$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.mft File: CBzlpnA274VGmQv1lMzWMoB0BR0.mft (raw, json) Hash identifier: V6h5wZRsxIZaCyOj1KlIY6klsy6yp6Yy6SiezCilfME= Subject key identifier: EF:B9:DE:89:ED:33:B6:F6:96:B1:1A:13:23:A7:7B:82:FD:F9:A3:2C Authority key identifier: 08:1C:E5:A6:70:36:EF:85:46:99:0B:F5:94:CC:D6:32:80:74:05:1D Certificate issuer: /CN=A91AB1F6/serialNumber=081CE5A67036EF8546990BF594CCD6328074051D Certificate serial: 0A1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CBzlpnA274VGmQv1lMzWMoB0BR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.mft Manifest number: 0A0F Signing time: Thu 16 Apr 2026 19:43:38 +0000 Manifest this update: Thu 16 Apr 2026 19:43:37 +0000 Manifest next update: Thu 23 Apr 2026 19:43:37 +0000 Files and hashes: 1: CBzlpnA274VGmQv1lMzWMoB0BR0.crl (hash: oDtWhM1c5Ry8iZNqXiNwFIBLlj6+TIufbxzrzJN9qZA=) 2: 59675AB20A4011F0AC302962C4F9AE02.roa (hash: 2Iz+yAVxYx71x7F/RxujD049uCoDIu8QgELmnr4mv9g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.crl rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CBzlpnA274VGmQv1lMzWMoB0BR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:43:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2588 (0xa1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB1F6, serialNumber=081CE5A67036EF8546990BF594CCD6328074051D Validity Not Before: Apr 16 19:43:37 2026 GMT Not After : Apr 23 19:43:37 2026 GMT Subject: CN=69e13bea-531a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:67:01:5d:d0:c6:c9:27:08:5c:86:12:d1:e7: 7a:03:4f:34:ce:c1:a2:f5:3f:15:4c:6f:2d:dd:07: 4f:8b:a2:f1:20:ea:06:be:0e:90:14:31:8d:45:9f: 33:c3:59:3a:a7:af:36:16:01:e3:5d:7e:76:2c:e0: e1:30:e8:77:a7:3c:4a:1c:96:9e:fd:15:fa:f7:e6: f9:2b:af:25:78:35:fe:c7:40:26:c6:10:ac:89:eb: f4:92:f8:c6:9c:10:f5:2d:43:49:7d:16:16:d8:54: d9:72:40:72:21:c4:16:51:f5:99:13:c7:ab:d1:3b: 50:b4:cc:b6:12:86:d8:4b:6f:9e:03:1e:8a:f6:82: 55:55:d4:7c:b2:44:f1:cf:e1:70:37:c8:92:5b:8a: 5e:a3:6e:26:60:9f:86:14:81:f9:5d:b6:6c:88:81: db:a0:15:2f:71:8d:c9:a5:d0:99:dd:2e:b2:60:c6: 6a:a1:4e:96:4b:1c:23:4f:85:55:65:a9:27:b7:2d: d0:85:dc:c8:9f:11:57:cb:67:50:1e:9c:2a:fa:60: fc:74:01:4c:35:93:ac:3c:c8:13:f6:fc:82:c8:26: ca:b2:e3:ff:14:2f:30:49:35:2e:d9:44:d0:c5:11: dd:79:b3:fe:73:fe:4c:a7:c2:ec:32:6e:dc:8f:0e: 11:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:B9:DE:89:ED:33:B6:F6:96:B1:1A:13:23:A7:7B:82:FD:F9:A3:2C X509v3 Authority Key Identifier: keyid:08:1C:E5:A6:70:36:EF:85:46:99:0B:F5:94:CC:D6:32:80:74:05:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CBzlpnA274VGmQv1lMzWMoB0BR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB1F6/0F14015094C911EAB1DB627CC4F9AE02/CBzlpnA274VGmQv1lMzWMoB0BR0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:ed:8e:34:0b:67:3a:e8:ed:1c:3f:30:ec:f3:6f:79:cd:cb: bd:d9:9c:45:8d:d0:d6:6c:e0:4e:ef:ca:a7:9d:cb:c9:58:9f: 33:21:b9:be:3e:b2:4f:ee:b1:be:1d:81:60:2b:e5:dd:da:07: cd:ca:c9:e7:15:e1:10:79:1c:a7:fb:94:e0:2c:a2:80:a8:a5: 38:94:c2:ee:0e:44:7f:67:68:97:71:e8:a5:31:17:c7:5f:d4: fc:9b:4b:b5:04:67:e0:3e:d2:47:e3:75:76:e9:0a:ef:9c:8c: f7:29:4a:d0:09:51:5d:b3:21:62:6b:a7:c7:57:0d:6d:dd:63: d7:58:9f:93:72:39:31:a7:2e:a3:59:3b:c2:c7:8c:03:8e:7a: 52:97:9b:b3:82:19:ba:b6:0c:4b:8f:25:3a:79:6c:36:8c:d7: 1a:f8:63:95:91:70:93:fe:e0:ad:28:49:a9:ee:d5:71:56:52: d4:f2:79:ab:24:bd:5e:5e:bf:cc:8c:66:a6:0f:aa:3d:27:0f: c5:df:d6:79:c0:f9:61:9d:55:af:c8:18:f7:29:1f:fe:9c:cb: 2f:89:89:9a:cb:63:00:4d:8c:13:f3:f6:c9:eb:4c:f9:e9:6d: 93:10:a1:e9:d0:a8:a9:64:7e:3f:f0:bc:ec:89:c0:2d:a2:c5: bb:d5:e7:67 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICChwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIxRjYxMTAvBgNVBAUTKDA4MUNFNUE2NzAzNkVGODU0Njk5MEJGNTk0Q0NENjMy ODA3NDA1MUQwHhcNMjYwNDE2MTk0MzM3WhcNMjYwNDIzMTk0MzM3WjAYMRYwFAYD VQQDEw02OWUxM2JlYS01MzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2cBXdDGyScIXIYS0ed6A080zsGi9T8VTG8t3QdPi6LxIOoGvg6QFDGNRZ8z w1k6p682FgHjXX52LODhMOh3pzxKHJae/RX69+b5K68leDX+x0AmxhCsiev0kvjG nBD1LUNJfRYW2FTZckByIcQWUfWZE8er0TtQtMy2EobYS2+eAx6K9oJVVdR8skTx z+FwN8iSW4peo24mYJ+GFIH5XbZsiIHboBUvcY3JpdCZ3S6yYMZqoU6WSxwjT4VV Zaknty3QhdzInxFXy2dQHpwq+mD8dAFMNZOsPMgT9vyCyCbKsuP/FC8wSTUu2UTQ xRHdebP+c/5Mp8LsMm7cjw4RtwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO+53ont M7b2lrEaEyOne4L9+aMsMB8GA1UdIwQYMBaAFAgc5aZwNu+FRpkL9ZTM1jKAdAUd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjFGNi8wRjE0MDE1MDk0 QzkxMUVBQjFEQjYyN0NDNEY5QUUwMi9DQnpscG5BMjc0VkdtUXYxbE16V01vQjBC UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NCemxwbkEyNzRWR21RdjFsTXpXTW9CMEJSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjFGNi8wRjE0MDE1MDk0QzkxMUVBQjFEQjYyN0NDNEY5QUUwMi9DQnpscG5BMjc0 VkdtUXYxbE16V01vQjBCUjAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACe2ONAtnOujtHD8w7PNvec3LvdmcRY3Q1mzgTu/Kp53LyVifMyG5vj6yT+6x vh2BYCvl3doHzcrJ5xXhEHkcp/uU4CyigKilOJTC7g5Ef2dol3HopTEXx1/U/JtL tQRn4D7SR+N1dukK75yM9ylK0AlRXbMhYmunx1cNbd1j11ifk3I5Macuo1k7wseM A456Upebs4IZurYMS48lOnlsNozXGvhjlZFwk/7grShJqe7VcVZS1PJ5qyS9Xl6/ zIxmpg+qPScPxd/WecD5YZ1Vr8gY9ykf/pzLL4mJmstjAE2ME/P2yetM+eltkxCh 6dCoqWR+P/C87InALaLFu9XnZw== -----END CERTIFICATE-----Generated at Fri Apr 17 18:03:40 2026 by rpki-client