$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft File: zuNPo5_yhfcuIp2ihivBDkiPukE.mft (raw, json) Hash identifier: MiNIlHhmq8RFuxBagfv/DF9NUeoVOUDkamuVHUl3J/k= Subject key identifier: C6:54:73:2C:C6:84:BC:C0:9B:AA:1A:43:A6:7A:11:09:A2:19:F1:05 Authority key identifier: CE:E3:4F:A3:9F:F2:85:F7:2E:22:9D:A2:86:2B:C1:0E:48:8F:BA:41 Certificate issuer: /CN=A91A9B3E/serialNumber=CEE34FA39FF285F72E229DA2862BC10E488FBA41 Certificate serial: 0269 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft Manifest number: 025D Signing time: Wed 25 Mar 2026 01:37:39 +0000 Manifest this update: Wed 25 Mar 2026 01:37:39 +0000 Manifest next update: Wed 01 Apr 2026 01:37:39 +0000 Files and hashes: 1: zuNPo5_yhfcuIp2ihivBDkiPukE.crl (hash: 8VT5h6dtG2nzoBFRziZR4j58Qbcp/q1rf1aTZX1W4JU=) 2: 1AB255C68CFF11EDB7BDD865C4F9AE02.roa (hash: HO3OH/8eL6+bCFfILAtxQnck6D05JchPl7X69tG4qW4=) 3: 819F7A60CF8B11EDAE77B351C4F9AE02.roa (hash: bqrc3GnqSlvctr34CSmLH7pQRmgRC/6jwFegK+dWq/4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.crl rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:37:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 617 (0x269) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B3E, serialNumber=CEE34FA39FF285F72E229DA2862BC10E488FBA41 Validity Not Before: Mar 25 01:37:39 2026 GMT Not After : Apr 1 01:37:39 2026 GMT Subject: CN=69c33c63-10e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:31:bc:ea:93:b9:36:4c:6a:73:22:05:c7:74: 57:a5:42:be:cc:df:32:9d:0d:bc:7f:f7:90:71:63: 75:68:25:fc:71:7d:c9:aa:99:9d:76:59:e5:fd:d0: b0:91:a0:fe:aa:c2:ad:c8:f2:45:3e:52:ed:fe:27: 95:38:2f:99:18:41:36:7c:eb:f3:3c:32:e0:e9:c0: c7:64:81:71:72:de:a1:50:dd:5d:e3:af:58:d0:d0: 63:18:e1:b9:bf:78:8b:6d:35:ee:9c:29:f7:5d:44: 11:9a:bc:f4:14:25:ed:cf:8d:5a:e3:50:43:b6:57: 5d:50:1d:e3:c8:11:07:d5:61:da:93:01:28:5c:26: 70:67:42:5d:ea:46:e2:c4:5f:cb:b1:c1:03:04:94: 85:d0:29:16:e4:8f:1e:c7:17:4d:ce:61:b7:e0:a8: 0a:c5:eb:a8:50:e9:43:f4:78:b9:e4:c8:20:f1:91: 93:e5:c4:93:70:89:c9:07:49:22:b2:6b:1b:af:6f: 2e:b8:9b:76:34:b1:af:ce:86:52:3d:df:dc:b6:f9: f8:c7:62:91:f3:3d:c7:37:91:ab:99:2e:6f:63:fa: 6c:14:43:3b:59:4a:fc:a4:47:84:3e:6d:b6:fa:e7: cf:04:2a:f3:25:98:c7:de:a0:f5:99:d6:f6:05:1c: 23:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:54:73:2C:C6:84:BC:C0:9B:AA:1A:43:A6:7A:11:09:A2:19:F1:05 X509v3 Authority Key Identifier: keyid:CE:E3:4F:A3:9F:F2:85:F7:2E:22:9D:A2:86:2B:C1:0E:48:8F:BA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuNPo5_yhfcuIp2ihivBDkiPukE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3E/DAB1C3A68CFB11ED92E25B61C4F9AE02/zuNPo5_yhfcuIp2ihivBDkiPukE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:31:a4:f4:37:c2:e8:55:8f:68:39:65:1a:7e:99:a4:0d:d9: da:e9:66:2b:09:f5:ca:b2:82:16:fb:d7:ce:ed:c1:96:8f:e9: 1a:85:c3:1b:cc:31:8d:42:eb:20:b0:51:a0:70:61:41:07:29: 1a:92:c4:bd:ab:93:af:a7:73:37:15:79:90:8c:93:48:6b:e1: fd:8f:ae:59:7a:d6:84:24:32:96:03:16:ca:fb:47:58:b1:35: c3:45:cf:81:42:5a:97:ce:02:02:df:fb:b6:44:4f:ff:75:56: b2:86:a6:d3:3e:8a:48:76:af:ac:21:02:1d:dc:a7:de:11:db: 25:54:0e:9a:f1:eb:61:1e:8c:38:6b:ac:7e:23:eb:b2:4a:30: 74:46:05:8b:2f:8f:76:a0:0c:55:f5:8d:0a:82:f3:df:7a:2f: ae:f9:62:e1:bb:bc:30:87:52:c7:15:dc:a1:8b:ff:ae:46:70: c9:34:9b:64:74:73:00:c7:5a:d1:bd:51:8e:41:db:07:32:32: 02:35:6d:8d:0a:4a:10:f6:87:2c:18:76:c5:2b:b9:46:90:01: 16:12:05:fc:67:3c:48:2c:83:4c:43:d1:72:0f:33:3c:37:13: 02:aa:14:48:d8:68:89:52:6d:cf:99:af:0a:69:6c:64:59:75: 3b:ca:3a:df -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCM0UxMTAvBgNVBAUTKENFRTM0RkEzOUZGMjg1RjcyRTIyOURBMjg2MkJDMTBF NDg4RkJBNDEwHhcNMjYwMzI1MDEzNzM5WhcNMjYwNDAxMDEzNzM5WjAYMRYwFAYD VQQDEw02OWMzM2M2My0xMGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApTG86pO5NkxqcyIFx3RXpUK+zN8ynQ28f/eQcWN1aCX8cX3Jqpmddlnl/dCw kaD+qsKtyPJFPlLt/ieVOC+ZGEE2fOvzPDLg6cDHZIFxct6hUN1d469Y0NBjGOG5 v3iLbTXunCn3XUQRmrz0FCXtz41a41BDtlddUB3jyBEH1WHakwEoXCZwZ0Jd6kbi xF/LscEDBJSF0CkW5I8exxdNzmG34KgKxeuoUOlD9Hi55Mgg8ZGT5cSTcInJB0ki smsbr28uuJt2NLGvzoZSPd/ctvn4x2KR8z3HN5GrmS5vY/psFEM7WUr8pEeEPm22 +ufPBCrzJZjH3qD1mdb2BRwjKQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMZUcyzG hLzAm6oaQ6Z6EQmiGfEFMB8GA1UdIwQYMBaAFM7jT6Of8oX3LiKdooYrwQ5Ij7pB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIzRS9EQUIxQzNBNjhD RkIxMUVEOTJFMjVCNjFDNEY5QUUwMi96dU5QbzVfeWhmY3VJcDJpaGl2QkRraVB1 a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1TlBvNV95aGZjdUlwMmloaXZCRGtpUHVrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIzRS9EQUIxQzNBNjhDRkIxMUVEOTJFMjVCNjFDNEY5QUUwMi96dU5QbzVfeWhm Y3VJcDJpaGl2QkRraVB1a0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAdzGk9DfC6FWPaDllGn6ZpA3Z2ulmKwn1yrKCFvvXzu3Blo/pGoXDG8wxjULr ILBRoHBhQQcpGpLEvauTr6dzNxV5kIyTSGvh/Y+uWXrWhCQylgMWyvtHWLE1w0XP gUJal84CAt/7tkRP/3VWsoam0z6KSHavrCECHdyn3hHbJVQOmvHrYR6MOGusfiPr skowdEYFiy+PdqAMVfWNCoLz33ovrvli4bu8MIdSxxXcoYv/rkZwyTSbZHRzAMda 0b1RjkHbBzIyAjVtjQpKEPaHLBh2xSu5RpABFhIF/Gc8SCyDTEPRcg8zPDcTAqoU SNhoiVJtz5mvCmlsZFl1O8o63w== -----END CERTIFICATE-----Generated at Thu Mar 26 05:39:08 2026 by rpki-client