$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft File: z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft (raw, json) Hash identifier: vUa50hsUXHJjs+Ju466jqWblnHA1ALjWOYI0ONb9Xp8= Subject key identifier: 47:DB:40:32:04:33:3F:4E:CD:F7:C6:FC:22:E9:6E:02:6F:22:10:DA Authority key identifier: CF:80:4A:6F:3D:86:A1:97:13:A4:E8:86:D5:97:B4:DC:64:45:68:6A Certificate issuer: /CN=A9149C62/serialNumber=CF804A6F3D86A19713A4E886D597B4DC6445686A Certificate serial: 0125 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft Manifest number: 011D Signing time: Wed 15 Apr 2026 05:30:31 +0000 Manifest this update: Wed 15 Apr 2026 05:30:30 +0000 Manifest next update: Wed 22 Apr 2026 05:30:30 +0000 Files and hashes: 1: z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl (hash: eXAujFdlOLXt+fSaaggGCzPtmYRHQCr2EzODsvqk7ug=) 2: D7A7F3FEE18711F0A8B43181426F56BC.roa (hash: vh4+TvOiKZauBrK2eZX3+JUCcmsgQa2Igdr6PGVraWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 05:30:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C62, serialNumber=CF804A6F3D86A19713A4E886D597B4DC6445686A Validity Not Before: Apr 15 05:30:30 2026 GMT Not After : Apr 22 05:30:30 2026 GMT Subject: CN=69df2277-d932 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:00:16:e0:86:e2:ed:1e:e1:c8:fa:7c:6b:b9: 51:f3:fe:05:ea:ea:61:8a:65:91:50:25:73:15:5f: 32:c9:42:72:c7:bc:2e:40:10:2f:20:8a:31:57:d8: 97:2d:ce:9a:2e:9f:54:f5:fd:da:ac:5f:1b:4f:30: c1:33:44:92:37:f7:c1:12:99:21:08:c1:28:b6:06: 2c:81:83:0f:dc:6b:c6:5d:0e:d6:7f:b1:f8:50:a2: 71:96:56:2a:5b:43:20:e2:0f:b9:71:73:e6:0e:43: 9a:4c:30:76:30:88:ee:53:81:46:0e:c3:ea:74:79: 03:2f:46:e8:7c:4d:a8:6d:3f:c8:d2:bf:d6:4c:0d: 11:99:2a:ac:3b:84:49:bc:29:b5:e3:c7:8e:a4:14: 9c:05:41:e2:df:35:b3:63:ea:7f:63:15:d9:ca:d5: 64:2f:02:02:40:3f:cc:85:85:ca:f8:c8:84:f5:99: c7:57:5e:2b:47:c8:9f:4d:49:72:d1:6b:a7:9f:ab: 91:42:18:b0:b6:23:eb:cd:c8:d4:f3:1c:16:42:7d: 6d:c8:8b:80:ac:bd:3d:1f:c6:a8:27:a6:aa:90:dc: 71:77:72:4d:d2:31:39:45:95:a5:5d:94:4f:ea:9a: 6c:fd:1c:1d:ba:22:55:78:a2:66:d9:06:78:67:07: 22:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:DB:40:32:04:33:3F:4E:CD:F7:C6:FC:22:E9:6E:02:6F:22:10:DA X509v3 Authority Key Identifier: keyid:CF:80:4A:6F:3D:86:A1:97:13:A4:E8:86:D5:97:B4:DC:64:45:68:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:da:cd:79:36:fc:58:d0:45:02:f5:ec:35:3e:26:07:01:cb: 7d:4d:fe:f2:bd:85:ed:1b:a4:8b:d7:a5:71:27:07:95:c6:59: c1:de:ad:6b:b1:b4:98:d6:ed:a1:6e:4f:dd:ea:eb:6e:ac:39: 3f:c3:e2:f6:dc:98:93:34:ba:46:d1:b8:ea:94:1e:3f:2d:a4: 5e:3c:a9:8c:6d:1a:93:8c:05:7d:06:31:ab:2c:6f:f5:96:60: eb:16:ec:a8:84:42:7b:bd:ce:84:6a:e3:8b:14:56:1f:23:2f: fb:cc:4a:b8:b2:25:e8:fe:95:88:15:97:57:24:37:53:66:6d: 6c:a8:ed:35:9e:50:af:cf:a9:32:e0:04:80:07:bc:d7:03:0f: 16:72:1f:f9:6d:c5:3e:62:bf:5c:18:ec:9f:5b:69:76:9b:f7: a6:93:ee:50:9f:6e:07:1b:e8:7c:42:61:51:4e:a0:34:22:0c: 64:c8:e0:c0:13:3c:42:0d:d5:ca:8b:fa:f2:76:4d:af:2c:6c: 10:4b:c5:67:90:19:32:32:26:89:7c:25:c6:8e:b6:a2:7a:10: 40:08:bc:a5:e5:2f:be:5e:45:fe:99:ba:dd:c0:9d:01:70:b0: 85:4c:c3:32:fe:18:2f:df:ed:85:ed:60:5e:54:a1:56:c1:61: d0:cb:b3:7a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDNjIxMTAvBgNVBAUTKENGODA0QTZGM0Q4NkExOTcxM0E0RTg4NkQ1OTdCNERD NjQ0NTY4NkEwHhcNMjYwNDE1MDUzMDMwWhcNMjYwNDIyMDUzMDMwWjAYMRYwFAYD VQQDEw02OWRmMjI3Ny1kOTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAngAW4Ibi7R7hyPp8a7lR8/4F6uphimWRUCVzFV8yyUJyx7wuQBAvIIoxV9iX Lc6aLp9U9f3arF8bTzDBM0SSN/fBEpkhCMEotgYsgYMP3GvGXQ7Wf7H4UKJxllYq W0Mg4g+5cXPmDkOaTDB2MIjuU4FGDsPqdHkDL0bofE2obT/I0r/WTA0RmSqsO4RJ vCm148eOpBScBUHi3zWzY+p/YxXZytVkLwICQD/MhYXK+MiE9ZnHV14rR8ifTUly 0Wunn6uRQhiwtiPrzcjU8xwWQn1tyIuArL09H8aoJ6aqkNxxd3JN0jE5RZWlXZRP 6pps/RwduiJVeKJm2QZ4Zwci4QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEfbQDIE Mz9OzffG/CLpbgJvIhDaMB8GA1UdIwQYMBaAFM+ASm89hqGXE6TohtWXtNxkRWhq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUM2Mi84NEY0NkI2ODk4 MTUxMUVGQTRCRDNENTdDNEY5QUUwMi96NEJLYnoyR29aY1RwT2lHMVplMDNHUkZh R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o0QktiejJHb1pjVHBPaUcxWmUwM0dSRmFHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUM2Mi84NEY0NkI2ODk4MTUxMUVGQTRCRDNENTdDNEY5QUUwMi96NEJLYnoyR29a Y1RwT2lHMVplMDNHUkZhR28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAH9rNeTb8WNBFAvXsNT4mBwHLfU3+8r2F7Ruki9elcScHlcZZwd6ta7G0mNbt oW5P3errbqw5P8Pi9tyYkzS6RtG46pQePy2kXjypjG0ak4wFfQYxqyxv9ZZg6xbs qIRCe73OhGrjixRWHyMv+8xKuLIl6P6ViBWXVyQ3U2ZtbKjtNZ5Qr8+pMuAEgAe8 1wMPFnIf+W3FPmK/XBjsn1tpdpv3ppPuUJ9uBxvofEJhUU6gNCIMZMjgwBM8Qg3V yov68nZNryxsEEvFZ5AZMjImiXwlxo62onoQQAi8peUvvl5F/pm63cCdAXCwhUzD Mv4YL9/the1gXlShVsFh0Muzeg== -----END CERTIFICATE-----Generated at Fri Apr 17 06:53:31 2026 by rpki-client