$ rpki-client -vvf rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft File: znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft (raw, json) Hash identifier: xs3jb5auOY4k2iOmaI4tDVeUZMZgKKwoKL6QHwEE0Dg= Subject key identifier: 34:4C:F1:9C:43:BA:AD:EE:8D:CB:0C:09:DB:63:66:8E:7B:2D:0D:59 Authority key identifier: CE:70:3E:4E:F9:DF:2E:BE:38:65:0A:70:4A:4A:01:9C:2A:66:43:50 Certificate issuer: /CN=A9136C5E/serialNumber=CE703E4EF9DF2EBE38650A704A4A019C2A664350 Certificate serial: 0245 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft Manifest number: 0240 Signing time: Wed 25 Mar 2026 01:51:40 +0000 Manifest this update: Wed 25 Mar 2026 01:51:39 +0000 Manifest next update: Wed 01 Apr 2026 01:51:39 +0000 Files and hashes: 1: znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl (hash: tErO4yhcuzNqEn/i60GH4Pe011reKl7FPUM8ozXTEh0=) 2: 9BCEEFF4BC6911ED9B0FC554C4F9AE02.roa (hash: zv8nloA9U8eAmryUp26vTAYnavKSs7YqUby16TlyAj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136C5E, serialNumber=CE703E4EF9DF2EBE38650A704A4A019C2A664350 Validity Not Before: Mar 25 01:51:39 2026 GMT Not After : Apr 1 01:51:39 2026 GMT Subject: CN=69c33fab-847c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:49:98:11:92:39:2b:3e:91:8d:53:80:32:4e: 64:18:34:fe:8c:4d:69:d3:2c:32:a7:1c:06:e6:52: e5:5b:f8:ac:ae:48:95:d1:57:51:1d:3c:ff:78:fb: 00:3a:82:b2:92:15:85:7a:2a:60:8a:9c:08:66:a8: 68:86:35:28:45:2f:62:b2:61:47:2c:e7:98:a4:4d: 51:37:b8:7d:79:a6:52:a2:3a:6f:7b:09:ae:f0:97: 5c:3f:46:e8:aa:38:a6:a2:2d:92:ea:45:02:91:0f: 24:da:52:80:8f:64:39:77:f9:23:cd:a6:f1:c8:f6: 27:4e:a6:20:e0:8a:af:73:94:83:a7:55:32:bf:cb: c3:30:84:19:4f:97:76:d7:66:86:3e:97:82:e4:34: da:42:b7:67:e7:90:4d:98:70:b6:cf:af:67:ab:ac: 75:11:0b:e6:99:fe:e8:a5:ec:8e:a4:db:ff:8d:74: 50:67:72:e9:46:4f:97:b6:58:aa:2e:6d:2e:24:4f: 0a:d6:e9:eb:4e:5e:c5:db:f8:ac:69:49:f1:de:1f: 26:ba:8d:41:8e:33:c5:dd:93:31:d3:d5:2f:96:d3: 75:a0:71:bb:50:e9:fa:46:50:c3:20:9d:30:b2:96: a3:a3:74:73:eb:44:6f:28:7f:d8:dc:9e:e6:92:1d: 78:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:4C:F1:9C:43:BA:AD:EE:8D:CB:0C:09:DB:63:66:8E:7B:2D:0D:59 X509v3 Authority Key Identifier: keyid:CE:70:3E:4E:F9:DF:2E:BE:38:65:0A:70:4A:4A:01:9C:2A:66:43:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:9c:40:7f:57:ec:d7:89:6e:8e:84:58:fb:1c:18:08:f9:e9: 74:25:ac:ec:88:25:ef:a3:8c:82:8e:73:44:f0:7c:cb:30:6b: c9:32:d7:82:97:60:cd:3e:df:58:ff:40:fe:24:8a:74:ee:27: 4d:29:bc:18:17:d5:b5:77:ff:ca:10:dd:6b:72:a7:62:9b:b5: a5:9d:b2:7a:90:f1:f6:10:ea:c8:9e:f5:33:b2:76:27:1c:ad: 4f:87:7f:9e:f2:92:8b:aa:0d:bb:ab:aa:11:72:58:68:e9:4a: 5c:ec:64:a1:cd:d7:b3:45:c6:9d:0b:5a:ae:a3:a5:fe:e6:f5: 48:88:96:26:bd:21:14:48:a1:44:b8:5e:c5:60:19:f3:c4:61: 8b:ad:6f:c5:fd:4a:2d:62:ed:ce:23:62:1f:7e:43:83:11:26: f6:02:6e:12:02:e5:df:9b:dd:9a:f2:eb:ec:33:31:21:6a:a6: 2e:4d:70:d4:47:28:9d:e0:ef:16:c0:fe:e9:fe:19:d0:ec:c6: bf:d2:84:bc:b4:fe:09:47:2b:48:6f:30:03:5c:7a:df:3f:ef: e2:ca:dc:7e:48:7e:1f:e1:6d:e3:16:7a:ca:b6:c5:f4:a3:09: 8c:06:23:05:51:53:0a:13:ac:10:49:69:69:a6:07:80:3f:c5: 35:19:6f:0d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZDNUUxMTAvBgNVBAUTKENFNzAzRTRFRjlERjJFQkUzODY1MEE3MDRBNEEwMTlD MkE2NjQzNTAwHhcNMjYwMzI1MDE1MTM5WhcNMjYwNDAxMDE1MTM5WjAYMRYwFAYD VQQDEw02OWMzM2ZhYi04NDdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUmYEZI5Kz6RjVOAMk5kGDT+jE1p0ywypxwG5lLlW/isrkiV0VdRHTz/ePsA OoKykhWFeipgipwIZqhohjUoRS9ismFHLOeYpE1RN7h9eaZSojpvewmu8JdcP0bo qjimoi2S6kUCkQ8k2lKAj2Q5d/kjzabxyPYnTqYg4Iqvc5SDp1Uyv8vDMIQZT5d2 12aGPpeC5DTaQrdn55BNmHC2z69nq6x1EQvmmf7opeyOpNv/jXRQZ3LpRk+Xtliq Lm0uJE8K1unrTl7F2/isaUnx3h8muo1BjjPF3ZMx09UvltN1oHG7UOn6RlDDIJ0w spajo3Rz60RvKH/Y3J7mkh144wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDRM8ZxD uq3ujcsMCdtjZo57LQ1ZMB8GA1UdIwQYMBaAFM5wPk753y6+OGUKcEpKAZwqZkNQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkM1RS8zRUE2QTI1MEI5 NzAxMUVEODkxODQ2N0NDNEY5QUUwMi96bkEtVHZuZkxyNDRaUXB3U2tvQm5DcG1R MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3puQS1Udm5mTHI0NFpRcHdTa29CbkNwbVExQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkM1RS8zRUE2QTI1MEI5NzAxMUVEODkxODQ2N0NDNEY5QUUwMi96bkEtVHZuZkxy NDRaUXB3U2tvQm5DcG1RMUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAA5xAf1fs14lujoRY+xwYCPnpdCWs7Igl76OMgo5zRPB8yzBryTLXgpdgzT7f WP9A/iSKdO4nTSm8GBfVtXf/yhDda3KnYpu1pZ2yepDx9hDqyJ71M7J2JxytT4d/ nvKSi6oNu6uqEXJYaOlKXOxkoc3Xs0XGnQtarqOl/ub1SIiWJr0hFEihRLhexWAZ 88Rhi61vxf1KLWLtziNiH35DgxEm9gJuEgLl35vdmvLr7DMxIWqmLk1w1EconeDv FsD+6f4Z0OzGv9KEvLT+CUcrSG8wA1x63z/v4srcfkh+H+Ft4xZ6yrbF9KMJjAYj BVFTChOsEElpaaYHgD/FNRlvDQ== -----END CERTIFICATE-----Generated at Thu Mar 26 22:31:03 2026 by rpki-client