$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft File: zNz_ISpraZpXC0qdF18WI3GDLKU.mft (raw, json) Hash identifier: K6tpGbAf28Hnms/W4BgUda6gMkmC2CX8D+Ps7NReRPA= Subject key identifier: 4C:3D:BF:00:F7:3B:0E:3F:35:FC:B2:6F:5E:F9:9C:80:AD:04:DD:B2 Authority key identifier: CC:DC:FF:21:2A:6B:69:9A:57:0B:4A:9D:17:5F:16:23:71:83:2C:A5 Certificate issuer: /CN=A91BF23F/serialNumber=CCDCFF212A6B699A570B4A9D175F162371832CA5 Certificate serial: 014A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft Manifest number: 0141 Signing time: Sun 05 Apr 2026 04:45:22 +0000 Manifest this update: Sun 05 Apr 2026 04:45:22 +0000 Manifest next update: Sun 12 Apr 2026 04:45:22 +0000 Files and hashes: 1: zNz_ISpraZpXC0qdF18WI3GDLKU.crl (hash: MyyTAXcxDtA+2+7bD3AGBPj3a2d9Iy1AE2b6GjZ7WZ4=) 2: 00606C184A3011EFBC542C18C4F9AE02.roa (hash: 5VZ6JaxYHvz/jnyWG4tULUFalKqQD2n3eSx0z0cU+H8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.crl rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 04:45:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF23F, serialNumber=CCDCFF212A6B699A570B4A9D175F162371832CA5 Validity Not Before: Apr 5 04:45:22 2026 GMT Not After : Apr 12 04:45:22 2026 GMT Subject: CN=69d1e8e2-31b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:6f:15:3c:f0:7e:6e:17:ef:b4:03:a7:a2:ad: bf:72:20:21:fd:c6:9a:86:64:d0:96:5b:83:ca:7f: 7e:83:f3:bd:a7:21:04:cb:37:3e:94:ae:f7:da:4c: 2d:2a:3d:a0:a8:a3:23:de:12:d7:8f:ab:e2:51:36: a2:25:8e:ac:27:cc:f9:ac:89:b5:ac:cb:45:d3:91: 03:02:8c:ee:08:3e:1c:f5:52:ea:26:31:3c:a2:e7: f3:8f:24:64:24:3f:70:cd:f0:4a:c6:35:25:68:b2: 40:33:92:76:b0:31:2a:ff:42:eb:1d:f1:8f:14:ca: 29:37:7b:74:15:e0:14:d1:6b:92:6a:16:52:f2:c1: e7:9e:36:29:29:c4:9b:68:e3:89:a7:5d:9d:84:33: 81:69:0a:b9:51:40:4e:8b:1e:25:5b:5f:1d:d0:1d: 42:36:be:d8:eb:e2:9e:af:f6:e4:4c:30:f8:d9:2f: 55:b5:9b:59:9b:57:ac:d0:76:d2:e6:e2:87:1b:22: 5b:7a:ab:5d:94:63:e0:71:ad:73:a8:28:7a:10:db: f3:61:96:d3:7c:9c:38:cd:40:7b:9c:57:2f:83:26: 26:7c:7c:9d:10:f6:7b:99:1a:b4:d0:19:6b:51:41: da:5d:f1:91:c0:f6:d7:b7:56:94:f8:5a:b0:4a:e2: b1:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:3D:BF:00:F7:3B:0E:3F:35:FC:B2:6F:5E:F9:9C:80:AD:04:DD:B2 X509v3 Authority Key Identifier: keyid:CC:DC:FF:21:2A:6B:69:9A:57:0B:4A:9D:17:5F:16:23:71:83:2C:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:d0:4c:c2:7f:e1:13:b9:73:0e:93:d1:eb:95:1d:c6:fa:45: 13:fe:27:12:a4:5b:63:4a:11:a2:89:5f:23:b7:ee:47:63:2f: 87:cd:6e:1a:5f:91:a2:01:a5:6a:ae:13:7a:38:95:e7:82:ba: a1:09:e1:29:81:f7:a3:de:de:15:79:ab:49:52:96:33:79:5f: d5:ba:24:5b:7d:47:2b:37:d5:e6:c9:5b:63:7a:1f:30:57:63: 54:d9:f5:53:0e:74:2d:e3:50:be:a0:2c:c5:37:b1:f4:ba:d0: 8c:ed:21:3f:89:05:c2:67:6e:c7:7a:a2:86:93:34:43:77:c5: 26:48:2a:50:5e:1c:ec:c8:21:7e:50:d7:98:fa:ca:8f:1b:0e: 07:09:09:c3:8c:86:47:99:a0:39:40:c0:06:ee:ee:4d:96:f7: 02:34:bc:0e:1c:d7:1f:94:59:40:3e:8f:0a:f8:75:b8:f9:f0: 25:0c:8c:9b:73:4d:41:f7:17:24:9c:2b:0d:9d:81:5a:43:9c: 32:0c:2c:3f:19:93:27:68:89:67:7f:38:d4:f1:96:c1:fe:b5: 1c:67:88:80:bb:fe:ae:4e:ec:d1:0b:93:e1:f6:86:09:f6:e3: 09:38:87:0f:b6:a8:b4:b0:39:2a:51:ac:7a:db:71:23:a8:11: 3b:6b:ac:6e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyM0YxMTAvBgNVBAUTKENDRENGRjIxMkE2QjY5OUE1NzBCNEE5RDE3NUYxNjIz NzE4MzJDQTUwHhcNMjYwNDA1MDQ0NTIyWhcNMjYwNDEyMDQ0NTIyWjAYMRYwFAYD VQQDEw02OWQxZThlMi0zMWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoW8VPPB+bhfvtAOnoq2/ciAh/caahmTQlluDyn9+g/O9pyEEyzc+lK732kwt Kj2gqKMj3hLXj6viUTaiJY6sJ8z5rIm1rMtF05EDAozuCD4c9VLqJjE8oufzjyRk JD9wzfBKxjUlaLJAM5J2sDEq/0LrHfGPFMopN3t0FeAU0WuSahZS8sHnnjYpKcSb aOOJp12dhDOBaQq5UUBOix4lW18d0B1CNr7Y6+Ker/bkTDD42S9VtZtZm1es0HbS 5uKHGyJbeqtdlGPgca1zqCh6ENvzYZbTfJw4zUB7nFcvgyYmfHydEPZ7mRq00Blr UUHaXfGRwPbXt1aU+FqwSuKxuwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEw9vwD3 Ow4/Nfyyb175nICtBN2yMB8GA1UdIwQYMBaAFMzc/yEqa2maVwtKnRdfFiNxgyyl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjIzRi8zMzhCMkY0ODRB MkYxMUVGQUU5NkM5MTVDNEY5QUUwMi96TnpfSVNwcmFacFhDMHFkRjE4V0kzR0RM S1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pOel9JU3ByYVpwWEMwcWRGMThXSTNHRExLVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjIzRi8zMzhCMkY0ODRBMkYxMUVGQUU5NkM5MTVDNEY5QUUwMi96TnpfSVNwcmFa cFhDMHFkRjE4V0kzR0RMS1UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATNBMwn/hE7lzDpPR65UdxvpFE/4nEqRbY0oRoolfI7fuR2Mvh81uGl+RogGl aq4TejiV54K6oQnhKYH3o97eFXmrSVKWM3lf1bokW31HKzfV5slbY3ofMFdjVNn1 Uw50LeNQvqAsxTex9LrQjO0hP4kFwmdux3qihpM0Q3fFJkgqUF4c7MghflDXmPrK jxsOBwkJw4yGR5mgOUDABu7uTZb3AjS8DhzXH5RZQD6PCvh1uPnwJQyMm3NNQfcX JJwrDZ2BWkOcMgwsPxmTJ2iJZ3841PGWwf61HGeIgLv+rk7s0QuT4faGCfbjCTiH D7aotLA5KlGsettxI6gRO2usbg== -----END CERTIFICATE-----Generated at Mon Apr 6 13:46:44 2026 by rpki-client