$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft File: JzQEfW6XjVCbqKUabxBkh49Hddo.mft (raw, json) Hash identifier: mpLWkn9jqbXf0H+qDn9iPUkvZKbwaAWXZo1yc+YNYoM= Subject key identifier: EE:24:18:C0:D3:B9:B4:2E:11:B4:FA:82:A0:68:53:C6:CE:E9:56:F8 Authority key identifier: 27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA Certificate issuer: /CN=A91C23C5/serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Certificate serial: 1DDC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft Manifest number: 1DCB Signing time: Thu 16 Apr 2026 16:03:31 +0000 Manifest this update: Thu 16 Apr 2026 16:03:31 +0000 Manifest next update: Thu 23 Apr 2026 16:03:31 +0000 Files and hashes: 1: JzQEfW6XjVCbqKUabxBkh49Hddo.crl (hash: yRmrLewowsf3u5KRyJg2hHvG3rp/c3l4CbuxB34S8IE=) 2: AC34FBD61C0111EC8ADBF80CC4F9AE02.roa (hash: mcaworGjWUNORQMelgirXxDQ4QyGEosHFS/EBWtQzVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:03:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7644 (0x1ddc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23C5, serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Validity Not Before: Apr 16 16:03:31 2026 GMT Not After : Apr 23 16:03:31 2026 GMT Subject: CN=69e10853-559c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:cc:d8:b4:77:3e:0d:0d:81:f9:e7:75:11:31: b7:25:c7:9c:36:6c:10:64:52:ad:dc:d5:7f:d8:6a: 51:53:da:a1:ee:e1:ff:b7:f1:eb:34:fa:6d:c1:62: 38:52:3e:28:21:ac:0e:db:cd:f4:12:a7:2f:f9:98: a3:f5:0d:ec:15:eb:29:21:35:84:52:ab:9e:47:42: 01:73:1b:6f:66:48:51:57:b4:ca:f2:ca:1a:6a:d4: b5:2f:6c:70:49:c3:01:39:16:ec:8c:c7:e2:a2:75: 92:6d:ee:90:d1:fb:51:10:19:62:2a:18:68:75:32: ad:63:75:68:22:fb:92:e1:d5:03:1d:df:c9:ee:73: d8:a1:c5:eb:7e:f6:2d:39:4d:16:e3:e6:21:0a:49: 97:be:1d:cd:3e:ea:58:9c:fc:b8:25:33:59:4a:64: 26:00:0d:0e:7e:95:4d:47:7d:7a:67:a9:67:26:f1: 6b:6e:33:2f:9b:eb:d4:8f:29:fe:20:33:1b:8a:b6: f3:75:ba:3b:b7:0d:dc:1b:7e:58:b4:77:52:b3:cf: 68:50:70:8f:24:82:f6:09:8b:d0:e8:41:62:5c:03: f5:0a:83:ee:d9:59:0d:3e:53:9e:0b:2c:9f:dd:89: 4f:3f:d2:fb:03:10:d5:0b:39:ff:ab:3c:01:8b:c5: d4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:24:18:C0:D3:B9:B4:2E:11:B4:FA:82:A0:68:53:C6:CE:E9:56:F8 X509v3 Authority Key Identifier: keyid:27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:ec:13:a2:85:05:ed:bb:f2:c1:8f:26:92:54:c0:b2:a9:30: fc:4c:db:a2:97:22:31:ba:57:56:ae:2b:24:de:5d:68:8c:87: a5:72:ec:05:03:db:be:12:fa:00:73:72:6c:ae:e8:cc:da:ed: 6a:6d:5d:09:07:5d:d4:62:43:59:ec:f9:6a:98:24:43:ef:96: fa:f2:89:59:7c:23:bb:9e:4c:0a:fb:8f:6b:38:da:5e:fc:83: e3:cd:fd:d6:17:83:d2:8b:3e:da:28:59:3d:78:35:f8:f2:1e: f3:08:97:ff:f1:4b:86:f2:01:9c:cf:2b:3b:00:cf:ba:81:76: 50:89:c0:fc:bb:fe:58:6e:fd:3a:ca:31:fd:4e:9c:4e:05:17: 2c:87:df:b0:65:d8:84:69:1b:96:1d:7d:7e:9c:6d:b0:85:d1: 77:96:71:b6:76:cb:d3:84:5b:26:66:e8:b3:e0:92:e6:f7:30: e2:08:14:01:3c:ec:28:8c:c7:52:25:bd:f4:f7:c0:7e:67:83: 3c:a6:0b:b7:3e:4b:d4:72:55:5b:55:80:04:b0:12:ca:45:70: c9:5d:06:7b:da:d5:5f:7b:1d:8c:68:e6:ad:46:74:3d:e8:6f: e8:2a:c6:69:de:a5:9b:89:2a:b8:61:87:cc:90:d5:aa:e6:52: 2b:39:67:16 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzQzUxMTAvBgNVBAUTKDI3MzQwNDdENkU5NzhENTA5QkE4QTUxQTZGMTA2NDg3 OEY0Nzc1REEwHhcNMjYwNDE2MTYwMzMxWhcNMjYwNDIzMTYwMzMxWjAYMRYwFAYD VQQDEw02OWUxMDg1My01NTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoszYtHc+DQ2B+ed1ETG3JcecNmwQZFKt3NV/2GpRU9qh7uH/t/HrNPptwWI4 Uj4oIawO2830Eqcv+Zij9Q3sFespITWEUqueR0IBcxtvZkhRV7TK8soaatS1L2xw ScMBORbsjMfionWSbe6Q0ftREBliKhhodTKtY3VoIvuS4dUDHd/J7nPYocXrfvYt OU0W4+YhCkmXvh3NPupYnPy4JTNZSmQmAA0OfpVNR316Z6lnJvFrbjMvm+vUjyn+ IDMbirbzdbo7tw3cG35YtHdSs89oUHCPJIL2CYvQ6EFiXAP1CoPu2VkNPlOeCyyf 3YlPP9L7AxDVCzn/qzwBi8XU7wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFO4kGMDT ubQuEbT6gqBoU8bO6Vb4MB8GA1UdIwQYMBaAFCc0BH1ul41Qm6ilGm8QZIePR3Xa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNDNS84MzFBMjBGRUI1 QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpWQ2JxS1VhYnhCa2g0OUhk ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6UUVmVzZYalZDYnFLVWFieEJraDQ5SGRkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNDNS84MzFBMjBGRUI1QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpW Q2JxS1VhYnhCa2g0OUhkZG8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcewTooUF7bvywY8mklTAsqkw/EzbopciMbpXVq4rJN5daIyHpXLsBQPbvhL6 AHNybK7ozNrtam1dCQdd1GJDWez5apgkQ++W+vKJWXwju55MCvuPazjaXvyD4839 1heD0os+2ihZPXg1+PIe8wiX//FLhvIBnM8rOwDPuoF2UInA/Lv+WG79Osox/U6c TgUXLIffsGXYhGkblh19fpxtsIXRd5ZxtnbL04RbJmbos+CS5vcw4ggUATzsKIzH UiW99PfAfmeDPKYLtz5L1HJVW1WABLASykVwyV0Ge9rVX3sdjGjmrUZ0Pehv6CrG ad6lm4kquGGHzJDVquZSKzlnFg== -----END CERTIFICATE-----Generated at Fri Apr 17 07:09:49 2026 by rpki-client