$ rpki-client -vvf rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft File: 0Z0h9lpMk802wwczAhMPTmW38Ok.mft (raw, json) Hash identifier: yfTh8OLmfPo23X85TaV4s5DUElDCrDmTZ9nG5ioN3Dc= Subject key identifier: 97:1F:37:05:8C:E4:14:F8:83:75:C8:7E:B0:4B:3F:FC:0D:4D:F5:87 Authority key identifier: D1:9D:21:F6:5A:4C:93:CD:36:C3:07:33:02:13:0F:4E:65:B7:F0:E9 Certificate issuer: /CN=A91765CB/serialNumber=D19D21F65A4C93CD36C3073302130F4E65B7F0E9 Certificate serial: 0234 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Z0h9lpMk802wwczAhMPTmW38Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft Manifest number: 0226 Signing time: Mon 27 Apr 2026 02:38:44 +0000 Manifest this update: Mon 27 Apr 2026 02:38:43 +0000 Manifest next update: Mon 04 May 2026 02:38:43 +0000 Files and hashes: 1: 0Z0h9lpMk802wwczAhMPTmW38Ok.crl (hash: /A6jnUtlcl2rudJuADimftEFEqEdNCwgZbJEGEOaFi0=) 2: 5CBE3872145C11F0BFD6B347C4F9AE02.roa (hash: eIw4Uvs7+0h1YsqxH/qfh6oIU/c0LpW3ku/O5IbbbMI=) 3: 4C30AA30B08411EFA29E6722C4F9AE02.roa (hash: 0B4BKsEG1wa08J+lgPO912Kog9bxXq5IB8X43UFFcls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.crl rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Z0h9lpMk802wwczAhMPTmW38Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 02:38:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 564 (0x234) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91765CB, serialNumber=D19D21F65A4C93CD36C3073302130F4E65B7F0E9 Validity Not Before: Apr 27 02:38:43 2026 GMT Not After : May 4 02:38:43 2026 GMT Subject: CN=69eecc34-05be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:dc:bf:e5:19:a2:83:a0:0a:c5:5d:dd:d6:98: 9c:d1:21:a9:14:df:6c:68:8f:70:14:6a:f1:5b:20: 11:7b:45:07:43:f9:79:73:c4:ba:ec:57:93:34:00: a1:b3:3c:03:8d:7d:3d:d2:e9:9c:f9:99:40:0a:3a: e9:8a:f8:7c:60:3c:b9:e9:34:37:32:06:98:0c:49: fb:58:fe:06:3a:9c:a6:48:61:83:86:11:c9:61:cd: ad:67:fb:2b:c2:99:75:9f:73:d9:96:db:86:88:9a: ca:95:6a:50:3c:c1:47:12:85:1f:c9:03:eb:16:ac: 1d:2d:c6:3b:0e:05:37:4b:79:4d:72:e0:ee:e9:26: 76:e9:34:7b:05:36:0d:a8:be:51:ed:38:c9:d2:df: 10:19:4d:c4:56:cb:c0:0e:67:05:b0:c8:c2:48:8b: f1:5e:43:6b:78:a0:0e:74:05:21:b6:3a:f8:fd:fc: 70:77:0d:5a:ef:84:d9:4a:88:05:71:09:e3:8c:51: 32:0b:0a:d1:11:17:05:a9:68:52:6f:aa:ad:a6:91: 4e:1b:93:cd:e4:0d:b9:8b:96:a9:72:d6:c9:3a:0e: 53:b8:f8:65:9b:08:3a:c1:90:8c:04:45:28:89:a1: 4a:f3:b0:d3:97:8a:42:e7:b8:8b:a5:7b:43:32:91: c5:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:1F:37:05:8C:E4:14:F8:83:75:C8:7E:B0:4B:3F:FC:0D:4D:F5:87 X509v3 Authority Key Identifier: keyid:D1:9D:21:F6:5A:4C:93:CD:36:C3:07:33:02:13:0F:4E:65:B7:F0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Z0h9lpMk802wwczAhMPTmW38Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:84:2e:55:d8:a2:8a:d5:3c:3e:b1:ca:ca:06:e2:ea:82:21: c9:53:94:aa:89:15:c6:9a:39:be:93:43:22:5d:6b:1a:fb:64: 35:09:97:be:3d:29:51:be:e0:30:36:6f:48:47:32:fd:f1:40: c3:48:78:60:c0:a8:a5:fc:97:9b:ea:ff:77:51:ad:1d:87:0c: 85:14:48:4c:86:ff:ef:55:04:9c:fc:f0:20:31:2f:73:18:e7: 5f:db:3c:37:fd:ed:ae:cb:14:78:0f:1d:f5:9f:a4:c5:e7:01: 1e:11:a9:e7:d8:2e:6a:4a:5e:7d:b8:6a:4f:f3:82:aa:76:ed: 89:05:de:82:34:b9:04:36:55:5f:bd:c9:1f:da:1c:a3:40:a5: fe:31:2a:bb:01:54:0f:24:19:72:70:ce:0a:2e:c6:e8:b8:b3: d1:8d:c3:8c:f4:98:68:ca:75:5c:52:e8:4e:ea:d9:98:cc:5a: 48:ee:f6:6e:2b:e8:8a:8c:97:f8:31:04:99:02:2f:4f:b7:12: 7f:30:05:6b:78:64:af:c7:a0:92:04:13:a8:bb:1c:ed:4c:3e: 02:fb:86:9d:78:0e:4e:60:75:13:57:44:73:47:09:54:c8:ff: e2:0d:8d:08:8f:46:ab:49:1a:f9:0c:ff:69:a8:48:ce:12:84: 2a:8b:42:21 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY1Q0IxMTAvBgNVBAUTKEQxOUQyMUY2NUE0QzkzQ0QzNkMzMDczMzAyMTMwRjRF NjVCN0YwRTkwHhcNMjYwNDI3MDIzODQzWhcNMjYwNTA0MDIzODQzWjAYMRYwFAYD VQQDEw02OWVlY2MzNC0wNWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm9y/5Rmig6AKxV3d1pic0SGpFN9saI9wFGrxWyARe0UHQ/l5c8S67FeTNACh szwDjX090umc+ZlACjrpivh8YDy56TQ3MgaYDEn7WP4GOpymSGGDhhHJYc2tZ/sr wpl1n3PZltuGiJrKlWpQPMFHEoUfyQPrFqwdLcY7DgU3S3lNcuDu6SZ26TR7BTYN qL5R7TjJ0t8QGU3EVsvADmcFsMjCSIvxXkNreKAOdAUhtjr4/fxwdw1a74TZSogF cQnjjFEyCwrRERcFqWhSb6qtppFOG5PN5A25i5apctbJOg5TuPhlmwg6wZCMBEUo iaFK87DTl4pC57iLpXtDMpHFQwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJcfNwWM 5BT4g3XIfrBLP/wNTfWHMB8GA1UdIwQYMBaAFNGdIfZaTJPNNsMHMwITD05lt/Dp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjVDQi82OTU1MTVFMDA2 MjgxMUVFQTcxNEMyNjNDNEY5QUUwMi8wWjBoOWxwTWs4MDJ3d2N6QWhNUFRtVzM4 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBaMGg5bHBNazgwMnd3Y3pBaE1QVG1XMzhPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjVDQi82OTU1MTVFMDA2MjgxMUVFQTcxNEMyNjNDNEY5QUUwMi8wWjBoOWxwTWs4 MDJ3d2N6QWhNUFRtVzM4T2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgIQuVdiiitU8PrHKygbi6oIhyVOUqokVxpo5vpNDIl1rGvtkNQmXvj0pUb7g MDZvSEcy/fFAw0h4YMCopfyXm+r/d1GtHYcMhRRITIb/71UEnPzwIDEvcxjnX9s8 N/3trssUeA8d9Z+kxecBHhGp59guakpefbhqT/OCqnbtiQXegjS5BDZVX73JH9oc o0Cl/jEquwFUDyQZcnDOCi7G6Liz0Y3DjPSYaMp1XFLoTurZmMxaSO72bivoioyX +DEEmQIvT7cSfzAFa3hkr8egkgQTqLsc7Uw+AvuGnXgOTmB1E1dEc0cJVMj/4g2N CI9Gq0ka+Qz/aahIzhKEKotCIQ== -----END CERTIFICATE-----Generated at Tue Apr 28 11:38:06 2026 by rpki-client