$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft File: zOnFYkus-dCYXj8tbjHmsthtgq4.mft (raw, json) Hash identifier: u4xu42B+8iAxafU3COVYYlNOuubEJ3jTnKuTCXGTc50= Subject key identifier: 69:B9:B1:AC:BD:03:4A:56:35:F7:88:3B:5C:65:1A:65:3A:E1:28:5F Authority key identifier: CC:E9:C5:62:4B:AC:F9:D0:98:5E:3F:2D:6E:31:E6:B2:D8:6D:82:AE Certificate issuer: /CN=A9157B07/serialNumber=CCE9C5624BACF9D0985E3F2D6E31E6B2D86D82AE Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOnFYkus-dCYXj8tbjHmsthtgq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft Manifest number: 64 Signing time: Wed 25 Mar 2026 07:11:23 +0000 Manifest this update: Wed 25 Mar 2026 07:11:22 +0000 Manifest next update: Wed 01 Apr 2026 07:11:22 +0000 Files and hashes: 1: zOnFYkus-dCYXj8tbjHmsthtgq4.crl (hash: NFv1FaLADfeKHgtbUW7fu8MV8BfMfr9ZXg5hGMX2rg8=) 2: 8CA88A568FD611F09FFCA92CC4F9AE02.roa (hash: TxrrC9wYr/I+aWhB4yIA14fUgs+AJHTP94jMCdYeTOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.crl rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOnFYkus-dCYXj8tbjHmsthtgq4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B07, serialNumber=CCE9C5624BACF9D0985E3F2D6E31E6B2D86D82AE Validity Not Before: Mar 25 07:11:22 2026 GMT Not After : Apr 1 07:11:22 2026 GMT Subject: CN=69c38a9b-283b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:be:2a:c8:b1:97:74:55:31:72:f3:f3:44:22: 0a:25:e9:a7:b5:29:c9:83:07:98:4b:e0:e3:1b:f9: b9:60:9e:c0:e4:4b:dd:32:29:75:af:5b:2b:7c:27: 24:d6:2b:73:ae:11:ef:43:33:ba:1c:15:cf:63:fb: f4:e1:a5:76:7a:a6:b6:5d:0c:55:95:8b:fc:ca:0c: 18:df:fb:6e:cb:75:0f:2a:79:7f:e4:02:83:44:81: 28:a6:89:c3:3f:a4:60:7c:fe:fc:ba:ec:79:c1:7a: 4e:59:bf:ef:77:35:87:fa:99:56:86:ba:ef:df:b9: ae:2e:cf:d8:8b:d1:dd:a9:2c:d9:ed:50:a7:f8:dd: b4:7b:d7:1d:ee:ec:1d:1e:06:a1:78:68:33:f6:9e: ec:5b:a6:7d:22:ca:80:7b:36:8d:a0:80:0b:32:4e: 7d:74:10:e0:2a:68:25:e0:07:10:53:5d:2b:39:71: db:aa:d4:15:89:43:e2:33:1d:de:16:de:08:68:63: b9:e1:90:25:0d:17:be:d9:bb:9b:af:16:83:00:5b: b7:9c:05:64:82:d5:f9:ae:22:2e:38:13:44:f8:a6: 55:64:a6:41:68:d4:38:57:a9:10:32:ad:7a:b2:85: e3:41:55:0b:65:b2:f5:2d:a0:33:69:eb:52:76:25: f1:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:B9:B1:AC:BD:03:4A:56:35:F7:88:3B:5C:65:1A:65:3A:E1:28:5F X509v3 Authority Key Identifier: keyid:CC:E9:C5:62:4B:AC:F9:D0:98:5E:3F:2D:6E:31:E6:B2:D8:6D:82:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOnFYkus-dCYXj8tbjHmsthtgq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B07/D88544928FD511F0A61C9B2BC4F9AE02/zOnFYkus-dCYXj8tbjHmsthtgq4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:75:8f:cf:fb:ae:eb:b2:26:43:04:8c:fe:fe:ad:2a:96:50: 1a:9d:e6:83:0f:53:89:b0:d8:09:82:c5:84:07:73:23:1e:6b: 2a:b0:b4:a2:e9:b1:fc:a6:b4:02:8b:d8:c5:56:1b:80:96:da: 73:4a:95:47:45:30:75:dc:2e:b1:95:10:bf:c6:d3:25:ca:53: e6:17:2a:cd:b0:f5:c3:6b:b9:5b:08:bd:a5:77:43:05:f0:c8: ae:78:11:14:0d:51:da:e6:55:f4:a6:de:d2:4c:b2:e3:75:be: c3:09:c9:cc:83:8b:a2:82:ae:cc:74:83:b3:17:d4:95:6b:0f: 1c:42:3a:ad:58:8d:89:b0:6f:cc:6a:bb:7b:c2:d9:f4:94:3b: a0:28:93:6a:b9:71:a2:78:81:f5:46:9c:17:1c:17:1e:c2:67: b9:e5:de:27:af:23:39:a3:20:97:40:4b:94:fa:c3:5d:ca:94: de:14:79:83:02:07:5f:d1:ee:1d:5f:75:fd:7e:58:3b:8e:1f: d7:fd:a6:79:22:7e:ee:a7:06:4e:a5:fd:e9:cc:4a:a8:82:25: d3:7d:d6:dd:58:97:5b:e1:99:e9:40:c5:f1:a0:11:32:92:76: 89:85:da:55:32:fa:ed:a8:9f:97:33:e1:45:27:57:d1:39:00: cc:cb:bd:3f -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0IwNzExMC8GA1UEBRMoQ0NFOUM1NjI0QkFDRjlEMDk4NUUzRjJENkUzMUU2QjJE ODZEODJBRTAeFw0yNjAzMjUwNzExMjJaFw0yNjA0MDEwNzExMjJaMBgxFjAUBgNV BAMTDTY5YzM4YTliLTI4M2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBvirIsZd0VTFy8/NEIgol6ae1KcmDB5hL4OMb+blgnsDkS90yKXWvWyt8JyTW K3OuEe9DM7ocFc9j+/ThpXZ6prZdDFWVi/zKDBjf+27LdQ8qeX/kAoNEgSimicM/ pGB8/vy67HnBek5Zv+93NYf6mVaGuu/fua4uz9iL0d2pLNntUKf43bR71x3u7B0e BqF4aDP2nuxbpn0iyoB7No2ggAsyTn10EOAqaCXgBxBTXSs5cduq1BWJQ+IzHd4W 3ghoY7nhkCUNF77Zu5uvFoMAW7ecBWSC1fmuIi44E0T4plVkpkFo1DhXqRAyrXqy heNBVQtlsvUtoDNp61J2JfEFAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQUabmxrL0D SlY194g7XGUaZTrhKF8wHwYDVR0jBBgwFoAUzOnFYkus+dCYXj8tbjHmsthtgq4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3QjA3L0Q4ODU0NDkyOEZE NTExRjBBNjFDOUIyQkM0RjlBRTAyL3pPbkZZa3VzLWRDWVhqOHRiakhtc3RodGdx NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvek9uRllrdXMtZENZWGo4dGJqSG1zdGh0Z3E0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3 QjA3L0Q4ODU0NDkyOEZENTExRjBBNjFDOUIyQkM0RjlBRTAyL3pPbkZZa3VzLWRD WVhqOHRiakhtc3RodGdxNC5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQAldY/P+67rsiZDBIz+/q0qllAaneaDD1OJsNgJgsWEB3MjHmsqsLSi6bH8prQC i9jFVhuAltpzSpVHRTB13C6xlRC/xtMlylPmFyrNsPXDa7lbCL2ld0MF8MiueBEU DVHa5lX0pt7STLLjdb7DCcnMg4uigq7MdIOzF9SVaw8cQjqtWI2JsG/Mart7wtn0 lDugKJNquXGieIH1RpwXHBcewme55d4nryM5oyCXQEuU+sNdypTeFHmDAgdf0e4d X3X9flg7jh/X/aZ5In7upwZOpf3pzEqogiXTfdbdWJdb4ZnpQMXxoBEyknaJhdpV MvrtqJ+XM+FFJ1fROQDMy70/ -----END CERTIFICATE-----Generated at Thu Mar 26 00:51:30 2026 by rpki-client