$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft File: zFfgNkMaXqPBcqpyg0Aa88StXFk.mft (raw, json) Hash identifier: cswo31g7M/J4RbncshaPF4cvZFBVduSX72GPQ9PTQho= Subject key identifier: BC:E4:3B:3E:53:68:7C:41:A6:09:16:7B:75:03:1B:0D:E8:DD:EE:A8 Authority key identifier: CC:57:E0:36:43:1A:5E:A3:C1:72:AA:72:83:40:1A:F3:C4:AD:5C:59 Certificate issuer: /CN=A91FDC78/serialNumber=CC57E036431A5EA3C172AA7283401AF3C4AD5C59 Certificate serial: 09AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFfgNkMaXqPBcqpyg0Aa88StXFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft Manifest number: 0998 Signing time: Thu 16 Apr 2026 19:56:20 +0000 Manifest this update: Thu 16 Apr 2026 19:56:20 +0000 Manifest next update: Thu 23 Apr 2026 19:56:20 +0000 Files and hashes: 1: zFfgNkMaXqPBcqpyg0Aa88StXFk.crl (hash: Z6LLMWBJMGiUy/Ks/zTlzmpqNILZHWJbTKKVgYaA61o=) 2: DA0B639E89E711F08DD17A55C4F9AE02.roa (hash: oDVejNljbDL/11huUe+XaNuZxfU7WrqBrupnQVfzggU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.crl rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFfgNkMaXqPBcqpyg0Aa88StXFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:56:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2475 (0x9ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDC78, serialNumber=CC57E036431A5EA3C172AA7283401AF3C4AD5C59 Validity Not Before: Apr 16 19:56:20 2026 GMT Not After : Apr 23 19:56:20 2026 GMT Subject: CN=69e13ee4-f925 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7d:6d:dc:c5:51:07:d6:ad:37:a2:c3:17:fa: f2:d9:55:d2:7a:3c:4d:ae:fb:7b:0e:14:0c:b0:23: 7f:f3:f8:04:05:3a:db:40:ba:84:28:02:22:1e:f5: e0:c0:34:b2:75:3f:6b:45:c0:50:9f:27:ca:02:62: 03:03:7b:41:b5:22:1c:64:f4:b8:2b:f4:48:42:02: 6b:9d:b0:8f:4d:0c:cf:bc:43:04:7a:28:56:e4:bc: aa:be:7d:7a:1e:77:15:6c:96:a5:1c:ea:06:6d:14: 54:d1:3a:3d:06:a2:1c:08:6a:0e:ae:8e:38:9a:1a: 40:6a:ab:49:04:7f:ce:44:f1:a8:35:5e:7f:2a:0f: 0d:19:9c:6f:af:49:ea:16:54:23:01:98:25:09:7d: 59:f8:9c:86:f3:6e:7d:09:3a:79:56:1b:94:1e:23: b5:8b:b5:04:53:eb:a1:2c:83:14:c9:b0:88:b4:bb: c8:5a:59:81:9b:7e:ea:5a:b1:b0:d7:34:50:f1:92: 55:a8:ae:18:44:11:e9:0a:24:79:94:5c:81:c3:71: 33:23:af:03:79:9c:ac:5c:7c:fd:b6:e1:23:02:8d: d6:c8:f2:a5:0a:22:e5:9d:f6:0d:ea:b5:f2:c4:40: 1f:42:9e:8a:4a:6c:f4:c5:29:69:c8:6f:f6:84:fc: 06:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:E4:3B:3E:53:68:7C:41:A6:09:16:7B:75:03:1B:0D:E8:DD:EE:A8 X509v3 Authority Key Identifier: keyid:CC:57:E0:36:43:1A:5E:A3:C1:72:AA:72:83:40:1A:F3:C4:AD:5C:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFfgNkMaXqPBcqpyg0Aa88StXFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:ae:9f:6e:52:f8:a4:f8:c6:e3:98:d5:62:3f:69:03:f2:06: 2d:64:04:ac:6a:79:52:80:07:69:f7:fb:ed:42:a5:d6:37:2e: 90:5f:44:8d:72:23:78:e9:d0:ef:de:52:89:14:50:f1:26:a5: 83:99:c6:22:e7:27:5e:92:16:95:51:0b:1e:85:ff:a3:fa:65: 7a:c4:85:b4:0f:5a:fd:0b:06:1a:03:43:0e:a7:e5:8b:65:77: dd:29:6f:2d:bf:73:21:c5:28:06:bd:9e:ed:08:1b:0d:70:e9: 32:20:08:ae:9b:02:33:42:9c:7e:4b:08:15:58:a7:ae:69:f4: b6:26:89:76:3d:b3:fa:bd:c6:04:3f:6e:50:9d:e5:30:32:ee: 84:bb:f7:81:c7:c6:c5:93:99:67:c3:28:74:26:5d:b0:4b:5d: fc:5f:27:1b:34:5d:5c:33:7f:27:16:b8:a5:94:d0:ad:a1:35: 07:ef:ba:41:5f:ed:a5:1c:fe:da:5f:9f:d7:a6:ca:ba:9c:6c: 51:e9:88:81:bd:8d:5a:b2:e2:f7:39:59:63:44:ae:16:5b:c4: 6f:fe:1b:5a:01:5f:ea:67:e5:14:8a:8c:49:b4:8f:cb:fc:c6: 67:20:e3:cc:b4:5f:b7:63:6e:43:89:99:d6:cc:ea:36:a8:dd: 3e:d5:4e:43 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRDNzgxMTAvBgNVBAUTKENDNTdFMDM2NDMxQTVFQTNDMTcyQUE3MjgzNDAxQUYz QzRBRDVDNTkwHhcNMjYwNDE2MTk1NjIwWhcNMjYwNDIzMTk1NjIwWjAYMRYwFAYD VQQDEw02OWUxM2VlNC1mOTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA231t3MVRB9atN6LDF/ry2VXSejxNrvt7DhQMsCN/8/gEBTrbQLqEKAIiHvXg wDSydT9rRcBQnyfKAmIDA3tBtSIcZPS4K/RIQgJrnbCPTQzPvEMEeihW5Lyqvn16 HncVbJalHOoGbRRU0To9BqIcCGoOro44mhpAaqtJBH/ORPGoNV5/Kg8NGZxvr0nq FlQjAZglCX1Z+JyG8259CTp5VhuUHiO1i7UEU+uhLIMUybCItLvIWlmBm37qWrGw 1zRQ8ZJVqK4YRBHpCiR5lFyBw3EzI68DeZysXHz9tuEjAo3WyPKlCiLlnfYN6rXy xEAfQp6KSmz0xSlpyG/2hPwG8QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLzkOz5T aHxBpgkWe3UDGw3o3e6oMB8GA1UdIwQYMBaAFMxX4DZDGl6jwXKqcoNAGvPErVxZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREM3OC8xNTQ3NDAwOEFF QUMxMUVBQTZDMUQ3NjFDNEY5QUUwMi96RmZnTmtNYVhxUEJjcXB5ZzBBYTg4U3RY RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGZmdOa01hWHFQQmNxcHlnMEFhODhTdFhGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REM3OC8xNTQ3NDAwOEFFQUMxMUVBQTZDMUQ3NjFDNEY5QUUwMi96RmZnTmtNYVhx UEJjcXB5ZzBBYTg4U3RYRmsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAma6fblL4pPjG45jVYj9pA/IGLWQErGp5UoAHaff77UKl1jcukF9EjXIjeOnQ 795SiRRQ8Salg5nGIucnXpIWlVELHoX/o/plesSFtA9a/QsGGgNDDqfli2V33Slv Lb9zIcUoBr2e7QgbDXDpMiAIrpsCM0KcfksIFVinrmn0tiaJdj2z+r3GBD9uUJ3l MDLuhLv3gcfGxZOZZ8ModCZdsEtd/F8nGzRdXDN/Jxa4pZTQraE1B++6QV/tpRz+ 2l+f16bKupxsUemIgb2NWrLi9zlZY0SuFlvEb/4bWgFf6mflFIqMSbSPy/zGZyDj zLRft2NuQ4mZ1szqNqjdPtVOQw== -----END CERTIFICATE-----Generated at Fri Apr 17 10:49:27 2026 by rpki-client