$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft File: ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft (raw, json) Hash identifier: cdNIS82unvne1fR9QR0kYUI5rj95Dw983hwAUJqx1sQ= Subject key identifier: 11:E1:C5:2D:40:18:B1:2B:3B:CC:5E:B3:87:0B:A3:8C:B1:C8:A8:FE Authority key identifier: 66:C3:06:D2:3F:8B:FE:AA:A4:4C:CC:C5:57:39:69:51:F9:86:C6:BD Certificate issuer: /CN=A914DA9E/serialNumber=66C306D23F8BFEAAA44CCCC557396951F986C6BD Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft Manifest number: BA Signing time: Fri 17 Apr 2026 06:43:44 +0000 Manifest this update: Fri 17 Apr 2026 06:43:43 +0000 Manifest next update: Fri 24 Apr 2026 06:43:43 +0000 Files and hashes: 1: ZsMG0j-L_qqkTMzFVzlpUfmGxr0.crl (hash: no8EWOyu5M76VYP589CtkBYTVE/IxUzO3b8kadhCf1A=) 2: 7E10232C1F3411F0BFBD616EC4F9AE02.roa (hash: g6ZOMPer13oWyUer/cv/Q5t8hsmoiUkPO4tVUIkbk2c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.crl rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DA9E, serialNumber=66C306D23F8BFEAAA44CCCC557396951F986C6BD Validity Not Before: Apr 17 06:43:43 2026 GMT Not After : Apr 24 06:43:43 2026 GMT Subject: CN=69e1d69f-7ab0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:58:b3:a6:1f:65:6a:87:aa:55:7e:ff:7b:ba: 7e:f6:90:78:01:1e:90:0f:b5:9a:81:88:7e:b4:62: 19:66:a8:18:9f:b0:4f:83:86:36:ce:0f:5c:f7:19: 50:f2:25:eb:97:57:d6:d5:08:9b:92:b5:4e:57:fd: ed:af:68:91:b7:67:20:b1:77:99:08:3e:49:66:9c: 64:2b:4d:1c:15:5c:35:24:c6:e7:20:eb:44:c3:54: 5f:99:af:52:c0:01:24:81:86:33:53:4b:50:b8:03: 72:77:1a:9a:34:18:8a:6c:b0:b4:af:3d:0a:17:13: 1e:6f:10:dd:9f:92:f7:a5:13:c6:e6:4d:a6:19:d4: 58:06:26:36:76:5a:9e:30:0b:05:6d:46:a7:19:39: d9:19:84:21:6b:b6:06:69:a6:67:89:02:38:2d:28: 3e:5e:db:18:bc:c0:db:ce:e3:9d:9c:95:0f:cc:14: f3:9f:dd:e8:43:70:c0:36:b8:1b:b0:82:52:15:db: 01:f5:a2:67:ee:54:64:99:54:64:07:34:66:18:ad: 05:b8:0c:0a:ff:d0:f4:53:f2:59:3a:e0:4e:62:bb: c6:80:b9:ed:cc:32:9c:b7:ee:d3:54:67:b1:16:59: c2:e8:5b:1f:db:de:ac:d8:2b:73:81:72:f5:82:03: 97:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:E1:C5:2D:40:18:B1:2B:3B:CC:5E:B3:87:0B:A3:8C:B1:C8:A8:FE X509v3 Authority Key Identifier: keyid:66:C3:06:D2:3F:8B:FE:AA:A4:4C:CC:C5:57:39:69:51:F9:86:C6:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA9E/D1BE809C1F3211F0BD22BA68C4F9AE02/ZsMG0j-L_qqkTMzFVzlpUfmGxr0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:5b:79:40:1e:96:4b:65:8e:45:c4:4a:56:65:cc:f7:52:6e: 1a:81:55:38:c8:c7:77:21:d7:83:75:22:72:ef:be:93:38:c7: c8:75:5f:6d:9a:ab:6a:4c:c8:cd:04:ca:72:14:2d:fa:73:db: d4:e4:d2:87:16:1e:10:80:36:c2:50:ab:db:47:6d:ea:f1:9c: 91:14:40:c1:4f:6a:da:5d:11:5c:ef:9f:5b:63:b5:c1:e5:e1: aa:8e:75:e3:07:bb:d3:fb:8b:22:f2:9e:0b:ca:1d:3b:05:3c: 46:49:23:81:1a:1c:b8:e8:f4:a3:97:8a:61:7b:dd:0c:ea:e4: 38:f9:37:ec:dc:8a:40:69:9b:53:ed:5a:ca:a1:0f:d9:ab:52: 96:8c:f9:56:aa:52:1b:c8:c2:d1:5b:60:39:ce:58:7a:4a:9c: cb:06:a4:db:9f:29:4d:81:22:05:3c:41:f3:40:82:da:cd:ef: f0:23:44:e4:ff:85:a3:62:86:a2:66:6c:bd:54:fb:33:be:67: a6:79:3c:02:26:c4:9e:5f:59:f6:56:0b:40:02:5f:39:0e:2a: 02:90:42:0f:d9:db:97:57:fb:d7:2d:3e:38:3d:7f:03:c2:6e: 1d:85:b1:87:9c:e8:24:82:87:f1:2b:ac:44:77:bd:97:57:3a: 8f:1a:12:41 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERBOUUxMTAvBgNVBAUTKDY2QzMwNkQyM0Y4QkZFQUFBNDRDQ0NDNTU3Mzk2OTUx Rjk4NkM2QkQwHhcNMjYwNDE3MDY0MzQzWhcNMjYwNDI0MDY0MzQzWjAYMRYwFAYD VQQDEw02OWUxZDY5Zi03YWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1izph9laoeqVX7/e7p+9pB4AR6QD7WagYh+tGIZZqgYn7BPg4Y2zg9c9xlQ 8iXrl1fW1QibkrVOV/3tr2iRt2cgsXeZCD5JZpxkK00cFVw1JMbnIOtEw1Rfma9S wAEkgYYzU0tQuANydxqaNBiKbLC0rz0KFxMebxDdn5L3pRPG5k2mGdRYBiY2dlqe MAsFbUanGTnZGYQha7YGaaZniQI4LSg+XtsYvMDbzuOdnJUPzBTzn93oQ3DANrgb sIJSFdsB9aJn7lRkmVRkBzRmGK0FuAwK/9D0U/JZOuBOYrvGgLntzDKct+7TVGex FlnC6Fsf296s2CtzgXL1ggOXmQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBHhxS1A GLErO8xes4cLo4yxyKj+MB8GA1UdIwQYMBaAFGbDBtI/i/6qpEzMxVc5aVH5hsa9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REE5RS9EMUJFODA5QzFG MzIxMUYwQkQyMkJBNjhDNEY5QUUwMi9ac01HMGotTF9xcWtUTXpGVnpscFVmbUd4 cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pzTUcwai1MX3Fxa1RNekZWemxwVWZtR3hyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REE5RS9EMUJFODA5QzFGMzIxMUYwQkQyMkJBNjhDNEY5QUUwMi9ac01HMGotTF9x cWtUTXpGVnpscFVmbUd4cjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACVt5QB6WS2WORcRKVmXM91JuGoFVOMjHdyHXg3Uicu++kzjHyHVfbZqrakzI zQTKchQt+nPb1OTShxYeEIA2wlCr20dt6vGckRRAwU9q2l0RXO+fW2O1weXhqo51 4we70/uLIvKeC8odOwU8RkkjgRocuOj0o5eKYXvdDOrkOPk37NyKQGmbU+1ayqEP 2atSloz5VqpSG8jC0VtgOc5Yekqcywak258pTYEiBTxB80CC2s3v8CNE5P+Fo2KG omZsvVT7M75npnk8AibEnl9Z9lYLQAJfOQ4qApBCD9nbl1f71y0+OD1/A8JuHYWx h5zoJIKH8SusRHe9l1c6jxoSQQ== -----END CERTIFICATE-----Generated at Fri Apr 17 20:29:47 2026 by rpki-client