$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft File: cZYTj9n8jHj-hDolPLBICtzFfw0.mft (raw, json) Hash identifier: ZKlklAwP6dP87goITQagwBOuuzBEdoSbxovU3UTBYaM= Subject key identifier: 4E:64:30:A4:B5:AA:09:09:9D:AE:6D:95:CF:7C:1E:B7:1E:C6:5E:8C Authority key identifier: 71:96:13:8F:D9:FC:8C:78:FE:84:3A:25:3C:B0:48:0A:DC:C5:7F:0D Certificate issuer: /CN=A91D5590/serialNumber=7196138FD9FC8C78FE843A253CB0480ADCC57F0D Certificate serial: 0878 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft Manifest number: 0868 Signing time: Thu 16 Apr 2026 20:37:08 +0000 Manifest this update: Thu 16 Apr 2026 20:37:07 +0000 Manifest next update: Thu 23 Apr 2026 20:37:07 +0000 Files and hashes: 1: cZYTj9n8jHj-hDolPLBICtzFfw0.crl (hash: 6X5v7moy93AnO3SQ/s1jMRVt4PkBQ3IZYGuN6lA7dMc=) 2: 9920D2E6F7C611EA8B23C30CC4F9AE02.roa (hash: 5RUGr84S9u/MYGYJzdR1/AUpkucviMpdR/eHj0IncTw=) 3: 986F0854F7C611EA8B23C30CC4F9AE02.roa (hash: aHXBmA0NtyR13VuTHpIm+ZaiBP/Di2n0/CwGR7lCYqI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.crl rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:37:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2168 (0x878) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5590, serialNumber=7196138FD9FC8C78FE843A253CB0480ADCC57F0D Validity Not Before: Apr 16 20:37:07 2026 GMT Not After : Apr 23 20:37:07 2026 GMT Subject: CN=69e14873-bf93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:51:10:56:57:b6:ba:9e:28:27:dc:4a:48:95: 57:bb:d7:4c:db:14:a2:00:73:ca:97:ae:31:26:d7: d3:79:27:f2:4b:03:b5:bf:2c:82:3d:66:ea:57:56: 81:83:7d:dd:bf:97:1e:b4:d3:4d:e2:94:48:dd:a9: d0:f0:33:2a:5f:21:e8:a3:4f:e1:3c:10:a0:9b:e4: 30:72:7b:28:bb:87:18:5b:69:5b:45:09:fe:a7:03: 4b:2a:61:67:7d:46:a1:fc:bd:63:53:6c:35:0b:ce: bd:ca:7d:b9:50:96:f6:d2:66:ba:48:f1:e1:e8:1a: a8:03:ae:8c:07:31:4d:2a:9f:b4:58:95:8e:18:bd: 3c:90:fe:e4:19:b2:4f:5a:c7:d9:23:a1:3e:72:7b: ce:0f:a2:68:5c:58:19:8f:04:86:8d:a3:51:d9:92: f2:99:3b:31:ef:d5:d4:95:03:5a:1e:46:5c:b9:1a: 34:26:90:32:a8:55:2f:b6:3a:23:83:f9:1b:1c:c2: f3:83:4d:c9:cb:b4:41:f7:b9:ce:33:98:39:c2:67: 47:5e:01:8f:16:26:ba:b3:a1:61:7a:5c:00:89:3e: d6:15:eb:69:00:11:08:16:c9:11:56:07:f2:51:24: 68:f6:a9:08:34:26:fe:31:6b:24:39:ea:5f:62:94: ad:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:64:30:A4:B5:AA:09:09:9D:AE:6D:95:CF:7C:1E:B7:1E:C6:5E:8C X509v3 Authority Key Identifier: keyid:71:96:13:8F:D9:FC:8C:78:FE:84:3A:25:3C:B0:48:0A:DC:C5:7F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cZYTj9n8jHj-hDolPLBICtzFfw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5590/A895249EF7C511EA871C000CC4F9AE02/cZYTj9n8jHj-hDolPLBICtzFfw0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:54:99:9a:ad:ae:f5:e9:45:77:11:2a:05:89:1c:f4:36:04: 92:d3:ce:8a:ec:d9:7f:76:94:87:b2:35:a1:77:c3:d9:be:93: 63:b4:34:79:58:e6:1a:7d:0b:eb:b6:be:58:e1:7a:71:2e:1e: 4f:a3:dd:9c:8c:18:1c:43:c1:3e:0e:ce:0d:45:0c:b8:69:5f: 69:82:25:fc:f7:1a:ae:ce:f4:97:62:44:bc:32:6c:38:8b:1f: 7b:79:c1:c8:bf:e2:d5:13:22:27:11:3f:87:98:d5:59:b2:bc: 55:9b:cb:e1:01:7a:c2:3d:34:03:c1:51:a0:7f:88:e5:52:0e: 54:f5:03:57:fa:66:3e:4e:82:0a:76:04:aa:95:e0:4b:1d:df: 50:78:45:68:00:07:e3:ca:94:38:54:dc:ed:0e:3d:c9:86:19: af:38:58:23:a4:e3:49:42:72:c8:01:73:b5:b8:22:87:89:9a: d4:d3:15:8a:64:b9:2e:58:79:ca:4f:37:62:9a:27:9a:73:dd: 94:0c:31:e1:ee:00:d2:c5:fd:1c:a8:b2:73:0b:a6:9f:1c:ae: a5:84:98:46:b4:6d:4a:70:36:9a:19:ce:be:c8:09:ad:17:b7: e2:d1:10:27:b9:20:45:f3:7d:96:63:36:53:32:46:4c:36:2e: c3:a0:af:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU1OTAxMTAvBgNVBAUTKDcxOTYxMzhGRDlGQzhDNzhGRTg0M0EyNTNDQjA0ODBB RENDNTdGMEQwHhcNMjYwNDE2MjAzNzA3WhcNMjYwNDIzMjAzNzA3WjAYMRYwFAYD VQQDEw02OWUxNDg3My1iZjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8VEQVle2up4oJ9xKSJVXu9dM2xSiAHPKl64xJtfTeSfySwO1vyyCPWbqV1aB g33dv5cetNNN4pRI3anQ8DMqXyHoo0/hPBCgm+Qwcnsou4cYW2lbRQn+pwNLKmFn fUah/L1jU2w1C869yn25UJb20ma6SPHh6BqoA66MBzFNKp+0WJWOGL08kP7kGbJP WsfZI6E+cnvOD6JoXFgZjwSGjaNR2ZLymTsx79XUlQNaHkZcuRo0JpAyqFUvtjoj g/kbHMLzg03Jy7RB97nOM5g5wmdHXgGPFia6s6FhelwAiT7WFetpABEIFskRVgfy USRo9qkINCb+MWskOepfYpStzQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFE5kMKS1 qgkJna5tlc98Hrcexl6MMB8GA1UdIwQYMBaAFHGWE4/Z/Ix4/oQ6JTywSArcxX8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTU5MC9BODk1MjQ5RUY3 QzUxMUVBODcxQzAwMENDNEY5QUUwMi9jWllUajluOGpIai1oRG9sUExCSUN0ekZm dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NaWVRqOW44akhqLWhEb2xQTEJJQ3R6RmZ3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTU5MC9BODk1MjQ5RUY3QzUxMUVBODcxQzAwMENDNEY5QUUwMi9jWllUajluOGpI ai1oRG9sUExCSUN0ekZmdzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmFSZmq2u9elFdxEqBYkc9DYEktPOiuzZf3aUh7I1oXfD2b6TY7Q0eVjmGn0L 67a+WOF6cS4eT6PdnIwYHEPBPg7ODUUMuGlfaYIl/Pcars70l2JEvDJsOIsfe3nB yL/i1RMiJxE/h5jVWbK8VZvL4QF6wj00A8FRoH+I5VIOVPUDV/pmPk6CCnYEqpXg Sx3fUHhFaAAH48qUOFTc7Q49yYYZrzhYI6TjSUJyyAFztbgih4ma1NMVimS5Llh5 yk83YponmnPdlAwx4e4A0sX9HKiycwumnxyupYSYRrRtSnA2mhnOvsgJrRe34tEQ J7kgRfN9lmM2UzJGTDYuw6CvWw== -----END CERTIFICATE-----Generated at Fri Apr 17 18:01:50 2026 by rpki-client