$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft File: zFkhdtiMQj-IWbUYtq0zT_92dAk.mft (raw, json) Hash identifier: MJyWulGQnQzof4MOMG8c/KHetjWg8j6oFo11UuUHKzA= Subject key identifier: 1C:61:1D:DA:C5:6C:6D:CB:A7:F8:FD:7A:1F:2D:7E:3D:D0:D3:E7:EE Authority key identifier: CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 Certificate issuer: /CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Certificate serial: 120F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft Manifest number: 11D4 Signing time: Thu 16 Apr 2026 17:06:06 +0000 Manifest this update: Thu 16 Apr 2026 17:06:05 +0000 Manifest next update: Thu 23 Apr 2026 17:06:05 +0000 Files and hashes: 1: zFkhdtiMQj-IWbUYtq0zT_92dAk.crl (hash: zQ2q5AVxRBU+reoDqrRoBabMCIF2T3CtwtNmBfjo3B8=) 2: 23A0D39C0F1D11E991F4271EC4F9AE02.roa (hash: tb6d2POyVxQvEjZTCt8zzCzL5T0dHc+hRl47vzKiwro=) 3: 552292460F1A11E9B3F2A713C4F9AE02.roa (hash: 6bJMavZFRpkLHiVk166wivPVWZcYiFXj4dWo/IpNl7w=) 4: 5488F6EA0F1A11E9B3F2A713C4F9AE02.roa (hash: 6R3WrQlkwYdoSKIA9m9L9kSxThcr/NMUZ6ZAaENWcLk=) 5: 53BDA2F60F1A11E9B3F2A713C4F9AE02.roa (hash: 8sR59Lp6fQc79JgAgqC1t1+yUKy4/xiWteMrpfGnLFs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:06:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4623 (0x120f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67BB, serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Validity Not Before: Apr 16 17:06:05 2026 GMT Not After : Apr 23 17:06:05 2026 GMT Subject: CN=69e116fe-294a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:38:11:ed:1c:b4:31:65:94:bb:7a:03:4b:b5: 69:5c:e3:d5:b3:1b:ca:ad:aa:1a:d0:6e:0d:00:d2: 89:dc:31:f0:c0:b0:a8:24:4e:4e:bd:f6:68:07:e7: 02:72:0f:a8:e2:24:8d:e0:c3:a6:0b:9c:39:ce:1d: 80:13:40:ba:ef:5f:ba:23:ef:44:36:c9:66:4a:6f: dd:08:c6:7a:fb:6f:ea:02:b8:c1:02:ae:66:12:26: 1b:fb:93:a5:13:8c:57:c3:a9:fd:5c:a2:66:d7:52: 09:64:20:ff:10:02:d5:0d:c1:d9:92:44:b1:f8:6c: 2d:7f:2d:30:00:fb:de:a5:e8:30:90:e3:1c:73:4d: e4:54:85:4f:4d:81:ce:56:9c:57:34:91:07:ca:fa: c0:72:1d:7a:b8:bd:9d:12:2d:b4:22:0d:c3:3f:98: b8:6d:a5:a0:b7:ff:1f:c1:c9:91:f9:bb:7b:1d:95: 83:49:20:0a:80:74:7f:68:9d:fe:31:db:19:68:4e: d3:11:46:5d:5e:2f:38:ae:96:21:19:0f:c4:07:e9: 2f:2c:0f:0e:4f:81:9f:82:07:1b:44:2d:e9:d9:28: 99:81:44:1b:86:d0:1a:64:14:f5:79:89:c5:2d:20: ce:14:cb:6a:1f:0d:07:6e:dc:81:e0:d8:e6:fc:e2: c9:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:61:1D:DA:C5:6C:6D:CB:A7:F8:FD:7A:1F:2D:7E:3D:D0:D3:E7:EE X509v3 Authority Key Identifier: keyid:CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:89:3e:12:ca:24:2a:7a:97:ce:73:82:89:c0:34:0b:12:66: 19:5a:a5:4b:72:64:74:cb:82:23:67:e5:13:52:21:8f:a9:1a: 22:09:ea:17:3a:a2:d5:bd:2d:b0:5e:b2:d7:63:7e:08:d4:46: 55:d4:b4:fa:a9:8a:f0:3f:88:35:40:8e:25:6e:59:81:bf:25: cf:dd:4b:69:5e:01:93:4f:7f:62:f3:dc:ca:26:e2:d7:98:8d: 40:b4:0c:3d:82:ff:9b:f0:81:65:09:81:bc:74:51:83:8c:75: 47:bf:35:b9:56:b4:67:71:6d:3a:12:9d:3f:41:21:33:4b:12: 77:ba:af:72:a9:3c:87:6e:08:3f:06:b2:84:47:a8:ed:e9:06: 4c:49:cd:b7:ab:96:f8:c1:f4:bf:29:0a:c7:29:74:dc:c0:32: 04:29:8c:c8:94:1a:49:4d:8d:96:04:a8:0f:37:a3:ca:85:f2: 68:1c:2e:f4:5a:c7:f3:82:62:d5:ca:8e:b4:62:52:eb:a3:18: 4d:ba:e0:18:e9:e4:fb:35:02:25:a8:3b:a8:64:32:33:1b:2c: 17:aa:83:b0:51:48:fa:12:d0:c9:45:3f:a4:fa:60:c2:b3:4d: 8e:25:e6:f4:c4:2d:9d:f8:6f:92:fa:1d:8d:24:13:e3:b8:27: 6c:81:c0:08 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3QkIxMTAvBgNVBAUTKENDNTkyMTc2RDg4QzQyM0Y4ODU5QjUxOEI2QUQzMzRG RkY3Njc0MDkwHhcNMjYwNDE2MTcwNjA1WhcNMjYwNDIzMTcwNjA1WjAYMRYwFAYD VQQDEw02OWUxMTZmZS0yOTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTgR7Ry0MWWUu3oDS7VpXOPVsxvKraoa0G4NANKJ3DHwwLCoJE5OvfZoB+cC cg+o4iSN4MOmC5w5zh2AE0C671+6I+9ENslmSm/dCMZ6+2/qArjBAq5mEiYb+5Ol E4xXw6n9XKJm11IJZCD/EALVDcHZkkSx+Gwtfy0wAPvepegwkOMcc03kVIVPTYHO VpxXNJEHyvrAch16uL2dEi20Ig3DP5i4baWgt/8fwcmR+bt7HZWDSSAKgHR/aJ3+ MdsZaE7TEUZdXi84rpYhGQ/EB+kvLA8OT4GfggcbRC3p2SiZgUQbhtAaZBT1eYnF LSDOFMtqHw0HbtyB4Njm/OLJdwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBxhHdrF bG3Lp/j9eh8tfj3Q0+fuMB8GA1UdIwQYMBaAFMxZIXbYjEI/iFm1GLatM0//dnQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdCQi9CREZCRjE4NjBF M0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFqLUlXYlVZdHEwelRfOTJk QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pGa2hkdGlNUWotSVdiVVl0cTB6VF85MmRBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjdCQi9CREZCRjE4NjBFM0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFq LUlXYlVZdHEwelRfOTJkQWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsIk+EsokKnqXznOCicA0CxJmGVqlS3JkdMuCI2flE1Ihj6kaIgnqFzqi1b0t sF6y12N+CNRGVdS0+qmK8D+INUCOJW5Zgb8lz91LaV4Bk09/YvPcyibi15iNQLQM PYL/m/CBZQmBvHRRg4x1R781uVa0Z3FtOhKdP0EhM0sSd7qvcqk8h24IPwayhEeo 7ekGTEnNt6uW+MH0vykKxyl03MAyBCmMyJQaSU2NlgSoDzejyoXyaBwu9FrH84Ji 1cqOtGJS66MYTbrgGOnk+zUCJag7qGQyMxssF6qDsFFI+hLQyUU/pPpgwrNNjiXm 9MQtnfhvkvodjSQT47gnbIHACA== -----END CERTIFICATE-----Generated at Fri Apr 17 17:50:44 2026 by rpki-client