$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft File: zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft (raw, json) Hash identifier: paNFHGB2+mcHQYZLAOG7K+3zpp/GyXpQIJ/X0tyWCSE= Subject key identifier: 98:35:D2:B7:B2:27:9A:91:C2:A9:67:08:E9:0B:29:67:9B:AC:BB:B9 Authority key identifier: CE:8E:0F:2B:A4:99:C5:E5:87:B0:15:E1:04:4F:09:8C:E6:2C:A7:58 Certificate issuer: /CN=A91FA729/serialNumber=CE8E0F2BA499C5E587B015E1044F098CE62CA758 Certificate serial: 17C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft Manifest number: 17B6 Signing time: Sat 04 Apr 2026 16:28:29 +0000 Manifest this update: Sat 04 Apr 2026 16:28:29 +0000 Manifest next update: Sat 11 Apr 2026 16:28:29 +0000 Files and hashes: 1: zo4PK6SZxeWHsBXhBE8JjOYsp1g.crl (hash: LdL9VMeOSd/r8mNUSHirfHdI1LQ9b/YjbOalHmCAYVE=) 2: 4A81F344C34111EB855D7C84C4F9AE02.roa (hash: NTZYpBwfz3MFFsFX93cSlvxKSWnC0xJLfEsB3AUxbQ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.crl rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 16:28:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6083 (0x17c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA729, serialNumber=CE8E0F2BA499C5E587B015E1044F098CE62CA758 Validity Not Before: Apr 4 16:28:29 2026 GMT Not After : Apr 11 16:28:29 2026 GMT Subject: CN=69d13c2d-9cfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:89:a4:ea:33:a0:5d:c1:12:8e:d6:81:92:25: 70:a9:38:0e:e4:eb:4d:09:c3:f9:75:b1:e7:81:b2: ba:2b:3f:5e:eb:f2:e8:3a:f2:f2:bd:eb:30:6a:a1: 3b:58:df:68:3c:23:c1:86:64:8b:ef:17:16:a3:ea: 32:98:21:4d:e0:b9:9b:fc:83:28:88:ed:31:0f:24: 9f:c4:7f:bd:98:28:81:e7:db:94:90:4b:0d:31:50: 0d:54:71:6e:74:61:b4:6a:0d:81:c6:18:96:0f:cc: 39:dc:4f:47:ab:8e:16:19:73:10:31:0f:08:e5:a6: 4c:86:87:9d:23:5c:a5:76:87:32:2e:25:b9:b1:cb: 08:6f:75:67:e9:b9:37:52:8e:10:af:c9:f9:34:c2: d2:b8:b3:40:c6:c7:f6:3b:5c:49:05:2d:1a:f5:fa: c1:f2:1a:22:0d:4b:d6:26:6e:c6:b4:19:83:6a:3b: 1c:c3:35:56:f9:e0:81:7c:3f:1f:db:53:38:df:a8: 79:81:4a:2e:c4:70:a3:96:44:ee:c4:68:24:0e:80: 35:88:18:47:d5:cb:d6:93:7b:80:ee:88:71:6b:3c: 2d:b6:6f:02:ce:95:05:3f:b8:96:8c:46:53:6f:49: 1b:37:8e:23:d0:0b:1d:84:46:89:c7:28:2a:ac:0e: c8:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:35:D2:B7:B2:27:9A:91:C2:A9:67:08:E9:0B:29:67:9B:AC:BB:B9 X509v3 Authority Key Identifier: keyid:CE:8E:0F:2B:A4:99:C5:E5:87:B0:15:E1:04:4F:09:8C:E6:2C:A7:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:a5:06:a8:3b:0b:09:c0:3c:ca:45:1d:16:d5:e0:b7:7f:a8: 82:0a:05:ca:ac:2d:a0:16:27:8d:1d:60:43:df:22:1c:39:a4: bc:09:70:3e:d5:c4:2c:9b:51:63:a8:1d:06:a9:90:0d:2e:12: ae:1b:3f:8d:25:09:a0:73:c1:70:1a:e7:d2:ad:8b:15:f0:f4: 2e:64:e8:a7:0d:b9:b7:1d:cb:b6:3b:26:a1:e4:b2:5e:16:77: 46:76:2f:44:e5:60:05:74:30:ec:4f:62:9c:da:88:65:10:4c: e0:12:58:26:93:13:18:73:e7:88:0b:65:03:6b:2b:d7:98:e3: f0:f6:0b:49:64:2b:99:7c:26:c0:0f:7a:01:27:b3:67:a0:2e: 0c:35:b1:38:1f:92:56:66:7a:98:72:2a:1a:37:ce:e8:6e:e6: ae:ec:d9:d8:4f:95:4d:c5:24:59:86:2f:89:56:e5:b9:09:fc: 93:e7:4a:97:d4:44:3b:f6:4b:b4:ac:b5:be:a1:54:e0:4d:db: d7:e1:f0:bc:59:94:5a:18:df:4c:73:d5:7d:ad:c9:4e:95:dc: 11:df:ba:9d:66:87:99:73:d1:df:fe:08:9b:24:3a:cd:e0:e3: 36:7f:da:d4:34:41:5e:22:e0:2d:0d:79:34:e7:1a:9f:cf:c5: fe:fb:52:ce -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICF8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE3MjkxMTAvBgNVBAUTKENFOEUwRjJCQTQ5OUM1RTU4N0IwMTVFMTA0NEYwOThD RTYyQ0E3NTgwHhcNMjYwNDA0MTYyODI5WhcNMjYwNDExMTYyODI5WjAYMRYwFAYD VQQDEw02OWQxM2MyZC05Y2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYmk6jOgXcESjtaBkiVwqTgO5OtNCcP5dbHngbK6Kz9e6/LoOvLyveswaqE7 WN9oPCPBhmSL7xcWo+oymCFN4Lmb/IMoiO0xDySfxH+9mCiB59uUkEsNMVANVHFu dGG0ag2BxhiWD8w53E9Hq44WGXMQMQ8I5aZMhoedI1yldocyLiW5scsIb3Vn6bk3 Uo4Qr8n5NMLSuLNAxsf2O1xJBS0a9frB8hoiDUvWJm7GtBmDajscwzVW+eCBfD8f 21M436h5gUouxHCjlkTuxGgkDoA1iBhH1cvWk3uA7ohxazwttm8CzpUFP7iWjEZT b0kbN44j0AsdhEaJxygqrA7INQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJg10rey J5qRwqlnCOkLKWebrLu5MB8GA1UdIwQYMBaAFM6ODyukmcXlh7AV4QRPCYzmLKdY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTcyOS8yOEI5RDAxQ0U1 RjgxMUU3OUE3RDg0MzNDNEY5QUUwMi96bzRQSzZTWnhlV0hzQlhoQkU4SmpPWXNw MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pvNFBLNlNaeGVXSHNCWGhCRThKak9Zc3AxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTcyOS8yOEI5RDAxQ0U1RjgxMUU3OUE3RDg0MzNDNEY5QUUwMi96bzRQSzZTWnhl V0hzQlhoQkU4SmpPWXNwMWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdqUGqDsLCcA8ykUdFtXgt3+oggoFyqwtoBYnjR1gQ98iHDmkvAlwPtXELJtR Y6gdBqmQDS4Srhs/jSUJoHPBcBrn0q2LFfD0LmTopw25tx3LtjsmoeSyXhZ3RnYv ROVgBXQw7E9inNqIZRBM4BJYJpMTGHPniAtlA2sr15jj8PYLSWQrmXwmwA96ASez Z6AuDDWxOB+SVmZ6mHIqGjfO6G7mruzZ2E+VTcUkWYYviVbluQn8k+dKl9REO/ZL tKy1vqFU4E3b1+HwvFmUWhjfTHPVfa3JTpXcEd+6nWaHmXPR3/4ImyQ6zeDjNn/a 1DRBXiLgLQ15NOcan8/F/vtSzg== -----END CERTIFICATE-----Generated at Mon Apr 6 09:03:07 2026 by rpki-client