$ rpki-client -vvf rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft File: z7B65d0AqScU2zWnIQRdnS644xc.mft (raw, json) Hash identifier: ILHLD2GODcwo/BiY4UsqcEv1fnPl+YinkGGY1yxjhHo= Subject key identifier: D9:DA:49:2B:05:82:2E:F7:32:3F:AB:4A:00:73:09:13:1C:A7:3F:3A Authority key identifier: CF:B0:7A:E5:DD:00:A9:27:14:DB:35:A7:21:04:5D:9D:2E:B8:E3:17 Certificate issuer: /CN=A9189A9F/serialNumber=CFB07AE5DD00A92714DB35A721045D9D2EB8E317 Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft Manifest number: 04FE Signing time: Tue 24 Mar 2026 23:50:01 +0000 Manifest this update: Tue 24 Mar 2026 23:50:01 +0000 Manifest next update: Tue 31 Mar 2026 23:50:01 +0000 Files and hashes: 1: z7B65d0AqScU2zWnIQRdnS644xc.crl (hash: oaSMyxz//nk3zzjz+AGkLwtEyc5qAMiKGReUtAWFgJQ=) 2: 42A92B3C3BAC11F0882B5B62C4F9AE02.roa (hash: lxUsW9Ihz6AvBylPsEyV2joIZ84+YzkFPtm+pzhWEs0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.crl rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:50:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189A9F, serialNumber=CFB07AE5DD00A92714DB35A721045D9D2EB8E317 Validity Not Before: Mar 24 23:50:01 2026 GMT Not After : Mar 31 23:50:01 2026 GMT Subject: CN=69c32329-7419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ed:67:75:98:e5:a4:ba:0f:c7:77:6e:04:c3: db:e0:2a:a7:23:96:1a:0c:9c:84:f4:0d:1b:b3:0b: cc:4e:83:fa:32:7b:de:a8:d0:e2:58:0e:cb:9f:36: ac:45:3a:d6:9b:6f:4e:ae:22:3c:29:8d:6e:f5:98: f6:39:c2:06:3b:fb:3c:45:09:3b:34:bb:fb:33:38: af:4d:b1:75:eb:c8:22:ee:bf:01:e1:1c:8b:00:f4: 46:af:e7:a6:de:de:65:99:ab:dc:1b:7c:db:6f:c3: 1c:5b:f1:bd:34:61:5d:d0:f7:a3:3d:56:9c:a8:29: e8:46:4a:5c:ac:b3:77:98:01:19:8d:90:46:f9:bb: 8d:ed:9b:39:6d:eb:ae:a0:c8:bf:1f:67:fa:2e:f9: 8c:4a:2e:04:2a:47:b7:d1:ac:44:ba:a0:2d:31:d2: 95:27:ab:60:d5:3b:16:85:c1:e8:1a:14:d2:2c:73: 79:68:a3:1c:98:73:b8:93:c4:cf:88:11:12:4d:9d: 41:03:20:ac:bb:d4:4a:e0:31:f7:ae:29:9b:24:dc: fd:a6:73:e2:b8:d3:be:3e:0e:1f:b4:64:33:f4:96: 14:92:5d:33:24:9c:23:1f:e1:b5:0a:f5:92:c5:04: ca:0f:ec:c6:b4:41:af:ea:19:c7:1d:88:26:25:35: cd:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:DA:49:2B:05:82:2E:F7:32:3F:AB:4A:00:73:09:13:1C:A7:3F:3A X509v3 Authority Key Identifier: keyid:CF:B0:7A:E5:DD:00:A9:27:14:DB:35:A7:21:04:5D:9D:2E:B8:E3:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:c4:a1:d3:ce:ec:45:57:2f:52:1a:83:34:29:51:52:38:98: 83:ba:f3:33:77:47:d9:94:e1:e1:c6:0b:9c:51:90:64:cc:6d: 77:a9:62:99:d4:bc:df:3e:ca:f5:98:b8:c5:b7:1b:be:65:87: ea:00:71:e6:6e:ca:3b:66:f6:ec:d1:a5:e7:d3:1f:c3:31:25: eb:d8:60:3c:e7:ed:1a:ed:5b:8c:07:24:4b:17:54:3f:09:e0: d4:8d:46:27:71:64:08:ca:1a:67:fe:b6:24:7f:55:ec:39:be: 78:6c:5f:16:6a:12:e2:bd:28:37:a6:bc:11:99:1a:6b:89:1f: a0:36:77:12:81:40:42:e9:9c:e3:05:b5:0a:d4:06:e1:00:39: 14:87:3d:d0:d9:2e:3d:8f:5f:0a:45:5b:59:d7:ab:62:8f:6f: f2:09:0f:64:24:ed:4f:17:55:03:5e:13:fb:50:13:82:84:93: 08:c7:65:dd:7f:90:a2:e9:ce:e8:38:9e:5b:53:2c:80:54:43: 9d:9e:20:18:09:c8:80:62:49:c5:4b:e3:31:f8:1c:97:c1:35: 7c:54:3d:e6:28:c9:1c:2e:a4:89:5d:6d:bf:b9:47:24:6e:15: 8b:48:23:3b:62:62:28:5a:a1:84:f3:c4:03:81:00:19:05:49: fb:ea:01:54 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlBOUYxMTAvBgNVBAUTKENGQjA3QUU1REQwMEE5MjcxNERCMzVBNzIxMDQ1RDlE MkVCOEUzMTcwHhcNMjYwMzI0MjM1MDAxWhcNMjYwMzMxMjM1MDAxWjAYMRYwFAYD VQQDEw02OWMzMjMyOS03NDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArO1ndZjlpLoPx3duBMPb4CqnI5YaDJyE9A0bswvMToP6MnveqNDiWA7Lnzas RTrWm29OriI8KY1u9Zj2OcIGO/s8RQk7NLv7MzivTbF168gi7r8B4RyLAPRGr+em 3t5lmavcG3zbb8McW/G9NGFd0PejPVacqCnoRkpcrLN3mAEZjZBG+buN7Zs5beuu oMi/H2f6LvmMSi4EKke30axEuqAtMdKVJ6tg1TsWhcHoGhTSLHN5aKMcmHO4k8TP iBESTZ1BAyCsu9RK4DH3rimbJNz9pnPiuNO+Pg4ftGQz9JYUkl0zJJwjH+G1CvWS xQTKD+zGtEGv6hnHHYgmJTXNRwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNnaSSsF gi73Mj+rSgBzCRMcpz86MB8GA1UdIwQYMBaAFM+weuXdAKknFNs1pyEEXZ0uuOMX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUE5Ri84MDU2QkE1NjhB OTAxMUVDOEMxQjBEMjJDNEY5QUUwMi96N0I2NWQwQXFTY1UyelduSVFSZG5TNjQ0 eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o3QjY1ZDBBcVNjVTJ6V25JUVJkblM2NDR4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUE5Ri84MDU2QkE1NjhBOTAxMUVDOEMxQjBEMjJDNEY5QUUwMi96N0I2NWQwQXFT Y1UyelduSVFSZG5TNjQ0eGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVcSh087sRVcvUhqDNClRUjiYg7rzM3dH2ZTh4cYLnFGQZMxtd6limdS83z7K 9Zi4xbcbvmWH6gBx5m7KO2b27NGl59MfwzEl69hgPOftGu1bjAckSxdUPwng1I1G J3FkCMoaZ/62JH9V7Dm+eGxfFmoS4r0oN6a8EZkaa4kfoDZ3EoFAQumc4wW1CtQG 4QA5FIc90NkuPY9fCkVbWderYo9v8gkPZCTtTxdVA14T+1ATgoSTCMdl3X+QounO 6DieW1MsgFRDnZ4gGAnIgGJJxUvjMfgcl8E1fFQ95ijJHC6kiV1tv7lHJG4Vi0gj O2JiKFqhhPPEA4EAGQVJ++oBVA== -----END CERTIFICATE-----Generated at Thu Mar 26 20:38:27 2026 by rpki-client