$ rpki-client -vvf rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft File: zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft (raw, json) Hash identifier: 15A63aVzkah1zj6Y/+LQx/KHg/KyIp6JG1QWeE6KZG8= Subject key identifier: B4:BF:F8:06:9A:FC:60:AF:7B:95:C3:78:A7:40:19:59:5E:34:89:24 Authority key identifier: CD:A0:3F:65:F4:D3:3A:33:99:69:97:3F:6A:9B:D0:7D:AF:9E:37:24 Certificate issuer: /CN=A9154D26/serialNumber=CDA03F65F4D33A339969973F6A9BD07DAF9E3724 Certificate serial: 0530 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft Manifest number: 0522 Signing time: Tue 24 Mar 2026 23:16:12 +0000 Manifest this update: Tue 24 Mar 2026 23:16:12 +0000 Manifest next update: Tue 31 Mar 2026 23:16:12 +0000 Files and hashes: 1: zaA_ZfTTOjOZaZc_apvQfa-eNyQ.crl (hash: rSS2OJlrl4dFzQE+zZMcuHLXFuExVLSE3tacbVw68/M=) 2: AA5485827F3611ECBED94963C4F9AE02.roa (hash: em6Z1UTwpQ/pN7PoRNgk8av9GKamLVs8Phun3EsGZYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.crl rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:16:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1328 (0x530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154D26, serialNumber=CDA03F65F4D33A339969973F6A9BD07DAF9E3724 Validity Not Before: Mar 24 23:16:12 2026 GMT Not After : Mar 31 23:16:12 2026 GMT Subject: CN=69c31b3c-02cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d8:22:3a:99:a8:e9:b0:46:46:a7:b8:98:5a: 04:b4:de:73:b6:b5:ef:b7:30:97:47:5b:71:8a:3d: 9b:5f:1c:7b:06:3c:89:15:65:b3:40:a9:74:1d:76: c8:80:8c:8f:51:16:79:e5:d5:e0:4e:2b:57:74:71: 81:0f:2b:27:1c:ad:08:05:b7:75:5f:e6:7e:68:4f: e2:52:c1:c9:50:d0:b7:46:60:18:bd:19:56:06:d3: 50:ad:b4:39:de:ba:4c:dd:fa:54:fd:d4:cf:ee:e1: 11:73:2a:f3:49:48:77:de:ed:b5:60:f0:f1:d2:5d: 0d:bd:9a:9c:9d:fb:dd:0c:46:7b:c8:e6:a0:c1:56: 44:c5:c4:6f:94:78:79:96:8d:d4:c9:46:29:60:22: c3:1c:32:7b:98:af:d9:4e:ff:a7:84:15:73:e6:6f: 9e:59:df:f7:6f:94:b8:4e:55:e7:e1:4b:93:ec:64: ff:c3:da:52:85:99:2f:db:26:b2:d8:64:a3:2b:cb: b8:cc:b6:fb:11:89:7a:47:28:7c:11:7d:30:5e:98: ce:d4:9f:76:5e:35:72:40:25:cc:b2:17:7d:51:09: fe:9f:73:37:f9:c3:79:9f:a5:13:86:ab:5b:a7:22: 30:fb:fe:e8:65:0a:15:a6:38:1b:42:88:67:7e:79: f1:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:BF:F8:06:9A:FC:60:AF:7B:95:C3:78:A7:40:19:59:5E:34:89:24 X509v3 Authority Key Identifier: keyid:CD:A0:3F:65:F4:D3:3A:33:99:69:97:3F:6A:9B:D0:7D:AF:9E:37:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:56:82:f9:88:5a:db:73:f2:20:6f:03:6e:19:8e:10:48:d3: 61:ce:a6:07:d4:f7:f5:13:f7:3c:00:ec:d6:8f:40:3b:e8:a9: fe:50:15:2f:ea:51:93:3a:38:5a:da:e3:46:da:27:91:1c:d7: 86:4c:67:fb:fa:b9:52:92:9d:bc:20:8e:75:ea:12:3e:7b:7f: 77:6f:83:5c:bf:fc:fb:0b:e6:a3:e8:36:25:af:a9:ed:3d:04: f3:86:8c:12:a8:49:b5:df:88:df:24:be:aa:d2:10:ec:07:0d: 04:b8:24:ca:45:c6:8f:ad:3d:a5:08:d2:13:1e:48:7e:26:0f: f3:c0:c7:bb:70:74:83:d8:58:1a:b4:3c:9e:05:e7:2f:d6:90: 70:ec:ce:5d:9d:1b:2b:6f:b2:f3:be:51:2f:c1:52:e5:a9:2e: 5a:01:92:bc:b6:d3:19:eb:78:a9:5c:da:cc:f5:36:e5:62:96: 21:07:5d:4e:a7:ae:c5:b6:4e:36:1f:49:a9:aa:50:e1:bf:c3: 00:f2:a0:e9:96:01:98:45:75:bd:35:f7:e2:60:67:c3:18:cb: c6:df:59:dd:0f:7e:bf:a2:d3:b8:0f:20:d6:fc:e2:aa:12:12: 0f:4d:dd:a7:25:c3:2a:2a:87:45:99:be:55:da:2e:bc:4e:82: c4:08:e9:25 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTREMjYxMTAvBgNVBAUTKENEQTAzRjY1RjREMzNBMzM5OTY5OTczRjZBOUJEMDdE QUY5RTM3MjQwHhcNMjYwMzI0MjMxNjEyWhcNMjYwMzMxMjMxNjEyWjAYMRYwFAYD VQQDEw02OWMzMWIzYy0wMmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0dgiOpmo6bBGRqe4mFoEtN5ztrXvtzCXR1txij2bXxx7BjyJFWWzQKl0HXbI gIyPURZ55dXgTitXdHGBDysnHK0IBbd1X+Z+aE/iUsHJUNC3RmAYvRlWBtNQrbQ5 3rpM3fpU/dTP7uERcyrzSUh33u21YPDx0l0NvZqcnfvdDEZ7yOagwVZExcRvlHh5 lo3UyUYpYCLDHDJ7mK/ZTv+nhBVz5m+eWd/3b5S4TlXn4UuT7GT/w9pShZkv2yay 2GSjK8u4zLb7EYl6Ryh8EX0wXpjO1J92XjVyQCXMshd9UQn+n3M3+cN5n6UThqtb pyIw+/7oZQoVpjgbQohnfnnxDwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLS/+Aaa /GCve5XDeKdAGVleNIkkMB8GA1UdIwQYMBaAFM2gP2X00zozmWmXP2qb0H2vnjck MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEQyNi9DMDBEOTcyNjQx M0IxMUVDQjA2QUUwMzBDNEY5QUUwMi96YUFfWmZUVE9qT1phWmNfYXB2UWZhLWVO eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3phQV9aZlRUT2pPWmFaY19hcHZRZmEtZU55US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEQyNi9DMDBEOTcyNjQxM0IxMUVDQjA2QUUwMzBDNEY5QUUwMi96YUFfWmZUVE9q T1phWmNfYXB2UWZhLWVOeVEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeVaC+Yha23PyIG8DbhmOEEjTYc6mB9T39RP3PADs1o9AO+ip/lAVL+pRkzo4 WtrjRtonkRzXhkxn+/q5UpKdvCCOdeoSPnt/d2+DXL/8+wvmo+g2Ja+p7T0E84aM EqhJtd+I3yS+qtIQ7AcNBLgkykXGj609pQjSEx5IfiYP88DHu3B0g9hYGrQ8ngXn L9aQcOzOXZ0bK2+y875RL8FS5akuWgGSvLbTGet4qVzazPU25WKWIQddTqeuxbZO Nh9JqapQ4b/DAPKg6ZYBmEV1vTX34mBnwxjLxt9Z3Q9+v6LTuA8g1vziqhISD03d pyXDKiqHRZm+VdouvE6CxAjpJQ== -----END CERTIFICATE-----Generated at Thu Mar 26 14:11:36 2026 by rpki-client