$ rpki-client -vvf rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft File: z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft (raw, json) Hash identifier: yMlA05KzOu8AYmyesArfW1wuOPRSELWjhHmxk+NKMVs= Subject key identifier: 1D:1B:5C:D4:B6:FE:4F:BF:A3:D2:29:1A:42:75:EF:89:4F:1E:65:DC Authority key identifier: CF:71:2C:B3:89:EE:84:DA:19:CA:98:1D:E6:30:F5:09:FF:44:CD:45 Certificate issuer: /CN=A91D462A/serialNumber=CF712CB389EE84DA19CA981DE630F509FF44CD45 Certificate serial: 1AEB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft Manifest number: 1AC9 Signing time: Mon 20 Apr 2026 16:16:02 +0000 Manifest this update: Mon 20 Apr 2026 16:16:02 +0000 Manifest next update: Mon 27 Apr 2026 16:16:02 +0000 Files and hashes: 1: z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl (hash: 04Ru6LKyiL0ccybM1C0EtgNvmDbFEkGGwWB1+QUHbA0=) 2: F39D90EE561B11EFB51A9149C4F9AE02.roa (hash: Nh1Q+Dya7glLRU5/4sMU0gPbts/P00D+f3Yj7z1hNXY=) 3: 84559BB01D4611EDBB06705BC4F9AE02.roa (hash: ek0EmyZead5ZJJnD9KC5i+nnHS75fiqaYseVOZ4RMtQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 16:16:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6891 (0x1aeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D462A, serialNumber=CF712CB389EE84DA19CA981DE630F509FF44CD45 Validity Not Before: Apr 20 16:16:02 2026 GMT Not After : Apr 27 16:16:02 2026 GMT Subject: CN=69e65142-7ede Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:dd:48:7d:a1:7b:74:95:28:1b:54:d0:91:be: 98:7d:c6:88:18:0a:9d:b0:52:7c:88:78:37:e5:0b: 20:38:83:6b:85:ef:aa:13:33:a8:72:08:fc:ac:3b: 1f:93:b6:ff:d1:a2:55:16:1f:1d:f8:56:b4:dc:38: 29:ac:0c:8c:82:39:14:2c:01:de:a9:5f:e3:fc:a6: a6:12:88:0c:0a:33:67:7f:d0:33:87:37:89:1e:aa: f3:a6:3a:93:dd:c7:f0:e6:51:40:c8:cb:30:c6:ad: 6d:03:23:84:ce:08:d0:bd:c5:3f:ca:ea:1b:c6:c2: 45:fd:eb:c8:bb:b6:67:87:41:e2:35:f5:68:e3:a5: 2d:65:83:d7:ec:0f:d4:2f:1a:46:cf:50:f6:ea:8a: 44:d2:c8:50:b3:89:03:f6:e8:2e:5f:3e:b5:7c:4e: f5:37:09:e0:c5:07:27:2a:1b:37:50:73:d9:9d:fc: 06:df:db:46:82:0a:51:8c:b2:11:de:66:4f:29:de: 70:28:b3:cb:c9:1b:a4:79:13:1e:ea:d1:bc:46:ee: 0b:5a:5a:d5:04:e8:49:f9:1c:c4:67:bf:f2:52:55: 4e:f6:57:01:51:7d:6b:b3:5a:22:d3:4a:ff:fe:f2: 71:7b:b9:52:13:21:38:81:8a:f0:f3:bf:64:d9:14: c8:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:1B:5C:D4:B6:FE:4F:BF:A3:D2:29:1A:42:75:EF:89:4F:1E:65:DC X509v3 Authority Key Identifier: keyid:CF:71:2C:B3:89:EE:84:DA:19:CA:98:1D:E6:30:F5:09:FF:44:CD:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:59:2d:a4:ad:ee:9f:72:11:95:11:fc:27:f8:f3:0c:13:95: e2:38:65:84:4f:a9:d7:e9:1f:14:d9:18:47:16:ee:de:ce:30: ae:65:e4:fb:57:f5:de:a3:06:06:bf:a2:4f:47:04:de:f4:b2: df:ec:38:99:ca:46:10:6a:2b:32:ad:63:0a:02:59:b5:27:b9: 81:d8:9f:66:80:aa:80:25:e5:7b:89:a0:15:b6:e6:ad:c5:a4: 2c:2c:a1:db:56:bd:95:36:32:af:e9:6b:1c:ad:4e:0d:34:8e: f9:71:2f:3c:49:59:a0:30:86:42:51:0d:d9:35:3d:a1:e4:5e: 06:f8:db:a9:46:90:ef:33:6d:2b:c1:b2:f8:c5:2c:f4:4f:e0: 39:42:2b:9e:e9:13:23:a6:b7:cf:7a:76:f7:e5:9a:34:d6:8a: cd:10:61:34:f7:d1:dc:a3:eb:ea:a5:39:04:df:5d:73:c1:6b: 36:00:51:bf:f1:fe:c1:68:2b:21:98:63:e8:6d:40:d9:97:c8: 00:f0:23:5a:70:72:43:2f:bc:a3:20:09:6b:1f:32:d1:04:e9: 06:90:fc:f6:63:f2:9c:47:86:1b:8e:66:60:50:78:96:b3:98: 91:63:d8:14:75:e8:b6:a9:24:c4:62:a6:87:9c:a7:90:87:dc: bc:d3:2d:c7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICGuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MkExMTAvBgNVBAUTKENGNzEyQ0IzODlFRTg0REExOUNBOTgxREU2MzBGNTA5 RkY0NENENDUwHhcNMjYwNDIwMTYxNjAyWhcNMjYwNDI3MTYxNjAyWjAYMRYwFAYD VQQDEw02OWU2NTE0Mi03ZWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA791IfaF7dJUoG1TQkb6YfcaIGAqdsFJ8iHg35QsgOINrhe+qEzOocgj8rDsf k7b/0aJVFh8d+Fa03DgprAyMgjkULAHeqV/j/KamEogMCjNnf9AzhzeJHqrzpjqT 3cfw5lFAyMswxq1tAyOEzgjQvcU/yuobxsJF/evIu7Znh0HiNfVo46UtZYPX7A/U LxpGz1D26opE0shQs4kD9uguXz61fE71NwngxQcnKhs3UHPZnfwG39tGggpRjLIR 3mZPKd5wKLPLyRukeRMe6tG8Ru4LWlrVBOhJ+RzEZ7/yUlVO9lcBUX1rs1oi00r/ /vJxe7lSEyE4gYrw879k2RTIPQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFB0bXNS2 /k+/o9IpGkJ174lPHmXcMB8GA1UdIwQYMBaAFM9xLLOJ7oTaGcqYHeYw9Qn/RM1F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYyQS80Q0JEM0Y4NDUw RDUxMUU3OTMxM0FFMTJDNEY5QUUwMi96M0VzczRudWhOb1p5cGdkNWpEMUNmOUV6 VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozRXNzNG51aE5vWnlwZ2Q1akQxQ2Y5RXpVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYyQS80Q0JEM0Y4NDUwRDUxMUU3OTMxM0FFMTJDNEY5QUUwMi96M0VzczRudWhO b1p5cGdkNWpEMUNmOUV6VVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAq1ktpK3un3IRlRH8J/jzDBOV4jhlhE+p1+kfFNkYRxbu3s4wrmXk+1f13qMG Br+iT0cE3vSy3+w4mcpGEGorMq1jCgJZtSe5gdifZoCqgCXle4mgFbbmrcWkLCyh 21a9lTYyr+lrHK1ODTSO+XEvPElZoDCGQlEN2TU9oeReBvjbqUaQ7zNtK8Gy+MUs 9E/gOUIrnukTI6a3z3p29+WaNNaKzRBhNPfR3KPr6qU5BN9dc8FrNgBRv/H+wWgr IZhj6G1A2ZfIAPAjWnByQy+8oyAJax8y0QTpBpD89mPynEeGG45mYFB4lrOYkWPY FHXotqkkxGKmh5ynkIfcvNMtxw== -----END CERTIFICATE-----Generated at Tue Apr 21 19:09:08 2026 by rpki-client