$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: gzipR8iqWMTR5PdO6Ds/dqj1aWwyK1i9TaECrXX0gq0= Subject key identifier: 55:3B:37:7C:B6:B0:99:98:E6:34:40:F2:98:62:0A:5D:B5:AA:96:BE Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0D2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0D24 Signing time: Sat 04 Apr 2026 17:55:59 +0000 Manifest this update: Sat 04 Apr 2026 17:55:59 +0000 Manifest next update: Sat 11 Apr 2026 17:55:59 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: FoIvV8MSkP98jQVlfVu9G7zMVTVuMbLypbQZ96QoVeE=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: M4C8jEhIls7w2dv7sJFlagnJmuYCA5HtYmJCzU8Vk+c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:55:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3373 (0xd2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0, serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: Apr 4 17:55:59 2026 GMT Not After : Apr 11 17:55:59 2026 GMT Subject: CN=69d150af-5f58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c3:48:12:34:34:69:12:23:d9:a1:92:4d:f2: 13:1b:6f:4d:3d:c7:67:cf:f9:b1:81:2e:e4:8f:4d: 50:a0:56:fa:06:2e:46:fb:47:04:5a:55:aa:d2:55: ce:62:3c:ca:d7:89:66:b8:fa:24:ce:5d:fd:c0:da: a3:6e:86:02:d4:6d:da:24:98:45:39:ab:9c:da:fd: 2d:f5:00:90:9a:b3:65:0f:27:06:cd:c1:00:f9:2b: 23:f1:29:62:72:a9:bd:29:5b:0c:62:9f:48:ea:24: 21:5a:d8:d3:92:29:69:10:4a:5a:6f:dd:0d:7f:83: 7c:2a:85:85:6f:8b:61:1a:c7:db:14:d8:b2:b4:e3: d5:9e:9c:5c:8c:0e:d2:59:b0:93:d7:7f:5d:1e:69: df:3c:76:52:09:85:3c:c5:14:ef:94:29:90:8a:4a: 43:f0:3b:e9:10:98:32:2b:05:cf:61:21:fe:61:16: 93:89:c6:c7:da:4d:16:e2:f0:a1:c3:66:e7:51:29: c9:3a:58:92:cf:ad:03:a2:af:27:e9:e9:f1:7d:45: f4:22:9c:e9:56:5c:f8:4f:de:43:43:7c:1c:28:99: 59:f5:64:ab:a1:f8:a7:28:08:82:1a:f4:70:af:99: 5b:6a:1a:7a:64:a2:47:6c:ee:a2:98:b8:26:59:34: 7d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:3B:37:7C:B6:B0:99:98:E6:34:40:F2:98:62:0A:5D:B5:AA:96:BE X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:bd:90:3a:f6:ae:72:39:12:1f:36:81:f3:7b:96:dd:bf:9d: 55:96:a9:9d:c1:24:6c:32:64:01:af:9e:25:25:81:4a:a3:43: 2b:87:ff:95:04:63:87:1b:0f:f3:72:a2:3d:dd:51:04:dc:00: 1c:af:9b:7b:9d:68:99:22:90:9b:cc:ef:00:0a:e4:01:59:5f: 04:a9:ca:bd:97:7d:c1:bb:23:f0:1f:1c:47:f9:08:5f:13:3c: 2c:ed:93:b5:20:64:df:30:73:d9:7e:92:c3:05:2b:a5:d3:cf: e7:58:38:fc:80:c6:9d:ea:8a:50:47:37:57:ed:2a:50:ab:cb: 9a:48:d8:cf:de:e2:64:dd:a3:26:ae:1b:88:9f:c7:d8:b9:df: 5c:19:5a:1f:f4:10:e8:b8:fd:b1:40:2a:aa:74:c2:25:54:b4: d7:d9:13:20:e3:e9:43:07:cf:d0:c1:36:3d:ef:56:8e:cc:d8: f9:57:e6:cb:5d:5f:1c:0b:ef:85:fd:f9:eb:81:26:db:62:7f: cf:e3:ae:2c:c2:9b:82:6d:a1:93:3f:58:8a:74:c0:27:d5:54: d2:99:12:94:6a:cf:30:4f:19:72:30:da:2f:12:3b:76:7c:5e: 15:63:63:1e:b8:6f:5a:0e:d6:fe:4e:50:1f:41:82:94:13:8e: 50:20:8f:ba -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjYwNDA0MTc1NTU5WhcNMjYwNDExMTc1NTU5WjAYMRYwFAYD VQQDEw02OWQxNTBhZi01ZjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsNIEjQ0aRIj2aGSTfITG29NPcdnz/mxgS7kj01QoFb6Bi5G+0cEWlWq0lXO YjzK14lmuPokzl39wNqjboYC1G3aJJhFOauc2v0t9QCQmrNlDycGzcEA+Ssj8Sli cqm9KVsMYp9I6iQhWtjTkilpEEpab90Nf4N8KoWFb4thGsfbFNiytOPVnpxcjA7S WbCT139dHmnfPHZSCYU8xRTvlCmQikpD8DvpEJgyKwXPYSH+YRaTicbH2k0W4vCh w2bnUSnJOliSz60Doq8n6enxfUX0IpzpVlz4T95DQ3wcKJlZ9WSrofinKAiCGvRw r5lbahp6ZKJHbO6imLgmWTR9fQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFU7N3y2 sJmY5jRA8phiCl21qpa+MB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAMr2QOvaucjkSHzaB83uW3b+dVZapncEkbDJkAa+eJSWBSqNDK4f/lQRjhxsP 83KiPd1RBNwAHK+be51omSKQm8zvAArkAVlfBKnKvZd9wbsj8B8cR/kIXxM8LO2T tSBk3zBz2X6SwwUrpdPP51g4/IDGneqKUEc3V+0qUKvLmkjYz97iZN2jJq4biJ/H 2LnfXBlaH/QQ6Lj9sUAqqnTCJVS019kTIOPpQwfP0ME2Pe9WjszY+Vfmy11fHAvv hf3564Em22J/z+OuLMKbgm2hkz9YinTAJ9VU0pkSlGrPME8ZcjDaLxI7dnxeFWNj HrhvWg7W/k5QH0GClBOOUCCPug== -----END CERTIFICATE-----Generated at Mon Apr 6 08:47:00 2026 by rpki-client