$ rpki-client -vvf rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft File: TZCQh73foVBeK7oD8gYRLq7_sRs.mft (raw, json) Hash identifier: 1ffUEkKP5v8jufGjp1wHvFRq1UIiiB0Suiw8mS5Wgc0= Subject key identifier: 77:60:B2:7A:30:31:68:1E:C5:4F:A4:0D:5E:38:74:15:48:46:F7:A4 Authority key identifier: 4D:90:90:87:BD:DF:A1:50:5E:2B:BA:03:F2:06:11:2E:AE:FF:B1:1B Certificate issuer: /CN=A91D200F/serialNumber=4D909087BDDFA1505E2BBA03F206112EAEFFB11B Certificate serial: 022A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft Manifest number: 021A Signing time: Fri 17 Apr 2026 02:42:04 +0000 Manifest this update: Fri 17 Apr 2026 02:42:04 +0000 Manifest next update: Fri 24 Apr 2026 02:42:04 +0000 Files and hashes: 1: TZCQh73foVBeK7oD8gYRLq7_sRs.crl (hash: B2G0ABP+4/BEBCR9QeJUJ0dlWx6YAjZ/1q3TOvquCpE=) 2: D71B60EC2B5911EE81C7542FC4F9AE02.roa (hash: 3V/wO0hw5nLxr5BM3tMeW7iDmpM8Wwsuvidg1iCqM10=) 3: 039807B286B511EFAF868C6EC4F9AE02.roa (hash: /+fofri9mwh+zzZ7E9vRJqMf1SWPMmGTC1v5y6dFZQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.crl rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:42:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 554 (0x22a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D200F, serialNumber=4D909087BDDFA1505E2BBA03F206112EAEFFB11B Validity Not Before: Apr 17 02:42:04 2026 GMT Not After : Apr 24 02:42:04 2026 GMT Subject: CN=69e19dfc-be05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:2d:a8:03:c2:07:d4:59:07:cd:69:46:cd:3c: e3:e8:38:f9:e0:41:d8:ba:48:12:44:58:13:90:4c: cf:fd:a7:e2:d3:13:db:58:34:02:4c:60:10:d2:14: 1f:48:2b:c9:45:66:a0:d2:a7:fa:1b:70:b5:d0:b1: d9:01:55:6e:a6:3c:48:91:5f:c2:35:d5:a6:3f:1c: f5:90:10:5a:ea:73:0b:e6:1a:6b:81:fb:22:78:f9: 42:b7:73:99:e0:2f:a2:be:c1:26:77:8c:f2:0c:d4: 8f:8e:50:86:f9:1f:e2:ec:7b:d5:f1:52:a7:61:77: 54:1d:5b:a8:5d:f4:f2:94:bf:df:6c:6e:41:25:52: ca:bf:32:2b:97:eb:40:1e:fb:20:13:a3:82:78:15: 96:cc:91:bd:3d:1d:76:8e:07:d5:16:84:97:7f:9f: e0:b5:a1:68:4c:d4:d8:17:e1:a2:65:51:f5:e3:28: f5:cb:23:53:f0:07:83:57:5c:33:00:f4:09:1c:c4: d4:98:e3:54:38:8e:7d:24:f6:0c:4b:65:00:6a:b3: 09:92:ae:1b:a5:e8:cf:b2:e9:4d:e0:c1:46:c6:4e: 82:4f:3b:c5:ad:a5:59:1a:3a:88:05:66:45:06:59: 9e:05:1e:93:87:f0:7b:53:37:32:ae:ff:13:a9:15: ae:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:60:B2:7A:30:31:68:1E:C5:4F:A4:0D:5E:38:74:15:48:46:F7:A4 X509v3 Authority Key Identifier: keyid:4D:90:90:87:BD:DF:A1:50:5E:2B:BA:03:F2:06:11:2E:AE:FF:B1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:51:74:2e:fa:5d:5c:34:09:cf:a5:8c:2b:86:d7:8b:17:3f: c0:03:f4:ca:b2:e7:6b:4c:9d:52:9d:4b:4d:8f:de:ec:99:0e: bc:61:e3:bf:0d:83:03:09:3f:d7:9c:33:46:f9:8c:a2:37:1c: 44:f5:af:37:51:12:07:79:6b:4f:88:12:4e:18:2f:0d:ff:e4: cc:b5:d7:97:28:13:59:d4:aa:22:46:f2:1f:75:3d:90:e5:a5: 43:fb:31:f0:fb:c9:46:2c:f1:f9:a6:dc:fe:6a:3c:99:99:02: 75:f7:32:2f:11:43:51:3d:52:8b:98:57:7b:15:de:93:7a:bb: af:1f:d4:5b:67:04:17:d0:69:f3:3d:bc:cb:c5:5b:f0:46:e2: d8:c9:38:3e:d4:21:b0:5f:fb:f3:5c:c7:75:e0:96:0a:c3:4b: f2:b8:0a:03:72:32:76:51:67:d6:73:56:2a:1b:0e:84:46:ed: 06:40:55:83:3f:fd:5e:8a:b5:56:4b:e3:ad:34:94:b3:b1:85: 3f:f8:70:69:f7:54:3d:6a:34:9e:7d:5a:a1:12:70:9c:1b:32: d2:a3:37:da:ae:16:52:f9:1a:75:b0:82:82:13:2d:00:a2:bb: fd:a6:5e:22:f4:75:7d:75:be:f8:12:82:37:82:2a:71:83:a0: af:b2:c3:58 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIwMEYxMTAvBgNVBAUTKDREOTA5MDg3QkRERkExNTA1RTJCQkEwM0YyMDYxMTJF QUVGRkIxMUIwHhcNMjYwNDE3MDI0MjA0WhcNMjYwNDI0MDI0MjA0WjAYMRYwFAYD VQQDEw02OWUxOWRmYy1iZTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6i2oA8IH1FkHzWlGzTzj6Dj54EHYukgSRFgTkEzP/afi0xPbWDQCTGAQ0hQf SCvJRWag0qf6G3C10LHZAVVupjxIkV/CNdWmPxz1kBBa6nML5hprgfsiePlCt3OZ 4C+ivsEmd4zyDNSPjlCG+R/i7HvV8VKnYXdUHVuoXfTylL/fbG5BJVLKvzIrl+tA HvsgE6OCeBWWzJG9PR12jgfVFoSXf5/gtaFoTNTYF+GiZVH14yj1yyNT8AeDV1wz APQJHMTUmONUOI59JPYMS2UAarMJkq4bpejPsulN4MFGxk6CTzvFraVZGjqIBWZF BlmeBR6Th/B7Uzcyrv8TqRWuOQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHdgsnow MWgexU+kDV44dBVIRvekMB8GA1UdIwQYMBaAFE2QkIe936FQXiu6A/IGES6u/7Eb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjAwRi8yNTc4NzQwMjE2 NEYxMUVFOUU3MzQwNEVDNEY5QUUwMi9UWkNRaDczZm9WQmVLN29EOGdZUkxxN19z UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQ1FoNzNmb1ZCZUs3b0Q4Z1lSTHE3X3NScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjAwRi8yNTc4NzQwMjE2NEYxMUVFOUU3MzQwNEVDNEY5QUUwMi9UWkNRaDczZm9W QmVLN29EOGdZUkxxN19zUnMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcFF0LvpdXDQJz6WMK4bXixc/wAP0yrLna0ydUp1LTY/e7JkOvGHjvw2DAwk/ 15wzRvmMojccRPWvN1ESB3lrT4gSThgvDf/kzLXXlygTWdSqIkbyH3U9kOWlQ/sx 8PvJRizx+abc/mo8mZkCdfcyLxFDUT1Si5hXexXek3q7rx/UW2cEF9Bp8z28y8Vb 8Ebi2Mk4PtQhsF/781zHdeCWCsNL8rgKA3IydlFn1nNWKhsOhEbtBkBVgz/9Xoq1 VkvjrTSUs7GFP/hwafdUPWo0nn1aoRJwnBsy0qM32q4WUvkadbCCghMtAKK7/aZe IvR1fXW++BKCN4IqcYOgr7LDWA== -----END CERTIFICATE-----Generated at Fri Apr 17 19:21:18 2026 by rpki-client