$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft File: z8CATaxP_3oipAThDphkpxHeGck.mft (raw, json) Hash identifier: KWNQKHzgAo3VjqbxBXRPG6YEQtEN0gTPSrdK7/1ZoPw= Subject key identifier: 56:52:B1:E9:49:BC:CC:DB:14:77:5F:06:87:49:3C:EE:B9:7C:6F:55 Authority key identifier: CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 Certificate issuer: /CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Certificate serial: 012C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft Manifest number: 0124 Signing time: Wed 25 Mar 2026 04:54:36 +0000 Manifest this update: Wed 25 Mar 2026 04:54:36 +0000 Manifest next update: Wed 01 Apr 2026 04:54:36 +0000 Files and hashes: 1: z8CATaxP_3oipAThDphkpxHeGck.crl (hash: gkQ4REsnCX872hH65TsBpxsrq1wA0+aYUTl88N/CkFg=) 2: BCA395126C1811EFAFBE6B0FC4F9AE02.roa (hash: YuQff5ZM6ktoeLhGQjtDQt4j9brqyCXl9qvUHGQ/W6c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:54:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A12C4, serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Validity Not Before: Mar 25 04:54:36 2026 GMT Not After : Apr 1 04:54:36 2026 GMT Subject: CN=69c36a8c-7595 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:01:7e:60:c8:26:56:27:c4:a4:59:07:48:7a: e2:18:50:84:86:da:79:4e:78:3d:34:e6:e9:4a:55: 08:2b:62:af:c3:7b:be:ef:98:e4:11:f3:28:5f:c1: 93:77:e9:6f:ed:d7:43:70:80:d4:15:98:12:23:1a: d0:bf:e8:3d:e3:e6:d2:12:44:0f:9d:6d:32:c8:7d: 26:bd:46:c4:a9:36:3f:6a:94:cd:fe:8d:30:51:0d: ea:5f:b2:cf:7a:07:24:3e:a4:8d:6d:77:60:1b:c2: 1d:ee:23:63:53:05:8e:63:b0:19:54:dc:f2:49:a3: 44:f7:1d:c0:ee:a0:31:9b:e9:ff:38:26:9a:46:ab: 83:48:99:d9:90:29:6f:81:7e:9f:fa:b3:d3:75:2a: 6e:0f:86:f7:4c:1b:ee:3f:27:f5:27:01:e3:4e:83: c0:3c:69:19:6b:64:53:8e:45:8f:0f:aa:50:f0:32: 9a:02:bd:ea:cf:57:20:96:da:49:36:d6:89:fb:a0: 65:03:1a:4c:ca:14:d6:27:ad:7c:7c:5c:16:49:1c: 3e:4f:51:52:99:9c:a6:ca:94:ab:3c:68:ad:09:aa: 3b:95:7e:fc:b8:0b:61:33:83:7e:7c:88:79:09:8f: 91:d5:c0:ed:d3:d7:27:eb:04:8d:84:00:ba:7a:bd: ae:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:52:B1:E9:49:BC:CC:DB:14:77:5F:06:87:49:3C:EE:B9:7C:6F:55 X509v3 Authority Key Identifier: keyid:CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:b2:b2:b0:8a:29:34:81:1f:90:9e:55:c0:d8:1b:d9:08:fd: 20:dc:64:f7:45:b1:e1:52:17:6c:7a:c9:d1:24:ba:d2:a7:56: 85:fb:eb:ba:96:2a:f6:a3:af:ee:27:d1:87:a7:ea:d2:18:8b: e4:b8:78:5f:62:4a:68:2a:21:b0:5d:11:8d:0e:5e:42:c0:8b: 38:7d:f9:c2:aa:6f:69:48:05:68:c0:a1:b1:9f:9f:c3:40:75: 9b:33:2a:d6:24:98:50:c8:be:68:53:4d:09:a1:5a:9f:53:9a: ab:f9:e4:d7:9b:1e:4d:20:e5:d6:c9:7f:cc:77:58:38:3d:d3: e4:5d:d5:f0:f4:9a:85:a4:37:30:e6:91:b3:77:84:59:8f:a7: 74:56:80:ed:f7:de:82:a0:b8:96:b0:c9:0e:cb:42:77:4a:ae: 22:84:f0:a9:9a:1c:ca:1b:47:37:ea:49:fc:09:fa:90:a8:93: 08:34:aa:46:76:20:3c:fb:75:66:31:1b:a7:43:fc:d7:ef:17: 90:77:3c:32:7a:cb:19:54:33:d7:99:2b:48:f3:76:0a:57:11: 17:f3:74:1d:81:b9:a1:6c:fc:99:b5:4a:41:e6:61:40:ff:8f: 5c:d5:e7:d1:2a:d0:2e:05:36:eb:a5:26:d3:29:b0:0e:93:32: 5f:a4:04:a7 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEyQzQxMTAvBgNVBAUTKENGQzA4MDREQUM0RkZGN0EyMkE0MDRFMTBFOTg2NEE3 MTFERTE5QzkwHhcNMjYwMzI1MDQ1NDM2WhcNMjYwNDAxMDQ1NDM2WjAYMRYwFAYD VQQDEw02OWMzNmE4Yy03NTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkgF+YMgmVifEpFkHSHriGFCEhtp5Tng9NObpSlUIK2Kvw3u+75jkEfMoX8GT d+lv7ddDcIDUFZgSIxrQv+g94+bSEkQPnW0yyH0mvUbEqTY/apTN/o0wUQ3qX7LP egckPqSNbXdgG8Id7iNjUwWOY7AZVNzySaNE9x3A7qAxm+n/OCaaRquDSJnZkClv gX6f+rPTdSpuD4b3TBvuPyf1JwHjToPAPGkZa2RTjkWPD6pQ8DKaAr3qz1cgltpJ NtaJ+6BlAxpMyhTWJ618fFwWSRw+T1FSmZymypSrPGitCao7lX78uAthM4N+fIh5 CY+R1cDt09cn6wSNhAC6er2uPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFFZSselJ vMzbFHdfBodJPO65fG9VMB8GA1UdIwQYMBaAFM/AgE2sT/96IqQE4Q6YZKcR3hnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTJDNC9GMzE5RURDMjZD MTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8zb2lwQVRoRHBoa3B4SGVH Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o4Q0FUYXhQXzNvaXBBVGhEcGhrcHhIZUdjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTJDNC9GMzE5RURDMjZDMTcxMUVGQkRCRkQ1MEJDNEY5QUUwMi96OENBVGF4UF8z b2lwQVRoRHBoa3B4SGVHY2subWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXbKysIopNIEfkJ5VwNgb2Qj9INxk90Wx4VIXbHrJ0SS60qdWhfvrupYq9qOv 7ifRh6fq0hiL5Lh4X2JKaCohsF0RjQ5eQsCLOH35wqpvaUgFaMChsZ+fw0B1mzMq 1iSYUMi+aFNNCaFan1Oaq/nk15seTSDl1sl/zHdYOD3T5F3V8PSahaQ3MOaRs3eE WY+ndFaA7ffegqC4lrDJDstCd0quIoTwqZocyhtHN+pJ/An6kKiTCDSqRnYgPPt1 ZjEbp0P81+8XkHc8MnrLGVQz15krSPN2ClcRF/N0HYG5oWz8mbVKQeZhQP+PXNXn 0SrQLgU266Um0ymwDpMyX6QEpw== -----END CERTIFICATE-----Generated at Fri Mar 27 01:55:23 2026 by rpki-client