$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: rcUUWALK21WUg3mrpIKx6Mq3F+TuvwXaiT+es74k+n0= Subject key identifier: 09:4A:C9:A3:7B:26:8A:92:AB:EF:55:B4:B5:91:BF:14:7A:2A:0D:23 Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0D38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0D2E Signing time: Thu 16 Apr 2026 17:59:54 +0000 Manifest this update: Thu 16 Apr 2026 17:59:54 +0000 Manifest next update: Thu 23 Apr 2026 17:59:54 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: fAlVpVRZiKBTcKzITFoJR2xMlLrqIzKPE1nmWu5wRfk=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: +ogPhgDhjs2YW+Tqmef7hq1Js1T4fHXzf/jhj1dfpTc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:59:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3384 (0xd38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0, serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: Apr 16 17:59:54 2026 GMT Not After : Apr 23 17:59:54 2026 GMT Subject: CN=69e1239a-2871 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:12:bf:0f:b7:e1:bf:13:6f:3d:af:b1:a0:e1: 5e:c1:3c:db:f1:be:d1:40:a4:37:c0:ab:06:fe:87: 6f:7a:e9:ea:91:10:1b:ac:01:74:70:27:2a:ae:b9: b6:85:4b:0a:3a:31:26:49:bf:e5:fa:03:be:2f:06: d4:24:08:46:04:24:12:d5:fa:83:c2:8c:d9:8a:2f: 1c:c7:88:67:e7:8e:56:4b:19:37:e4:87:bf:d6:1d: 63:ea:12:61:fb:f5:bf:d6:16:c3:3a:d9:3e:a9:f9: 7f:18:4a:11:38:c5:65:e3:1d:0c:2a:a2:45:f6:35: 24:05:d5:fa:f4:1b:7a:45:b3:9f:6b:5c:bb:b1:0e: d9:47:37:0d:c7:47:5c:39:0c:e2:3f:0a:09:13:8c: f5:c7:27:64:48:9f:6d:3b:e2:e4:6c:50:74:fa:82: 18:0a:39:b8:1c:c8:bd:7d:e1:b4:c5:d1:ec:94:41: 46:f7:24:7e:70:92:9d:78:87:c6:47:5b:0e:f3:1c: ec:1e:0b:7a:ab:05:df:6c:06:43:d7:32:83:73:d7: ee:80:f4:e7:53:0f:d8:5b:22:ac:16:d8:7f:6c:91: 37:1c:22:49:78:37:ba:e6:5a:e8:31:3d:9b:4e:07: 14:85:d7:df:ad:25:d9:bf:1c:b5:c8:1a:ff:9e:6f: 7f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:4A:C9:A3:7B:26:8A:92:AB:EF:55:B4:B5:91:BF:14:7A:2A:0D:23 X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:d2:b2:d6:d0:f3:eb:42:e5:d5:ed:a3:6e:4a:7d:64:38:bc: ef:f8:4b:4e:56:c6:5e:21:d3:b2:c1:fb:ad:ca:56:02:d8:59: 9e:72:28:ba:0d:fa:8c:e2:29:ee:8d:bd:68:26:28:4a:7f:2e: f4:40:55:af:55:45:36:5c:8f:be:07:c9:3d:d7:a0:5a:8d:b2: 77:4a:5b:f1:0c:bc:20:f8:4a:79:d6:a1:c7:0c:a4:6b:fa:11: dc:89:f8:a7:98:f3:ef:e9:4f:e1:1a:0a:ac:6a:9b:1a:4c:21: 60:66:8f:ae:ed:49:ad:38:ef:27:5c:be:29:38:33:f6:ce:d9: 77:34:94:d8:43:7d:f7:59:16:da:31:28:d8:86:bf:5d:59:36: bc:44:f8:54:5e:d7:cf:99:5c:d4:e4:43:e7:c5:2f:a2:56:b4: ec:31:c1:bc:ca:eb:f6:98:f5:66:ba:29:ba:a9:d7:3b:90:82: d0:b3:a8:2f:91:67:e4:71:e5:ed:bc:c2:74:12:b3:01:88:f7: 39:fd:4d:fe:9c:89:18:81:2c:82:c0:2c:cd:56:c2:11:36:9c: 27:a3:96:53:63:22:3d:c1:ad:06:fc:12:db:ed:fe:3b:3c:f3: 21:6a:21:b0:81:11:6b:70:25:ba:50:96:d7:fb:6e:dd:42:86: 09:f1:de:ab -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjYwNDE2MTc1OTU0WhcNMjYwNDIzMTc1OTU0WjAYMRYwFAYD VQQDEw02OWUxMjM5YS0yODcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjBK/D7fhvxNvPa+xoOFewTzb8b7RQKQ3wKsG/odveunqkRAbrAF0cCcqrrm2 hUsKOjEmSb/l+gO+LwbUJAhGBCQS1fqDwozZii8cx4hn545WSxk35Ie/1h1j6hJh +/W/1hbDOtk+qfl/GEoROMVl4x0MKqJF9jUkBdX69Bt6RbOfa1y7sQ7ZRzcNx0dc OQziPwoJE4z1xydkSJ9tO+LkbFB0+oIYCjm4HMi9feG0xdHslEFG9yR+cJKdeIfG R1sO8xzsHgt6qwXfbAZD1zKDc9fugPTnUw/YWyKsFth/bJE3HCJJeDe65lroMT2b TgcUhdffrSXZvxy1yBr/nm9/wQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFAlKyaN7 JoqSq+9VtLWRvxR6Kg0jMB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPtKy1tDz60Ll1e2jbkp9ZDi87/hLTlbGXiHTssH7rcpWAthZnnIoug36jOIp 7o29aCYoSn8u9EBVr1VFNlyPvgfJPdegWo2yd0pb8Qy8IPhKedahxwyka/oR3In4 p5jz7+lP4RoKrGqbGkwhYGaPru1JrTjvJ1y+KTgz9s7ZdzSU2EN991kW2jEo2Ia/ XVk2vET4VF7Xz5lc1ORD58Uvola07DHBvMrr9pj1ZropuqnXO5CC0LOoL5Fn5HHl 7bzCdBKzAYj3Of1N/pyJGIEsgsAszVbCETacJ6OWU2MiPcGtBvwS2+3+OzzzIWoh sIERa3AlulCW1/tu3UKGCfHeqw== -----END CERTIFICATE-----Generated at Fri Apr 17 06:44:27 2026 by rpki-client