$ rpki-client -vvf rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft File: zWXmdAuufrM71eU4ye5t6LM1RDE.mft (raw, json) Hash identifier: BCJiLlH9kfkl6mBWMO54Sl2hkb3hnH2vjOeIDvX90cE= Subject key identifier: 07:AE:DC:5F:F0:EC:6A:0E:33:E9:99:71:A7:53:FB:71:90:AB:2E:C9 Authority key identifier: CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 Certificate issuer: /CN=A916FA49/serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Certificate serial: 01D6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft Manifest number: 01CD Signing time: Thu 16 Apr 2026 16:43:28 +0000 Manifest this update: Thu 16 Apr 2026 16:43:28 +0000 Manifest next update: Thu 23 Apr 2026 16:43:28 +0000 Files and hashes: 1: zWXmdAuufrM71eU4ye5t6LM1RDE.crl (hash: 2Lks+MdCFpW+Yb9y1rFkJi62NyQZJqjU92Y5LIKjtXw=) 2: 74F996F62F2511EF8D78DC62C4F9AE02.roa (hash: sPimiMMVQ8HhWMH3h4YYvgrI9mvp3guGNNGoHKdWxG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FA49, serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Validity Not Before: Apr 16 16:43:28 2026 GMT Not After : Apr 23 16:43:28 2026 GMT Subject: CN=69e111b0-8ed9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:17:ad:3f:1f:b8:9c:fd:73:2c:86:df:3e:b3: c6:8d:ef:59:f6:36:2b:c5:09:a7:3c:68:fb:9a:11: ea:52:e6:32:b4:b4:5f:32:df:19:7d:78:b1:70:50: 3a:c5:85:34:b3:9f:a8:64:04:e5:f1:30:d9:29:60: 4a:08:ff:f3:34:cb:b7:49:9b:c9:04:aa:9a:bb:76: 8d:24:9a:d4:33:c5:10:56:f0:05:2b:f5:48:c7:1d: 89:aa:6b:2f:58:34:67:77:3f:da:d8:9d:7d:81:13: a2:61:02:87:3b:aa:ff:f6:10:85:02:70:cf:a5:23: 8c:5a:58:ad:27:53:12:2c:14:ac:0a:5a:e1:e7:57: f2:2e:81:73:18:d0:db:95:e4:9b:fa:1b:06:04:53: a0:88:9e:99:6e:ad:fd:a8:7a:74:96:4a:4d:67:53: ea:77:b2:4d:aa:b7:88:03:2f:f1:2d:f4:17:cb:ef: 45:67:a9:a6:f5:7b:d4:71:a1:e1:59:fe:4a:f0:7f: c4:26:97:7f:8b:57:c6:6a:65:19:e0:a9:2d:11:f8: 51:71:ae:de:bf:d6:a1:8f:67:2a:2d:21:43:4f:f1: b5:d0:99:95:23:5a:08:a2:f1:d9:d1:ed:df:c2:78: ea:4a:c2:19:1f:0e:f5:c3:cd:64:8c:67:23:39:6c: de:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:AE:DC:5F:F0:EC:6A:0E:33:E9:99:71:A7:53:FB:71:90:AB:2E:C9 X509v3 Authority Key Identifier: keyid:CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:5f:ed:0e:56:22:47:e9:1d:ba:f9:67:10:60:d8:e3:43:c9: bf:69:f8:d5:a3:ee:66:55:37:df:83:5d:ef:35:f6:71:8f:d1: 29:bf:54:4c:d3:d8:3a:55:0e:85:cb:c3:5f:79:cd:46:85:ce: ed:13:0e:c7:9f:bf:a6:76:c0:d0:36:38:c1:a1:be:db:74:d0: 73:f4:bd:f9:ce:ad:e4:a4:9f:af:e1:4e:ba:51:86:2f:3f:52: d6:05:c9:66:7f:e6:69:f1:ef:4b:26:77:9e:c8:55:38:6c:68: de:d9:af:8c:ec:d1:83:39:da:95:fb:9e:d1:d2:40:f9:76:21: c4:4c:52:f2:a7:c3:2e:37:1c:9c:f6:0f:1e:db:c4:69:95:36: c4:81:cd:35:08:e6:35:58:45:e8:25:42:72:04:3d:63:67:af: 10:cf:e9:55:26:98:78:00:29:6f:bc:28:a3:66:30:e4:4c:09: 3e:28:d3:c0:5e:5f:2b:c4:9d:f4:d3:c6:b1:4f:de:cb:e6:49: 30:7e:32:a7:2e:0e:aa:4e:f1:23:bc:bd:cc:7f:a3:e2:3c:bd: a0:46:c6:b4:da:cf:56:cd:1b:d2:c7:fd:a4:59:36:72:95:44: a9:db:90:32:98:43:69:55:5b:d5:b1:bb:0c:9d:0b:10:c5:b3: e7:09:b0:f8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBNDkxMTAvBgNVBAUTKENENjVFNjc0MEJBRTdFQjMzQkQ1RTUzOEM5RUU2REU4 QjMzNTQ0MzEwHhcNMjYwNDE2MTY0MzI4WhcNMjYwNDIzMTY0MzI4WjAYMRYwFAYD VQQDEw02OWUxMTFiMC04ZWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqRetPx+4nP1zLIbfPrPGje9Z9jYrxQmnPGj7mhHqUuYytLRfMt8ZfXixcFA6 xYU0s5+oZATl8TDZKWBKCP/zNMu3SZvJBKqau3aNJJrUM8UQVvAFK/VIxx2Jqmsv WDRndz/a2J19gROiYQKHO6r/9hCFAnDPpSOMWlitJ1MSLBSsClrh51fyLoFzGNDb leSb+hsGBFOgiJ6Zbq39qHp0lkpNZ1Pqd7JNqreIAy/xLfQXy+9FZ6mm9XvUcaHh Wf5K8H/EJpd/i1fGamUZ4KktEfhRca7ev9ahj2cqLSFDT/G10JmVI1oIovHZ0e3f wnjqSsIZHw71w81kjGcjOWzeBwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAeu3F/w 7GoOM+mZcadT+3GQqy7JMB8GA1UdIwQYMBaAFM1l5nQLrn6zO9XlOMnubeizNUQx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkE0OS9BNEMwQ0E5Njkw MDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZyTTcxZVU0eWU1dDZMTTFS REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pXWG1kQXV1ZnJNNzFlVTR5ZTV0NkxNMVJERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkE0OS9BNEMwQ0E5NjkwMDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZy TTcxZVU0eWU1dDZMTTFSREUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaV/tDlYiR+kduvlnEGDY40PJv2n41aPuZlU334Nd7zX2cY/RKb9UTNPYOlUO hcvDX3nNRoXO7RMOx5+/pnbA0DY4waG+23TQc/S9+c6t5KSfr+FOulGGLz9S1gXJ Zn/mafHvSyZ3nshVOGxo3tmvjOzRgznalfue0dJA+XYhxExS8qfDLjccnPYPHtvE aZU2xIHNNQjmNVhF6CVCcgQ9Y2evEM/pVSaYeAApb7woo2Yw5EwJPijTwF5fK8Sd 9NPGsU/ey+ZJMH4ypy4Oqk7xI7y9zH+j4jy9oEbGtNrPVs0b0sf9pFk2cpVEqduQ MphDaVVb1bG7DJ0LEMWz5wmw+A== -----END CERTIFICATE-----Generated at Sat Apr 18 00:06:46 2026 by rpki-client