$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft File: zFYVfHLcxpczY2dD21AIdZMtpB8.mft (raw, json) Hash identifier: rZpPe6WeO/sdlr9a8PGZnwRSlHrIN1M6YtJodvZ0zmY= Subject key identifier: 4E:77:21:CD:DC:DB:D5:4E:D9:30:3B:41:A4:90:E5:26:39:CB:68:C5 Authority key identifier: CC:56:15:7C:72:DC:C6:97:33:63:67:43:DB:50:08:75:93:2D:A4:1F Certificate issuer: /CN=A91A6CD6/serialNumber=CC56157C72DCC69733636743DB500875932DA41F Certificate serial: 06CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft Manifest number: 06C1 Signing time: Sat 04 Apr 2026 22:06:03 +0000 Manifest this update: Sat 04 Apr 2026 22:06:03 +0000 Manifest next update: Sat 11 Apr 2026 22:06:03 +0000 Files and hashes: 1: zFYVfHLcxpczY2dD21AIdZMtpB8.crl (hash: 3WPiDj7hOLdFZeyNWpTfraxfz3ChqYa8x80JCkqvUa8=) 2: A210E7309CAB11EBAB87D43AC4F9AE02.roa (hash: oPai/6JGqqBsiLWvrKLeP/3ai1A03sc+JH8DwYOimx0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.crl rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 22:06:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1738 (0x6ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6CD6, serialNumber=CC56157C72DCC69733636743DB500875932DA41F Validity Not Before: Apr 4 22:06:03 2026 GMT Not After : Apr 11 22:06:03 2026 GMT Subject: CN=69d18b4b-172d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ca:e9:0a:11:ea:d3:b2:b4:0e:bb:a0:82:2a: 10:16:aa:e7:b8:89:42:23:01:46:c1:a0:c9:e7:8c: 4b:09:7c:be:aa:17:ea:d7:a9:a3:64:3c:92:ba:8a: a4:f8:20:9d:f0:eb:01:58:57:1c:9a:2f:cf:32:9a: 16:26:05:85:7d:2d:1f:5b:1e:da:56:cd:31:f7:12: b3:18:ef:3e:73:0d:d4:49:3c:46:f5:cd:42:01:d3: ac:14:a6:50:e7:ff:39:58:c8:e8:60:38:98:bc:fa: c2:31:31:29:a8:7f:0d:4e:d2:b4:5f:3b:41:1b:96: 18:26:c7:ca:26:b4:ce:79:f8:85:f0:a5:2c:42:cb: 63:0f:fc:04:86:50:9f:88:b7:f4:55:6d:c8:08:5a: 3b:05:55:33:e6:10:27:43:f1:44:a1:7b:20:40:38: fa:ca:ab:ec:b5:cc:7d:46:98:be:3e:cc:61:f4:29: bb:21:cb:97:47:50:ac:38:f4:88:ad:6e:17:af:5f: fa:6e:54:ed:12:7f:a8:29:9e:bb:46:28:a2:72:33: ed:82:30:3e:80:3c:be:b5:3a:d0:13:f2:ce:3a:3f: 96:04:61:64:01:93:88:d2:aa:a9:3b:92:5b:0b:2b: 33:39:30:b7:9d:30:ce:c2:92:9f:06:9c:3c:d9:d3: 86:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:77:21:CD:DC:DB:D5:4E:D9:30:3B:41:A4:90:E5:26:39:CB:68:C5 X509v3 Authority Key Identifier: keyid:CC:56:15:7C:72:DC:C6:97:33:63:67:43:DB:50:08:75:93:2D:A4:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:73:93:93:ca:7f:54:77:a9:49:46:cc:d7:01:1c:db:7a:83: 03:8c:7e:c0:74:6b:20:d5:32:23:1f:4b:35:38:a5:37:d6:f9: 43:f9:a1:62:66:b0:f5:b1:47:5d:14:0c:15:3b:05:64:a7:29: a2:fd:ed:b3:b7:68:f4:8f:3e:4d:b9:86:76:ad:84:b4:af:37: d0:ff:19:a1:80:bc:50:73:17:5a:f5:73:7d:50:a3:fd:d6:63: 1d:e5:cc:c6:e7:08:0e:f0:b5:bd:ba:3e:10:b9:95:a6:b1:77: 01:7e:3f:84:49:37:cd:3e:78:37:56:d9:8c:9e:d5:6c:43:bb: 15:3d:f0:2a:e8:68:75:2e:d3:cb:62:ee:26:41:11:f8:d8:59: e5:c5:54:77:52:8e:42:a2:b9:47:e6:21:a0:32:9e:f5:16:41: 35:48:c3:a5:36:05:d3:89:66:6a:31:46:74:92:d0:b0:22:f6: b1:f6:e4:42:b3:6b:13:6b:44:f8:2b:66:a6:0f:6e:b8:5c:03: 35:ee:5d:2d:d4:e0:fa:e0:3e:0b:4b:c8:41:8f:af:03:d7:04: fc:76:d5:4e:2e:10:eb:3a:a1:eb:4b:80:01:0c:c4:27:33:13: a3:09:78:04:bc:17:5f:77:28:93:90:78:ef:13:41:4f:69:da: 08:82:87:50 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZDRDYxMTAvBgNVBAUTKENDNTYxNTdDNzJEQ0M2OTczMzYzNjc0M0RCNTAwODc1 OTMyREE0MUYwHhcNMjYwNDA0MjIwNjAzWhcNMjYwNDExMjIwNjAzWjAYMRYwFAYD VQQDEw02OWQxOGI0Yi0xNzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmMrpChHq07K0DruggioQFqrnuIlCIwFGwaDJ54xLCXy+qhfq16mjZDySuoqk +CCd8OsBWFccmi/PMpoWJgWFfS0fWx7aVs0x9xKzGO8+cw3USTxG9c1CAdOsFKZQ 5/85WMjoYDiYvPrCMTEpqH8NTtK0XztBG5YYJsfKJrTOefiF8KUsQstjD/wEhlCf iLf0VW3ICFo7BVUz5hAnQ/FEoXsgQDj6yqvstcx9Rpi+Psxh9Cm7IcuXR1CsOPSI rW4Xr1/6blTtEn+oKZ67RiiicjPtgjA+gDy+tTrQE/LOOj+WBGFkAZOI0qqpO5Jb CyszOTC3nTDOwpKfBpw82dOGJQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE53Ic3c 29VO2TA7QaSQ5SY5y2jFMB8GA1UdIwQYMBaAFMxWFXxy3MaXM2NnQ9tQCHWTLaQf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkNENi82NUU2REJENjlD QTkxMUVCOEFGRjBGMzdDNEY5QUUwMi96RllWZkhMY3hwY3pZMmREMjFBSWRaTXRw QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGWVZmSExjeHBjelkyZEQyMUFJZFpNdHBCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkNENi82NUU2REJENjlDQTkxMUVCOEFGRjBGMzdDNEY5QUUwMi96RllWZkhMY3hw Y3pZMmREMjFBSWRaTXRwQjgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbHOTk8p/VHepSUbM1wEc23qDA4x+wHRrINUyIx9LNTilN9b5Q/mhYmaw9bFH XRQMFTsFZKcpov3ts7do9I8+TbmGdq2EtK830P8ZoYC8UHMXWvVzfVCj/dZjHeXM xucIDvC1vbo+ELmVprF3AX4/hEk3zT54N1bZjJ7VbEO7FT3wKuhodS7Ty2LuJkER +NhZ5cVUd1KOQqK5R+YhoDKe9RZBNUjDpTYF04lmajFGdJLQsCL2sfbkQrNrE2tE +Ctmpg9uuFwDNe5dLdTg+uA+C0vIQY+vA9cE/HbVTi4Q6zqh60uAAQzEJzMTowl4 BLwXX3cok5B47xNBT2naCIKHUA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:27:57 2026 by rpki-client