$ rpki-client -vvf rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.mft File: ZEfjYbGkSWugEo32lWV0SOleK5U.mft (raw, json) Hash identifier: gQC20kjeou1ByjONOAtLLpNvnFNaaUfcQmqvi1loYt0= Subject key identifier: 7A:2F:0E:FD:FB:C1:E1:E3:2D:D9:B8:03:33:67:BA:5E:4D:0B:EE:F1 Authority key identifier: 64:47:E3:61:B1:A4:49:6B:A0:12:8D:F6:95:65:74:48:E9:5E:2B:95 Certificate issuer: /CN=A917F879/serialNumber=6447E361B1A4496BA0128DF695657448E95E2B95 Certificate serial: 0A62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.mft Manifest number: 0A54 Signing time: Tue 24 Mar 2026 19:26:25 +0000 Manifest this update: Tue 24 Mar 2026 19:26:24 +0000 Manifest next update: Tue 31 Mar 2026 19:26:24 +0000 Files and hashes: 1: ZEfjYbGkSWugEo32lWV0SOleK5U.crl (hash: JbdUrjgN+qfajA+tujm9TT8Fk35SP/Uqk0dQqiy2srg=) 2: 894FFF40556111EDB7E45424C4F9AE02.roa (hash: 2G7gFlwR8PIkICBXgCXuNRekc12kQ44lhkEmAObcZzQ=) 3: 8A6AA178556111EDB7E45424C4F9AE02.roa (hash: 8/8PcrmV+dwN59za9XSdrEpWpmGqQRkF6xxNtxvBqyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.crl rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:26:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2658 (0xa62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F879, serialNumber=6447E361B1A4496BA0128DF695657448E95E2B95 Validity Not Before: Mar 24 19:26:24 2026 GMT Not After : Mar 31 19:26:24 2026 GMT Subject: CN=69c2e561-82a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:aa:09:84:44:95:e0:4b:4e:61:12:3e:df:24: 9f:ae:c4:ab:4a:f8:7f:fa:fb:f4:89:0d:d0:f2:d9: b9:69:63:fc:17:02:75:9d:f1:3a:52:fa:0f:f6:3d: 7c:76:76:d2:97:3f:d9:3c:7b:6e:be:9d:96:08:49: ea:ab:de:2b:c8:72:1a:34:42:88:9a:af:52:be:4b: f6:30:1f:b4:96:48:35:67:2f:b3:0f:0d:51:b7:cd: 36:51:0d:33:0b:1d:77:05:c6:f0:b6:38:d5:b8:12: d4:88:e1:48:6f:e0:9f:06:4e:9d:b0:9e:7b:3d:8f: 7e:ba:44:83:ca:35:df:a6:7e:a7:1a:de:e0:2f:3c: 28:a9:9d:47:40:0b:2d:5e:4f:d4:14:96:a9:48:08: 99:59:59:2c:09:d3:ce:ef:39:7f:cb:65:3e:a7:72: 12:2c:c2:ee:43:a0:04:eb:35:e2:00:8c:12:b1:5a: 55:2a:a3:60:cc:ef:a1:dd:bb:2d:04:b1:d0:66:3d: a4:e4:07:46:00:a2:be:6c:02:bd:e2:93:20:14:9f: e4:5e:2a:62:f7:f5:2f:c0:e2:9f:4c:d0:3c:09:3e: 01:f5:75:5a:37:91:86:7f:1a:b9:8d:ce:61:26:95: 35:63:2a:7c:22:e2:63:d3:94:4b:71:91:d8:c1:26: 2c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:2F:0E:FD:FB:C1:E1:E3:2D:D9:B8:03:33:67:BA:5E:4D:0B:EE:F1 X509v3 Authority Key Identifier: keyid:64:47:E3:61:B1:A4:49:6B:A0:12:8D:F6:95:65:74:48:E9:5E:2B:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZEfjYbGkSWugEo32lWV0SOleK5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F879/AAFCEF0A834911EA89DE697BC4F9AE02/ZEfjYbGkSWugEo32lWV0SOleK5U.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:f4:1e:95:a9:18:f4:01:2b:79:18:bc:ec:fc:b5:5d:a3:ef: c0:13:ee:93:04:3f:bb:16:43:09:33:94:28:8f:00:f3:e0:e0: aa:ea:25:06:fd:86:f4:76:48:2d:24:4b:08:b3:6d:cd:16:66: 9f:4e:96:a8:05:ec:18:df:82:cb:b0:cf:0d:c3:97:ac:be:d2: 48:04:f5:e1:7e:32:26:88:f6:8d:7a:68:f2:86:03:df:93:64: 53:e9:cd:62:bb:2b:5d:f4:92:e1:b1:7d:f0:76:08:f5:d3:dc: 57:f4:82:bf:30:7e:9e:10:84:65:c9:9c:eb:0c:61:e6:f8:5c: e3:20:06:e6:03:bf:c9:d6:36:bc:81:32:9e:dc:d5:6f:7e:6b: d5:a3:28:9b:e5:08:51:21:14:ce:6d:ba:0a:37:7f:3e:0c:f6: 1d:f3:e6:9c:38:a2:9d:28:50:6b:28:2e:c5:12:04:df:fe:c1: 98:f8:56:96:ce:f0:12:60:77:51:62:c5:fe:56:9d:29:3b:39: a7:15:a5:fc:e1:60:cc:79:ad:7e:8e:71:01:08:b3:5a:64:03: cf:ec:ee:75:84:aa:bf:33:56:99:b0:4d:7e:f9:af:9d:db:bd: 47:a0:fb:a5:b7:9d:4f:bc:f9:44:32:6f:70:92:d4:c6:56:1a: 86:3d:58:33 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4NzkxMTAvBgNVBAUTKDY0NDdFMzYxQjFBNDQ5NkJBMDEyOERGNjk1NjU3NDQ4 RTk1RTJCOTUwHhcNMjYwMzI0MTkyNjI0WhcNMjYwMzMxMTkyNjI0WjAYMRYwFAYD VQQDEw02OWMyZTU2MS04MmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6oJhESV4EtOYRI+3ySfrsSrSvh/+vv0iQ3Q8tm5aWP8FwJ1nfE6UvoP9j18 dnbSlz/ZPHtuvp2WCEnqq94ryHIaNEKImq9Svkv2MB+0lkg1Zy+zDw1Rt802UQ0z Cx13BcbwtjjVuBLUiOFIb+CfBk6dsJ57PY9+ukSDyjXfpn6nGt7gLzwoqZ1HQAst Xk/UFJapSAiZWVksCdPO7zl/y2U+p3ISLMLuQ6AE6zXiAIwSsVpVKqNgzO+h3bst BLHQZj2k5AdGAKK+bAK94pMgFJ/kXipi9/UvwOKfTNA8CT4B9XVaN5GGfxq5jc5h JpU1Yyp8IuJj05RLcZHYwSYsRQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHovDv37 weHjLdm4AzNnul5NC+7xMB8GA1UdIwQYMBaAFGRH42GxpElroBKN9pVldEjpXiuV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Rjg3OS9BQUZDRUYwQTgz NDkxMUVBODlERTY5N0JDNEY5QUUwMi9aRWZqWWJHa1NXdWdFbzMybFdWMFNPbGVL NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pFZmpZYkdrU1d1Z0VvMzJsV1YwU09sZUs1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Rjg3OS9BQUZDRUYwQTgzNDkxMUVBODlERTY5N0JDNEY5QUUwMi9aRWZqWWJHa1NX dWdFbzMybFdWMFNPbGVLNVUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEACvQelakY9AEreRi87Py1XaPvwBPukwQ/uxZDCTOUKI8A8+DgquolBv2G9HZI LSRLCLNtzRZmn06WqAXsGN+Cy7DPDcOXrL7SSAT14X4yJoj2jXpo8oYD35NkU+nN YrsrXfSS4bF98HYI9dPcV/SCvzB+nhCEZcmc6wxh5vhc4yAG5gO/ydY2vIEyntzV b35r1aMom+UIUSEUzm26Cjd/Pgz2HfPmnDiinShQayguxRIE3/7BmPhWls7wEmB3 UWLF/ladKTs5pxWl/OFgzHmtfo5xAQizWmQDz+zudYSqvzNWmbBNfvmvndu9R6D7 pbedT7z5RDJvcJLUxlYahj1YMw== -----END CERTIFICATE-----Generated at Thu Mar 26 07:27:32 2026 by rpki-client