$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft File: z8CATaxP_3oipAThDphkpxHeGck.mft (raw, json) Hash identifier: y6igHK5A2JLuPHbWUQGCv5AW66FT3vm/YCthw1t1Hg0= Subject key identifier: F4:68:A5:C5:89:CD:7A:B0:82:36:57:F2:8B:B0:25:C1:F8:72:25:C9 Authority key identifier: CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 Certificate issuer: /CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft Manifest number: 0131 Signing time: Sun 19 Apr 2026 05:10:15 +0000 Manifest this update: Sun 19 Apr 2026 05:10:14 +0000 Manifest next update: Sun 26 Apr 2026 05:10:14 +0000 Files and hashes: 1: z8CATaxP_3oipAThDphkpxHeGck.crl (hash: GKXT8GUDvQ/Vwk4c9OYk/tilFBgryERYIw9naCrhmXQ=) 2: BCA395126C1811EFAFBE6B0FC4F9AE02.roa (hash: YuQff5ZM6ktoeLhGQjtDQt4j9brqyCXl9qvUHGQ/W6c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A12C4, serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Validity Not Before: Apr 19 05:10:14 2026 GMT Not After : Apr 26 05:10:14 2026 GMT Subject: CN=69e463b7-882f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:09:48:dd:1b:f9:7a:e0:e6:2e:6b:16:df:88: 11:ed:de:30:bc:ae:8f:2d:b0:cc:7a:76:58:37:3d: ee:40:86:4a:cd:46:1b:b0:40:88:9c:40:ce:f5:f6: 91:72:b9:4c:2f:de:af:b9:97:b6:a5:e7:84:a9:9c: 28:6d:be:1d:ca:10:97:57:d2:e1:44:be:d9:6b:fa: 52:b0:3e:ee:a4:9a:3f:ac:cc:5a:49:e5:0f:46:22: fa:26:e0:c7:c1:73:53:43:c2:59:43:95:d3:fb:1d: 0a:57:96:16:ec:b7:9c:67:bb:7b:e5:61:71:a5:c6: 44:ef:65:36:41:5b:ed:9c:16:75:52:99:4d:dd:3b: d3:f3:c5:dd:cb:27:54:15:83:9c:5b:84:84:62:d0: 71:c6:95:23:a4:a5:ac:0e:4f:07:ed:d4:67:8b:ae: d0:2b:7e:0a:25:ff:e4:7d:a3:b1:a3:6c:7c:77:ff: 02:b5:dd:54:e1:38:35:a8:19:8f:36:d5:54:21:14: 0c:bb:2d:0a:df:b6:6f:b1:f3:43:23:d1:70:d5:4d: 8e:6c:53:39:40:60:16:36:ff:ce:dd:fe:87:4e:33: bf:6b:ff:5d:bc:f7:5f:b5:3a:c7:1e:78:5f:9c:22: dc:cd:36:b7:95:3f:b3:2b:04:7f:46:9b:06:97:03: ee:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:68:A5:C5:89:CD:7A:B0:82:36:57:F2:8B:B0:25:C1:F8:72:25:C9 X509v3 Authority Key Identifier: keyid:CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:43:ee:d6:35:0b:92:db:a2:ed:6f:f2:e6:d1:ec:03:fb:3a: 55:8a:af:70:ab:23:2d:fa:79:c6:47:96:c5:4b:6e:3a:36:7f: 33:ee:62:2e:a6:bc:fb:88:39:bb:86:54:2a:e7:b4:8b:93:fe: 35:dc:a7:b0:e0:f2:ce:96:f2:d4:fb:4d:b3:33:c6:de:d2:30: e0:cf:65:a1:74:70:7b:04:98:e4:66:24:0b:15:d1:33:73:6e: a2:fb:73:ae:68:23:e6:22:f2:e8:53:e9:07:5e:45:bd:8b:72: 42:7b:b0:48:f1:91:ad:d3:46:b2:2d:de:58:45:52:6b:9b:81: cc:16:3f:43:8e:79:5d:b6:d4:45:72:d2:cf:2b:03:e8:e2:66: 3b:b8:ba:d7:d6:be:f8:a6:84:91:56:18:23:b8:c8:8c:bc:c5: cb:b9:8e:9f:ff:06:a7:f0:c4:be:29:3c:1f:0f:1c:16:42:e2: f9:e0:01:89:db:d7:9c:bf:b4:82:7e:64:3f:d9:80:69:15:13: ea:30:3d:a1:1b:01:ac:e9:2c:29:82:99:c5:53:05:f1:7b:0d: ca:87:48:e5:3a:31:ed:6d:75:65:b1:7c:d4:8e:74:d4:7c:13: 13:d2:8f:24:aa:58:ec:cb:3f:90:8e:f7:47:12:d6:6a:ab:fd: 45:a8:4e:cb -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEyQzQxMTAvBgNVBAUTKENGQzA4MDREQUM0RkZGN0EyMkE0MDRFMTBFOTg2NEE3 MTFERTE5QzkwHhcNMjYwNDE5MDUxMDE0WhcNMjYwNDI2MDUxMDE0WjAYMRYwFAYD VQQDEw02OWU0NjNiNy04ODJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwlI3Rv5euDmLmsW34gR7d4wvK6PLbDMenZYNz3uQIZKzUYbsECInEDO9faR crlML96vuZe2peeEqZwobb4dyhCXV9LhRL7Za/pSsD7upJo/rMxaSeUPRiL6JuDH wXNTQ8JZQ5XT+x0KV5YW7LecZ7t75WFxpcZE72U2QVvtnBZ1UplN3TvT88XdyydU FYOcW4SEYtBxxpUjpKWsDk8H7dRni67QK34KJf/kfaOxo2x8d/8Ctd1U4Tg1qBmP NtVUIRQMuy0K37ZvsfNDI9Fw1U2ObFM5QGAWNv/O3f6HTjO/a/9dvPdftTrHHnhf nCLczTa3lT+zKwR/RpsGlwPuqQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPRopcWJ zXqwgjZX8ouwJcH4ciXJMB8GA1UdIwQYMBaAFM/AgE2sT/96IqQE4Q6YZKcR3hnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTJDNC9GMzE5RURDMjZD MTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8zb2lwQVRoRHBoa3B4SGVH Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o4Q0FUYXhQXzNvaXBBVGhEcGhrcHhIZUdjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTJDNC9GMzE5RURDMjZDMTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8z b2lwQVRoRHBoa3B4SGVHY2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAP0Pu1jULktui7W/y5tHsA/s6VYqvcKsjLfp5xkeWxUtuOjZ/M+5iLqa8+4g5 u4ZUKue0i5P+NdynsODyzpby1PtNszPG3tIw4M9loXRwewSY5GYkCxXRM3Nuovtz rmgj5iLy6FPpB15FvYtyQnuwSPGRrdNGsi3eWEVSa5uBzBY/Q455XbbURXLSzysD 6OJmO7i619a++KaEkVYYI7jIjLzFy7mOn/8Gp/DEvik8Hw8cFkLi+eABidvXnL+0 gn5kP9mAaRUT6jA9oRsBrOksKYKZxVMF8XsNyodI5Tox7W11ZbF81I501HwTE9KP JKpY7Ms/kI73RxLWaqv9RahOyw== -----END CERTIFICATE-----Generated at Sun Apr 19 13:00:10 2026 by rpki-client