$ rpki-client -vvf rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft File: ZH5crcsfv367iZpyGcOg8D0_ew0.mft (raw, json) Hash identifier: lY97B3/c38+89IGxBWDLt6rdIa7OthEpRTJeRyyhnqI= Subject key identifier: 13:B3:48:4D:21:95:94:A7:27:9E:4F:37:83:24:E2:27:34:E6:A3:3A Authority key identifier: 64:7E:5C:AD:CB:1F:BF:7E:BB:89:9A:72:19:C3:A0:F0:3D:3F:7B:0D Certificate issuer: /CN=A91951DE/serialNumber=647E5CADCB1FBF7EBB899A7219C3A0F03D3F7B0D Certificate serial: 8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft Manifest number: 86 Signing time: Wed 25 Mar 2026 06:51:53 +0000 Manifest this update: Wed 25 Mar 2026 06:51:53 +0000 Manifest next update: Wed 01 Apr 2026 06:51:53 +0000 Files and hashes: 1: ZH5crcsfv367iZpyGcOg8D0_ew0.crl (hash: 5gGCCEWZs5hteAzdtlW3D0/XOpuVtZabo15jE5/EOy0=) 2: 533DC25E60B511F0AB567568C4F9AE02.roa (hash: 3eyoBtxWZnVo9d8QTWGg5n0zVCETmWq673Im+Ia8NGk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.crl rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91951DE, serialNumber=647E5CADCB1FBF7EBB899A7219C3A0F03D3F7B0D Validity Not Before: Mar 25 06:51:53 2026 GMT Not After : Apr 1 06:51:53 2026 GMT Subject: CN=69c38609-b06e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:51:e1:3b:79:23:68:2c:73:d2:70:96:cc:80: 54:a8:23:c7:49:a5:4a:af:6d:94:15:11:d3:86:f7: 0b:d6:9c:f3:b5:91:a3:44:3c:97:6f:5f:40:01:c8: c7:a4:d5:b9:18:ac:15:26:9f:37:a0:a2:dd:c2:07: 81:a3:ea:60:78:08:e4:ee:d5:6f:b8:05:59:d5:ba: 6c:ec:8d:38:b9:28:19:0b:e8:7a:df:cf:04:54:6c: 3f:17:09:70:87:20:b8:6d:d2:8a:d8:58:b6:e4:00: b4:72:ca:f0:e9:22:88:c8:40:e3:fc:77:77:af:1d: c8:81:d2:21:54:04:04:21:13:32:af:5d:4a:e8:3d: c7:73:e6:e4:51:f5:5c:ee:04:27:8b:30:cf:98:77: f3:25:9d:71:ea:c7:40:73:54:4f:26:37:bd:39:37: 8e:79:49:54:fe:9c:f7:90:6e:72:44:d3:27:56:5e: b0:21:35:4f:e0:0c:36:18:2e:19:25:87:dc:7b:a6: 0b:0f:ad:4a:70:1e:79:87:69:a5:f8:b1:b8:6e:d2: f1:c2:93:27:2c:27:b6:01:16:a6:43:08:35:da:c4: 4f:b7:f0:80:be:b7:bf:d7:fd:44:1b:5d:34:54:b1: 77:93:aa:63:b1:a5:94:d6:cf:ce:2f:16:5c:e0:48: 5b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:B3:48:4D:21:95:94:A7:27:9E:4F:37:83:24:E2:27:34:E6:A3:3A X509v3 Authority Key Identifier: keyid:64:7E:5C:AD:CB:1F:BF:7E:BB:89:9A:72:19:C3:A0:F0:3D:3F:7B:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:47:05:93:1c:f0:6d:8d:de:45:d2:c3:49:47:1d:0f:23:75: 2e:08:93:cb:10:94:32:42:91:24:56:94:8a:3f:7e:79:4e:f1: d6:7e:a6:46:72:a1:e4:f5:d7:64:01:06:52:27:12:67:2b:7b: b2:ba:fe:5e:3d:da:19:95:f7:fd:dc:ff:02:ad:00:0a:2a:fb: 15:83:be:17:fa:e4:ec:3d:11:94:ea:a4:7d:78:2f:da:a7:70: 0f:5b:b2:09:e0:94:d5:0b:69:c2:32:54:60:5c:7c:f9:d0:8f: 91:fa:1b:30:78:5d:05:d7:c6:bf:1b:b7:15:9b:d4:84:2e:39: 8e:39:77:4b:39:44:47:97:96:8e:15:af:60:da:16:12:9e:e8: 05:60:8c:d7:e6:71:e3:ee:1f:65:26:b8:31:55:e4:b6:28:a1: a6:8b:8f:9b:62:cf:ce:e0:bd:d5:f4:8a:71:e8:e3:4b:84:e6: 13:ba:99:69:fa:fe:7a:ac:37:b2:c5:a0:d7:85:b6:12:4f:ce: 50:86:a6:86:5f:51:a9:a9:3b:8b:a5:e7:ce:72:8b:fa:f0:95: e9:d9:b4:82:78:63:d2:ad:bc:b5:aa:24:0b:fe:5d:7d:82:c2: 25:0d:d4:6c:1b:d1:c1:9c:25:16:3e:ce:7e:ec:ea:b7:81:0a: 1b:08:2b:c3 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUxREUxMTAvBgNVBAUTKDY0N0U1Q0FEQ0IxRkJGN0VCQjg5OUE3MjE5QzNBMEYw M0QzRjdCMEQwHhcNMjYwMzI1MDY1MTUzWhcNMjYwNDAxMDY1MTUzWjAYMRYwFAYD VQQDEw02OWMzODYwOS1iMDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VHhO3kjaCxz0nCWzIBUqCPHSaVKr22UFRHThvcL1pzztZGjRDyXb19AAcjH pNW5GKwVJp83oKLdwgeBo+pgeAjk7tVvuAVZ1bps7I04uSgZC+h6388EVGw/Fwlw hyC4bdKK2Fi25AC0csrw6SKIyEDj/Hd3rx3IgdIhVAQEIRMyr11K6D3Hc+bkUfVc 7gQnizDPmHfzJZ1x6sdAc1RPJje9OTeOeUlU/pz3kG5yRNMnVl6wITVP4Aw2GC4Z JYfce6YLD61KcB55h2ml+LG4btLxwpMnLCe2ARamQwg12sRPt/CAvre/1/1EG100 VLF3k6pjsaWU1s/OLxZc4EhbpwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBOzSE0h lZSnJ55PN4Mk4ic05qM6MB8GA1UdIwQYMBaAFGR+XK3LH79+u4machnDoPA9P3sN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTFERS85MDRGODcwQTYw QjQxMUYwOEVEN0FFNjNDNEY5QUUwMi9aSDVjcmNzZnYzNjdpWnB5R2NPZzhEMF9l dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pINWNyY3NmdjM2N2lacHlHY09nOEQwX2V3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTFERS85MDRGODcwQTYwQjQxMUYwOEVEN0FFNjNDNEY5QUUwMi9aSDVjcmNzZnYz NjdpWnB5R2NPZzhEMF9ldzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbUcFkxzwbY3eRdLDSUcdDyN1LgiTyxCUMkKRJFaUij9+eU7x1n6mRnKh5PXX ZAEGUicSZyt7srr+Xj3aGZX3/dz/Aq0ACir7FYO+F/rk7D0RlOqkfXgv2qdwD1uy CeCU1QtpwjJUYFx8+dCPkfobMHhdBdfGvxu3FZvUhC45jjl3SzlER5eWjhWvYNoW Ep7oBWCM1+Zx4+4fZSa4MVXktiihpouPm2LPzuC91fSKcejjS4TmE7qZafr+eqw3 ssWg14W2Ek/OUIamhl9Rqak7i6XnznKL+vCV6dm0gnhj0q28taokC/5dfYLCJQ3U bBvRwZwlFj7Ofuzqt4EKGwgrww== -----END CERTIFICATE-----Generated at Thu Mar 26 09:04:30 2026 by rpki-client