$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft File: zFkhdtiMQj-IWbUYtq0zT_92dAk.mft (raw, json) Hash identifier: WmnOhEWLbRaLPRGyKL3Jw0jxSb8ExnU4vnP1a06fmCs= Subject key identifier: 57:9B:57:85:5A:63:A5:6F:D9:3A:3A:C2:64:3F:CB:EC:50:1F:71:28 Authority key identifier: CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 Certificate issuer: /CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Certificate serial: 1209 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft Manifest number: 11CE Signing time: Sat 04 Apr 2026 17:03:47 +0000 Manifest this update: Sat 04 Apr 2026 17:03:47 +0000 Manifest next update: Sat 11 Apr 2026 17:03:47 +0000 Files and hashes: 1: zFkhdtiMQj-IWbUYtq0zT_92dAk.crl (hash: vrRHUFS1cG4e3tAE8/WFbw63Rc1KA+zMOz2rrprjNpU=) 2: 53BDA2F60F1A11E9B3F2A713C4F9AE02.roa (hash: 8sR59Lp6fQc79JgAgqC1t1+yUKy4/xiWteMrpfGnLFs=) 3: 23A0D39C0F1D11E991F4271EC4F9AE02.roa (hash: tb6d2POyVxQvEjZTCt8zzCzL5T0dHc+hRl47vzKiwro=) 4: 5488F6EA0F1A11E9B3F2A713C4F9AE02.roa (hash: 6R3WrQlkwYdoSKIA9m9L9kSxThcr/NMUZ6ZAaENWcLk=) 5: 552292460F1A11E9B3F2A713C4F9AE02.roa (hash: 6bJMavZFRpkLHiVk166wivPVWZcYiFXj4dWo/IpNl7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 17:03:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4617 (0x1209) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67BB, serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Validity Not Before: Apr 4 17:03:47 2026 GMT Not After : Apr 11 17:03:47 2026 GMT Subject: CN=69d14473-a83f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:93:ee:aa:a6:20:66:3f:cf:6f:09:e5:b5:bf: 1a:aa:3b:ea:63:b6:93:ab:26:07:fe:e0:4e:bc:00: 4d:7d:cc:62:8d:63:40:5e:f0:ca:6f:16:5c:e3:fe: a0:4f:43:97:59:28:b8:f7:a1:e3:70:0a:64:df:f5: e9:3e:d9:b8:7e:6d:42:0d:4e:b2:b8:b8:2f:ac:6c: ae:19:ab:3a:62:f7:10:a2:25:4b:28:1b:07:e2:14: 2c:7a:3b:88:f0:90:7b:5d:f0:24:fe:8f:c2:ac:bc: ae:b1:2c:d1:04:0f:b6:36:c0:f4:50:11:22:0d:38: 67:a7:5b:db:86:e8:1f:d3:d4:ed:36:3b:ca:31:1c: eb:44:f8:2d:79:13:ec:fe:9d:d6:58:9a:50:4d:44: 6d:6d:bf:95:1f:0c:cd:a9:56:c1:af:ec:3e:55:58: 44:f9:b1:63:1e:6b:7e:0b:de:c0:d6:2b:11:34:8a: 54:2b:cd:5b:11:03:d9:6c:61:fd:5a:93:5d:ce:33: 9a:33:e8:28:c3:06:e4:6b:5c:57:50:ee:b1:eb:34: b4:7a:57:f8:9e:78:05:d1:a1:c6:25:19:44:50:ed: c6:03:98:52:5b:b2:af:31:78:11:56:8c:6b:e8:f4: b7:9e:7f:ca:54:65:d2:5c:52:80:1e:c7:2f:b4:54: bf:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:9B:57:85:5A:63:A5:6F:D9:3A:3A:C2:64:3F:CB:EC:50:1F:71:28 X509v3 Authority Key Identifier: keyid:CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:2e:e8:ac:2b:60:1e:64:d1:f8:7a:eb:f6:1d:b4:c0:7b:8f: a7:73:b7:0e:ea:65:18:35:55:11:87:bc:06:6a:f3:0c:9e:e8: 48:b0:ee:b9:33:7d:99:8d:86:1d:3a:66:af:c7:59:8e:04:32: 2c:49:1f:53:d2:e2:69:a3:9a:ee:77:61:6c:e7:5c:a1:ac:fb: a3:90:ff:36:4a:65:01:80:11:e3:f1:60:45:12:88:64:7e:56: 6e:2f:fa:11:55:14:58:af:99:1b:c8:03:ad:1a:c3:c2:02:ff: 46:92:e8:50:ec:b8:15:6b:6b:70:f8:de:00:83:ae:23:50:f1: b1:21:47:68:8b:3f:7f:86:fc:ff:74:7f:8b:b1:e8:e7:32:e9: b7:91:5c:72:da:98:36:3e:9d:80:9c:21:31:83:14:53:5f:e2: b5:e6:98:ec:e5:9a:ef:ce:99:fa:4d:70:10:76:90:29:06:5e: 3f:cd:22:60:7c:d5:cb:78:c6:ca:a7:25:e3:69:d9:6f:d7:d3: 66:1b:aa:86:f4:ab:12:8e:81:44:45:a7:22:43:88:6f:3d:5d: 58:cb:7c:ad:90:da:3e:0b:e8:c3:bb:bc:97:4f:82:7f:93:2d: ab:b5:e2:f0:0d:99:62:b5:66:87:f5:ba:cd:54:34:ed:e4:50: d3:45:32:34 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3QkIxMTAvBgNVBAUTKENDNTkyMTc2RDg4QzQyM0Y4ODU5QjUxOEI2QUQzMzRG RkY3Njc0MDkwHhcNMjYwNDA0MTcwMzQ3WhcNMjYwNDExMTcwMzQ3WjAYMRYwFAYD VQQDEw02OWQxNDQ3My1hODNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnpPuqqYgZj/Pbwnltb8aqjvqY7aTqyYH/uBOvABNfcxijWNAXvDKbxZc4/6g T0OXWSi496HjcApk3/XpPtm4fm1CDU6yuLgvrGyuGas6YvcQoiVLKBsH4hQsejuI 8JB7XfAk/o/CrLyusSzRBA+2NsD0UBEiDThnp1vbhugf09TtNjvKMRzrRPgteRPs /p3WWJpQTURtbb+VHwzNqVbBr+w+VVhE+bFjHmt+C97A1isRNIpUK81bEQPZbGH9 WpNdzjOaM+gowwbka1xXUO6x6zS0elf4nngF0aHGJRlEUO3GA5hSW7KvMXgRVoxr 6PS3nn/KVGXSXFKAHscvtFS/BwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFebV4Va Y6Vv2To6wmQ/y+xQH3EoMB8GA1UdIwQYMBaAFMxZIXbYjEI/iFm1GLatM0//dnQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdCQi9CREZCRjE4NjBF M0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFqLUlXYlVZdHEwelRfOTJk QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pGa2hkdGlNUWotSVdiVVl0cTB6VF85MmRBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjdCQi9CREZCRjE4NjBFM0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFq LUlXYlVZdHEwelRfOTJkQWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApC7orCtgHmTR+Hrr9h20wHuPp3O3DuplGDVVEYe8BmrzDJ7oSLDuuTN9mY2G HTpmr8dZjgQyLEkfU9LiaaOa7ndhbOdcoaz7o5D/NkplAYAR4/FgRRKIZH5Wbi/6 EVUUWK+ZG8gDrRrDwgL/RpLoUOy4FWtrcPjeAIOuI1DxsSFHaIs/f4b8/3R/i7Ho 5zLpt5FcctqYNj6dgJwhMYMUU1/iteaY7OWa786Z+k1wEHaQKQZeP80iYHzVy3jG yqcl42nZb9fTZhuqhvSrEo6BREWnIkOIbz1dWMt8rZDaPgvow7u8l0+Cf5Mtq7Xi 8A2ZYrVmh/W6zVQ07eRQ00UyNA== -----END CERTIFICATE-----Generated at Mon Apr 6 16:37:12 2026 by rpki-client