$ rpki-client -vvf rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft File: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft (raw, json) Hash identifier: g/aVJg2CwNqX9/5KmMb3dsBPzOtRiOypiFIX5JmhoKU= Subject key identifier: 46:70:07:1E:27:B9:27:DD:8C:1E:55:92:CF:5E:FB:A1:73:DB:01:0C Authority key identifier: 66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 Certificate issuer: /CN=A912519D/serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Certificate serial: 0657 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft Manifest number: 0650 Signing time: Tue 24 Mar 2026 22:22:34 +0000 Manifest this update: Tue 24 Mar 2026 22:22:33 +0000 Manifest next update: Tue 31 Mar 2026 22:22:33 +0000 Files and hashes: 1: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl (hash: Jkmwnj7qH0IRwW+YxHiQRYyTk/5l78xWC9T42gj827w=) 2: 10581DEAC75D11EBB00EBD1AC4F9AE02.roa (hash: 5sKr5Je6hbpFf2Q5JDk7nrFaAZ90rKYQRnu0lj3etl0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:22:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1623 (0x657) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912519D, serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Validity Not Before: Mar 24 22:22:33 2026 GMT Not After : Mar 31 22:22:33 2026 GMT Subject: CN=69c30eaa-588e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bc:5a:59:28:1f:0c:e6:b9:bc:6d:bb:fa:74: d7:bd:1c:1a:90:99:66:63:4f:83:a4:89:ee:bd:b8: b5:45:2d:e5:19:fe:6d:9b:78:ad:12:47:b8:cc:f9: 4b:6d:f6:cf:b0:b8:ea:e3:e6:2b:0c:dc:c3:4c:72: d4:a0:c7:ab:15:d9:4f:7a:60:55:91:7b:68:70:1b: eb:32:c1:88:08:9f:68:c1:d7:ca:9c:3c:da:9f:42: 4a:c4:0a:72:88:45:d0:dc:68:52:16:a3:a2:f7:37: b2:71:fc:39:f2:7d:18:23:28:61:30:8a:a5:96:6a: 2f:eb:ca:0a:64:6d:69:a3:66:c4:88:ef:33:8a:0b: cd:a1:43:60:14:0d:46:91:fb:e0:0d:0b:60:60:88: b1:98:cc:b6:df:80:da:e3:21:22:ec:14:4e:b7:d1: 4c:19:1e:60:80:a7:3d:0e:b0:34:a2:88:fa:46:4c: 97:7d:ec:cf:e3:12:18:b9:c2:90:30:8a:18:66:81: be:c2:33:4a:48:7d:70:b2:0b:4a:9a:64:2e:42:af: d0:ce:53:dc:7a:8e:e1:a9:f3:41:86:1c:79:7e:da: 77:da:09:0a:cc:1c:23:30:51:73:1e:05:0d:0c:38: 7a:2d:1b:c3:39:13:ac:cc:f0:79:c0:6b:74:83:ac: a0:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:70:07:1E:27:B9:27:DD:8C:1E:55:92:CF:5E:FB:A1:73:DB:01:0C X509v3 Authority Key Identifier: keyid:66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:2c:f4:1b:db:c8:41:01:cf:ea:08:66:bf:40:86:9e:20:03: a5:25:0b:71:8e:66:2e:70:7a:50:78:e1:e1:09:27:10:a2:0a: db:29:ae:b0:1b:ff:aa:18:54:d3:e9:f4:c9:b8:64:44:93:43: 05:d4:1b:e1:3b:01:66:02:10:4e:9d:8e:c4:4b:8a:f0:1e:7d: c5:96:23:30:8d:41:22:a9:ca:14:04:11:0d:06:6f:71:90:3b: 53:68:98:fd:a8:c3:97:f1:1c:e6:1f:54:74:27:b5:38:bf:ee: ec:c6:a7:55:b8:31:6b:42:6b:ee:c2:10:9f:9a:68:35:2b:f1: d1:54:b7:a2:4e:0f:4e:25:7b:c5:41:cb:29:e8:2b:c1:6d:c7: 6e:78:32:92:ab:37:63:37:13:13:59:f6:bd:bd:e6:58:4a:69: 83:8f:bf:b4:05:18:b0:2f:f6:c5:17:a5:b9:03:7d:3b:92:54: cd:41:48:ab:f4:a4:e9:ea:ed:1c:33:c6:3c:69:78:36:0e:2e: f9:72:7f:a7:e7:fd:ea:91:71:75:db:3f:60:92:97:e2:bb:c1: 55:bc:a5:eb:c2:6c:64:08:52:c2:cf:da:dd:fd:87:9c:2e:fd: 35:c2:d3:81:ff:eb:8f:4d:3b:32:dd:62:6d:cb:ae:c3:c1:40: 3c:67:10:a0 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUxOUQxMTAvBgNVBAUTKDY2QjlEODRGNDMzNkE4OUQ4NEQxRTAyRTgyMEE3OTY4 NkUxRTUyQzQwHhcNMjYwMzI0MjIyMjMzWhcNMjYwMzMxMjIyMjMzWjAYMRYwFAYD VQQDEw02OWMzMGVhYS01ODhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbxaWSgfDOa5vG27+nTXvRwakJlmY0+DpInuvbi1RS3lGf5tm3itEke4zPlL bfbPsLjq4+YrDNzDTHLUoMerFdlPemBVkXtocBvrMsGICJ9owdfKnDzan0JKxApy iEXQ3GhSFqOi9zeycfw58n0YIyhhMIqllmov68oKZG1po2bEiO8zigvNoUNgFA1G kfvgDQtgYIixmMy234Da4yEi7BROt9FMGR5ggKc9DrA0ooj6RkyXfezP4xIYucKQ MIoYZoG+wjNKSH1wsgtKmmQuQq/QzlPceo7hqfNBhhx5ftp32gkKzBwjMFFzHgUN DDh6LRvDOROszPB5wGt0g6ygFQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEZwBx4n uSfdjB5Vks9e+6Fz2wEMMB8GA1UdIwQYMBaAFGa52E9DNqidhNHgLoIKeWhuHlLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTE5RC9CODI4MDY2NEM3 NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFKMkUwZUF1Z2dwNWFHNGVV c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pybllUME0ycUoyRTBlQXVnZ3A1YUc0ZVVzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTE5RC9CODI4MDY2NEM3NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFK MkUwZUF1Z2dwNWFHNGVVc1EubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEASiz0G9vIQQHP6ghmv0CGniADpSULcY5mLnB6UHjh4QknEKIK2ymusBv/qhhU 0+n0ybhkRJNDBdQb4TsBZgIQTp2OxEuK8B59xZYjMI1BIqnKFAQRDQZvcZA7U2iY /ajDl/Ec5h9UdCe1OL/u7ManVbgxa0Jr7sIQn5poNSvx0VS3ok4PTiV7xUHLKegr wW3Hbngykqs3YzcTE1n2vb3mWEppg4+/tAUYsC/2xReluQN9O5JUzUFIq/Sk6ert HDPGPGl4Ng4u+XJ/p+f96pFxdds/YJKX4rvBVbyl68JsZAhSws/a3f2HnC79NcLT gf/rj007Mt1ibcuuw8FAPGcQoA== -----END CERTIFICATE-----Generated at Thu Mar 26 06:52:23 2026 by rpki-client