$ rpki-client -vvf rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft File: ZwbZhOcxaBICGI0pntNfAFsBdYA.mft (raw, json) Hash identifier: zWm3jxOFzg2F9BXlZeKl33Gz1dilQoz/XImdbZ3FP1w= Subject key identifier: 39:28:15:B7:DF:6B:ED:50:F7:83:16:16:87:D2:60:36:91:76:24:8F Authority key identifier: 67:06:D9:84:E7:31:68:12:02:18:8D:29:9E:D3:5F:00:5B:01:75:80 Certificate issuer: /CN=A917DCDA/serialNumber=6706D984E731681202188D299ED35F005B017580 Certificate serial: 3521 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft Manifest number: 3521 Signing time: Tue 24 Mar 2026 14:40:50 +0000 Manifest this update: Tue 24 Mar 2026 14:40:50 +0000 Manifest next update: Tue 31 Mar 2026 14:40:50 +0000 Files and hashes: 1: ZwbZhOcxaBICGI0pntNfAFsBdYA.crl (hash: jMw+itpqo43SnXF2DOKJB6EaGmqVjvc7MWlaZTP/38o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.crl rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:40:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13601 (0x3521) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DCDA, serialNumber=6706D984E731681202188D299ED35F005B017580 Validity Not Before: Mar 24 14:40:50 2026 GMT Not After : Mar 31 14:40:50 2026 GMT Subject: CN=69c2a272-3d72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f1:b8:8a:8a:b2:00:3c:df:3c:1e:09:ab:92: 52:d9:69:85:95:e8:a3:a6:a7:fc:84:73:c9:d2:52: a0:24:4f:8e:57:03:e0:d4:8b:77:50:80:60:0c:ab: ef:e2:e5:62:d5:fe:0c:91:ec:16:f0:9e:44:e5:33: c5:f1:f0:f1:2f:d0:a3:d2:9f:a6:42:9d:e9:20:47: c1:60:39:c9:62:3f:06:a9:1e:7a:09:4f:d6:b8:bf: a1:8b:6e:82:c0:d2:54:11:ff:78:e4:01:11:99:56: cf:8a:1e:54:da:a7:43:7b:38:90:79:ed:e9:33:f0: d2:af:e0:6d:c3:4a:57:7c:fe:e5:64:e2:fe:d9:d5: 34:9c:86:3b:da:b2:96:b7:8a:4d:dc:46:f7:b1:e5: c1:9b:7b:53:d5:2d:8c:f5:c7:26:48:77:b1:61:61: f4:e1:11:d2:64:e3:ba:be:83:c6:3b:d7:06:9a:31: 10:57:9f:92:93:be:61:d6:1d:d3:9f:51:1a:0e:c7: 52:ae:39:4e:d5:b5:12:20:6b:68:1c:97:1a:ef:63: f2:6a:1b:a8:3a:81:94:81:66:c4:b2:08:c9:3d:f2: 42:05:ef:52:3d:1b:1a:b3:ee:22:93:4a:70:51:15: 99:25:79:fe:a0:a8:0b:cf:d5:d6:db:d8:93:b6:63: 61:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:28:15:B7:DF:6B:ED:50:F7:83:16:16:87:D2:60:36:91:76:24:8F X509v3 Authority Key Identifier: keyid:67:06:D9:84:E7:31:68:12:02:18:8D:29:9E:D3:5F:00:5B:01:75:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:2a:2f:d9:d4:bf:b6:78:5c:a3:b5:1a:c5:63:8c:14:27:41: 2f:6f:c8:f8:b7:a4:2c:5e:c3:2b:ce:98:60:98:af:1e:06:a7: d5:79:10:d1:ac:7c:69:0b:f8:ce:1d:53:04:d3:05:ab:ed:ae: 48:02:de:d5:eb:c3:09:7c:92:c0:42:0d:6d:21:fd:d7:ed:a5: 86:b6:26:eb:c0:44:45:0f:53:da:ec:44:eb:0f:ef:ea:58:16: 29:24:17:b5:0a:10:93:ea:c0:64:1e:b6:a9:48:b9:c4:fa:08: d4:5e:05:ca:e0:b8:75:6f:75:f3:c0:ee:85:f0:7d:41:06:f3: 28:32:9e:95:31:52:6d:0f:56:4c:24:b1:1d:e1:66:e1:d6:ba: 7c:f5:99:ba:ca:63:34:ec:8b:e7:5f:99:4d:e1:77:30:8b:83: ff:fa:f1:f8:e1:a5:6c:6d:ed:b1:a5:cd:13:e9:c8:7d:2a:ff: 10:8a:68:c3:a2:f7:66:4d:a3:4f:61:71:36:c6:d6:d7:2d:4a: d3:87:8e:76:02:fb:c6:d6:9c:5d:6c:4b:70:da:f0:ac:71:6d: 4f:55:eb:88:b9:5b:06:60:9d:b9:45:9a:c3:40:f2:f9:d9:1c: 49:a2:8f:f0:f5:a0:40:67:4b:53:a7:3f:7f:4c:a0:52:8a:e1: 38:5b:e5:00 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICNSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RDREExMTAvBgNVBAUTKDY3MDZEOTg0RTczMTY4MTIwMjE4OEQyOTlFRDM1RjAw NUIwMTc1ODAwHhcNMjYwMzI0MTQ0MDUwWhcNMjYwMzMxMTQ0MDUwWjAYMRYwFAYD VQQDEw02OWMyYTI3Mi0zZDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0/G4ioqyADzfPB4Jq5JS2WmFleijpqf8hHPJ0lKgJE+OVwPg1It3UIBgDKvv 4uVi1f4MkewW8J5E5TPF8fDxL9Cj0p+mQp3pIEfBYDnJYj8GqR56CU/WuL+hi26C wNJUEf945AERmVbPih5U2qdDeziQee3pM/DSr+Btw0pXfP7lZOL+2dU0nIY72rKW t4pN3Eb3seXBm3tT1S2M9ccmSHexYWH04RHSZOO6voPGO9cGmjEQV5+Sk75h1h3T n1EaDsdSrjlO1bUSIGtoHJca72PyahuoOoGUgWbEsgjJPfJCBe9SPRsas+4ik0pw URWZJXn+oKgLz9XW29iTtmNh5wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDkoFbff a+1Q94MWFofSYDaRdiSPMB8GA1UdIwQYMBaAFGcG2YTnMWgSAhiNKZ7TXwBbAXWA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RENEQS8xOTJFNzFGNjFE OTAxMUUyQjI5NUFCRUYwOEIwMkNEMi9ad2JaaE9jeGFCSUNHSTBwbnROZkFGc0Jk WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3YlpoT2N4YUJJQ0dJMHBudE5mQUZzQmRZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RENEQS8xOTJFNzFGNjFEOTAxMUUyQjI5NUFCRUYwOEIwMkNEMi9ad2JaaE9jeGFC SUNHSTBwbnROZkFGc0JkWUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARyov2dS/tnhco7UaxWOMFCdBL2/I+LekLF7DK86YYJivHgan1XkQ0ax8aQv4 zh1TBNMFq+2uSALe1evDCXySwEINbSH91+2lhrYm68BERQ9T2uxE6w/v6lgWKSQX tQoQk+rAZB62qUi5xPoI1F4FyuC4dW9188DuhfB9QQbzKDKelTFSbQ9WTCSxHeFm 4da6fPWZuspjNOyL51+ZTeF3MIuD//rx+OGlbG3tsaXNE+nIfSr/EIpow6L3Zk2j T2FxNsbW1y1K04eOdgL7xtacXWxLcNrwrHFtT1XriLlbBmCduUWaw0Dy+dkcSaKP 8PWgQGdLU6c/f0ygUorhOFvlAA== -----END CERTIFICATE-----Generated at Thu Mar 26 08:28:08 2026 by rpki-client