$ rpki-client -vvf rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft File: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft (raw, json) Hash identifier: ZbpFhyRmg255OI0Hs5p5OlSMbUWwLC2XmG2C3MZxmeo= Subject key identifier: 2A:0D:BC:5F:68:A8:D5:7F:1A:1F:A6:30:D0:77:77:F3:12:2E:BD:AE Authority key identifier: 66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 Certificate issuer: /CN=A912519D/serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Certificate serial: 0664 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft Manifest number: 065D Signing time: Sat 18 Apr 2026 22:32:29 +0000 Manifest this update: Sat 18 Apr 2026 22:32:28 +0000 Manifest next update: Sat 25 Apr 2026 22:32:28 +0000 Files and hashes: 1: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl (hash: 486S2Y2k9zKg3WgdkfHSzmwVedOqecMYw4n/+hvk69g=) 2: 10581DEAC75D11EBB00EBD1AC4F9AE02.roa (hash: 5sKr5Je6hbpFf2Q5JDk7nrFaAZ90rKYQRnu0lj3etl0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Apr 2026 22:32:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1636 (0x664) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912519D, serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Validity Not Before: Apr 18 22:32:28 2026 GMT Not After : Apr 25 22:32:28 2026 GMT Subject: CN=69e4067c-2c46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d5:8a:e3:de:7b:b7:eb:91:67:77:1c:42:c6: 57:79:ff:53:f1:b8:7a:22:76:57:63:3c:ea:12:b8: a2:90:a3:73:41:14:02:69:26:97:5b:85:64:6c:99: 95:cf:43:aa:89:c0:f1:7c:af:a6:62:7e:e5:2a:56: 82:18:ad:61:61:2f:7a:ea:14:0e:e0:87:34:fa:e4: a8:67:d6:0b:64:47:f4:06:34:c8:e3:ad:3e:af:10: 45:6f:f3:a5:88:99:cb:f0:81:53:9d:4c:09:f1:f6: e1:8a:53:d7:70:f0:40:01:f3:ed:7c:6d:8c:7e:c2: a4:81:85:54:eb:b0:e9:7e:af:12:60:57:87:0d:f9: 11:55:cc:98:2d:4c:f2:c2:0f:14:1b:da:88:3a:67: de:31:7f:97:49:97:78:0f:20:e0:97:6b:03:85:02: e1:b2:9b:0e:99:82:f9:fd:a1:fd:a7:14:a8:04:fe: ef:a3:d5:ed:3d:e5:8c:09:5a:73:d5:ce:b0:1f:d5: 12:6f:7c:c9:4c:0f:f3:56:d7:43:3e:82:3d:25:63: 88:48:35:38:74:2a:60:23:0f:4e:c7:86:2a:4d:cc: aa:ed:96:66:12:b3:13:ef:07:b1:b7:69:9e:8a:6a: 65:51:28:a2:95:a8:2d:b6:d4:a0:76:11:a5:4c:4d: dc:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:0D:BC:5F:68:A8:D5:7F:1A:1F:A6:30:D0:77:77:F3:12:2E:BD:AE X509v3 Authority Key Identifier: keyid:66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:1b:a2:44:dd:04:91:31:60:3b:bc:6e:f5:a8:25:74:2a:5c: b9:30:d1:66:8c:ef:d1:c1:26:ec:53:78:9a:81:5a:c1:60:8f: 02:a7:89:e9:ec:be:56:e8:63:bc:83:90:96:3d:ff:aa:36:bf: d1:8a:13:99:11:1a:f4:84:7e:48:d0:2e:bb:01:9f:fb:6a:9d: 50:d3:b6:20:04:dd:8a:bb:24:ba:2f:25:f2:01:c1:22:46:fd: 6e:43:0f:c8:b3:54:9c:d7:0b:21:ba:6b:66:e5:25:d7:ee:b4: 6a:86:98:90:41:2f:ac:9a:9f:69:e6:29:c1:09:14:6f:39:46: 47:f9:fc:29:a7:ef:f2:89:79:f8:0d:97:a7:03:cb:52:50:40: 0a:da:be:08:6a:dc:7a:a5:bb:1a:75:31:45:b9:ea:c1:16:6a: 09:5f:fd:b0:77:2f:fc:7a:ee:b9:23:e7:08:b4:02:a7:e4:06: a5:e9:e1:72:bb:81:14:8d:68:20:68:d6:8b:5e:5f:6c:90:b2: b9:77:a2:e4:fc:cb:ad:8d:b4:6c:91:63:88:f2:81:11:2a:3a: fd:15:7f:84:d7:88:f6:5b:07:9b:85:61:70:e3:2d:f7:6a:21: fd:30:1d:bd:6a:e2:2a:a8:95:55:c5:fb:fa:f4:b5:42:f3:42: 39:2f:2e:58 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUxOUQxMTAvBgNVBAUTKDY2QjlEODRGNDMzNkE4OUQ4NEQxRTAyRTgyMEE3OTY4 NkUxRTUyQzQwHhcNMjYwNDE4MjIzMjI4WhcNMjYwNDI1MjIzMjI4WjAYMRYwFAYD VQQDEw02OWU0MDY3Yy0yYzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAstWK4957t+uRZ3ccQsZXef9T8bh6InZXYzzqEriikKNzQRQCaSaXW4VkbJmV z0OqicDxfK+mYn7lKlaCGK1hYS966hQO4Ic0+uSoZ9YLZEf0BjTI460+rxBFb/Ol iJnL8IFTnUwJ8fbhilPXcPBAAfPtfG2MfsKkgYVU67Dpfq8SYFeHDfkRVcyYLUzy wg8UG9qIOmfeMX+XSZd4DyDgl2sDhQLhspsOmYL5/aH9pxSoBP7vo9XtPeWMCVpz 1c6wH9USb3zJTA/zVtdDPoI9JWOISDU4dCpgIw9Ox4YqTcyq7ZZmErMT7wext2me implUSiilagtttSgdhGlTE3ctwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCoNvF9o qNV/Gh+mMNB3d/MSLr2uMB8GA1UdIwQYMBaAFGa52E9DNqidhNHgLoIKeWhuHlLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTE5RC9CODI4MDY2NEM3 NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFKMkUwZUF1Z2dwNWFHNGVV c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pybllUME0ycUoyRTBlQXVnZ3A1YUc0ZVVzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTE5RC9CODI4MDY2NEM3NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFK MkUwZUF1Z2dwNWFHNGVVc1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZhuiRN0EkTFgO7xu9agldCpcuTDRZozv0cEm7FN4moFawWCPAqeJ6ey+Vuhj vIOQlj3/qja/0YoTmREa9IR+SNAuuwGf+2qdUNO2IATdirskui8l8gHBIkb9bkMP yLNUnNcLIbprZuUl1+60aoaYkEEvrJqfaeYpwQkUbzlGR/n8Kafv8ol5+A2XpwPL UlBACtq+CGrceqW7GnUxRbnqwRZqCV/9sHcv/HruuSPnCLQCp+QGpenhcruBFI1o IGjWi15fbJCyuXei5PzLrY20bJFjiPKBESo6/RV/hNeI9lsHm4VhcOMt92oh/TAd vWriKqiVVcX7+vS1QvNCOS8uWA== -----END CERTIFICATE-----Generated at Sun Apr 19 11:21:26 2026 by rpki-client