$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft File: zFfgNkMaXqPBcqpyg0Aa88StXFk.mft (raw, json) Hash identifier: CZ7wDjJxFTucwfPm0GQP/2ej5LbOM6Uej3HwfTysBvM= Subject key identifier: 22:35:4B:1D:08:E8:78:31:59:04:11:02:CC:0A:DA:65:43:0B:3F:74 Authority key identifier: CC:57:E0:36:43:1A:5E:A3:C1:72:AA:72:83:40:1A:F3:C4:AD:5C:59 Certificate issuer: /CN=A91FDC78/serialNumber=CC57E036431A5EA3C172AA7283401AF3C4AD5C59 Certificate serial: 09A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFfgNkMaXqPBcqpyg0Aa88StXFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft Manifest number: 0992 Signing time: Sat 04 Apr 2026 19:50:32 +0000 Manifest this update: Sat 04 Apr 2026 19:50:31 +0000 Manifest next update: Sat 11 Apr 2026 19:50:31 +0000 Files and hashes: 1: zFfgNkMaXqPBcqpyg0Aa88StXFk.crl (hash: rs/NebvEUPFJWa/Vzk+yOcW1DPb9aLxl19eCkNNZKqY=) 2: DA0B639E89E711F08DD17A55C4F9AE02.roa (hash: oDVejNljbDL/11huUe+XaNuZxfU7WrqBrupnQVfzggU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.crl rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFfgNkMaXqPBcqpyg0Aa88StXFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 19:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2469 (0x9a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDC78, serialNumber=CC57E036431A5EA3C172AA7283401AF3C4AD5C59 Validity Not Before: Apr 4 19:50:31 2026 GMT Not After : Apr 11 19:50:31 2026 GMT Subject: CN=69d16b88-3448 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:11:50:c3:43:1a:c8:91:46:b5:3e:10:a3:50: 50:50:09:02:a0:4a:b3:1b:77:10:d3:81:01:08:61: 98:67:8e:8c:2e:c9:d2:dc:2d:48:dd:23:a5:51:b0: a2:b4:a4:ad:df:7c:ec:5f:f8:12:41:d5:fe:4d:3e: fc:7b:57:a2:93:ec:f9:fc:e3:24:0f:cb:d8:c1:8c: 6e:d1:47:93:51:f3:61:65:1b:25:c5:8e:4b:95:05: 12:2d:b5:42:6a:03:11:b0:38:f8:4f:a5:76:a1:bd: 80:ea:d2:a3:09:8f:d2:f4:34:15:5f:57:46:ac:57: da:2d:a9:ea:54:12:81:c9:d2:ab:e0:3b:2a:82:a2: c7:70:0c:ce:27:39:d2:94:2d:3b:95:90:51:93:c1: dc:48:56:ec:7b:d8:77:cf:11:7d:32:92:df:5a:f6: 8d:53:01:54:a9:e8:8c:64:ab:57:75:34:22:a6:85: 1e:8e:3f:e4:1c:38:49:84:36:f1:02:92:ed:62:0a: a4:bc:52:9b:e1:02:de:36:70:6b:5b:e7:c5:8f:f7: 43:d4:fc:8d:cb:73:af:68:cd:a9:97:6a:9f:86:f0: 6d:c8:96:62:52:48:e4:cd:09:89:fa:42:22:8d:1c: 5c:83:1b:6f:9d:f0:3e:86:0a:30:66:55:2c:6f:7e: 4f:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:35:4B:1D:08:E8:78:31:59:04:11:02:CC:0A:DA:65:43:0B:3F:74 X509v3 Authority Key Identifier: keyid:CC:57:E0:36:43:1A:5E:A3:C1:72:AA:72:83:40:1A:F3:C4:AD:5C:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFfgNkMaXqPBcqpyg0Aa88StXFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:c6:38:39:c9:2b:7f:5c:db:fd:06:6d:50:da:7c:52:5f:6f: a1:ce:5a:94:6a:aa:a5:03:cf:84:69:f0:8b:43:36:c0:bd:ea: f9:74:2b:a1:50:ed:4c:4c:fb:4d:7c:21:cd:a7:5c:e3:29:fe: dd:3c:c7:4e:26:ce:82:51:52:28:ec:7e:9b:66:91:0d:3f:a9: 4b:44:ff:9d:1f:10:55:b4:f7:30:5c:60:9e:ca:ea:28:58:40: 7c:0e:4c:1a:3e:46:65:5c:c1:d5:1e:7b:1c:a2:16:c5:80:36: eb:77:5f:db:47:94:22:a6:73:9b:91:da:c3:a0:68:24:e3:38: ff:f9:4d:08:8f:55:34:26:63:b1:d6:57:75:09:7e:94:59:f0: 3c:2d:5b:ee:e4:ae:70:e1:02:eb:17:49:38:97:9a:ce:5c:77: b3:bc:b6:76:57:da:ad:14:9f:be:a1:1b:30:5f:9b:18:69:22: bb:7f:d0:bd:fe:33:70:65:98:71:76:bd:4f:81:17:90:e1:ca: 45:91:da:40:a6:e4:d2:be:30:a0:a9:a6:91:68:9b:f5:0f:31: 30:6b:3b:b5:9a:40:30:b1:c4:ff:63:77:64:22:fa:a5:86:9f: 69:04:aa:55:0a:b2:ab:ac:7e:43:cf:09:6d:ee:a0:34:d8:32: 71:c4:7a:81 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRDNzgxMTAvBgNVBAUTKENDNTdFMDM2NDMxQTVFQTNDMTcyQUE3MjgzNDAxQUYz QzRBRDVDNTkwHhcNMjYwNDA0MTk1MDMxWhcNMjYwNDExMTk1MDMxWjAYMRYwFAYD VQQDEw02OWQxNmI4OC0zNDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzhFQw0MayJFGtT4Qo1BQUAkCoEqzG3cQ04EBCGGYZ46MLsnS3C1I3SOlUbCi tKSt33zsX/gSQdX+TT78e1eik+z5/OMkD8vYwYxu0UeTUfNhZRslxY5LlQUSLbVC agMRsDj4T6V2ob2A6tKjCY/S9DQVX1dGrFfaLanqVBKBydKr4DsqgqLHcAzOJznS lC07lZBRk8HcSFbse9h3zxF9MpLfWvaNUwFUqeiMZKtXdTQipoUejj/kHDhJhDbx ApLtYgqkvFKb4QLeNnBrW+fFj/dD1PyNy3OvaM2pl2qfhvBtyJZiUkjkzQmJ+kIi jRxcgxtvnfA+hgowZlUsb35PtwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCI1Sx0I 6HgxWQQRAswK2mVDCz90MB8GA1UdIwQYMBaAFMxX4DZDGl6jwXKqcoNAGvPErVxZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREM3OC8xNTQ3NDAwOEFF QUMxMUVBQTZDMUQ3NjFDNEY5QUUwMi96RmZnTmtNYVhxUEJjcXB5ZzBBYTg4U3RY RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGZmdOa01hWHFQQmNxcHlnMEFhODhTdFhGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REM3OC8xNTQ3NDAwOEFFQUMxMUVBQTZDMUQ3NjFDNEY5QUUwMi96RmZnTmtNYVhx UEJjcXB5ZzBBYTg4U3RYRmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbsY4Ockrf1zb/QZtUNp8Ul9voc5alGqqpQPPhGnwi0M2wL3q+XQroVDtTEz7 TXwhzadc4yn+3TzHTibOglFSKOx+m2aRDT+pS0T/nR8QVbT3MFxgnsrqKFhAfA5M Gj5GZVzB1R57HKIWxYA263df20eUIqZzm5Haw6BoJOM4//lNCI9VNCZjsdZXdQl+ lFnwPC1b7uSucOEC6xdJOJeazlx3s7y2dlfarRSfvqEbMF+bGGkiu3/Qvf4zcGWY cXa9T4EXkOHKRZHaQKbk0r4woKmmkWib9Q8xMGs7tZpAMLHE/2N3ZCL6pYafaQSq VQqyq6x+Q88Jbe6gNNgyccR6gQ== -----END CERTIFICATE-----Generated at Mon Apr 6 08:31:04 2026 by rpki-client