$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft File: ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft (raw, json) Hash identifier: UBltPRdBW7YfJJqmWIk/OtOoaKkpABteQ2OtijE7cE8= Subject key identifier: FA:1D:D0:FF:77:C9:EF:CB:5C:24:9D:AB:53:CB:55:C6:BB:DE:59:51 Authority key identifier: 67:21:24:F6:33:C8:91:9C:A5:D7:66:D8:9E:9C:CF:F0:B2:1F:0C:8D Certificate issuer: /CN=A91CAA4E/serialNumber=672124F633C8919CA5D766D89E9CCFF0B21F0C8D Certificate serial: 13D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft Manifest number: 1B9D Signing time: Thu 16 Apr 2026 16:52:33 +0000 Manifest this update: Thu 16 Apr 2026 16:52:32 +0000 Manifest next update: Thu 23 Apr 2026 16:52:32 +0000 Files and hashes: 1: ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl (hash: epumtLK9zUcaGryvUoRLhTv1XgZ20uReROvRcRIzITg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 16:52:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5081 (0x13d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA4E, serialNumber=672124F633C8919CA5D766D89E9CCFF0B21F0C8D Validity Not Before: Apr 16 16:52:32 2026 GMT Not After : Apr 23 16:52:32 2026 GMT Subject: CN=69e113d1-a38f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9b:50:07:9e:b8:b2:00:ef:ed:84:6c:be:d4: b9:cd:6a:24:f4:b0:1d:85:6d:49:be:86:15:f8:50: 87:10:d1:1f:43:0b:28:2e:f8:e6:bb:19:ca:1c:26: 68:95:32:cb:cb:24:64:18:c8:39:ea:a3:c9:47:83: 98:67:c8:b4:b1:f0:2b:0b:3c:4d:fe:b5:f3:df:8c: 2e:0d:6d:d4:bf:17:7f:dd:e4:5d:3d:dd:3c:45:8b: 76:9f:fc:a6:64:41:43:fa:53:79:d9:de:4d:cf:81: 84:7b:17:89:78:89:3d:9e:1f:64:54:da:6d:63:e7: 43:fa:ee:9f:9c:62:4f:cd:29:40:e2:9f:34:d4:b3: 64:8e:92:69:fb:b7:8e:60:1c:4f:a0:a8:f2:14:0a: 5e:84:dc:9c:b2:24:e2:c5:8d:5d:1f:c0:cd:2a:17: 52:a5:ba:3d:91:66:ee:95:75:2c:c6:2c:85:e7:37: 18:7d:8b:49:5e:25:4c:1e:a4:e3:1c:55:70:c8:3c: ec:5c:f0:18:17:29:ba:ca:06:1c:88:91:9a:05:05: 42:47:79:20:bd:b9:7e:94:cf:1f:80:9b:61:8a:11: 19:4d:57:d9:1a:39:61:19:74:4d:52:31:71:12:43: 66:4d:67:ae:4b:b8:ac:8b:f1:2f:80:10:05:d5:1d: ab:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:1D:D0:FF:77:C9:EF:CB:5C:24:9D:AB:53:CB:55:C6:BB:DE:59:51 X509v3 Authority Key Identifier: keyid:67:21:24:F6:33:C8:91:9C:A5:D7:66:D8:9E:9C:CF:F0:B2:1F:0C:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:0c:b9:89:ca:b1:c7:de:9f:33:53:de:8e:9f:c7:b3:92:83: 9e:ac:ff:6c:74:db:f5:da:90:b2:3b:a3:ea:7b:e3:34:92:fb: 05:0c:e0:8a:08:8c:16:fe:f9:4b:51:35:0d:d9:e7:77:1c:af: b9:58:dc:87:dc:4f:86:1c:2c:c3:1d:70:8a:0a:1d:cb:74:88: 51:f1:02:fb:91:c6:10:9e:28:d7:00:4e:12:2c:ec:83:e9:bf: 6d:ae:c4:af:d1:d8:2e:10:be:2c:9a:8d:46:43:03:29:a9:38: d2:cd:61:c6:fa:ac:80:67:23:da:c9:bf:88:83:6c:3e:89:83: f7:76:a3:38:cf:53:b5:83:12:98:fb:9b:3e:eb:e3:db:53:50: f4:f7:fb:ce:2f:62:8a:d9:2b:4e:20:be:0b:3c:54:47:29:df: 0b:1c:6b:cc:24:43:b1:5d:be:49:df:c7:44:b0:8d:45:3d:b0: 16:34:ea:03:f9:ef:b8:81:35:6c:26:7d:f0:0d:e5:35:7e:33: a3:6c:4e:ad:82:19:96:f4:e6:41:08:55:b3:db:02:67:4b:b5: a0:72:1a:99:7b:ff:a1:ba:2b:d4:87:43:ab:25:03:5f:ac:a1: 25:46:60:44:ce:0c:2e:f2:3c:2d:e2:c4:33:5c:7c:ce:c3:04: 65:83:13:3e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICE9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FBNEUxMTAvBgNVBAUTKDY3MjEyNEY2MzNDODkxOUNBNUQ3NjZEODlFOUNDRkYw QjIxRjBDOEQwHhcNMjYwNDE2MTY1MjMyWhcNMjYwNDIzMTY1MjMyWjAYMRYwFAYD VQQDEw02OWUxMTNkMS1hMzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5tQB564sgDv7YRsvtS5zWok9LAdhW1JvoYV+FCHENEfQwsoLvjmuxnKHCZo lTLLyyRkGMg56qPJR4OYZ8i0sfArCzxN/rXz34wuDW3Uvxd/3eRdPd08RYt2n/ym ZEFD+lN52d5Nz4GEexeJeIk9nh9kVNptY+dD+u6fnGJPzSlA4p801LNkjpJp+7eO YBxPoKjyFApehNycsiTixY1dH8DNKhdSpbo9kWbulXUsxiyF5zcYfYtJXiVMHqTj HFVwyDzsXPAYFym6ygYciJGaBQVCR3kgvbl+lM8fgJthihEZTVfZGjlhGXRNUjFx EkNmTWeuS7isi/EvgBAF1R2rKwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFPod0P93 ye/LXCSdq1PLVca73llRMB8GA1UdIwQYMBaAFGchJPYzyJGcpddm2J6cz/CyHwyN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUE0RS81NUU5Nzk1QUE5 NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9aeUVrOWpQSWtaeWwxMmJZbnB6UDhMSWZE STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p5RWs5alBJa1p5bDEyYllucHpQOExJZkRJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUE0RS81NUU5Nzk1QUE5NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9aeUVrOWpQSWta eWwxMmJZbnB6UDhMSWZESTAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZQy5icqxx96fM1Pejp/Hs5KDnqz/bHTb9dqQsjuj6nvjNJL7BQzgigiMFv75 S1E1DdnndxyvuVjch9xPhhwswx1wigody3SIUfEC+5HGEJ4o1wBOEizsg+m/ba7E r9HYLhC+LJqNRkMDKak40s1hxvqsgGcj2sm/iINsPomD93ajOM9TtYMSmPubPuvj 21NQ9Pf7zi9iitkrTiC+CzxURynfCxxrzCRDsV2+Sd/HRLCNRT2wFjTqA/nvuIE1 bCZ98A3lNX4zo2xOrYIZlvTmQQhVs9sCZ0u1oHIamXv/obor1IdDqyUDX6yhJUZg RM4MLvI8LeLEM1x8zsMEZYMTPg== -----END CERTIFICATE-----Generated at Fri Apr 17 13:44:23 2026 by rpki-client