$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC76E/D5B04DF21CFC11F1A90879D8413D8C67/ZYpZAQJeJrcXbdKtrqu2fPCh7R0.mft File: ZYpZAQJeJrcXbdKtrqu2fPCh7R0.mft (raw, json) Hash identifier: smcItu7KOba7ljSaLqYmJeV0xYKeY5qWMxs7qyOVVrU= Subject key identifier: A7:97:74:3D:23:3D:61:97:C1:CD:48:60:E3:F0:18:08:74:51:55:52 Authority key identifier: 65:8A:59:01:02:5E:26:B7:17:6D:D2:AD:AE:AB:B6:7C:F0:A1:ED:1D Certificate issuer: /CN=A91DC76E/serialNumber=658A5901025E26B7176DD2ADAEABB67CF0A1ED1D Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZYpZAQJeJrcXbdKtrqu2fPCh7R0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC76E/D5B04DF21CFC11F1A90879D8413D8C67/ZYpZAQJeJrcXbdKtrqu2fPCh7R0.mft Manifest number: 14 Signing time: Wed 15 Apr 2026 08:35:17 +0000 Manifest this update: Wed 15 Apr 2026 08:35:16 +0000 Manifest next update: Wed 22 Apr 2026 08:35:16 +0000 Files and hashes: 1: ZYpZAQJeJrcXbdKtrqu2fPCh7R0.crl (hash: m7hfkGvG/5QOpQ8iY0s1IaGJrIp9g8EjaDpZJthmhW0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC76E/D5B04DF21CFC11F1A90879D8413D8C67/ZYpZAQJeJrcXbdKtrqu2fPCh7R0.crl rsync://rpki.apnic.net/member_repository/A91DC76E/D5B04DF21CFC11F1A90879D8413D8C67/ZYpZAQJeJrcXbdKtrqu2fPCh7R0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZYpZAQJeJrcXbdKtrqu2fPCh7R0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 08:35:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC76E, serialNumber=658A5901025E26B7176DD2ADAEABB67CF0A1ED1D Validity Not Before: Apr 15 08:35:16 2026 GMT Not After : Apr 22 08:35:16 2026 GMT Subject: CN=69df4dc4-f65d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:bf:6a:7f:54:3f:b6:ac:77:ca:e3:9c:66:c6: a3:5f:88:3e:6e:87:f8:75:30:c1:7e:aa:9c:9b:21: a7:5b:c0:60:54:87:16:67:55:31:1c:4a:76:40:ff: a0:80:98:93:63:87:1c:b4:8c:a7:e9:6e:7a:1a:e6: 9b:97:b5:f2:f6:d2:17:ba:bc:e5:f9:6b:86:c2:c4: 1b:1c:17:c2:ea:0d:62:b7:0f:9c:47:49:66:8e:a6: e0:6e:bc:e8:04:47:d8:4a:30:c5:19:a3:43:ba:8a: a4:99:94:34:13:ab:6d:d8:da:e6:cc:a2:e2:4d:ae: 8a:43:e2:94:6c:44:bd:68:5d:01:eb:69:c5:e1:b0: e8:99:b7:d5:e6:fa:ba:f4:c0:8a:b0:b8:cc:14:20: ef:fd:76:56:2f:7c:a8:1b:06:69:f2:16:7f:39:cc: 33:87:86:be:86:0f:22:5d:e0:5a:6c:e2:2e:56:2f: 46:32:2b:52:1a:14:70:45:3c:4b:6f:84:da:1e:d6: 03:ae:d6:a9:36:8f:26:6d:38:90:fc:59:af:23:53: bc:92:22:70:c7:6b:6a:5e:25:48:69:26:17:e3:0c: 23:ee:46:d0:13:f5:5c:4a:3f:b5:c0:75:4d:0f:17: f6:95:a0:ad:d7:11:54:d0:47:b7:02:e9:df:e8:b3: 50:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:97:74:3D:23:3D:61:97:C1:CD:48:60:E3:F0:18:08:74:51:55:52 X509v3 Authority Key Identifier: keyid:65:8A:59:01:02:5E:26:B7:17:6D:D2:AD:AE:AB:B6:7C:F0:A1:ED:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC76E/D5B04DF21CFC11F1A90879D8413D8C67/ZYpZAQJeJrcXbdKtrqu2fPCh7R0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZYpZAQJeJrcXbdKtrqu2fPCh7R0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC76E/D5B04DF21CFC11F1A90879D8413D8C67/ZYpZAQJeJrcXbdKtrqu2fPCh7R0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:6f:0c:10:9f:86:6d:85:51:55:14:cc:7b:93:d6:87:11:b5: b0:10:a8:d6:70:5f:c2:27:09:be:c0:a1:4f:c2:56:1e:36:03: c9:71:6d:38:b5:04:b7:3e:6c:d3:1e:12:39:78:94:9b:18:da: 02:49:4a:94:76:ea:c1:7a:ec:e7:7a:27:ca:f2:ac:79:51:9d: 18:52:62:8d:5d:75:fa:4e:9b:c6:32:69:1d:cf:c4:41:73:06: 26:09:29:09:88:7e:84:e8:dd:47:21:e0:cc:96:b0:41:fe:72: 23:9b:af:3b:33:21:07:64:9d:5d:44:d6:21:7c:51:f7:65:d1: ce:fe:35:3c:6d:09:bd:19:e3:cf:83:0a:81:b2:87:da:cd:f6: bf:1d:aa:60:4b:ce:a6:51:f6:4c:73:2a:1c:3a:ef:92:10:53: 26:29:2e:64:b8:87:f7:85:73:88:fe:9b:94:cf:99:f6:40:88: e2:a3:a0:8f:d3:af:49:f0:69:ce:35:f7:9a:a7:3e:15:5a:07: 8b:ed:d2:a4:80:d6:3d:73:0a:17:23:2f:57:fe:b3:34:46:61: 0c:ad:84:32:63:4a:f4:ab:10:02:16:b1:54:fc:9d:da:62:7f: c7:34:23:b3:8f:af:9b:10:d7:1e:5d:a1:22:64:71:3c:7d:e8: 5f:47:c0:3a -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE Qzc2RTExMC8GA1UEBRMoNjU4QTU5MDEwMjVFMjZCNzE3NkREMkFEQUVBQkI2N0NG MEExRUQxRDAeFw0yNjA0MTUwODM1MTZaFw0yNjA0MjIwODM1MTZaMBgxFjAUBgNV BAMTDTY5ZGY0ZGM0LWY2NWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDtv2p/VD+2rHfK45xmxqNfiD5uh/h1MMF+qpybIadbwGBUhxZnVTEcSnZA/6CA mJNjhxy0jKfpbnoa5puXtfL20he6vOX5a4bCxBscF8LqDWK3D5xHSWaOpuBuvOgE R9hKMMUZo0O6iqSZlDQTq23Y2ubMouJNropD4pRsRL1oXQHracXhsOiZt9Xm+rr0 wIqwuMwUIO/9dlYvfKgbBmnyFn85zDOHhr6GDyJd4Fps4i5WL0YyK1IaFHBFPEtv hNoe1gOu1qk2jyZtOJD8Wa8jU7ySInDHa2peJUhpJhfjDCPuRtAT9VxKP7XAdU0P F/aVoK3XEVTQR7cC6d/os1AlAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUp5d0PSM9 YZfBzUhg4/AYCHRRVVIwHwYDVR0jBBgwFoAUZYpZAQJeJrcXbdKtrqu2fPCh7R0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDNzZFL0Q1QjA0REYyMUNG QzExRjFBOTA4NzlEODQxM0Q4QzY3L1pZcFpBUUplSnJjWGJkS3RycXUyZlBDaDdS MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWllwWkFRSmVKcmNYYmRLdHJxdTJmUENoN1IwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURD NzZFL0Q1QjA0REYyMUNGQzExRjFBOTA4NzlEODQxM0Q4QzY3L1pZcFpBUUplSnJj WGJkS3RycXUyZlBDaDdSMC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAfbwwQn4ZthVFVFMx7k9aHEbWwEKjWcF/CJwm+wKFPwlYeNgPJcW04tQS3PmzT HhI5eJSbGNoCSUqUdurBeuzneifK8qx5UZ0YUmKNXXX6TpvGMmkdz8RBcwYmCSkJ iH6E6N1HIeDMlrBB/nIjm687MyEHZJ1dRNYhfFH3ZdHO/jU8bQm9GePPgwqBsofa zfa/HapgS86mUfZMcyocOu+SEFMmKS5kuIf3hXOI/puUz5n2QIjio6CP069J8GnO Nfeapz4VWgeL7dKkgNY9cwoXIy9X/rM0RmEMrYQyY0r0qxACFrFU/J3aYn/HNCOz j6+bENceXaEiZHE8fehfR8A6 -----END CERTIFICATE-----Generated at Fri Apr 17 07:36:55 2026 by rpki-client