$ rpki-client -vvf rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft File: D-jKZIcKPWORHI0tZRuinKztDso.mft (raw, json) Hash identifier: GEgixGia4sa3y4y5kVBC9cd5yE6FZfIuKIsixcc1DqA= Subject key identifier: EA:45:A4:E9:18:2F:9A:38:2D:91:40:D4:CA:34:2D:8F:9C:A4:1E:62 Authority key identifier: 0F:E8:CA:64:87:0A:3D:63:91:1C:8D:2D:65:1B:A2:9C:AC:ED:0E:CA Certificate issuer: /CN=A91B428B/serialNumber=0FE8CA64870A3D63911C8D2D651BA29CACED0ECA Certificate serial: 0A61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft Manifest number: 0A58 Signing time: Sat 04 Apr 2026 19:28:50 +0000 Manifest this update: Sat 04 Apr 2026 19:28:50 +0000 Manifest next update: Sat 11 Apr 2026 19:28:50 +0000 Files and hashes: 1: D-jKZIcKPWORHI0tZRuinKztDso.crl (hash: iEVwhF/zWUCg0dKC3XvYnL80ivBbOJv1pR+cTnQk7rQ=) 2: 319DF660847811EA8EE07E81C4F9AE02.roa (hash: ERhX+neEQpWaGHgDx788YR3fYNG7D/j2H84jmEv5law=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.crl rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2657 (0xa61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B428B, serialNumber=0FE8CA64870A3D63911C8D2D651BA29CACED0ECA Validity Not Before: Apr 4 19:28:50 2026 GMT Not After : Apr 11 19:28:50 2026 GMT Subject: CN=69d16672-7ec1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1b:94:20:5f:9a:71:22:40:c3:e8:07:f6:b0: ad:75:ab:67:9f:0f:8e:19:77:47:82:29:7c:8c:8d: 9e:bd:a4:6d:ff:76:24:f5:8e:cc:de:5e:af:ac:62: c8:49:07:9b:d0:30:39:30:52:d0:59:d0:f1:7a:53: 18:e5:ed:b6:57:b2:7f:a8:35:f6:70:42:8d:4a:27: 49:2c:c6:e6:05:60:a0:c8:6f:a0:e5:31:40:22:95: cd:cd:c2:c2:9f:d9:b4:b3:09:cd:05:6a:f0:a4:f0: e1:8a:c8:76:b9:70:54:48:9c:b1:24:69:39:ef:8a: 45:16:8d:25:f6:8e:76:a2:7d:31:77:54:49:c1:19: c8:5c:09:92:f6:6f:4a:12:c9:fe:70:6a:e6:83:dd: d6:20:c1:51:6b:4f:1b:fd:d0:0e:35:75:5c:97:55: 12:42:4f:36:85:12:03:b1:03:e9:66:f9:fa:39:59: 5c:4c:99:61:88:db:88:84:e5:9a:71:dc:fa:df:1d: 95:2d:43:12:f8:c6:0b:5c:ba:05:30:85:b0:67:95: 8b:71:97:a5:64:84:68:bc:27:a6:17:5c:46:79:49: 15:4b:9b:7a:75:0f:44:b0:8b:2e:f4:d3:50:ae:ed: 5a:b9:96:a9:64:2a:30:9f:15:ac:49:21:d4:72:94: e2:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:45:A4:E9:18:2F:9A:38:2D:91:40:D4:CA:34:2D:8F:9C:A4:1E:62 X509v3 Authority Key Identifier: keyid:0F:E8:CA:64:87:0A:3D:63:91:1C:8D:2D:65:1B:A2:9C:AC:ED:0E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:e1:d1:fb:9f:2f:0c:90:f5:e3:79:4f:bd:7e:f2:69:06:bf: 97:3a:fe:aa:f6:56:b8:23:45:47:84:b5:74:0a:77:72:ec:e7: 63:56:68:7c:83:e0:c9:d9:f8:31:72:c0:83:37:18:64:35:7f: b9:b3:74:b0:68:4d:83:eb:d2:de:e1:7a:b9:59:6a:09:e4:a2: 18:57:d1:ac:89:d0:2d:74:a5:9f:00:27:7a:eb:12:50:dc:71: 63:d5:8b:f5:5e:53:b7:ff:8a:87:24:15:da:1c:42:46:c5:65: 0f:2a:4e:80:fa:cd:fe:9b:37:27:e6:bf:46:3f:66:37:64:49: 98:03:f6:1e:28:38:ca:93:d7:63:77:08:a2:76:7f:ac:84:d0: 3a:6b:33:42:b9:6e:2a:d2:b3:db:72:0a:47:b3:85:50:e1:7b: d6:95:aa:3b:04:25:e2:7f:2b:5b:f4:33:23:97:6d:76:c2:74: 06:1b:c9:d9:cd:ec:6a:3a:e4:df:d0:94:a3:32:6c:fc:54:30: 6d:0f:67:07:ab:98:df:11:ec:63:b7:8b:dd:a8:1c:59:54:42: 35:3c:08:ff:85:9b:70:5b:23:36:eb:6a:1e:4d:9e:6c:bc:68: e1:8b:1d:5f:5d:de:99:50:0d:9d:8e:e2:06:2c:8a:b7:9d:d7: a4:1d:08:94 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyOEIxMTAvBgNVBAUTKDBGRThDQTY0ODcwQTNENjM5MTFDOEQyRDY1MUJBMjlD QUNFRDBFQ0EwHhcNMjYwNDA0MTkyODUwWhcNMjYwNDExMTkyODUwWjAYMRYwFAYD VQQDEw02OWQxNjY3Mi03ZWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRuUIF+acSJAw+gH9rCtdatnnw+OGXdHgil8jI2evaRt/3Yk9Y7M3l6vrGLI SQeb0DA5MFLQWdDxelMY5e22V7J/qDX2cEKNSidJLMbmBWCgyG+g5TFAIpXNzcLC n9m0swnNBWrwpPDhish2uXBUSJyxJGk574pFFo0l9o52on0xd1RJwRnIXAmS9m9K Esn+cGrmg93WIMFRa08b/dAONXVcl1USQk82hRIDsQPpZvn6OVlcTJlhiNuIhOWa cdz63x2VLUMS+MYLXLoFMIWwZ5WLcZelZIRovCemF1xGeUkVS5t6dQ9EsIsu9NNQ ru1auZapZCownxWsSSHUcpTiPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOpFpOkY L5o4LZFA1Mo0LY+cpB5iMB8GA1UdIwQYMBaAFA/oymSHCj1jkRyNLWUbopys7Q7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Qi8zQTBCNkMwQzg0 NzcxMUVBQjNCNDM2ODBDNEY5QUUwMi9ELWpLWkljS1BXT1JISTB0WlJ1aW5LenRE c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QtaktaSWNLUFdPUkhJMHRaUnVpbkt6dERzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDI4Qi8zQTBCNkMwQzg0NzcxMUVBQjNCNDM2ODBDNEY5QUUwMi9ELWpLWkljS1BX T1JISTB0WlJ1aW5LenREc28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEOHR+58vDJD143lPvX7yaQa/lzr+qvZWuCNFR4S1dAp3cuznY1ZofIPgydn4 MXLAgzcYZDV/ubN0sGhNg+vS3uF6uVlqCeSiGFfRrInQLXSlnwAneusSUNxxY9WL 9V5Tt/+KhyQV2hxCRsVlDypOgPrN/ps3J+a/Rj9mN2RJmAP2Hig4ypPXY3cIonZ/ rITQOmszQrluKtKz23IKR7OFUOF71pWqOwQl4n8rW/QzI5dtdsJ0BhvJ2c3sajrk 39CUozJs/FQwbQ9nB6uY3xHsY7eL3agcWVRCNTwI/4WbcFsjNutqHk2ebLxo4Ysd X13emVANnY7iBiyKt53XpB0IlA== -----END CERTIFICATE-----Generated at Mon Apr 6 08:52:25 2026 by rpki-client