$ rpki-client -vvf rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft File: z7B65d0AqScU2zWnIQRdnS644xc.mft (raw, json) Hash identifier: VgpiPvtIp/m4VT0noPNJSi+oQd5pFAvAf6mo4R3anas= Subject key identifier: 3F:A1:3E:17:85:CE:AB:94:D1:77:23:5B:8D:96:2E:5F:23:42:B7:7D Authority key identifier: CF:B0:7A:E5:DD:00:A9:27:14:DB:35:A7:21:04:5D:9D:2E:B8:E3:17 Certificate issuer: /CN=A9189A9F/serialNumber=CFB07AE5DD00A92714DB35A721045D9D2EB8E317 Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft Manifest number: 0519 Signing time: Fri 17 Apr 2026 00:01:52 +0000 Manifest this update: Fri 17 Apr 2026 00:01:51 +0000 Manifest next update: Fri 24 Apr 2026 00:01:51 +0000 Files and hashes: 1: z7B65d0AqScU2zWnIQRdnS644xc.crl (hash: ndaJx8VtBFzYmNW1pIALQj1AxQVBWmlIIcPbOHtP75I=) 2: 42A92B3C3BAC11F0882B5B62C4F9AE02.roa (hash: Ldtk1QgKSc4JP0Q3siQTv93L/D7QNMS7/sCdcQDy9Co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.crl rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 00:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189A9F, serialNumber=CFB07AE5DD00A92714DB35A721045D9D2EB8E317 Validity Not Before: Apr 17 00:01:51 2026 GMT Not After : Apr 24 00:01:51 2026 GMT Subject: CN=69e17870-a8f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:90:a9:36:a2:63:f4:71:e3:71:f5:b6:88:4b: 11:3a:b8:04:d2:6c:67:b7:c0:73:35:c8:0a:da:7e: 3f:b7:29:bf:24:cd:00:fd:36:8a:b2:29:ef:9e:29: 69:a0:7a:97:db:a9:54:f5:c2:fc:76:f2:ce:27:22: 02:df:00:5b:c5:5a:38:b0:d8:20:c7:50:ea:eb:1e: c7:de:5e:2e:ae:cd:ce:c1:e2:1e:78:f5:4d:78:a6: 03:22:c9:5d:7e:d4:f5:97:e1:49:46:70:86:59:4b: f2:b4:b2:34:57:0e:62:f5:ba:ff:aa:c1:d9:23:cf: 74:1c:20:db:4e:02:1b:c5:76:f9:f8:aa:86:7a:1e: e0:24:25:bb:ae:f1:ee:32:9a:5c:54:2e:f3:24:b1: 76:0f:55:38:46:e3:b3:7a:8d:a0:03:bb:02:74:57: d6:e7:f7:18:2a:dc:14:f8:70:8f:4e:f5:d8:09:4c: 42:b6:d1:67:a9:73:0f:2a:dd:ae:a2:a4:50:98:6e: f5:4e:f8:d2:a0:a6:fb:0a:5d:29:15:64:51:fe:bf: 92:1a:fb:04:22:70:e1:16:2b:45:31:ac:f8:a8:e9: 88:1d:6e:a4:d0:c4:68:11:3b:aa:4f:9a:83:25:27: a6:24:a1:9c:d9:06:57:3e:a0:39:21:74:09:64:4e: 3d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:A1:3E:17:85:CE:AB:94:D1:77:23:5B:8D:96:2E:5F:23:42:B7:7D X509v3 Authority Key Identifier: keyid:CF:B0:7A:E5:DD:00:A9:27:14:DB:35:A7:21:04:5D:9D:2E:B8:E3:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:cb:6f:50:3b:8b:a9:ab:61:1d:92:63:81:d0:67:22:5b:af: 2c:84:ce:ed:fd:0a:9f:1b:99:a4:55:73:7e:8d:8e:0a:06:bf: e7:3a:63:50:63:19:36:15:89:24:8a:92:18:2e:8c:0d:2f:c9: 62:e9:34:16:32:3a:3b:a4:bc:e0:50:53:d2:bb:cf:4a:6c:b4: 8c:3a:f9:52:b8:7d:86:fd:c4:2b:be:7d:f3:00:dd:61:60:19: 02:38:92:47:ae:5a:93:03:14:80:8a:b5:a8:b3:dc:0e:33:48: 9b:a1:ec:4e:99:23:aa:35:ea:08:8c:e2:76:87:58:97:d7:6f: 4e:c0:10:c4:e1:bd:93:72:e1:e3:ad:42:de:4b:c0:a2:ae:ac: 85:62:99:6e:a2:9e:40:07:33:4f:2c:9c:0c:13:07:d7:bc:fc: f0:66:cc:40:6e:09:e9:94:9b:1f:89:c8:c6:9e:a1:9c:da:55: 7b:5e:15:91:b0:71:ee:7a:9e:65:f9:df:52:42:fd:69:7a:5a: 23:ba:9e:ad:32:70:9d:74:62:e8:02:1f:fc:d5:58:45:ab:e9: bb:51:a8:ee:2d:f3:16:c7:15:93:09:55:33:94:f1:18:b2:ee: 12:36:69:b9:9c:f0:1e:64:7a:a8:e5:85:ce:51:d3:f2:ec:43: a6:96:0a:84 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlBOUYxMTAvBgNVBAUTKENGQjA3QUU1REQwMEE5MjcxNERCMzVBNzIxMDQ1RDlE MkVCOEUzMTcwHhcNMjYwNDE3MDAwMTUxWhcNMjYwNDI0MDAwMTUxWjAYMRYwFAYD VQQDEw02OWUxNzg3MC1hOGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZCpNqJj9HHjcfW2iEsROrgE0mxnt8BzNcgK2n4/tym/JM0A/TaKsinvnilp oHqX26lU9cL8dvLOJyIC3wBbxVo4sNggx1Dq6x7H3l4urs3OweIeePVNeKYDIsld ftT1l+FJRnCGWUvytLI0Vw5i9br/qsHZI890HCDbTgIbxXb5+KqGeh7gJCW7rvHu MppcVC7zJLF2D1U4RuOzeo2gA7sCdFfW5/cYKtwU+HCPTvXYCUxCttFnqXMPKt2u oqRQmG71TvjSoKb7Cl0pFWRR/r+SGvsEInDhFitFMaz4qOmIHW6k0MRoETuqT5qD JSemJKGc2QZXPqA5IXQJZE492QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD+hPheF zquU0XcjW42WLl8jQrd9MB8GA1UdIwQYMBaAFM+weuXdAKknFNs1pyEEXZ0uuOMX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUE5Ri84MDU2QkE1NjhB OTAxMUVDOEMxQjBEMjJDNEY5QUUwMi96N0I2NWQwQXFTY1UyelduSVFSZG5TNjQ0 eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o3QjY1ZDBBcVNjVTJ6V25JUVJkblM2NDR4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUE5Ri84MDU2QkE1NjhBOTAxMUVDOEMxQjBEMjJDNEY5QUUwMi96N0I2NWQwQXFT Y1UyelduSVFSZG5TNjQ0eGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACctvUDuLqathHZJjgdBnIluvLITO7f0KnxuZpFVzfo2OCga/5zpjUGMZNhWJ JIqSGC6MDS/JYuk0FjI6O6S84FBT0rvPSmy0jDr5Urh9hv3EK7598wDdYWAZAjiS R65akwMUgIq1qLPcDjNIm6HsTpkjqjXqCIzidodYl9dvTsAQxOG9k3Lh461C3kvA oq6shWKZbqKeQAczTyycDBMH17z88GbMQG4J6ZSbH4nIxp6hnNpVe14VkbBx7nqe ZfnfUkL9aXpaI7qerTJwnXRi6AIf/NVYRavpu1Go7i3zFscVkwlVM5TxGLLuEjZp uZzwHmR6qOWFzlHT8uxDppYKhA== -----END CERTIFICATE-----Generated at Fri Apr 17 19:04:13 2026 by rpki-client