$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft File: zPWB9MM8pEQeGAfjlsXv51-oLdA.mft (raw, json) Hash identifier: gHZWAxMeVJ7zkgG6z5SENyjiA/6nMVPuNqKkMQpLejc= Subject key identifier: DD:C3:C7:0C:E3:DA:96:6A:4B:B3:95:00:96:36:9A:DF:24:8E:75:2C Authority key identifier: CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 Certificate issuer: /CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Certificate serial: 0ADA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft Manifest number: 0ACB Signing time: Tue 24 Mar 2026 19:15:13 +0000 Manifest this update: Tue 24 Mar 2026 19:15:13 +0000 Manifest next update: Tue 31 Mar 2026 19:15:13 +0000 Files and hashes: 1: zPWB9MM8pEQeGAfjlsXv51-oLdA.crl (hash: f8MLFlLXRHx3R493qSdchsVAW31Y3mFBif6yA2A7B1Q=) 2: 4A644958BA0311F084B11F0DC4F9AE02.roa (hash: jYg6q/W/0HVfh05DuMfHV7pRX1CgQotQsytTOYFkR4g=) 3: EECBCEBE6E3511EABDE26D73C4F9AE02.roa (hash: r1pD0Q+gqTEwuW8+FxM3DxEOTWIuAGXXddrFG01zuI0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2778 (0xada) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A27, serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Validity Not Before: Mar 24 19:15:13 2026 GMT Not After : Mar 31 19:15:13 2026 GMT Subject: CN=69c2e2c1-3bec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:78:e8:50:45:35:51:53:da:77:90:0b:c6:d5: 8d:81:dc:d2:58:78:f6:fe:9f:7a:d7:fb:d4:65:cd: e0:60:b9:c9:87:1c:e2:bc:0d:35:21:6a:2a:b9:93: 75:25:a0:2d:73:46:ff:01:0f:25:44:49:ad:d6:8a: 39:cd:ed:24:31:a9:8d:8f:94:3f:f2:68:a2:5a:7c: 03:ab:60:7f:42:27:b8:22:d7:3f:48:a9:3f:78:d5: a8:c2:92:61:ba:f2:51:13:97:c3:fd:62:8d:50:d6: 63:ca:5c:58:62:0c:c5:58:f5:52:a7:3c:45:f4:6f: 58:bc:ae:75:bf:9f:24:c1:74:bb:a7:5b:cc:0a:22: 76:dd:e1:e5:a7:3c:a1:7f:b8:c7:dd:d5:29:a4:36: 2d:34:2a:c9:6a:c3:74:9e:42:70:1a:85:3d:99:10: 87:5e:66:e7:ac:fa:97:4b:6c:f6:80:90:38:a6:71: c2:79:09:d6:c2:73:d6:e4:7e:8f:5e:2b:df:d3:49: 34:ba:e3:f6:8f:49:cb:13:37:59:e3:7b:ac:2e:49: 84:9e:f2:63:0d:c3:3e:d6:75:72:e7:bb:86:6d:28: bc:e9:8d:4f:b8:d1:d4:bd:75:55:ab:1e:aa:d4:72: 8d:3f:43:8b:6c:97:fe:ba:a3:b9:33:dd:81:05:3d: 68:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:C3:C7:0C:E3:DA:96:6A:4B:B3:95:00:96:36:9A:DF:24:8E:75:2C X509v3 Authority Key Identifier: keyid:CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:ae:c2:4f:01:58:65:a6:b4:3e:d2:17:ed:ec:81:27:91:4d: be:32:a3:8d:c0:bc:f1:d3:9b:f5:59:3c:76:3e:e8:7b:8d:ff: 65:69:b6:cc:47:2e:f4:00:73:90:16:0c:5a:e4:45:f9:b3:bf: 87:8d:a5:92:ae:5b:2d:47:1e:58:95:9d:89:21:5d:38:eb:30: 6d:a8:8e:c9:45:c6:52:78:5f:78:e5:5b:a8:65:e2:e4:46:86: b7:96:ec:78:b0:11:0a:42:97:8d:86:5c:13:90:d6:44:46:c7: ee:72:72:66:a9:ca:e4:1c:f1:73:37:05:60:01:89:36:3c:ea: b3:b7:30:6f:c7:7c:2d:4d:09:9b:d2:10:53:28:ab:ff:24:68: 85:02:d9:16:7e:f2:cf:af:11:e1:91:e7:c5:e3:14:0e:17:78: 92:d2:68:2c:52:ca:6e:57:96:c2:b0:50:2f:9f:80:19:27:fb: b2:eb:f3:39:af:d7:b5:91:14:1d:89:67:31:8f:4c:e7:4d:e0: a4:5e:23:b1:95:44:eb:8f:8c:32:d7:86:98:fa:d7:21:c9:fa: a9:c7:4e:89:6d:6a:aa:95:18:22:7b:d7:44:f2:f1:d3:7b:6c: 34:07:7d:8b:45:45:ad:72:47:01:ac:d3:28:b4:85:28:17:68: 3d:1a:11:9b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBMjcxMTAvBgNVBAUTKENDRjU4MUY0QzMzQ0E0NDQxRTE4MDdFMzk2QzVFRkU3 NUZBODJERDAwHhcNMjYwMzI0MTkxNTEzWhcNMjYwMzMxMTkxNTEzWjAYMRYwFAYD VQQDEw02OWMyZTJjMS0zYmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0njoUEU1UVPad5ALxtWNgdzSWHj2/p961/vUZc3gYLnJhxzivA01IWoquZN1 JaAtc0b/AQ8lREmt1oo5ze0kMamNj5Q/8miiWnwDq2B/Qie4Itc/SKk/eNWowpJh uvJRE5fD/WKNUNZjylxYYgzFWPVSpzxF9G9YvK51v58kwXS7p1vMCiJ23eHlpzyh f7jH3dUppDYtNCrJasN0nkJwGoU9mRCHXmbnrPqXS2z2gJA4pnHCeQnWwnPW5H6P Xivf00k0uuP2j0nLEzdZ43usLkmEnvJjDcM+1nVy57uGbSi86Y1PuNHUvXVVqx6q 1HKNP0OLbJf+uqO5M92BBT1o1QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFN3Dxwzj 2pZqS7OVAJY2mt8kjnUsMB8GA1UdIwQYMBaAFMz1gfTDPKREHhgH45bF7+dfqC3Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUEyNy82NjI1MThCRTZF MzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBFUWVHQWZqbHNYdjUxLW9M ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQV0I5TU04cEVRZUdBZmpsc1h2NTEtb0xkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUEyNy82NjI1MThCRTZFMzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBF UWVHQWZqbHNYdjUxLW9MZEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACa7CTwFYZaa0PtIX7eyBJ5FNvjKjjcC88dOb9Vk8dj7oe43/ZWm2zEcu9ABz kBYMWuRF+bO/h42lkq5bLUceWJWdiSFdOOswbaiOyUXGUnhfeOVbqGXi5EaGt5bs eLARCkKXjYZcE5DWREbH7nJyZqnK5BzxczcFYAGJNjzqs7cwb8d8LU0Jm9IQUyir /yRohQLZFn7yz68R4ZHnxeMUDhd4ktJoLFLKbleWwrBQL5+AGSf7suvzOa/XtZEU HYlnMY9M503gpF4jsZVE64+MMteGmPrXIcn6qcdOiW1qqpUYInvXRPLx03tsNAd9 i0VFrXJHAazTKLSFKBdoPRoRmw== -----END CERTIFICATE-----Generated at Thu Mar 26 09:53:01 2026 by rpki-client