$ rpki-client -vvf rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft File: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft (raw, json) Hash identifier: BSrtPOzxh70hKKMkubdYknbHkQUe50ClaJqg4iuiv6U= Subject key identifier: 1A:A9:67:BE:1D:B6:58:D1:86:4F:41:7F:90:AB:DB:27:C5:AC:DE:0F Authority key identifier: CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D Certificate issuer: /CN=A91594AE/serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D Certificate serial: 0B58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft Manifest number: 0B4F Signing time: Tue 24 Mar 2026 19:01:17 +0000 Manifest this update: Tue 24 Mar 2026 19:01:16 +0000 Manifest next update: Tue 31 Mar 2026 19:01:16 +0000 Files and hashes: 1: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl (hash: xv6Sr8VQgagcbZ8nWVPHFQWeojPZgzEssINw5+q3LD8=) 2: 38CAF4EC52B911EAACE8041BC4F9AE02.roa (hash: 2kchKpo2ef+tq0KVzYBizBB1nwWONKOXgZleTuR8Mw8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2904 (0xb58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91594AE, serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D Validity Not Before: Mar 24 19:01:16 2026 GMT Not After : Mar 31 19:01:16 2026 GMT Subject: CN=69c2df7d-1886 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fb:a8:07:47:7e:e2:34:cb:0d:bc:cd:ee:d7: 13:f2:de:fd:cd:d1:0f:34:95:40:fd:19:cd:8e:34: 1f:38:57:88:4e:e9:61:0e:5f:2e:4e:f2:3d:02:8c: 75:45:c2:fe:9f:ea:9a:da:4e:f1:86:af:c6:b4:df: c4:2c:18:b3:28:da:98:85:bf:a1:1a:0c:eb:ac:89: 00:4e:29:1f:e5:fd:62:56:bb:e1:6f:08:3f:d9:f1: fa:26:1d:78:da:f7:df:f2:f5:5b:0a:91:4a:ed:6d: 71:0f:06:36:98:3c:61:b6:b8:e5:be:81:8a:be:53: 00:87:35:6c:4a:a1:27:52:cc:d3:c3:b7:dc:98:c9: ab:5e:03:4c:a7:4e:08:45:32:a6:3d:b0:b3:e0:44: 97:96:51:98:c5:e9:c5:99:f1:f2:48:de:83:f0:b6: 3e:03:55:d5:ce:1e:a5:d4:0d:78:e4:a9:8d:76:bb: a9:4c:8a:6a:76:95:d3:f4:15:8b:65:ea:59:69:c2: 4b:c8:24:6f:81:ba:47:a3:9a:e6:3f:41:ba:0a:d5: 82:65:1f:e4:ca:b8:2f:77:15:c0:ff:c4:8b:c9:cc: 74:6b:11:d6:b2:1d:51:8f:96:ad:45:c0:ee:ee:e6: cc:9b:7c:e7:30:71:51:64:d6:f5:70:ad:04:5c:f2: a6:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:A9:67:BE:1D:B6:58:D1:86:4F:41:7F:90:AB:DB:27:C5:AC:DE:0F X509v3 Authority Key Identifier: keyid:CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:5c:bd:73:67:cc:19:ab:1c:52:e0:4b:06:b6:ee:db:a1:72: ac:e9:63:7f:46:c6:7c:39:f5:c0:fe:ad:7d:b7:f6:0b:f2:1f: c7:8a:17:fc:e1:eb:21:5a:4d:3f:33:82:3c:3d:99:86:09:e1: c1:07:40:a2:da:8a:ae:c5:a6:4f:80:72:7b:8f:bb:d5:ea:39: e4:1d:1e:6d:f6:b4:26:fe:ab:1a:71:f1:dc:9d:e0:17:2b:80: 55:8a:9a:4f:d2:74:44:ec:db:2a:b6:54:ef:35:c9:79:43:95: 42:cb:1d:80:81:66:f7:ad:60:7c:b9:a1:df:25:39:d5:f3:66: 6b:f2:d4:c7:93:ae:66:04:4f:f5:48:12:0b:ee:52:c9:c5:77: f3:45:4c:d4:e7:27:dc:49:02:7b:9c:5a:8f:91:c7:ce:ab:0f: 2f:1e:e9:b3:29:88:24:f9:37:ce:44:ab:e0:85:36:5e:96:1d: 88:6c:df:c7:c9:69:20:16:9b:c4:af:11:83:ed:17:8e:b8:66: 09:88:16:68:8d:51:a1:30:99:44:e9:cb:06:1b:50:a4:cb:24: dd:2d:8d:f7:5f:84:34:a9:f8:c1:8f:2e:70:ce:03:5b:65:1b: a0:af:ce:b3:5f:6a:66:02:71:f6:b0:8f:fc:c9:76:c0:cf:d5: 7a:33:20:49 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICC1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk0QUUxMTAvBgNVBAUTKENEQTQ3RTBBMUVFQjUyNUYzQjVBMEZBRkIyRkEwREJC MzYzQkZBNEQwHhcNMjYwMzI0MTkwMTE2WhcNMjYwMzMxMTkwMTE2WjAYMRYwFAYD VQQDEw02OWMyZGY3ZC0xODg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnfuoB0d+4jTLDbzN7tcT8t79zdEPNJVA/RnNjjQfOFeITulhDl8uTvI9Aox1 RcL+n+qa2k7xhq/GtN/ELBizKNqYhb+hGgzrrIkATikf5f1iVrvhbwg/2fH6Jh14 2vff8vVbCpFK7W1xDwY2mDxhtrjlvoGKvlMAhzVsSqEnUszTw7fcmMmrXgNMp04I RTKmPbCz4ESXllGYxenFmfHySN6D8LY+A1XVzh6l1A145KmNdrupTIpqdpXT9BWL ZepZacJLyCRvgbpHo5rmP0G6CtWCZR/kyrgvdxXA/8SLycx0axHWsh1Rj5atRcDu 7ubMm3znMHFRZNb1cK0EXPKmxwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBqpZ74d tljRhk9Bf5Cr2yfFrN4PMB8GA1UdIwQYMBaAFM2kfgoe61JfO1oPr7L6Dbs2O/pN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTRBRS8zRDhCOEM0ODUy QjUxMUVBQTRBOUQyMEVDNEY5QUUwMi96YVItQ2g3clVsODdXZy12c3ZvTnV6WTct azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3phUi1DaDdyVWw4N1dnLXZzdm9OdXpZNy1rMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTRBRS8zRDhCOEM0ODUyQjUxMUVBQTRBOUQyMEVDNEY5QUUwMi96YVItQ2g3clVs ODdXZy12c3ZvTnV6WTctazAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAPFy9c2fMGascUuBLBrbu26FyrOljf0bGfDn1wP6tfbf2C/Ifx4oX/OHrIVpN PzOCPD2ZhgnhwQdAotqKrsWmT4Bye4+71eo55B0ebfa0Jv6rGnHx3J3gFyuAVYqa T9J0ROzbKrZU7zXJeUOVQssdgIFm961gfLmh3yU51fNma/LUx5OuZgRP9UgSC+5S ycV380VM1Ocn3EkCe5xaj5HHzqsPLx7psymIJPk3zkSr4IU2XpYdiGzfx8lpIBab xK8Rg+0XjrhmCYgWaI1RoTCZROnLBhtQpMsk3S2N91+ENKn4wY8ucM4DW2UboK/O s19qZgJx9rCP/Ml2wM/VejMgSQ== -----END CERTIFICATE-----Generated at Thu Mar 26 10:57:54 2026 by rpki-client