$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft File: z8CATaxP_3oipAThDphkpxHeGck.mft (raw, json) Hash identifier: Gixev7BOcrJTK1Pikyob4+JPFIfpEzPUXjef5tlzALk= Subject key identifier: D7:37:99:C3:91:1F:97:5D:FE:1D:6D:6D:0D:A4:58:94:A0:64:61:FA Authority key identifier: CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 Certificate issuer: /CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Certificate serial: 0138 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft Manifest number: 0130 Signing time: Fri 17 Apr 2026 05:14:24 +0000 Manifest this update: Fri 17 Apr 2026 05:14:23 +0000 Manifest next update: Fri 24 Apr 2026 05:14:23 +0000 Files and hashes: 1: z8CATaxP_3oipAThDphkpxHeGck.crl (hash: UXrKNbEkguLwAGufMLKv2pmVYDLiTl/IHBl1XAjp26k=) 2: BCA395126C1811EFAFBE6B0FC4F9AE02.roa (hash: YuQff5ZM6ktoeLhGQjtDQt4j9brqyCXl9qvUHGQ/W6c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:14:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A12C4, serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Validity Not Before: Apr 17 05:14:23 2026 GMT Not After : Apr 24 05:14:23 2026 GMT Subject: CN=69e1c1b0-fb90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:79:cb:4b:88:41:cf:9f:47:52:ce:a0:ea:70: ce:c6:b7:3a:5f:bf:34:da:32:d4:27:16:88:dd:a9: f0:84:22:71:1d:b8:e4:e7:4c:c3:d2:af:76:14:82: 9c:28:ec:e4:f5:d4:4f:1d:9d:ad:4d:ad:35:c9:06: 7e:0f:2f:83:94:d2:a8:13:37:a2:88:e0:cf:39:d8: 4b:c2:ed:c1:ce:fa:5f:2a:8d:c8:bc:7c:c1:7d:4b: 31:16:ca:93:e9:d2:ad:0f:31:7f:85:b1:44:a4:2c: 82:fe:d3:69:3a:76:f9:ec:0d:42:55:17:4b:39:c0: ff:30:96:33:a8:dd:4d:75:ab:d0:10:c3:c3:16:fb: 69:1d:e6:ce:e2:df:b7:cd:70:70:51:af:43:7b:72: a7:b2:4e:d9:c3:bf:44:0f:b1:3b:5e:2a:28:0d:f2: 06:fd:e1:45:7d:00:41:0a:8d:8f:23:39:da:85:d4: 59:5c:96:b4:95:e3:63:ad:69:a2:00:17:33:1a:d5: d3:7a:e4:4d:a9:ef:e2:c9:39:82:23:51:cf:66:0a: 6d:3e:70:1b:12:65:f7:30:67:15:d6:58:c2:26:e9: 7e:ff:f2:6a:30:d6:8b:a0:c8:55:38:ab:6c:85:24: 74:0a:31:da:9d:c5:d1:27:62:32:cc:da:47:c8:0e: 9f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:37:99:C3:91:1F:97:5D:FE:1D:6D:6D:0D:A4:58:94:A0:64:61:FA X509v3 Authority Key Identifier: keyid:CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:b0:d8:25:a0:e5:b2:35:f3:ed:d3:0d:32:26:f2:4a:f6:b1: 72:ef:1b:3a:f5:db:55:4a:c5:a6:64:94:2e:f5:84:9d:cb:c1: 9b:75:ea:f3:a6:41:d0:51:b4:80:97:65:81:27:cd:87:25:1e: 61:af:72:d7:29:90:ac:d2:d4:15:c7:99:04:f2:9c:b4:ff:54: fa:82:33:b6:19:58:8c:25:dd:3a:08:15:b0:89:3d:d8:f0:00: 33:34:34:df:0d:96:5d:03:ef:67:01:2b:52:49:69:f4:b2:a9: 18:bd:74:ec:f2:db:46:b4:d9:39:36:4a:23:cd:5c:12:74:bb: 3c:fd:01:6a:89:94:ee:69:ed:9e:84:c9:c7:53:e2:8c:d8:44: 45:ad:cb:c2:63:b7:21:be:4c:13:66:33:fe:eb:c8:8b:f6:f3: 6b:e8:50:7f:ba:a4:e3:fd:42:6e:62:50:43:de:84:f7:19:dc: 83:05:30:a6:4f:56:4e:2e:87:7d:1f:87:97:82:88:af:ee:64: 9e:b9:3f:57:49:76:1a:49:f7:72:ea:e5:47:dc:0b:76:5d:94: d7:94:2c:fc:38:f3:0e:df:60:23:a8:4d:7b:cc:4a:7a:79:cb: e2:58:db:13:c5:79:94:be:5a:c9:1e:0d:82:4e:68:4c:fe:24: 0c:3f:7a:d4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEyQzQxMTAvBgNVBAUTKENGQzA4MDREQUM0RkZGN0EyMkE0MDRFMTBFOTg2NEE3 MTFERTE5QzkwHhcNMjYwNDE3MDUxNDIzWhcNMjYwNDI0MDUxNDIzWjAYMRYwFAYD VQQDEw02OWUxYzFiMC1mYjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3nLS4hBz59HUs6g6nDOxrc6X7802jLUJxaI3anwhCJxHbjk50zD0q92FIKc KOzk9dRPHZ2tTa01yQZ+Dy+DlNKoEzeiiODPOdhLwu3BzvpfKo3IvHzBfUsxFsqT 6dKtDzF/hbFEpCyC/tNpOnb57A1CVRdLOcD/MJYzqN1NdavQEMPDFvtpHebO4t+3 zXBwUa9De3Knsk7Zw79ED7E7XiooDfIG/eFFfQBBCo2PIznahdRZXJa0leNjrWmi ABczGtXTeuRNqe/iyTmCI1HPZgptPnAbEmX3MGcV1ljCJul+//JqMNaLoMhVOKts hSR0CjHancXRJ2IyzNpHyA6fRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNc3mcOR H5dd/h1tbQ2kWJSgZGH6MB8GA1UdIwQYMBaAFM/AgE2sT/96IqQE4Q6YZKcR3hnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTJDNC9GMzE5RURDMjZD MTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8zb2lwQVRoRHBoa3B4SGVH Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o4Q0FUYXhQXzNvaXBBVGhEcGhrcHhIZUdjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTJDNC9GMzE5RURDMjZDMTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8z b2lwQVRoRHBoa3B4SGVHY2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcLDYJaDlsjXz7dMNMibySvaxcu8bOvXbVUrFpmSULvWEncvBm3Xq86ZB0FG0 gJdlgSfNhyUeYa9y1ymQrNLUFceZBPKctP9U+oIzthlYjCXdOggVsIk92PAAMzQ0 3w2WXQPvZwErUklp9LKpGL107PLbRrTZOTZKI81cEnS7PP0BaomU7mntnoTJx1Pi jNhERa3LwmO3Ib5ME2Yz/uvIi/bza+hQf7qk4/1CbmJQQ96E9xncgwUwpk9WTi6H fR+Hl4KIr+5knrk/V0l2Gkn3curlR9wLdl2U15Qs/DjzDt9gI6hNe8xKennL4ljb E8V5lL5ayR4Ngk5oTP4kDD961A== -----END CERTIFICATE-----Generated at Sat Apr 18 21:05:26 2026 by rpki-client