$ rpki-client -vvf rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft File: tZsFZqgqmDvebfHF3kxYLJvKg5I.mft (raw, json) Hash identifier: /35GHs7mMwrRBT9ag7dwocAB856ZJMeE1Y9Nnkfhcbc= Subject key identifier: 25:BF:FF:50:09:3D:95:EF:F5:03:54:DB:1F:7E:58:BC:D2:A5:A1:9E Authority key identifier: B5:9B:05:66:A8:2A:98:3B:DE:6D:F1:C5:DE:4C:58:2C:9B:CA:83:92 Certificate issuer: /CN=A917C71E/serialNumber=B59B0566A82A983BDE6DF1C5DE4C582C9BCA8392 Certificate serial: 0CA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft Manifest number: 0C88 Signing time: Thu 16 Apr 2026 18:33:33 +0000 Manifest this update: Thu 16 Apr 2026 18:33:32 +0000 Manifest next update: Thu 23 Apr 2026 18:33:32 +0000 Files and hashes: 1: tZsFZqgqmDvebfHF3kxYLJvKg5I.crl (hash: g0HNl9c2kFdJxam3cMI7VMQlna/6uJtKYlrkfK2leBA=) 2: CB46AC50509111EF9E40402FC4F9AE02.roa (hash: J2Vubqi8ic0NqlP+qdXl9htU+adGeTvh1ITR3W4ptX4=) 3: CFF8393A232C11F0B9CB2044C4F9AE02.roa (hash: nEmNA11Dyl7nTFmnZC9S6fy/8rzvC71ench9nRz81iE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.crl rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3239 (0xca7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C71E, serialNumber=B59B0566A82A983BDE6DF1C5DE4C582C9BCA8392 Validity Not Before: Apr 16 18:33:32 2026 GMT Not After : Apr 23 18:33:32 2026 GMT Subject: CN=69e12b7c-00b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:05:3c:03:70:57:43:92:d6:c8:5a:6d:cc:2c: 36:6c:ef:67:55:d2:37:a5:10:04:50:a3:25:ed:c9: 91:a9:27:5f:c6:45:d0:20:c3:fe:a6:03:9a:69:35: 26:a7:cc:26:c9:cf:f2:06:ef:f8:ef:93:d5:e0:d9: 19:61:32:0d:ac:70:02:6f:04:e7:df:df:dc:35:92: 08:fe:10:bd:e8:69:a1:74:7e:cc:89:2c:c1:a3:14: cd:5f:eb:5b:b8:13:75:d3:ed:d1:54:cf:1a:ae:73: 57:bc:0f:50:dd:82:8e:0a:c4:0c:f4:a3:99:58:a4: df:62:13:62:a7:b1:aa:37:6e:f5:41:a7:a1:ad:c8: d1:56:51:a9:1e:ca:e5:08:6c:eb:8b:7d:ef:37:97: 66:33:3a:61:7e:0a:ed:d9:46:7e:35:44:89:51:7e: f5:fb:36:84:fc:f7:9e:a9:26:27:37:57:2b:51:88: ed:9f:d1:9d:30:75:50:0c:54:6e:71:6a:32:74:8d: 1a:cf:2a:99:53:83:81:54:de:a9:dc:37:55:1e:65: 31:4f:98:52:d1:4c:32:36:6c:7d:67:d3:ef:f4:b5: 20:7e:2f:7b:e7:5f:58:fc:f5:49:7a:e9:f9:24:a3: 15:f5:2f:0b:32:89:31:ba:b9:96:88:16:b9:eb:85: 22:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:BF:FF:50:09:3D:95:EF:F5:03:54:DB:1F:7E:58:BC:D2:A5:A1:9E X509v3 Authority Key Identifier: keyid:B5:9B:05:66:A8:2A:98:3B:DE:6D:F1:C5:DE:4C:58:2C:9B:CA:83:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:b5:9e:6c:68:89:01:97:5d:2e:e8:fc:2c:f2:fe:5e:bf:89: 8d:39:9d:6a:3a:fb:ae:48:7a:1a:2a:5c:83:8f:99:ec:b6:c9: 6e:9d:3b:4f:58:34:35:0a:f0:2b:c7:e2:01:8e:51:66:f5:38: 89:06:9e:61:d8:d9:3a:36:47:91:7c:ce:06:28:ca:7f:34:a7: e3:37:19:d5:94:34:bf:d9:05:73:e2:71:e1:b6:ac:48:08:5b: 2b:39:2a:98:d8:8f:2b:ba:de:8f:d3:0a:22:5d:8d:8c:ba:7e: 5f:f8:7b:e3:4e:75:af:66:39:65:b0:85:43:ff:1d:ae:19:69: 0e:6e:95:61:94:5b:0b:f0:62:67:d9:71:16:7b:e7:be:0f:c1: 7a:0d:ad:7e:8d:c5:5a:dc:8f:fd:c8:9f:8d:21:5c:28:a5:c9: 4a:3d:93:4a:03:44:9b:91:b3:ad:7c:70:bf:44:e8:34:85:7d: a1:49:45:74:c3:ab:a9:73:8a:6a:b4:c1:67:19:83:96:f4:90: ff:56:a7:3f:77:d9:1f:f6:ae:5e:27:66:ae:6b:7d:b5:5d:15: 29:10:ab:80:1f:23:1b:58:4a:9b:98:f5:97:73:7b:47:1e:36: 9a:0c:01:26:b6:1a:55:58:e6:fc:7d:f0:1b:38:ec:ee:8f:ca: ce:1c:19:51 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M3MUUxMTAvBgNVBAUTKEI1OUIwNTY2QTgyQTk4M0JERTZERjFDNURFNEM1ODJD OUJDQTgzOTIwHhcNMjYwNDE2MTgzMzMyWhcNMjYwNDIzMTgzMzMyWjAYMRYwFAYD VQQDEw02OWUxMmI3Yy0wMGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAngU8A3BXQ5LWyFptzCw2bO9nVdI3pRAEUKMl7cmRqSdfxkXQIMP+pgOaaTUm p8wmyc/yBu/475PV4NkZYTINrHACbwTn39/cNZII/hC96GmhdH7MiSzBoxTNX+tb uBN10+3RVM8arnNXvA9Q3YKOCsQM9KOZWKTfYhNip7GqN271QaehrcjRVlGpHsrl CGzri33vN5dmMzphfgrt2UZ+NUSJUX71+zaE/PeeqSYnN1crUYjtn9GdMHVQDFRu cWoydI0azyqZU4OBVN6p3DdVHmUxT5hS0UwyNmx9Z9Pv9LUgfi97519Y/PVJeun5 JKMV9S8LMokxurmWiBa564UilQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCW//1AJ PZXv9QNU2x9+WLzSpaGeMB8GA1UdIwQYMBaAFLWbBWaoKpg73m3xxd5MWCybyoOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzcxRS9DNzhFNEE3MjFD QTgxMUVBOENCQjQ1NDNDNEY5QUUwMi90WnNGWnFncW1EdmViZkhGM2t4WUxKdktn NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rac0ZacWdxbUR2ZWJmSEYza3hZTEp2S2c1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzcxRS9DNzhFNEE3MjFDQTgxMUVBOENCQjQ1NDNDNEY5QUUwMi90WnNGWnFncW1E dmViZkhGM2t4WUxKdktnNUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAtrWebGiJAZddLuj8LPL+Xr+JjTmdajr7rkh6Gipcg4+Z7LbJbp07T1g0NQrw K8fiAY5RZvU4iQaeYdjZOjZHkXzOBijKfzSn4zcZ1ZQ0v9kFc+Jx4basSAhbKzkq mNiPK7rej9MKIl2NjLp+X/h74051r2Y5ZbCFQ/8drhlpDm6VYZRbC/BiZ9lxFnvn vg/Beg2tfo3FWtyP/cifjSFcKKXJSj2TSgNEm5GzrXxwv0ToNIV9oUlFdMOrqXOK arTBZxmDlvSQ/1anP3fZH/auXidmrmt9tV0VKRCrgB8jG1hKm5j1l3N7Rx42mgwB JrYaVVjm/H3wGzjs7o/KzhwZUQ== -----END CERTIFICATE-----Generated at Fri Apr 17 19:11:54 2026 by rpki-client