f:3f: c9:6b:55:b7:3b:2d:c9:55:d4:4e:0f:51:0a:60:d8: 99:93:28:b1:73:e3:d5:cc:4a:28:29:c4:f1:4e:b1: 41:df:0c:9f:de:1a:df:48:02:7f:a0:17:de:3f:3f: 75:6f:04:b2:25:7e:03:a4:43:2e:67:22:ad:09:c6: b4:25:ad:0f:0b:2f:88:5e:ef:65:a6:71:91:2f:40: c3:0a:40:98:47:c4:69:fa:9e:e7:ab:e8:4c:45:f2: 80:5d:87:29:10:12:45:a3:58:2c:d7:2f:66:e6:93: fc:34:92:19:99:b0:3d:e6:eb:a4:a9:1e:46:35:fe: 98:2e:22:1e:74:4d:c3:30:94:95:87:f6:f1:04:56: 5f:28:d9:e5:f3:d6:8e:12:77:bd:d2:98:75:ab:e8: 0e:b5:e3:c3:9a:78:5c:38:bb:db:aa:7d:aa:6a:6a: ea:fe:57:da:e4:0b:77:35:67:ed:fd:b4:d1:fc:f2: e0:66:c3:11:17:4e:96:3b:31:6e:a5:51:52:b0:a5: d4:ac:f8:b1:a9:4e:80:c8:84:a5:7b:61:22:fb:25: 90:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:49:D6:89:0F:2A:2E:A8:26:6E:83:00:3D:F3:9D:67:7A:C5:2D:C1 X509v3 Authority Key Identifier: keyid:CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:6a:29:49:57:da:6f:b1:97:fc:8d:57:46:32:0c:2c:9e:4a: 23:de:d5:c0:bf:0d:c5:3a:cd:32:2b:e8:d7:89:9a:62:49:31: 02:fe:4b:f9:4c:0c:37:81:92:95:14:35:18:24:01:11:67:f6: e1:4f:3d:e5:aa:c4:0a:e1:92:ab:99:d2:8d:e0:5b:fa:96:cb: e1:46:b5:bf:24:a4:0f:44:0a:0c:c1:45:98:e4:8b:5a:d3:31: c9:01:20:64:eb:0a:09:97:86:dd:c7:0b:02:6d:02:f4:3a:56: 58:54:87:24:57:08:75:fb:df:80:e2:f9:c1:58:12:1a:02:bf: c9:0e:a1:9c:74:9f:4a:f4:5f:c3:f9:d4:ec:2a:fe:a5:5f:f5: eb:5a:c2:ce:97:04:48:bd:ea:4b:22:c6:51:6e:6b:20:89:f6: e1:62:05:65:59:cf:2e:56:b7:8f:72:24:e7:dc:7e:e2:e3:18: d4:a6:7d:05:52:bb:a6:77:1b:64:aa:7f:f3:14:77:aa:f4:ee: e6:27:fd:f4:4c:95:69:e5:42:6f:66:c4:f8:ba:d6:76:b4:fa: 6d:74:27:1a:d3:04:20:3a:b6:53:9d:f8:8d:ce:3f:13:fe:bb: 62:5b:cf:46:d2:fe:ac:c8:0a:35:8b:33:dd:ef:56:c5:e9:c3: 0d:67:9e:61 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBNDkxMTAvBgNVBAUTKENENjVFNjc0MEJBRTdFQjMzQkQ1RTUzOEM5RUU2REU4 QjMzNTQ0MzEwHhcNMjYwNDE4MTY0MjAwWhcNMjYwNDI1MTY0MjAwWjAYMRYwFAYD VQQDEw02OWUzYjQ1OC1iYjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5zQWn96thmlbfJ1Njt5/3k4N2r4GenCQvSJcPVS0/ZCuuTBWKrRun5QPz/J a1W3Oy3JVdROD1EKYNiZkyixc+PVzEooKcTxTrFB3wyf3hrfSAJ/oBfePz91bwSy JX4DpEMuZyKtCca0Ja0PCy+IXu9lpnGRL0DDCkCYR8Rp+p7nq+hMRfKAXYcpEBJF o1gs1y9m5pP8NJIZmbA95uukqR5GNf6YLiIedE3DMJSVh/bxBFZfKNnl89aOEne9 0ph1q+gOtePDmnhcOLvbqn2qamrq/lfa5At3NWft/bTR/PLgZsMRF06WOzFupVFS sKXUrPixqU6AyISle2Ei+yWQRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC1J1okP Ki6oJm6DAD3znWd6xS3BMB8GA1UdIwQYMBaAFM1l5nQLrn6zO9XlOMnubeizNUQx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkE0OS9BNEMwQ0E5Njkw MDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZyTTcxZVU0eWU1dDZMTTFS REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pXWG1kQXV1ZnJNNzFlVTR5ZTV0NkxNMVJERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkE0OS9BNEMwQ0E5NjkwMDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZy TTcxZVU0eWU1dDZMTTFSREUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXWopSVfab7GX/I1XRjIMLJ5KI97VwL8NxTrNMivo14maYkkxAv5L+UwMN4GS lRQ1GCQBEWf24U895arECuGSq5nSjeBb+pbL4Ua1vySkD0QKDMFFmOSLWtMxyQEg ZOsKCZeG3ccLAm0C9DpWWFSHJFcIdfvfgOL5wVgSGgK/yQ6hnHSfSvRfw/nU7Cr+ pV/161rCzpcESL3qSyLGUW5rIIn24WIFZVnPLla3j3Ik59x+4uMY1KZ9BVK7pncb ZKp/8xR3qvTu5if99EyVaeVCb2bE+LrWdrT6bXQnGtMEIDq2U534jc4/E/67YlvP RtL+rMgKNYsz3e9WxenDDWeeYQ== -----END CERTIFICATE-----Generated at Sat Apr 18 21:08:25 2026 by rpki-client