$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft File: AO-zr_90_WIfS42RFpt6HEOzlBc.mft (raw, json) Hash identifier: j43Mpvshwlgdi3BE8xMWZAIxPW5QxmlDI4y8FJyAUk4= Subject key identifier: 36:7F:1D:AA:7B:2E:71:2F:D7:17:0E:74:0F:4F:DA:65:68:A4:46:A1 Authority key identifier: 00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17 Certificate issuer: /CN=A912C8FA/serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417 Certificate serial: 01F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft Manifest number: 01E5 Signing time: Wed 25 Mar 2026 02:50:42 +0000 Manifest this update: Wed 25 Mar 2026 02:50:41 +0000 Manifest next update: Wed 01 Apr 2026 02:50:41 +0000 Files and hashes: 1: AO-zr_90_WIfS42RFpt6HEOzlBc.crl (hash: PO+23GN2iW7wYVVnkKuOac/EKEzTBqa6eAVjUbg6Jg4=) 2: A80498FABAAB11EEBA024655C4F9AE02.roa (hash: MYk/tsmYPGKMW1RbLDFAli+RCLkeKhKWOLY72aWyJCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 496 (0x1f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8FA, serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417 Validity Not Before: Mar 25 02:50:41 2026 GMT Not After : Apr 1 02:50:41 2026 GMT Subject: CN=69c34d82-feda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ec:3a:b9:c8:6e:f6:4d:fa:96:57:24:3f:97: ad:86:23:e2:bc:30:23:77:c5:f4:6c:f8:d0:f3:da: 12:e1:33:43:a1:21:fc:25:30:26:9a:12:1e:11:9c: 80:17:d2:c4:2d:c4:8a:0a:a4:a1:c8:c1:c2:bf:36: 99:d8:e4:ae:72:4f:68:98:e2:d3:87:a2:78:cf:c9: d0:85:f8:9f:b1:18:8e:d3:15:17:d4:12:07:25:2a: 0f:80:0e:86:7f:d8:a4:63:cc:16:25:a0:05:92:c0: 28:06:53:53:44:d2:65:53:f1:ff:fc:ce:e6:bc:71: 2f:60:8a:84:9a:b7:a3:2c:ed:fa:33:dd:d3:2c:1d: a3:5d:d4:e1:07:d3:ca:31:87:7f:b1:59:0e:c7:78: f6:a9:b8:eb:a0:69:73:8b:f2:bc:53:18:5f:3f:51: 64:df:f9:e0:2e:1f:bc:7a:ad:b9:32:a5:85:6c:e2: 33:19:7d:19:89:e5:b6:bc:0e:31:68:27:a4:3e:2b: 17:9c:d6:22:59:70:06:99:c4:48:22:e4:76:82:1c: de:76:bb:84:32:ee:53:7d:d0:81:36:67:a9:ac:68: 28:8d:60:18:25:c0:98:da:8f:81:88:c5:32:45:ce: f9:ac:51:ad:9f:92:3d:6c:3e:15:fd:11:78:4f:fe: 12:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:7F:1D:AA:7B:2E:71:2F:D7:17:0E:74:0F:4F:DA:65:68:A4:46:A1 X509v3 Authority Key Identifier: keyid:00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:4b:4a:e5:b8:87:5e:9c:72:61:08:06:61:5b:97:69:04:95: 14:fe:de:45:4e:f8:c2:15:90:f7:2b:9e:90:51:d7:cf:20:7b: bd:a7:37:80:69:e3:3d:67:0d:6d:6c:e9:91:27:c4:44:ab:0b: 99:3d:58:ea:06:16:4e:0f:2f:8c:ab:b5:23:28:b9:a4:99:0c: c8:b9:c0:0d:73:71:68:17:5c:e0:13:70:9b:a5:eb:6e:c9:c9: 0e:60:3b:66:9d:b7:0a:95:cc:4c:3d:c1:af:54:96:9b:b7:b3: 46:b4:63:97:bd:3f:62:e1:f3:6f:0b:8e:76:29:c1:0b:39:13: 72:ad:3a:1c:a9:2b:a1:5e:b4:48:40:da:8f:b3:e0:02:c0:ce: 18:7c:ae:32:32:35:e4:c2:78:c3:c0:4e:64:61:47:a3:79:57: a6:08:19:c9:2b:01:e0:25:b1:90:bc:43:95:13:8d:b5:1b:78: 4a:3a:2e:1c:16:72:05:60:89:f6:29:dc:d5:1a:8f:4d:2b:8b: 31:c5:dd:d9:01:76:7f:cf:1d:45:67:33:bf:fe:aa:7a:ee:a3: 4f:c7:b2:bd:06:81:85:53:55:ad:d9:34:49:b6:10:e3:ad:1e: 63:eb:f4:db:45:af:71:2f:1d:55:66:52:c7:48:c0:bb:4e:ae: 36:5a:d8:ab -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4RkExMTAvBgNVBAUTKDAwRUZCM0FGRkY3NEZENjIxRjRCOEQ5MTE2OUI3QTFD NDNCMzk0MTcwHhcNMjYwMzI1MDI1MDQxWhcNMjYwNDAxMDI1MDQxWjAYMRYwFAYD VQQDEw02OWMzNGQ4Mi1mZWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+w6uchu9k36llckP5ethiPivDAjd8X0bPjQ89oS4TNDoSH8JTAmmhIeEZyA F9LELcSKCqShyMHCvzaZ2OSuck9omOLTh6J4z8nQhfifsRiO0xUX1BIHJSoPgA6G f9ikY8wWJaAFksAoBlNTRNJlU/H//M7mvHEvYIqEmrejLO36M93TLB2jXdThB9PK MYd/sVkOx3j2qbjroGlzi/K8UxhfP1Fk3/ngLh+8eq25MqWFbOIzGX0ZieW2vA4x aCekPisXnNYiWXAGmcRIIuR2ghzedruEMu5TfdCBNmeprGgojWAYJcCY2o+BiMUy Rc75rFGtn5I9bD4V/RF4T/4SUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDZ/Hap7 LnEv1xcOdA9P2mVopEahMB8GA1UdIwQYMBaAFADvs6//dP1iH0uNkRabehxDs5QX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhGQS80MDAzRjkzMDU0 QTMxMUVFQjc1RjQ2ODZDNEY5QUUwMi9BTy16cl85MF9XSWZTNDJSRnB0NkhFT3ps QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FPLXpyXzkwX1dJZlM0MlJGcHQ2SEVPemxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhGQS80MDAzRjkzMDU0QTMxMUVFQjc1RjQ2ODZDNEY5QUUwMi9BTy16cl85MF9X SWZTNDJSRnB0NkhFT3psQmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWUtK5biHXpxyYQgGYVuXaQSVFP7eRU74whWQ9yuekFHXzyB7vac3gGnjPWcN bWzpkSfERKsLmT1Y6gYWTg8vjKu1Iyi5pJkMyLnADXNxaBdc4BNwm6XrbsnJDmA7 Zp23CpXMTD3Br1SWm7ezRrRjl70/YuHzbwuOdinBCzkTcq06HKkroV60SEDaj7Pg AsDOGHyuMjI15MJ4w8BOZGFHo3lXpggZySsB4CWxkLxDlRONtRt4SjouHBZyBWCJ 9inc1RqPTSuLMcXd2QF2f88dRWczv/6qeu6jT8eyvQaBhVNVrdk0SbYQ460eY+v0 20WvcS8dVWZSx0jAu06uNlrYqw== -----END CERTIFICATE-----Generated at Thu Mar 26 20:05:18 2026 by rpki-client