$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft File: 72Z43AzrNBQcZKGKskv4bKsvvTU.mft (raw, json) Hash identifier: 4N37MoeHW1pQmky6Ikn31XZGRUtwIJIbSFUobp8fK2Q= Subject key identifier: 91:D4:1E:E3:2F:97:58:90:C6:11:BE:21:16:FA:B7:C4:05:D6:64:8C Authority key identifier: EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 Certificate issuer: /CN=A91BAE34/serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Certificate serial: 056A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft Manifest number: 0556 Signing time: Thu 16 Apr 2026 23:20:26 +0000 Manifest this update: Thu 16 Apr 2026 23:20:26 +0000 Manifest next update: Thu 23 Apr 2026 23:20:26 +0000 Files and hashes: 1: 72Z43AzrNBQcZKGKskv4bKsvvTU.crl (hash: E2IhCgCM86aCHYA2t2FgBCotstPyMi8R1GY5DsJmNCU=) 2: DCEF2F3CFFD611EFA348445FC4F9AE02.roa (hash: p1NQ7IGWXi2y1DBETkDK+FOB7oMxD5FL9+3PQ1j1/As=) 3: EEBE377430C411ECBC8D1E20C4F9AE02.roa (hash: nNfdgdLoLhr6Vy9d41UW1l+EsR1U5EgpKmeHjbrVZXE=) 4: 7AAFF88446BA11ECB8463B6AC4F9AE02.roa (hash: n4tuVdk3omfSB8XzyCrNJHNaBap0wt8tJ/fhHnIddvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 23:20:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1386 (0x56a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAE34, serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Validity Not Before: Apr 16 23:20:26 2026 GMT Not After : Apr 23 23:20:26 2026 GMT Subject: CN=69e16eba-362a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b2:47:c2:7b:df:ed:ce:cf:3a:c6:95:40:c0: 81:ea:60:8f:d7:2d:0c:a0:00:88:f3:55:5b:a0:81: e2:a1:cc:94:f5:03:dd:d2:7b:71:1f:e1:93:00:06: 7e:51:50:28:87:f8:d1:e6:d3:d5:71:7c:8c:75:6f: 27:a7:54:ee:63:4b:e0:4c:c2:23:0a:c8:c0:e9:e1: 41:b2:37:85:f8:ee:a2:a1:52:3d:1c:32:1e:18:3f: 39:a4:bb:d7:16:0c:80:a1:1b:a1:3d:be:99:79:d1: 68:de:52:aa:55:3c:b2:75:bc:69:34:e8:2c:65:1e: d6:f8:29:66:f1:4f:06:07:49:9e:00:b6:c7:46:bf: 09:3d:0a:06:db:84:a3:9f:8b:17:53:92:b3:0a:33: 1f:f7:4b:a7:61:f9:e6:e3:bc:ea:eb:45:09:d4:6a: 96:f9:fd:5c:08:3f:d8:0a:32:36:ed:ac:1a:f7:ae: f1:4c:7d:c4:77:d1:c5:1f:e9:9a:0a:a5:f2:39:56: 47:d1:8d:9d:c0:13:66:3c:82:42:18:34:3b:ce:f2: e4:93:cd:e0:d5:ea:e7:a8:02:49:a8:41:09:70:7c: a2:de:c5:36:ac:65:6d:b0:84:7a:ce:2c:6c:9e:95: f2:fe:89:37:19:5f:d2:f8:08:55:93:39:a5:0d:69: 69:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:D4:1E:E3:2F:97:58:90:C6:11:BE:21:16:FA:B7:C4:05:D6:64:8C X509v3 Authority Key Identifier: keyid:EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:ec:22:a1:09:95:eb:db:b1:5e:b1:63:fa:d1:14:f4:79:fe: 79:3f:2e:f1:32:0f:69:76:2c:9d:d9:4b:33:84:94:ce:3e:6b: cb:fe:31:65:03:15:fc:1b:45:d1:52:47:95:c3:94:5b:fe:8a: 4a:2f:98:5c:39:f4:2f:39:a4:0c:38:e2:c3:09:0b:4c:1f:f9: 79:ef:18:6d:2f:da:f3:1b:d8:46:ca:c1:18:71:8a:d2:4d:ad: dc:e2:98:ac:b6:91:5f:10:55:f3:45:10:9d:2b:e8:ad:e8:28: aa:c8:43:a5:a4:ff:c9:bd:e9:b4:90:48:0a:9f:f6:b1:b3:33: 12:4c:19:ea:b5:99:23:e9:d3:38:66:21:56:1d:68:6f:49:54: 0a:f7:eb:3e:0c:53:5e:38:7e:e0:62:3a:fb:20:e5:cc:1c:ce: bf:dd:61:cf:b1:f7:02:f1:62:ef:63:2c:15:d9:7e:c3:e1:20: b8:12:57:ca:79:40:18:43:7c:ba:00:9f:21:31:de:f4:9b:e7: ee:6d:44:03:7d:5c:7e:48:cc:fc:a2:5b:65:17:1f:30:f4:92: 21:53:53:75:d5:c3:80:25:78:d2:0f:97:54:45:49:9e:78:86: 8e:dc:d3:16:9d:6b:25:33:6e:54:70:c2:67:00:08:28:11:de: 3b:87:5c:c7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFMzQxMTAvBgNVBAUTKEVGNjY3OERDMENFQjM0MTQxQzY0QTE4QUIyNEJGODZD QUIyRkJEMzUwHhcNMjYwNDE2MjMyMDI2WhcNMjYwNDIzMjMyMDI2WjAYMRYwFAYD VQQDEw02OWUxNmViYS0zNjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLJHwnvf7c7POsaVQMCB6mCP1y0MoACI81VboIHiocyU9QPd0ntxH+GTAAZ+ UVAoh/jR5tPVcXyMdW8np1TuY0vgTMIjCsjA6eFBsjeF+O6ioVI9HDIeGD85pLvX FgyAoRuhPb6ZedFo3lKqVTyydbxpNOgsZR7W+Clm8U8GB0meALbHRr8JPQoG24Sj n4sXU5KzCjMf90unYfnm47zq60UJ1GqW+f1cCD/YCjI27awa967xTH3Ed9HFH+ma CqXyOVZH0Y2dwBNmPIJCGDQ7zvLkk83g1ernqAJJqEEJcHyi3sU2rGVtsIR6zixs npXy/ok3GV/S+AhVkzmlDWlpTQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJHUHuMv l1iQxhG+IRb6t8QF1mSMMB8GA1UdIwQYMBaAFO9meNwM6zQUHGShirJL+GyrL701 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUzNC80QkVGQkVDQTMw QzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5CUWNaS0dLc2t2NGJLc3Z2 VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyWjQzQXpyTkJRY1pLR0tza3Y0YktzdnZUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUUzNC80QkVGQkVDQTMwQzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5C UWNaS0dLc2t2NGJLc3Z2VFUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEABOwioQmV69uxXrFj+tEU9Hn+eT8u8TIPaXYsndlLM4SUzj5ry/4xZQMV/BtF 0VJHlcOUW/6KSi+YXDn0LzmkDDjiwwkLTB/5ee8YbS/a8xvYRsrBGHGK0k2t3OKY rLaRXxBV80UQnSvoregoqshDpaT/yb3ptJBICp/2sbMzEkwZ6rWZI+nTOGYhVh1o b0lUCvfrPgxTXjh+4GI6+yDlzBzOv91hz7H3AvFi72MsFdl+w+EguBJXynlAGEN8 ugCfITHe9Jvn7m1EA31cfkjM/KJbZRcfMPSSIVNTddXDgCV40g+XVEVJnniGjtzT Fp1rJTNuVHDCZwAIKBHeO4dcxw== -----END CERTIFICATE-----Generated at Fri Apr 17 12:32:05 2026 by rpki-client