$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft File: z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft (raw, json) Hash identifier: tnJU/DNP/kOwH3YneZYW7HqHnHzqKKFelgs1DMos/z0= Subject key identifier: B3:D4:A7:96:FA:C0:D1:24:A7:D8:6C:B5:73:40:54:AC:7D:F6:A9:F3 Authority key identifier: CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF Certificate issuer: /CN=A91F8F9B/serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Certificate serial: 0142 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft Manifest number: 013A Signing time: Fri 17 Apr 2026 05:05:40 +0000 Manifest this update: Fri 17 Apr 2026 05:05:39 +0000 Manifest next update: Fri 24 Apr 2026 05:05:39 +0000 Files and hashes: 1: z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl (hash: c0uCioC3iQgAdsa4WEeIgcP3eKlixX4gZkSx3TnPnzw=) 2: 7143C5B85DBF11EFB8714857C4F9AE02.roa (hash: HnPe7oTE/NJwLfNgQpYdaZfEzbuO3TebzvAvQ+UM9po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8F9B, serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Validity Not Before: Apr 17 05:05:39 2026 GMT Not After : Apr 24 05:05:39 2026 GMT Subject: CN=69e1bfa4-fb51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:8e:17:59:ad:ac:c0:c3:3c:10:a8:d5:77:e5: ad:dd:15:4c:1f:15:cf:06:4d:57:e2:b9:5c:fd:af: 8b:6f:0e:94:77:06:ea:3b:7a:ec:47:38:1d:07:cc: 80:f9:74:07:fb:ce:28:f0:95:7d:88:6a:78:99:64: 4e:01:d5:29:09:c2:a5:f4:4b:9b:05:34:82:1c:11: c2:7a:30:ae:37:6a:ab:53:55:31:c2:45:15:4b:d9: ce:fd:2c:46:70:5e:d1:e1:62:19:e8:15:46:da:35: 7e:4b:85:37:b9:04:4d:f7:81:80:fa:c4:6c:d8:44: 93:c0:e0:ec:13:6a:65:00:f6:e6:24:33:52:83:79: 1b:0c:67:8a:8e:ad:6c:63:45:5a:8d:4f:2e:3d:35: d3:be:40:d4:d9:22:f7:3d:96:16:97:89:f4:c9:08: c6:5c:f5:32:74:86:25:7d:af:50:50:d4:e2:04:25: 3b:73:0f:f5:d8:bc:7e:97:5b:31:08:49:7d:8a:65: 9c:ac:30:33:c7:9c:28:68:52:21:62:33:08:f6:73: 66:31:71:27:0c:bf:99:79:d5:48:f2:f9:d6:64:48: 85:8f:95:c9:2c:58:0b:8a:5f:39:27:66:3a:1d:80: 04:34:de:aa:96:ea:0e:f7:c1:39:47:8c:10:2c:a2: f6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:D4:A7:96:FA:C0:D1:24:A7:D8:6C:B5:73:40:54:AC:7D:F6:A9:F3 X509v3 Authority Key Identifier: keyid:CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:05:a7:2b:ac:1c:01:db:98:46:95:3a:4f:82:e1:ec:55:62: df:01:da:45:75:39:1d:13:2a:2e:b7:67:a7:79:02:1c:d6:df: 4c:f2:b9:2f:0c:18:d5:f2:d2:21:e8:55:37:4c:9f:8e:79:be: 37:80:9e:f6:6e:c6:72:a7:e7:1e:1c:0c:eb:80:8f:e1:04:ae: b9:aa:cb:57:14:b6:cb:18:ce:c4:a1:3c:86:a5:19:c4:3a:19: ed:1b:43:66:c2:f4:57:94:b1:95:58:b3:0b:71:a0:80:1a:06: 0e:fa:ab:20:15:d5:78:f9:86:c2:45:e8:34:1d:a3:e1:9e:d3: 30:c5:16:78:d6:22:d6:b4:80:38:e4:3c:a4:07:db:86:fa:ef: 85:a6:f7:a2:77:c0:87:96:dc:f2:e9:9d:f9:b2:f8:53:c4:e1: fb:3e:a5:f0:06:17:1d:ba:ce:18:4e:96:2d:be:d2:3a:68:e4: 00:66:dd:a1:23:85:e3:8e:89:3c:fe:bc:08:96:4f:b2:f9:50: 17:73:1c:c2:8d:50:f1:77:41:98:2f:03:ef:79:9d:e1:f6:e6: b2:6b:f8:1f:64:7d:ab:e7:9e:06:c3:02:f8:f2:38:68:d8:cd: b7:fc:a1:d2:e1:9a:d9:03:63:de:1e:a5:de:99:56:f5:b8:a8: 8b:97:65:ec -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhGOUIxMTAvBgNVBAUTKENGQkIwMzhGREI4Mzg2NTQyMDQ5NjI5ODBBRDIyMUM5 NDE1RDVDRkYwHhcNMjYwNDE3MDUwNTM5WhcNMjYwNDI0MDUwNTM5WjAYMRYwFAYD VQQDEw02OWUxYmZhNC1mYjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqI4XWa2swMM8EKjVd+Wt3RVMHxXPBk1X4rlc/a+Lbw6UdwbqO3rsRzgdB8yA +XQH+84o8JV9iGp4mWROAdUpCcKl9EubBTSCHBHCejCuN2qrU1UxwkUVS9nO/SxG cF7R4WIZ6BVG2jV+S4U3uQRN94GA+sRs2ESTwODsE2plAPbmJDNSg3kbDGeKjq1s Y0VajU8uPTXTvkDU2SL3PZYWl4n0yQjGXPUydIYlfa9QUNTiBCU7cw/12Lx+l1sx CEl9imWcrDAzx5woaFIhYjMI9nNmMXEnDL+ZedVI8vnWZEiFj5XJLFgLil85J2Y6 HYAENN6qluoO98E5R4wQLKL2qQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLPUp5b6 wNEkp9hstXNAVKx99qnzMB8GA1UdIwQYMBaAFM+7A4/bg4ZUIElimArSIclBXVz/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEY5Qi9GOTAyRTUzMDVE QkQxMUVGOEEwNkVENDBDNEY5QUUwMi96N3NEajl1RGhsUWdTV0tZQ3RJaHlVRmRY UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o3c0RqOXVEaGxRZ1NXS1lDdEloeVVGZFhQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEY5Qi9GOTAyRTUzMDVEQkQxMUVGOEEwNkVENDBDNEY5QUUwMi96N3NEajl1RGhs UWdTV0tZQ3RJaHlVRmRYUDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACwWnK6wcAduYRpU6T4Lh7FVi3wHaRXU5HRMqLrdnp3kCHNbfTPK5LwwY1fLS IehVN0yfjnm+N4Ce9m7GcqfnHhwM64CP4QSuuarLVxS2yxjOxKE8hqUZxDoZ7RtD ZsL0V5SxlVizC3GggBoGDvqrIBXVePmGwkXoNB2j4Z7TMMUWeNYi1rSAOOQ8pAfb hvrvhab3onfAh5bc8umd+bL4U8Th+z6l8AYXHbrOGE6WLb7SOmjkAGbdoSOF446J PP68CJZPsvlQF3Mcwo1Q8XdBmC8D73md4fbmsmv4H2R9q+eeBsMC+PI4aNjNt/yh 0uGa2QNj3h6l3plW9bioi5dl7A== -----END CERTIFICATE-----Generated at Fri Apr 17 10:23:22 2026 by rpki-client