$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft File: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft (raw, json) Hash identifier: TC0pauncuDv+C4muj8TvwnfkK0XgzlXMwgC71VNIdHc= Subject key identifier: 9D:BF:E5:55:1B:C3:C7:25:FE:5E:00:39:7B:A2:1E:E1:BC:50:42:F6 Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Certificate serial: 1BA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft Manifest number: A1E0 Signing time: Thu 16 Apr 2026 14:30:24 +0000 Manifest this update: Thu 16 Apr 2026 14:30:23 +0000 Manifest next update: Thu 23 Apr 2026 14:30:23 +0000 Files and hashes: 1: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl (hash: IKMO+kDplJCgzEsntj/z38ofLzWsGuVyFj6BnZ2BaEM=) 2: 959AC422557911EBBD21EB2FC4F9AE02.roa (hash: YKfVc/1kWhtiSN/JgbbvpApeCbmTeJDdHpPmRnKp0f8=) 3: 4FF339D8F01D11EB8C4B505BC4F9AE02.roa (hash: kzmw6JQnHsEPxWEaFvMAvmSNfBwkvf6++ngi0TT5BK0=) 4: 3D68F8C29A4A11EA94706012C4F9AE02.roa (hash: gxt7j0/qgDHDY4eOy9nTFq4yiN1wN4Azb/F6N/jLPQo=) 5: ACC8833824DE11EDAEC0E529C4F9AE02.roa (hash: H0mHu5foM/0Hr0y7LJoGoqxfCYM8HtP6k45eEW8ACTA=) 6: C89FD6DA557611EBA04C290BC4F9AE02.roa (hash: IDu51NoCXLX0fGSXN0JfKGuNOGTw6RNrNximD3D412U=) 7: 20C6F2EC699D11EAA33EAE83C4F9AE02.roa (hash: noBHpHcIG4F8PCP16+JaDrGG+bfZLo/xyhvvRrrAwbc=) 8: 9907DC46D4BC11EF9BDDAF2EC4F9AE02.roa (hash: DNaQzWtObT5DaBf5rMkdrtx4HMZbyrfOB84Oiv/VTA0=) 9: 191363A69DD911EC99D91668C4F9AE02.roa (hash: 9ywt3YgdGMPifjHDU8GOY5yDR3rcKL5WS/6sXlZSwSk=) 10: FC6A19D892D511EC8FBFF32AC4F9AE02.roa (hash: OXGvG47egb4PF/onwPC9e0QERfLfAY+ZqPCLmsNj8TE=) 11: 0B24875C7A4411EB804B7430C4F9AE02.roa (hash: +Z0l5rtFf9gejJdRbzGI1Tev7wUao9HHsXdVWsy9gIw=) 12: 1BF3A43C15BE11EF93ABFD7DC4F9AE02.roa (hash: lhNS+ojnip3W9c6D2+vK5Jj0fFUXb3jMTgYthGAVWGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:30:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7072 (0x1ba0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D, serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Validity Not Before: Apr 16 14:30:23 2026 GMT Not After : Apr 23 14:30:23 2026 GMT Subject: CN=69e0f280-efdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:4e:94:68:bd:3c:91:ba:eb:aa:68:f9:39:b4: 9d:bf:bb:ab:e8:62:8e:c3:c5:fc:71:03:65:b6:00: 1d:66:00:4a:63:5a:50:0d:a7:47:f2:0d:36:5f:47: f1:be:56:61:03:21:59:c1:8e:ec:a7:32:0f:8d:2b: a1:4b:99:62:56:93:05:ab:92:d2:f4:d0:f6:8e:6d: 0b:4a:a8:8a:c7:25:90:8a:17:a0:58:4f:8a:50:84: 0b:fa:85:ee:b4:ab:7d:2f:34:20:83:b0:da:fa:4a: c6:73:5d:16:51:52:3f:6e:83:e3:d0:53:76:b9:c3: 1e:ba:e5:93:fc:de:c1:eb:8a:84:39:d9:07:62:e2: a9:13:28:1b:2a:32:94:6c:62:1d:7f:8d:5a:8a:bc: 54:29:89:ec:bb:73:26:5a:54:6d:3d:f8:6e:87:13: fa:06:db:69:6f:51:cb:c2:22:38:d0:2f:23:9c:02: 03:3d:b9:2a:26:4b:6e:cf:4d:05:b6:8b:52:98:7e: c1:30:9f:e4:9c:65:c1:4e:da:82:21:30:07:39:d1: b5:f6:b8:7e:54:f1:57:f2:3b:77:51:dd:bd:5b:22: 84:40:28:78:53:28:5e:42:d5:02:28:82:9b:ae:99: 1c:31:f1:b6:d9:19:c1:c6:eb:20:fe:2a:f5:a6:28: ea:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:BF:E5:55:1B:C3:C7:25:FE:5E:00:39:7B:A2:1E:E1:BC:50:42:F6 X509v3 Authority Key Identifier: keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:88:3d:c1:17:f0:2b:65:38:2e:36:e0:d4:89:9c:ca:56:4f: 96:67:7c:f0:50:05:45:ec:2a:8e:ef:b6:49:3c:16:04:d6:de: f1:ae:1e:02:11:64:81:46:0c:05:da:a0:5e:28:d4:d2:59:ab: 9a:70:db:f1:f2:78:96:91:c8:c2:a0:1a:6c:5f:c2:1b:16:7f: d8:e8:4d:a8:f0:3b:1b:f9:85:3d:f6:c3:19:34:a1:68:24:af: c7:b0:81:89:14:74:22:1d:e2:4c:39:b0:4a:eb:50:16:86:fb: df:46:8f:ae:3f:63:1f:dd:4e:43:7c:62:ad:98:12:75:de:74: a3:20:1d:d6:b3:6a:f8:72:20:34:76:b9:96:a3:6d:6f:7f:ac: be:0a:1f:60:f6:93:ce:77:bf:b7:41:3f:cc:58:81:1a:d5:ff: 94:e6:d6:73:de:41:b5:bc:4d:b2:8c:0a:92:35:9b:6a:e8:06: 76:59:07:3c:9a:12:5d:fa:de:9f:7c:8f:ee:26:a8:26:62:b1: 70:a9:a2:7b:78:83:2f:60:bc:e4:2f:e2:70:10:cf:0a:e9:b0: 88:3b:7a:3c:18:37:90:9e:bb:54:c9:74:86:0b:a7:e6:b9:ea: b5:27:64:17:a5:35:61:5e:26:47:77:cd:2f:8c:78:5e:b2:81: 37:dd:38:8a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICG6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDY0QTY2NTgxNkFFRkVENzNCMzA3NTAwN0RBNTMzN0FD N0RFQzRCODEwHhcNMjYwNDE2MTQzMDIzWhcNMjYwNDIzMTQzMDIzWjAYMRYwFAYD VQQDEw02OWUwZjI4MC1lZmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj06UaL08kbrrqmj5ObSdv7ur6GKOw8X8cQNltgAdZgBKY1pQDadH8g02X0fx vlZhAyFZwY7spzIPjSuhS5liVpMFq5LS9ND2jm0LSqiKxyWQihegWE+KUIQL+oXu tKt9LzQgg7Da+krGc10WUVI/boPj0FN2ucMeuuWT/N7B64qEOdkHYuKpEygbKjKU bGIdf41airxUKYnsu3MmWlRtPfhuhxP6Bttpb1HLwiI40C8jnAIDPbkqJktuz00F totSmH7BMJ/knGXBTtqCITAHOdG19rh+VPFX8jt3Ud29WyKEQCh4UyheQtUCKIKb rpkcMfG22RnBxusg/ir1pijqMQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ2/5VUb w8cl/l4AOXuiHuG8UEL2MB8GA1UdIwQYMBaAFGSmZYFq7+1zswdQB9pTN6x97EuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdYT3pCMUFIMmxNM3JIM3NT NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLWmxnV3J2N1hPekIxQUgybE0zckgzc1M0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkQ1RC85RENCNjhFMDFEODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdY T3pCMUFIMmxNM3JIM3NTNEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApYg9wRfwK2U4Ljbg1ImcylZPlmd88FAFRewqju+2STwWBNbe8a4eAhFkgUYM BdqgXijU0lmrmnDb8fJ4lpHIwqAabF/CGxZ/2OhNqPA7G/mFPfbDGTShaCSvx7CB iRR0Ih3iTDmwSutQFob730aPrj9jH91OQ3xirZgSdd50oyAd1rNq+HIgNHa5lqNt b3+svgofYPaTzne/t0E/zFiBGtX/lObWc95BtbxNsowKkjWbaugGdlkHPJoSXfre n3yP7iaoJmKxcKmie3iDL2C85C/icBDPCumwiDt6PBg3kJ67VMl0hgun5rnqtSdk F6U1YV4mR3fNL4x4XrKBN904ig== -----END CERTIFICATE-----Generated at Fri Apr 17 19:44:33 2026 by rpki-client