$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft File: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft (raw, json) Hash identifier: niQJaNF16LHUrViHGUx7QCdBdlOMpYz6JpEJoKflJkg= Subject key identifier: 5D:FE:F4:57:A3:7B:35:59:D6:5E:7C:12:83:F7:E4:5B:5C:8B:C5:4B Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Certificate serial: 1BA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft Manifest number: A1F4 Signing time: Sun 26 Apr 2026 14:30:30 +0000 Manifest this update: Sun 26 Apr 2026 14:30:30 +0000 Manifest next update: Sun 03 May 2026 14:30:30 +0000 Files and hashes: 1: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl (hash: PhVxR+c8vXetUp0pi+z1xrLazaLbTcRMz+dS6hcJPT4=) 2: 20C6F2EC699D11EAA33EAE83C4F9AE02.roa (hash: noBHpHcIG4F8PCP16+JaDrGG+bfZLo/xyhvvRrrAwbc=) 3: 959AC422557911EBBD21EB2FC4F9AE02.roa (hash: YKfVc/1kWhtiSN/JgbbvpApeCbmTeJDdHpPmRnKp0f8=) 4: 1BF3A43C15BE11EF93ABFD7DC4F9AE02.roa (hash: lhNS+ojnip3W9c6D2+vK5Jj0fFUXb3jMTgYthGAVWGE=) 5: 0B24875C7A4411EB804B7430C4F9AE02.roa (hash: +Z0l5rtFf9gejJdRbzGI1Tev7wUao9HHsXdVWsy9gIw=) 6: ACC8833824DE11EDAEC0E529C4F9AE02.roa (hash: H0mHu5foM/0Hr0y7LJoGoqxfCYM8HtP6k45eEW8ACTA=) 7: 9907DC46D4BC11EF9BDDAF2EC4F9AE02.roa (hash: DNaQzWtObT5DaBf5rMkdrtx4HMZbyrfOB84Oiv/VTA0=) 8: C89FD6DA557611EBA04C290BC4F9AE02.roa (hash: IDu51NoCXLX0fGSXN0JfKGuNOGTw6RNrNximD3D412U=) 9: 3D68F8C29A4A11EA94706012C4F9AE02.roa (hash: gxt7j0/qgDHDY4eOy9nTFq4yiN1wN4Azb/F6N/jLPQo=) 10: 4FF339D8F01D11EB8C4B505BC4F9AE02.roa (hash: kzmw6JQnHsEPxWEaFvMAvmSNfBwkvf6++ngi0TT5BK0=) 11: 191363A69DD911EC99D91668C4F9AE02.roa (hash: 9ywt3YgdGMPifjHDU8GOY5yDR3rcKL5WS/6sXlZSwSk=) 12: FC6A19D892D511EC8FBFF32AC4F9AE02.roa (hash: OXGvG47egb4PF/onwPC9e0QERfLfAY+ZqPCLmsNj8TE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 May 2026 14:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7077 (0x1ba5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D, serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Validity Not Before: Apr 26 14:30:30 2026 GMT Not After : May 3 14:30:30 2026 GMT Subject: CN=69ee2186-90be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:07:bd:ad:d8:d8:27:09:59:03:05:9e:1e:70: 24:21:a4:03:08:6a:d0:94:35:97:5a:01:2b:cb:c7: 51:a2:8a:44:c5:c1:80:81:df:57:68:b7:a5:71:d1: 28:88:0b:b8:45:a6:23:c6:89:04:52:ee:73:34:9b: 1b:9a:2b:95:0f:9b:40:28:ea:d3:33:6c:4a:bd:5f: 04:93:1f:e9:06:91:a4:64:d2:49:b2:35:41:89:be: 03:a5:1b:1a:3f:cc:dc:d5:26:41:20:90:95:86:67: 44:cf:14:51:48:6f:a3:7f:4e:d1:42:00:47:7e:0a: fc:7b:ec:f7:95:99:d3:53:cb:02:a2:ba:e2:ff:e7: c2:9c:96:b0:1a:a0:ab:80:4e:43:df:1e:3f:75:b8: 8b:27:50:4a:31:99:97:db:47:f3:13:85:9a:3f:9a: 04:1f:fb:d1:da:c0:3b:70:9c:03:fe:17:aa:bc:15: 46:c0:23:73:54:6c:57:8d:4b:90:9d:41:83:65:e7: 3a:04:ef:13:3d:cb:f3:18:78:f5:4e:05:4f:76:34: b0:4a:5e:7f:36:0f:98:4b:81:03:16:ef:b4:e6:a8: 85:1e:0e:53:82:1c:43:e9:03:6e:2a:8d:7f:23:a0: d4:12:69:c9:ea:28:3c:53:77:b3:19:7a:ad:5a:9f: e5:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:FE:F4:57:A3:7B:35:59:D6:5E:7C:12:83:F7:E4:5B:5C:8B:C5:4B X509v3 Authority Key Identifier: keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:30:74:34:f9:b2:87:11:3c:cb:19:b2:37:62:1b:d3:c8:e6: 4f:18:b2:26:f0:c0:c4:53:5a:71:5e:0d:a1:30:6b:61:bd:16: 49:18:aa:ad:b2:db:62:ff:94:95:58:4f:ee:a3:9d:48:36:f0: be:ed:7b:d3:ee:1a:c4:52:36:ae:1a:a8:6a:4b:53:70:18:f7: 45:c5:74:4e:cf:9c:e5:26:1b:77:22:fe:13:94:ff:d7:b3:87: af:cf:e4:b2:9d:dc:8a:01:5c:51:7b:b0:b9:ad:da:b8:2e:db: d0:d4:cc:78:5a:09:61:15:71:55:77:c6:9a:56:42:32:1b:a9: 27:4a:5e:6d:67:12:8f:7f:d7:f8:d0:da:b4:a2:d5:1c:3b:50: 5a:ad:33:c3:0a:42:a2:a1:b5:cf:ca:9f:f3:4e:1f:8c:6a:ab: bf:6d:3c:ff:a5:20:8f:07:51:de:43:d3:fb:d1:49:17:57:ab: 42:58:d1:4a:8f:73:ef:03:15:63:30:dc:6d:a3:1f:a3:2e:c0: b8:19:42:5b:aa:78:ff:ac:e3:bb:46:1b:91:7a:93:3b:af:92: 19:8b:5a:2a:5e:ba:34:29:43:f9:d3:8d:cd:e5:50:d1:3c:34: 0f:d0:d5:60:92:8f:01:15:4a:f6:23:6f:0a:dc:9c:f9:5b:ac: 46:72:b2:6b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICG6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDY0QTY2NTgxNkFFRkVENzNCMzA3NTAwN0RBNTMzN0FD N0RFQzRCODEwHhcNMjYwNDI2MTQzMDMwWhcNMjYwNTAzMTQzMDMwWjAYMRYwFAYD VQQDEw02OWVlMjE4Ni05MGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswe9rdjYJwlZAwWeHnAkIaQDCGrQlDWXWgEry8dRoopExcGAgd9XaLelcdEo iAu4RaYjxokEUu5zNJsbmiuVD5tAKOrTM2xKvV8Ekx/pBpGkZNJJsjVBib4DpRsa P8zc1SZBIJCVhmdEzxRRSG+jf07RQgBHfgr8e+z3lZnTU8sCorri/+fCnJawGqCr gE5D3x4/dbiLJ1BKMZmX20fzE4WaP5oEH/vR2sA7cJwD/heqvBVGwCNzVGxXjUuQ nUGDZec6BO8TPcvzGHj1TgVPdjSwSl5/Ng+YS4EDFu+05qiFHg5TghxD6QNuKo1/ I6DUEmnJ6ig8U3ezGXqtWp/lMQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFF3+9Fej ezVZ1l58EoP35Ftci8VLMB8GA1UdIwQYMBaAFGSmZYFq7+1zswdQB9pTN6x97EuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdYT3pCMUFIMmxNM3JIM3NT NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLWmxnV3J2N1hPekIxQUgybE0zckgzc1M0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkQ1RC85RENCNjhFMDFEODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdY T3pCMUFIMmxNM3JIM3NTNEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUjB0NPmyhxE8yxmyN2Ib08jmTxiyJvDAxFNacV4NoTBrYb0WSRiqrbLbYv+U lVhP7qOdSDbwvu170+4axFI2rhqoaktTcBj3RcV0Ts+c5SYbdyL+E5T/17OHr8/k sp3cigFcUXuwua3auC7b0NTMeFoJYRVxVXfGmlZCMhupJ0pebWcSj3/X+NDatKLV HDtQWq0zwwpCoqG1z8qf804fjGqrv208/6UgjwdR3kPT+9FJF1erQljRSo9z7wMV YzDcbaMfoy7AuBlCW6p4/6zju0YbkXqTO6+SGYtaKl66NClD+dONzeVQ0Tw0D9DV YJKPARVK9iNvCtyc+VusRnKyaw== -----END CERTIFICATE-----Generated at Mon Apr 27 04:43:24 2026 by rpki-client