$ rpki-client -vvf rpki.apnic.net/member_repository/A911F7D0/66A29982131411E9834F773BC4F9AE02/ZfzR8nTT59WOTQyihVjTS2sVLWc.mft File: ZfzR8nTT59WOTQyihVjTS2sVLWc.mft (raw, json) Hash identifier: q2jyQPlDmOh/wchxE8BoiJrVcKW2gt5gVcp/h+hU8dE= Subject key identifier: 84:AB:25:EC:EA:0F:A6:49:96:A9:25:52:89:C2:0E:E5:00:0C:AE:FB Authority key identifier: 65:FC:D1:F2:74:D3:E7:D5:8E:4D:0C:A2:85:58:D3:4B:6B:15:2D:67 Certificate issuer: /CN=A911F7D0/serialNumber=65FCD1F274D3E7D58E4D0CA28558D34B6B152D67 Certificate serial: 11BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfzR8nTT59WOTQyihVjTS2sVLWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F7D0/66A29982131411E9834F773BC4F9AE02/ZfzR8nTT59WOTQyihVjTS2sVLWc.mft Manifest number: 11B1 Signing time: Tue 24 Mar 2026 17:04:34 +0000 Manifest this update: Tue 24 Mar 2026 17:04:33 +0000 Manifest next update: Tue 31 Mar 2026 17:04:33 +0000 Files and hashes: 1: ZfzR8nTT59WOTQyihVjTS2sVLWc.crl (hash: NkTvq8s3lZQB3o16t8KI81tdVCiSFzdGMPq+muiSXxY=) 2: 1BFF84B0131611E991379440C4F9AE02.roa (hash: pP9sfTlQFZwgEZOIynMioM1x60lYpa7dMZDxjqtV5Ts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F7D0/66A29982131411E9834F773BC4F9AE02/ZfzR8nTT59WOTQyihVjTS2sVLWc.crl rsync://rpki.apnic.net/member_repository/A911F7D0/66A29982131411E9834F773BC4F9AE02/ZfzR8nTT59WOTQyihVjTS2sVLWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfzR8nTT59WOTQyihVjTS2sVLWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:04:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4540 (0x11bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F7D0, serialNumber=65FCD1F274D3E7D58E4D0CA28558D34B6B152D67 Validity Not Before: Mar 24 17:04:33 2026 GMT Not After : Mar 31 17:04:33 2026 GMT Subject: CN=69c2c422-3049 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:c5:54:63:94:7e:0e:9f:73:fd:7f:d0:be:c1: 14:1c:d0:4b:82:b2:b7:96:ef:f0:7a:72:47:28:dd: ef:d8:7b:b3:5d:71:97:13:b7:c2:9a:dd:35:8c:ac: 3f:e5:6f:89:b2:d1:e5:7d:47:c1:b9:2e:3c:3b:fa: e5:31:a0:62:0e:26:42:02:4d:3c:95:5e:d0:ec:71: 9f:83:8a:8a:f3:35:9a:13:fb:d2:87:38:01:d0:31: 10:bd:64:12:a4:55:1c:fa:b4:64:b2:83:13:85:ec: c9:96:30:1d:13:43:e6:94:4d:be:1a:f7:fa:a3:2f: f0:cd:48:24:15:2d:5f:e2:c0:9e:1a:80:d3:ae:1c: d8:f2:c8:f0:0b:48:12:e9:15:bb:b9:69:c3:a1:3d: d9:cf:9b:0a:fa:af:8b:c8:24:71:a2:94:f1:90:51: bc:1e:24:92:58:6a:c1:7e:3b:52:0f:e6:00:20:e2: 09:8d:75:6b:92:4f:5f:fc:0e:15:7c:b8:17:3d:07: 27:12:19:83:7e:75:40:cf:4f:1c:f5:66:67:ec:6d: c3:2b:4f:61:3e:14:bd:e1:94:e0:46:b9:22:4a:92: 09:89:ec:c6:5d:85:6c:b6:ba:4c:fe:21:be:ef:f3: 76:70:96:25:c2:cb:fa:19:2b:56:64:a2:3a:c1:14: c3:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:AB:25:EC:EA:0F:A6:49:96:A9:25:52:89:C2:0E:E5:00:0C:AE:FB X509v3 Authority Key Identifier: keyid:65:FC:D1:F2:74:D3:E7:D5:8E:4D:0C:A2:85:58:D3:4B:6B:15:2D:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F7D0/66A29982131411E9834F773BC4F9AE02/ZfzR8nTT59WOTQyihVjTS2sVLWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZfzR8nTT59WOTQyihVjTS2sVLWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F7D0/66A29982131411E9834F773BC4F9AE02/ZfzR8nTT59WOTQyihVjTS2sVLWc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:22:1d:49:26:7c:be:2c:75:37:2a:db:e2:1f:eb:72:73:70: 26:10:9d:f7:bb:14:bd:c7:9a:ca:a8:9a:22:b9:57:72:38:60: bb:26:1c:46:db:4a:8f:8a:cd:7a:d9:4f:09:dc:fc:c6:6b:d2: 75:a1:cd:6d:17:38:d9:60:09:55:b7:c0:5b:db:ac:7d:bc:fa: 7e:f0:fa:75:c7:10:83:32:42:35:36:6b:99:b8:2c:41:bb:05: 87:ef:2f:48:f0:22:f7:dd:81:62:97:9a:7e:b9:72:ad:48:a1: 7f:a0:00:ca:85:31:74:35:30:94:23:91:f3:a2:fb:06:56:e3: cc:06:4f:fe:0e:fc:b2:d9:a9:27:77:0f:87:38:31:af:5a:a4: bf:4a:52:1c:92:38:1d:73:70:68:e1:07:3f:25:88:ca:f9:a6: 92:8f:77:16:03:ef:2c:28:c9:cb:d4:86:6b:ef:88:f4:02:1b: 88:d6:19:cf:77:df:88:67:3f:12:9c:ab:b4:4c:42:a5:ba:f9: 2d:15:4e:fc:34:e2:5d:c1:31:b6:0d:16:43:e2:bc:bb:a6:8d: 70:81:eb:e6:c8:3a:ab:cc:db:28:68:63:07:16:ee:a6:41:d2: 55:41:3b:6e:7d:59:09:98:45:88:95:e3:ef:29:93:00:ec:a2: da:25:b7:2c -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICEbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY3RDAxMTAvBgNVBAUTKDY1RkNEMUYyNzREM0U3RDU4RTREMENBMjg1NThEMzRC NkIxNTJENjcwHhcNMjYwMzI0MTcwNDMzWhcNMjYwMzMxMTcwNDMzWjAYMRYwFAYD VQQDEw02OWMyYzQyMi0zMDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl8VUY5R+Dp9z/X/QvsEUHNBLgrK3lu/wenJHKN3v2HuzXXGXE7fCmt01jKw/ 5W+JstHlfUfBuS48O/rlMaBiDiZCAk08lV7Q7HGfg4qK8zWaE/vShzgB0DEQvWQS pFUc+rRksoMThezJljAdE0PmlE2+Gvf6oy/wzUgkFS1f4sCeGoDTrhzY8sjwC0gS 6RW7uWnDoT3Zz5sK+q+LyCRxopTxkFG8HiSSWGrBfjtSD+YAIOIJjXVrkk9f/A4V fLgXPQcnEhmDfnVAz08c9WZn7G3DK09hPhS94ZTgRrkiSpIJiezGXYVstrpM/iG+ 7/N2cJYlwsv6GStWZKI6wRTDBQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFISrJezq D6ZJlqklUonCDuUADK77MB8GA1UdIwQYMBaAFGX80fJ00+fVjk0MooVY00trFS1n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjdEMC82NkEyOTk4MjEz MTQxMUU5ODM0Rjc3M0JDNEY5QUUwMi9aZnpSOG5UVDU5V09UUXlpaFZqVFMyc1ZM V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pmelI4blRUNTlXT1RReWloVmpUUzJzVkxXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjdEMC82NkEyOTk4MjEzMTQxMUU5ODM0Rjc3M0JDNEY5QUUwMi9aZnpSOG5UVDU5 V09UUXlpaFZqVFMyc1ZMV2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUCIdSSZ8vix1Nyrb4h/rcnNwJhCd97sUvceayqiaIrlXcjhguyYcRttKj4rN etlPCdz8xmvSdaHNbRc42WAJVbfAW9usfbz6fvD6dccQgzJCNTZrmbgsQbsFh+8v SPAi992BYpeafrlyrUihf6AAyoUxdDUwlCOR86L7BlbjzAZP/g78stmpJ3cPhzgx r1qkv0pSHJI4HXNwaOEHPyWIyvmmko93FgPvLCjJy9SGa++I9AIbiNYZz3ffiGc/ EpyrtExCpbr5LRVO/DTiXcExtg0WQ+K8u6aNcIHr5sg6q8zbKGhjBxbupkHSVUE7 bn1ZCZhFiJXj7ymTAOyi2iW3LA== -----END CERTIFICATE-----Generated at Thu Mar 26 00:57:55 2026 by rpki-client