$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft File: ZTy4p1ENubbBon2HfSEh5t9CGYI.mft (raw, json) Hash identifier: aKtaS/tvPhSYBE6xxE81m4q7sLfRFvQx8PrGpAfZT48= Subject key identifier: 12:86:71:C5:79:6D:60:3A:F3:3B:8D:8C:FE:FC:D4:04:1C:D9:81:3A Authority key identifier: 65:3C:B8:A7:51:0D:B9:B6:C1:A2:7D:87:7D:21:21:E6:DF:42:19:82 Certificate issuer: /CN=A91EFC94/serialNumber=653CB8A7510DB9B6C1A27D877D2121E6DF421982 Certificate serial: 0144 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZTy4p1ENubbBon2HfSEh5t9CGYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft Manifest number: 012B Signing time: Fri 17 Apr 2026 05:35:25 +0000 Manifest this update: Fri 17 Apr 2026 05:35:25 +0000 Manifest next update: Fri 24 Apr 2026 05:35:25 +0000 Files and hashes: 1: ZTy4p1ENubbBon2HfSEh5t9CGYI.crl (hash: qlTPVOsbwOCDPJc39Ux/J8pM+6Ut8yJOBmQc9FQ1+vE=) 2: 6B7CC19C73B811F08DDFF784C4F9AE02.roa (hash: 7qNyR1XtX/IJK6zuiRl0X5DJ2rVIeGFSUiO8ugtPsRU=) 3: 5462D9FECF7C11F099CF1F43C4F9AE02.roa (hash: cuURsbxNvtOqTd1FnCF2I2C85rcA4nGp1HY8p4P3GjI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.crl rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZTy4p1ENubbBon2HfSEh5t9CGYI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFC94, serialNumber=653CB8A7510DB9B6C1A27D877D2121E6DF421982 Validity Not Before: Apr 17 05:35:25 2026 GMT Not After : Apr 24 05:35:25 2026 GMT Subject: CN=69e1c69d-b2ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:4d:72:05:fe:f5:23:dd:89:8a:b3:fd:62:34: a5:f6:36:28:24:cb:3d:e1:28:c5:17:d0:26:9a:6c: 6b:f7:2b:e2:92:16:ec:10:48:52:10:40:48:01:66: bc:04:d1:6d:02:52:f3:23:b5:7d:39:bd:12:38:24: 8c:b5:61:a7:f2:12:95:63:a9:8f:77:1c:1a:08:e5: d0:e6:5f:45:10:95:d6:18:2a:bb:18:28:81:45:53: ae:07:ea:50:24:69:d8:45:a6:3a:f8:77:d8:3b:d7: f7:ce:8d:53:3a:47:ae:5c:cf:ab:2d:c9:c7:12:42: 26:49:56:81:ff:29:70:65:1e:2a:71:e2:7b:9c:70: 53:fc:9b:06:ab:6f:80:9f:0c:0b:90:d9:24:96:a9: f3:da:61:c0:07:c9:7a:a7:40:25:3b:41:46:56:c3: 86:e0:45:1e:69:63:0d:4f:53:5e:bc:6e:3a:35:62: 49:56:6d:55:99:53:e8:7f:12:cf:b1:b5:76:d0:00: 0c:e9:9a:9b:62:bb:5e:eb:de:75:dc:4d:3c:ae:c0: 01:16:74:34:bc:63:87:cd:5c:14:99:43:6f:05:83: c7:d8:7c:e5:bb:3b:29:d3:7e:53:2a:10:b0:ce:8a: 58:f5:8f:62:40:0e:99:61:02:3e:4a:a1:29:97:3e: a0:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:86:71:C5:79:6D:60:3A:F3:3B:8D:8C:FE:FC:D4:04:1C:D9:81:3A X509v3 Authority Key Identifier: keyid:65:3C:B8:A7:51:0D:B9:B6:C1:A2:7D:87:7D:21:21:E6:DF:42:19:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZTy4p1ENubbBon2HfSEh5t9CGYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFC94/A8CD016494DA11EF89086D21C4F9AE02/ZTy4p1ENubbBon2HfSEh5t9CGYI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:27:b3:14:65:d0:d6:f4:e4:de:eb:24:7a:31:3d:a0:ae:51: 7d:9f:d6:ff:0e:ba:57:29:ab:c1:6c:2a:66:03:5e:71:fd:02: 0f:4a:4d:9d:5c:4a:34:cd:dc:59:b0:69:39:6a:ac:cd:3f:9a: 7f:ce:a5:69:7b:88:e6:9a:8b:4d:46:aa:92:3c:c4:fa:7b:dd: 26:a5:d6:ce:43:b9:5a:1e:f9:59:f5:40:d9:1e:3c:6c:2c:03: fa:6a:62:fa:58:e5:0d:8c:98:99:06:4a:7a:24:3b:73:b3:3b: ed:46:7e:72:a9:6c:b4:7b:80:49:b0:60:56:dd:2b:25:05:48: 81:da:24:83:71:0f:5b:70:33:28:fd:b5:b1:bb:96:d5:f2:ed: 77:cb:ba:28:56:ca:ea:f2:bd:25:10:d8:7c:83:a7:af:f1:72: cf:5d:03:df:b9:c0:ef:cf:96:53:e5:28:de:88:40:85:10:f3: 94:f8:3c:87:57:29:2e:64:9b:58:97:e6:6d:e3:6d:76:6b:02: bd:bf:ea:22:93:c1:63:b1:b6:ef:71:36:b0:f0:99:31:6d:a8: 98:86:4c:50:77:90:7e:09:99:82:cd:50:57:e0:00:83:02:f2: b9:b7:25:fd:3b:9f:6d:69:ec:8b:87:0e:3e:a8:60:87:06:ff: b1:fb:d6:65 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZDOTQxMTAvBgNVBAUTKDY1M0NCOEE3NTEwREI5QjZDMUEyN0Q4NzdEMjEyMUU2 REY0MjE5ODIwHhcNMjYwNDE3MDUzNTI1WhcNMjYwNDI0MDUzNTI1WjAYMRYwFAYD VQQDEw02OWUxYzY5ZC1iMmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApE1yBf71I92JirP9YjSl9jYoJMs94SjFF9Ammmxr9yvikhbsEEhSEEBIAWa8 BNFtAlLzI7V9Ob0SOCSMtWGn8hKVY6mPdxwaCOXQ5l9FEJXWGCq7GCiBRVOuB+pQ JGnYRaY6+HfYO9f3zo1TOkeuXM+rLcnHEkImSVaB/ylwZR4qceJ7nHBT/JsGq2+A nwwLkNkklqnz2mHAB8l6p0AlO0FGVsOG4EUeaWMNT1NevG46NWJJVm1VmVPofxLP sbV20AAM6ZqbYrte69513E08rsABFnQ0vGOHzVwUmUNvBYPH2Hzluzsp035TKhCw zopY9Y9iQA6ZYQI+SqEplz6gcQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBKGccV5 bWA68zuNjP781AQc2YE6MB8GA1UdIwQYMBaAFGU8uKdRDbm2waJ9h30hIebfQhmC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkM5NC9BOENEMDE2NDk0 REExMUVGODkwODZEMjFDNEY5QUUwMi9aVHk0cDFFTnViYkJvbjJIZlNFaDV0OUNH WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1pUeTRwMUVOdWJiQm9uMkhmU0VoNXQ5Q0dZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RkM5NC9BOENEMDE2NDk0REExMUVGODkwODZEMjFDNEY5QUUwMi9aVHk0cDFFTnVi YkJvbjJIZlNFaDV0OUNHWUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAGiezFGXQ1vTk3uskejE9oK5RfZ/W/w66VymrwWwqZgNecf0CD0pNnVxKNM3c WbBpOWqszT+af86laXuI5pqLTUaqkjzE+nvdJqXWzkO5Wh75WfVA2R48bCwD+mpi +ljlDYyYmQZKeiQ7c7M77UZ+cqlstHuASbBgVt0rJQVIgdokg3EPW3AzKP21sbuW 1fLtd8u6KFbK6vK9JRDYfIOnr/Fyz10D37nA78+WU+Uo3ohAhRDzlPg8h1cpLmSb WJfmbeNtdmsCvb/qIpPBY7G273E2sPCZMW2omIZMUHeQfgmZgs1QV+AAgwLyubcl /TufbWnsi4cOPqhghwb/sfvWZQ== -----END CERTIFICATE-----Generated at Fri Apr 17 13:55:15 2026 by rpki-client