$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft File: FOZzxKcds0p1aBNYfkghLaLnczA.mft (raw, json) Hash identifier: ZmAgKZPrh+EzBbTkAz714+Lf2qMVfhq3JlUOMwKYp1o= Subject key identifier: 0B:A2:C7:48:D7:97:62:BB:A8:76:2C:7C:1C:51:C5:4A:0A:E3:F9:26 Authority key identifier: 14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 Certificate issuer: /CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Certificate serial: 0AAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft Manifest number: 0A8F Signing time: Sun 26 Apr 2026 19:29:55 +0000 Manifest this update: Sun 26 Apr 2026 19:29:54 +0000 Manifest next update: Sun 03 May 2026 19:29:54 +0000 Files and hashes: 1: FOZzxKcds0p1aBNYfkghLaLnczA.crl (hash: wbwaPuaXbHsOqxWBfNCoGU0K8w/pEzSVUbHb9LHmQAs=) 2: 344644CC1DC511EF95607948C4F9AE02.roa (hash: zF+J5zFh1poif0hGxgEuq8x4MHnVNaCe2reoxnvlkL0=) 3: ED99CAA81DC411EF9E620C48C4F9AE02.roa (hash: aLRF4zBkBM2y6xKpL1GC5YHsO0D4qoPC3jE5KWFvB9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 19:29:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2731 (0xaab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F33, serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Validity Not Before: Apr 26 19:29:54 2026 GMT Not After : May 3 19:29:54 2026 GMT Subject: CN=69ee67b3-e718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:6e:42:a7:28:d2:14:3f:de:ba:a2:92:d8:66: 51:14:bb:a7:dc:b7:ba:0d:06:3f:93:a3:3e:3c:b7: e0:db:f0:8c:10:6f:59:43:cc:44:e0:2f:89:59:f3: be:21:fe:a7:32:e1:15:37:87:01:d8:66:29:01:5f: 82:2f:72:92:20:7d:7c:4f:24:35:d6:c1:f6:85:00: b5:20:2d:2c:74:20:34:01:9c:e7:76:27:e4:19:8c: 9a:4c:8c:d7:19:83:04:6f:e6:bb:af:f7:05:17:b5: d6:6b:51:1c:eb:cb:3f:07:90:98:70:c0:8b:66:b8: 80:a0:02:c4:a1:19:31:80:d6:55:5e:7e:a6:5f:0d: f6:b0:23:61:4d:47:f5:c5:03:fd:e1:f1:50:f3:ff: 8c:62:0d:de:2e:51:47:55:09:46:93:ed:50:8a:bd: 5b:4a:ba:9c:55:32:43:7d:67:a2:9d:7a:2c:ba:0b: d7:7d:6d:10:3c:e2:74:1d:ee:c3:99:40:e6:e7:40: 63:f9:35:dc:2c:94:be:c2:c8:b0:47:dc:37:0e:a5: 46:f0:2c:6f:1a:bc:5a:2c:c3:26:bc:72:ba:9c:90: d0:20:6a:c6:a5:31:18:db:a2:07:d2:1d:a4:3b:48: c0:71:a6:d5:b9:ff:75:f7:bb:83:1b:33:26:7d:c8: 2e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:A2:C7:48:D7:97:62:BB:A8:76:2C:7C:1C:51:C5:4A:0A:E3:F9:26 X509v3 Authority Key Identifier: keyid:14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:f2:fe:43:5a:87:11:86:b9:36:8a:b1:45:bd:52:48:f5:d2: be:eb:47:79:c9:2d:82:c7:ab:14:07:60:85:65:26:99:57:56: 63:e7:dd:0e:99:9a:af:0c:40:4a:10:6e:d7:e5:ae:1f:c1:6b: 36:8f:69:46:95:c3:ac:ec:29:f5:5e:77:97:f0:9e:14:7b:1a: 91:d1:40:d7:87:59:96:0a:c1:9c:c5:57:e3:3a:5f:4a:e9:81: b2:fa:a7:78:bc:03:88:c2:78:ea:3d:58:3d:ea:e7:3a:87:3f: 26:df:db:df:f6:d5:37:6a:fe:25:a9:0f:f0:a0:56:34:da:e5: ec:3f:2a:38:4f:4a:7b:f5:b2:02:cb:9b:82:77:42:1a:73:53: 7e:f1:30:fd:38:38:a2:bd:76:4c:e2:0f:b8:ee:cb:51:ed:91: c9:c3:29:8c:05:02:86:9a:0a:50:d8:c3:86:44:a9:f9:37:02: 47:9a:7e:0c:1b:e3:d2:c1:0a:ac:4a:8d:16:77:1d:2a:3c:af: 2a:02:bc:7e:d1:f6:ca:8b:65:db:9e:da:cb:04:bf:16:ce:b9: d4:0f:31:51:75:cc:2d:ee:ac:b9:be:f3:5f:5d:cd:a0:68:1e: 02:39:b5:6a:8b:16:13:a9:a3:85:4a:3d:74:f4:95:82:22:84: 08:8b:3a:9b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGMzMxMTAvBgNVBAUTKDE0RTY3M0M0QTcxREIzNEE3NTY4MTM1ODdFNDgyMTJE QTJFNzczMzAwHhcNMjYwNDI2MTkyOTU0WhcNMjYwNTAzMTkyOTU0WjAYMRYwFAYD VQQDEw02OWVlNjdiMy1lNzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA125CpyjSFD/euqKS2GZRFLun3Le6DQY/k6M+PLfg2/CMEG9ZQ8xE4C+JWfO+ If6nMuEVN4cB2GYpAV+CL3KSIH18TyQ11sH2hQC1IC0sdCA0AZzndifkGYyaTIzX GYMEb+a7r/cFF7XWa1Ec68s/B5CYcMCLZriAoALEoRkxgNZVXn6mXw32sCNhTUf1 xQP94fFQ8/+MYg3eLlFHVQlGk+1Qir1bSrqcVTJDfWeinXosugvXfW0QPOJ0He7D mUDm50Bj+TXcLJS+wsiwR9w3DqVG8CxvGrxaLMMmvHK6nJDQIGrGpTEY26IH0h2k O0jAcabVuf9197uDGzMmfcgu3QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAuix0jX l2K7qHYsfBxRxUoK4/kmMB8GA1UdIwQYMBaAFBTmc8SnHbNKdWgTWH5IIS2i53Mw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkYzMy9FNkVDMkQ5Mjgw OTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMwcDFhQk5ZZmtnaExhTG5j ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZPWnp4S2NkczBwMWFCTllma2doTGFMbmN6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkYzMy9FNkVDMkQ5MjgwOTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMw cDFhQk5ZZmtnaExhTG5jekEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAl/L+Q1qHEYa5NoqxRb1SSPXSvutHecktgserFAdghWUmmVdWY+fdDpmarwxA ShBu1+WuH8FrNo9pRpXDrOwp9V53l/CeFHsakdFA14dZlgrBnMVX4zpfSumBsvqn eLwDiMJ46j1YPernOoc/Jt/b3/bVN2r+JakP8KBWNNrl7D8qOE9Ke/WyAsubgndC GnNTfvEw/Tg4or12TOIPuO7LUe2RycMpjAUChpoKUNjDhkSp+TcCR5p+DBvj0sEK rEqNFncdKjyvKgK8ftH2yotl257aywS/Fs651A8xUXXMLe6sub7zX13NoGgeAjm1 aosWE6mjhUo9dPSVgiKECIs6mw== -----END CERTIFICATE-----Generated at Tue Apr 28 07:24:03 2026 by rpki-client