$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.mft File: _zNBly3YofaHHt6Gmjod2SUorrY.mft (raw, json) Hash identifier: EpHCpkLtpmulAocrPhb2oQtTAB4h6itL2Ftc6MGIBN4= Subject key identifier: 8C:33:F3:0E:68:88:F4:35:29:A9:81:2C:C7:75:34:D9:BC:9C:98:0E Authority key identifier: FF:33:41:97:2D:D8:A1:F6:87:1E:DE:86:9A:3A:1D:D9:25:28:AE:B6 Certificate issuer: /CN=A917E678/serialNumber=FF3341972DD8A1F6871EDE869A3A1DD92528AEB6 Certificate serial: 0E13 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/_zNBly3YofaHHt6Gmjod2SUorrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.mft Manifest number: 0D6B Signing time: Tue 24 Mar 2026 16:44:26 +0000 Manifest this update: Tue 24 Mar 2026 16:44:26 +0000 Manifest next update: Tue 31 Mar 2026 16:44:26 +0000 Files and hashes: 1: _zNBly3YofaHHt6Gmjod2SUorrY.crl (hash: cnWugKaa00LtbbOcEK1/cIgpXNU/LF7Qur1jlmQmWPY=) 2: F4A77A06CED911ED9BC69385C4F9AE02.roa (hash: /3UCOZyy7IRWOhuU35PtgiVAbTlyg5NR99z+gedGo9I=) 3: CCFA7454F04611F087BCEF76546F56BC.roa (hash: HCXtiXKgHVhMpaTnQurvVC//OqVn5AKyKkMTKhQsmjM=) 4: 69FDEAC6645511EFB98C143DC4F9AE02.roa (hash: 8GqLPEK+8+LiDMs6TXQYM/u72383yuqkd4BLQepKcQg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.crl rsync://rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/_zNBly3YofaHHt6Gmjod2SUorrY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:44:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3603 (0xe13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=FF3341972DD8A1F6871EDE869A3A1DD92528AEB6 Validity Not Before: Mar 24 16:44:26 2026 GMT Not After : Mar 31 16:44:26 2026 GMT Subject: CN=69c2bf6a-f2cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:33:d5:43:08:d7:a6:00:a4:fc:ad:13:3a:c9: 00:3e:a4:fc:40:14:d6:b7:3d:35:16:4c:6d:d5:30: c5:e9:ff:47:76:ed:4c:a7:c5:fd:0a:93:d5:95:2c: e1:f2:f7:be:2c:d3:88:2c:36:20:49:12:5e:22:ed: ae:07:43:dc:9b:d6:f9:b8:a9:2a:0c:6a:35:9c:db: 4f:dc:71:f3:79:fb:44:ed:17:41:45:3d:43:dc:a0: 96:4b:1a:9f:ed:96:14:02:7b:04:c2:e3:c6:7f:24: a4:c4:40:99:ac:70:f3:d7:73:15:a7:ec:b7:19:a0: a6:11:aa:b1:e2:d3:3e:dc:ed:b7:d0:42:e0:15:c1: f0:2e:75:ad:44:a2:b8:4d:10:89:15:5e:d6:5c:02: ed:cf:fc:cc:0d:41:76:e2:5b:31:40:1d:c7:dc:25: 2e:43:8d:f7:72:39:7d:ef:e2:b1:c5:a6:b1:94:12: 55:ba:46:51:d3:0e:1c:e7:94:8e:0f:1f:aa:63:f1: c9:ad:80:56:11:2c:9c:64:ec:44:be:2b:82:f3:6e: fb:b9:44:2e:ab:33:39:04:fe:6d:61:11:b4:0a:d1: c9:b2:89:f9:b0:bb:c5:0c:e7:00:fe:5d:78:46:58: 33:4e:ff:b3:11:95:42:be:3a:ce:fb:87:d9:ae:7e: ac:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:33:F3:0E:68:88:F4:35:29:A9:81:2C:C7:75:34:D9:BC:9C:98:0E X509v3 Authority Key Identifier: keyid:FF:33:41:97:2D:D8:A1:F6:87:1E:DE:86:9A:3A:1D:D9:25:28:AE:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/_zNBly3YofaHHt6Gmjod2SUorrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/BEB333FA225111EAB2CB8469C4F9AE02/_zNBly3YofaHHt6Gmjod2SUorrY.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:1e:57:81:27:a1:a4:00:89:03:7b:71:2b:4b:0f:87:ad:85: 36:98:21:e8:3b:07:c6:ea:77:61:a1:5b:ee:e8:12:51:ed:21: 7f:16:b6:f9:bc:0a:bc:02:63:a2:e0:09:7a:43:0d:52:b8:68: 74:d2:62:18:18:27:9b:94:65:5e:ce:42:0d:78:b6:48:9f:ad: 39:93:b0:d2:76:f6:40:b6:c5:3d:db:6b:e6:42:4b:ee:4b:64: 0b:0a:3a:f6:7f:41:9b:df:c1:8b:38:39:8d:6c:8a:0e:11:f5: fa:ad:4f:c9:a7:69:13:df:b8:c6:71:80:29:35:33:d0:f2:15: df:78:8e:4a:6b:25:df:48:32:9f:29:fd:9b:85:d6:a3:22:8a: e4:9c:d9:3d:96:31:4a:d0:b3:c1:e6:6b:ae:01:11:79:0c:22: 8e:89:b4:53:81:48:3b:d3:90:30:10:57:6c:98:52:8f:48:8f: 11:3b:3d:d5:6b:31:0f:ec:41:09:4e:6f:77:91:ca:8b:5b:52: f7:b4:41:67:5b:59:55:ee:15:84:80:5a:ca:be:5d:07:0e:83: c3:9c:f8:ec:5d:a8:52:f0:33:2d:0a:cc:2f:cd:01:fe:c9:ca: 1f:c0:f4:bc:1f:fa:9c:23:62:1b:e5:97:f6:e5:e0:0a:9a:c9: a9:52:f7:8a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKEZGMzM0MTk3MkREOEExRjY4NzFFREU4NjlBM0ExREQ5 MjUyOEFFQjYwHhcNMjYwMzI0MTY0NDI2WhcNMjYwMzMxMTY0NDI2WjAYMRYwFAYD VQQDEw02OWMyYmY2YS1mMmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zPVQwjXpgCk/K0TOskAPqT8QBTWtz01Fkxt1TDF6f9Hdu1Mp8X9CpPVlSzh 8ve+LNOILDYgSRJeIu2uB0Pcm9b5uKkqDGo1nNtP3HHzeftE7RdBRT1D3KCWSxqf 7ZYUAnsEwuPGfySkxECZrHDz13MVp+y3GaCmEaqx4tM+3O230ELgFcHwLnWtRKK4 TRCJFV7WXALtz/zMDUF24lsxQB3H3CUuQ433cjl97+KxxaaxlBJVukZR0w4c55SO Dx+qY/HJrYBWESycZOxEviuC8277uUQuqzM5BP5tYRG0CtHJson5sLvFDOcA/l14 RlgzTv+zEZVCvjrO+4fZrn6spQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIwz8w5o iPQ1KamBLMd1NNm8nJgOMB8GA1UdIwQYMBaAFP8zQZct2KH2hx7ehpo6HdklKK62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC9CRUIzMzNGQTIy NTExMUVBQjJDQjg0NjlDNEY5QUUwMi9fek5CbHkzWW9mYUhIdDZHbWpvZDJTVW9y clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL196TkJseTNZb2ZhSEh0Nkdtam9kMlNVb3JyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC9CRUIzMzNGQTIyNTExMUVBQjJDQjg0NjlDNEY5QUUwMi9fek5CbHkzWW9m YUhIdDZHbWpvZDJTVW9yclkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEALB5XgSehpACJA3txK0sPh62FNpgh6DsHxup3YaFb7ugSUe0hfxa2+bwKvAJj ouAJekMNUrhodNJiGBgnm5RlXs5CDXi2SJ+tOZOw0nb2QLbFPdtr5kJL7ktkCwo6 9n9Bm9/Bizg5jWyKDhH1+q1PyadpE9+4xnGAKTUz0PIV33iOSmsl30gynyn9m4XW oyKK5JzZPZYxStCzweZrrgEReQwijom0U4FIO9OQMBBXbJhSj0iPETs91WsxD+xB CU5vd5HKi1tS97RBZ1tZVe4VhIBayr5dBw6Dw5z47F2oUvAzLQrML80B/snKH8D0 vB/6nCNiG+WX9uXgCprJqVL3ig== -----END CERTIFICATE-----Generated at Thu Mar 26 07:58:17 2026 by rpki-client