$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft File: zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft (raw, json) Hash identifier: 41lC4uQvvvGwSiEaoaX07USgFR2KDxnyJvsDIFkG9xo= Subject key identifier: 3D:9E:98:8F:4B:B4:A8:02:AB:7F:3D:7D:CF:E8:EA:D9:B1:61:A6:80 Authority key identifier: CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 Certificate issuer: /CN=A91A4B1A/serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Certificate serial: 1EE5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft Manifest number: 1EB1 Signing time: Thu 16 Apr 2026 16:00:26 +0000 Manifest this update: Thu 16 Apr 2026 16:00:25 +0000 Manifest next update: Thu 23 Apr 2026 16:00:25 +0000 Files and hashes: 1: zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl (hash: Dn2i2lFSnskvDmM/RyXGmRtpSLaabggNLHdQE7vPk7s=) 2: 1DBC9D405DB411EEA017251AC4F9AE02.roa (hash: MORsfRo625k6Z6J+RgEowsAvarYUIEu/pPax0H0xX08=) 3: 4A6679EC14DF11EEAB46A86DC4F9AE02.roa (hash: ZF+S9Eq6dimNzHWGXtdSSL8R6tb42i721A8ipARJHDg=) 4: 4999305414DF11EEAB46A86DC4F9AE02.roa (hash: SP9KLqagmi8apHAQ/A1PSM4jrXC2JUZTS6enHcX0VwU=) 5: 4B52A44814DF11EEAB46A86DC4F9AE02.roa (hash: TptByVGgUQdWR0MavGH9OYmCsbH/nXydqU06KChwsXI=) 6: 4CE75372B9DE11EEBC5B0D21C4F9AE02.roa (hash: fuTljzKvBea7sJt2VNckungbhAnkDIYji3I6D462WJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7909 (0x1ee5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A, serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Validity Not Before: Apr 16 16:00:25 2026 GMT Not After : Apr 23 16:00:25 2026 GMT Subject: CN=69e1079a-5735 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0b:b3:2a:73:51:4d:f3:d8:3b:16:0b:a8:67: 1f:ad:78:ac:57:aa:9e:b1:f7:5d:d6:d9:5e:6e:d1: 3f:54:dd:9b:f2:81:50:3c:26:94:83:c9:c8:70:6f: 8a:7e:0c:04:89:4b:40:9f:57:c1:19:16:4b:0e:f8: 66:0b:b5:23:69:a0:19:74:af:d0:00:b7:c4:37:37: 2d:79:39:6d:64:03:1f:7e:5e:b1:d0:43:5a:d2:a4: 2e:5d:a5:25:4b:ed:85:01:84:b0:14:c7:2a:6f:59: 04:ca:b0:82:b5:c5:5c:19:93:f1:09:7b:70:b2:b2: 82:58:bb:fb:fb:68:65:e7:d4:10:6e:93:63:68:a6: 89:85:d6:d5:df:60:8e:6a:89:21:de:b0:61:5e:72: 03:e9:00:03:aa:77:20:13:fe:ae:cb:f3:eb:bd:12: 93:f4:6d:4a:78:1e:82:86:8e:dd:c8:a4:b9:e0:91: a9:a3:1d:73:0f:00:59:33:15:c6:c8:9a:67:8a:c0: a5:f7:bb:4c:ef:a6:ef:3b:ad:1a:d9:ac:ff:5a:0f: 32:d4:57:6b:9e:48:fc:4f:38:e8:b3:89:45:12:bb: 4b:74:97:12:49:5e:b3:85:cd:1c:33:ce:1c:ca:4e: fb:68:17:a6:b8:2c:14:ef:ea:14:a1:28:fe:54:0d: 51:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:9E:98:8F:4B:B4:A8:02:AB:7F:3D:7D:CF:E8:EA:D9:B1:61:A6:80 X509v3 Authority Key Identifier: keyid:CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:21:6b:bd:e2:6f:c4:b4:33:39:42:9d:32:bc:fc:70:53:17: 41:b7:fe:8c:92:84:25:b4:5f:c8:a3:16:be:eb:31:db:53:4d: 4a:33:82:50:b1:17:75:b3:9a:af:90:24:aa:94:3e:a6:e0:87: 79:ed:b0:ad:a8:e8:6b:99:24:c3:99:52:08:5d:82:b1:1f:20: d2:c5:cf:c5:02:0b:1a:10:b8:a0:e4:06:67:10:16:c6:d9:77: 90:6d:9f:69:6e:5e:1d:78:66:ff:3a:96:f6:30:55:c9:6f:08: 57:ac:fc:3f:97:91:b3:5c:39:9c:63:27:a8:4e:96:0c:ee:c6: e2:ef:98:81:18:5e:9f:37:65:f7:06:df:7e:f2:bb:45:e5:f8: 83:5a:80:c7:97:7c:8c:0d:c5:7c:d5:4d:de:cf:11:c5:f9:ac: 42:53:41:56:14:1a:66:f0:f4:b1:ad:1d:17:8d:2c:80:aa:b3: 48:72:74:33:c5:a1:5a:88:0e:ee:ec:89:c6:b1:b0:c2:eb:79: ee:e0:f8:ff:35:ba:95:a8:d2:30:e4:5a:ab:a2:88:5e:64:e3: cd:a4:af:84:52:52:88:3f:84:ef:88:31:42:1d:d0:ea:31:73: cb:f8:01:53:72:10:eb:9e:9c:38:e3:fd:4e:dd:98:aa:a0:92: cd:7b:ad:ff -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKENFMTE0NjgwRkY2RjREOUJDM0YxODgwRDYxMEQ2QUVF RUFFQkYwRDQwHhcNMjYwNDE2MTYwMDI1WhcNMjYwNDIzMTYwMDI1WjAYMRYwFAYD VQQDEw02OWUxMDc5YS01NzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswuzKnNRTfPYOxYLqGcfrXisV6qesfdd1tlebtE/VN2b8oFQPCaUg8nIcG+K fgwEiUtAn1fBGRZLDvhmC7UjaaAZdK/QALfENzcteTltZAMffl6x0ENa0qQuXaUl S+2FAYSwFMcqb1kEyrCCtcVcGZPxCXtwsrKCWLv7+2hl59QQbpNjaKaJhdbV32CO aokh3rBhXnID6QADqncgE/6uy/PrvRKT9G1KeB6Cho7dyKS54JGpox1zDwBZMxXG yJpnisCl97tM76bvO60a2az/Wg8y1Fdrnkj8Tzjos4lFErtLdJcSSV6zhc0cM84c yk77aBemuCwU7+oUoSj+VA1R/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFD2emI9L tKgCq389fc/o6tmxYaaAMB8GA1UdIwQYMBaAFM4RRoD/b02bw/GIDWENau7q6/DU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS81REQ0OEFCNjg5 RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRadkQ4WWdOWVExcTd1cnI4 TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3poRkdnUDl2VFp2RDhZZ05ZUTFxN3VycjhOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIxQS81REQ0OEFCNjg5RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRa dkQ4WWdOWVExcTd1cnI4TlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsSFrveJvxLQzOUKdMrz8cFMXQbf+jJKEJbRfyKMWvusx21NNSjOCULEXdbOa r5AkqpQ+puCHee2wrajoa5kkw5lSCF2CsR8g0sXPxQILGhC4oOQGZxAWxtl3kG2f aW5eHXhm/zqW9jBVyW8IV6z8P5eRs1w5nGMnqE6WDO7G4u+YgRhenzdl9wbffvK7 ReX4g1qAx5d8jA3FfNVN3s8RxfmsQlNBVhQaZvD0sa0dF40sgKqzSHJ0M8WhWogO 7uyJxrGwwut57uD4/zW6lajSMORaq6KIXmTjzaSvhFJSiD+E74gxQh3Q6jFzy/gB U3IQ656cOOP9Tt2YqqCSzXut/w== -----END CERTIFICATE-----Generated at Fri Apr 17 23:42:02 2026 by rpki-client