$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft File: Zd_y7j-bsuskVR4dGPHWPewKbhc.mft (raw, json) Hash identifier: oZUhXZLNkuc4Z5jbH5kECXrvC6LoL+/27kmHqdxuBM4= Subject key identifier: 48:66:2B:03:D1:F6:53:C1:D3:82:C1:90:11:C7:92:FC:58:25:DF:65 Authority key identifier: 65:DF:F2:EE:3F:9B:B2:EB:24:55:1E:1D:18:F1:D6:3D:EC:0A:6E:17 Certificate issuer: /CN=A91DDCB6/serialNumber=65DFF2EE3F9BB2EB24551E1D18F1D63DEC0A6E17 Certificate serial: 0909 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft Manifest number: 08F7 Signing time: Sat 04 Apr 2026 20:09:12 +0000 Manifest this update: Sat 04 Apr 2026 20:09:11 +0000 Manifest next update: Sat 11 Apr 2026 20:09:11 +0000 Files and hashes: 1: Zd_y7j-bsuskVR4dGPHWPewKbhc.crl (hash: QsYk6Xk9J/yC3/rzHewhT6Yu74sNmYhhZYmgwGCX6Ys=) 2: 36023BC6D29D11EAA11F7F51C4F9AE02.roa (hash: 2P5OTTpkzgPQNPnWpqe7PnEj5CbcnDOLb7qDMaxfHTE=) 3: A7034AFA7F8411EC9036F64CC4F9AE02.roa (hash: 8aOJR7dq5H1FSBWehu29UN5DlJmLrfgs2ryVPbFuTNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.crl rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 20:09:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2313 (0x909) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDCB6, serialNumber=65DFF2EE3F9BB2EB24551E1D18F1D63DEC0A6E17 Validity Not Before: Apr 4 20:09:11 2026 GMT Not After : Apr 11 20:09:11 2026 GMT Subject: CN=69d16fe8-190a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9d:36:44:5d:76:e6:20:4a:83:ae:f4:6b:66: 32:ce:4b:c5:83:8b:f4:1a:68:6c:4c:88:85:31:d2: ba:55:69:bb:7a:bd:b1:55:bb:9b:bb:be:04:37:53: 28:45:34:4c:16:6c:f7:71:ca:f2:fe:40:d9:8b:4c: 1e:c7:33:97:19:de:70:a8:6e:b9:a5:2d:62:a5:08: 64:7a:47:73:9b:ec:7b:c6:37:b6:1c:4f:d3:0c:9d: 1a:6d:f9:10:1e:54:a4:34:c8:2b:2b:bb:c7:96:00: 7d:f9:ef:bd:5c:45:e1:7f:0c:d2:f0:bf:d7:0c:82: fd:e9:24:ac:ae:44:37:f9:27:9f:25:29:6b:b3:a9: 04:01:4c:11:05:b8:00:42:a3:73:8d:ae:83:10:5c: bc:73:43:01:20:6d:06:94:e1:b7:2b:dc:e7:a8:01: a8:97:5c:03:4a:f1:56:fa:45:2e:81:6e:66:c7:7b: c2:4d:e2:62:0a:75:2c:28:91:2c:f7:c1:e2:0c:65: b9:cd:5d:14:c0:02:47:e3:2e:9a:ed:b6:b9:37:c7: 51:41:ea:a8:fb:c2:a2:27:b6:6b:95:2c:71:25:fe: 5c:25:27:73:8b:d8:d5:0f:15:94:78:c4:8d:d1:eb: 2b:2f:21:83:b6:36:e4:0c:75:03:30:fc:c1:5d:e6: 0d:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:66:2B:03:D1:F6:53:C1:D3:82:C1:90:11:C7:92:FC:58:25:DF:65 X509v3 Authority Key Identifier: keyid:65:DF:F2:EE:3F:9B:B2:EB:24:55:1E:1D:18:F1:D6:3D:EC:0A:6E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:3c:25:af:b6:72:62:b5:5f:00:9c:10:e6:b5:90:c5:51:d2: ef:06:11:3f:e1:8c:25:49:95:f8:2a:b3:59:da:4e:e3:94:90: aa:29:53:02:ae:9e:4b:82:ef:c9:23:06:14:91:49:b5:4e:6e: b4:c6:76:d0:b7:e6:25:9b:c9:ee:1f:38:f0:e7:47:23:5f:91: 2d:d8:ae:0d:fd:8b:e0:bc:ca:dc:fb:d9:bc:02:fc:e0:5a:f7: bb:00:7b:99:34:a3:6c:37:9e:72:d7:c1:c1:34:5f:25:bb:2e: 66:69:f7:05:45:15:51:83:6e:d0:d1:7c:d6:f6:4f:da:97:0e: 21:c3:a0:d3:be:1e:e3:13:45:1e:0e:ae:ac:12:66:07:24:e7: 9b:86:6c:87:16:61:fa:39:27:12:37:ca:39:de:1f:82:7d:a9: 2e:60:0b:d3:f1:62:33:c1:1a:13:63:7d:ba:df:85:80:76:3e: 53:50:d2:4a:44:17:ca:27:9b:c7:e8:32:aa:c2:ce:dd:65:5c: 46:4b:aa:cd:83:29:96:c5:e1:26:f6:bb:fc:3f:4c:bc:e7:5d: 9b:5d:d0:d9:98:06:d9:ae:84:f9:b0:71:59:eb:19:0d:dd:8a: b7:35:73:fa:c3:ed:2a:fb:5f:ed:dc:39:38:7e:02:a6:64:d7: 96:c8:d8:4a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERDQjYxMTAvBgNVBAUTKDY1REZGMkVFM0Y5QkIyRUIyNDU1MUUxRDE4RjFENjNE RUMwQTZFMTcwHhcNMjYwNDA0MjAwOTExWhcNMjYwNDExMjAwOTExWjAYMRYwFAYD VQQDEw02OWQxNmZlOC0xOTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJ02RF125iBKg670a2YyzkvFg4v0GmhsTIiFMdK6VWm7er2xVbubu74EN1Mo RTRMFmz3ccry/kDZi0wexzOXGd5wqG65pS1ipQhkekdzm+x7xje2HE/TDJ0abfkQ HlSkNMgrK7vHlgB9+e+9XEXhfwzS8L/XDIL96SSsrkQ3+SefJSlrs6kEAUwRBbgA QqNzja6DEFy8c0MBIG0GlOG3K9znqAGol1wDSvFW+kUugW5mx3vCTeJiCnUsKJEs 98HiDGW5zV0UwAJH4y6a7ba5N8dRQeqo+8KiJ7ZrlSxxJf5cJSdzi9jVDxWUeMSN 0esrLyGDtjbkDHUDMPzBXeYNNQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEhmKwPR 9lPB04LBkBHHkvxYJd9lMB8GA1UdIwQYMBaAFGXf8u4/m7LrJFUeHRjx1j3sCm4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERENCNi9FODgzREZENkND M0QxMUVBOEJDNDVDMjlDNEY5QUUwMi9aZF95N2otYnN1c2tWUjRkR1BIV1Bld0ti aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1pkX3k3ai1ic3Vza1ZSNGRHUEhXUGV3S2JoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RENCNi9FODgzREZENkNDM0QxMUVBOEJDNDVDMjlDNEY5QUUwMi9aZF95N2otYnN1 c2tWUjRkR1BIV1Bld0tiaGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlDwlr7ZyYrVfAJwQ5rWQxVHS7wYRP+GMJUmV+CqzWdpO45SQqilTAq6eS4Lv ySMGFJFJtU5utMZ20LfmJZvJ7h848OdHI1+RLdiuDf2L4LzK3PvZvAL84Fr3uwB7 mTSjbDeectfBwTRfJbsuZmn3BUUVUYNu0NF81vZP2pcOIcOg074e4xNFHg6urBJm ByTnm4ZshxZh+jknEjfKOd4fgn2pLmAL0/FiM8EaE2N9ut+FgHY+U1DSSkQXyieb x+gyqsLO3WVcRkuqzYMplsXhJva7/D9MvOddm13Q2ZgG2a6E+bBxWesZDd2KtzVz +sPtKvtf7dw5OH4CpmTXlsjYSg== -----END CERTIFICATE-----Generated at Mon Apr 6 13:55:26 2026 by rpki-client