$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft File: zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft (raw, json) Hash identifier: mG57kJsLxyvUQDTgUHWpXfvk85STu0o3DBN25YkYukM= Subject key identifier: 9F:09:A1:93:EE:A7:11:F0:61:A1:74:72:59:C6:0E:EE:2E:BE:99:94 Authority key identifier: CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 Certificate issuer: /CN=A91AAE63/serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Certificate serial: 0237 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft Manifest number: 0233 Signing time: Wed 25 Mar 2026 01:59:06 +0000 Manifest this update: Wed 25 Mar 2026 01:59:06 +0000 Manifest next update: Wed 01 Apr 2026 01:59:06 +0000 Files and hashes: 1: zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl (hash: ObgmhiOa8mOPIiEtdBmbj6EOLvoPxivYk5YA0w6gzt8=) 2: 5DCF3814CA0E11ED9251861DC4F9AE02.roa (hash: jvV2Z+fiyEhetDjklhcAMgGtL3vvbGgKgdynXMsgt90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 567 (0x237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE63, serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Validity Not Before: Mar 25 01:59:06 2026 GMT Not After : Apr 1 01:59:06 2026 GMT Subject: CN=69c3416a-1be9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:a5:63:6f:40:1c:8f:21:af:96:91:09:f3:63: d1:6d:af:9a:af:db:19:58:47:9a:a6:93:4e:a5:29: fe:c5:62:17:74:6d:37:6c:ba:53:55:e3:aa:f9:17: 39:88:57:69:94:c2:e5:c0:b0:ec:2e:e2:06:49:5d: c8:2d:7f:2b:bf:7f:7d:60:a1:5b:9d:0a:90:a4:cf: 26:8e:dc:f2:2b:7c:5f:bd:5b:16:cb:80:d5:67:25: 41:a7:02:d3:8e:d5:42:dd:bf:d2:10:9d:41:62:0f: ef:25:ae:ca:e7:1e:af:f1:7a:bf:3b:8a:c9:fc:21: 9f:50:c5:a2:88:a5:36:e5:ed:16:80:95:93:5e:f6: 91:f2:b4:74:18:13:53:40:95:8c:df:6a:ef:4a:69: ea:2d:0c:73:8d:22:b5:11:63:9e:f2:58:73:e4:00: 15:22:a2:03:cd:c7:2a:15:8a:d9:15:28:ef:a1:c1: 09:80:e1:87:9d:36:52:c8:46:a9:3a:ed:49:93:b9: 26:7a:82:c1:a4:0e:ec:63:a2:50:e4:f4:79:9c:b2: 6e:97:01:c1:38:7d:4c:04:12:0c:60:00:77:e8:80: 19:64:f4:f4:ad:7f:b4:9b:c5:a1:8b:6e:b1:bc:87: c1:4f:e4:0a:72:c9:8f:07:ed:0b:97:57:36:07:13: e8:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:09:A1:93:EE:A7:11:F0:61:A1:74:72:59:C6:0E:EE:2E:BE:99:94 X509v3 Authority Key Identifier: keyid:CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:e7:ba:f3:10:d5:0c:38:dc:55:f6:2a:04:64:a0:cd:39:bd: b3:de:fa:0b:73:4f:22:4c:e5:06:68:5a:18:ac:46:ed:df:4b: 4f:b3:6e:32:f6:d8:90:e2:a3:fe:a1:f3:50:d0:52:81:5e:b1: 28:29:2f:49:69:5b:ed:3c:d7:29:35:8b:c9:54:e2:c9:2b:54: 48:21:c4:50:fa:a9:68:7f:a1:0a:db:b4:2d:c9:80:7a:5e:b6: c8:aa:a9:c3:fb:5a:73:cf:76:83:5c:4f:84:c9:8b:87:fd:85: 8d:02:02:19:b0:ea:c5:e0:0c:ce:89:d0:be:1b:6d:20:81:f2: b1:5a:ec:a4:61:9b:9d:a1:56:df:19:92:65:e6:cb:13:0f:fa: dd:a0:7d:6b:83:0b:d6:a7:05:38:57:ee:77:4e:87:e4:57:df: e7:44:7c:47:f3:6c:26:1a:18:a5:d9:0d:7e:4b:a1:37:b1:04: 37:37:6a:17:fe:e7:9f:47:2a:d9:34:f0:f0:17:31:0c:44:4b: 7a:4d:87:82:23:da:c6:94:c1:fd:34:36:5b:04:bc:b9:d2:63: f5:23:9f:16:4a:90:71:36:a4:98:5c:87:d0:11:a4:70:e8:81: 01:d1:17:0c:bd:4e:3b:2d:17:4e:6f:06:25:10:ea:c5:81:c1: 65:9d:27:8d -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFNjMxMTAvBgNVBAUTKENDN0M1RjI3ODBBODBEM0M2NjZCMkJGNjkxNTNGMjA0 ODRCRUVFNzEwHhcNMjYwMzI1MDE1OTA2WhcNMjYwNDAxMDE1OTA2WjAYMRYwFAYD VQQDEw02OWMzNDE2YS0xYmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkKVjb0AcjyGvlpEJ82PRba+ar9sZWEeappNOpSn+xWIXdG03bLpTVeOq+Rc5 iFdplMLlwLDsLuIGSV3ILX8rv399YKFbnQqQpM8mjtzyK3xfvVsWy4DVZyVBpwLT jtVC3b/SEJ1BYg/vJa7K5x6v8Xq/O4rJ/CGfUMWiiKU25e0WgJWTXvaR8rR0GBNT QJWM32rvSmnqLQxzjSK1EWOe8lhz5AAVIqIDzccqFYrZFSjvocEJgOGHnTZSyEap Ou1Jk7kmeoLBpA7sY6JQ5PR5nLJulwHBOH1MBBIMYAB36IAZZPT0rX+0m8Whi26x vIfBT+QKcsmPB+0Ll1c2BxPosQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFJ8JoZPu pxHwYaF0clnGDu4uvpmUMB8GA1UdIwQYMBaAFMx8XyeAqA08Zmsr9pFT8gSEvu5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUU2My81RTk2NjM5NENB MDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RUeG1heXYya1ZQeUJJUy03 bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pIeGZKNENvRFR4bWF5djJrVlB5QklTLTduRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUU2My81RTk2NjM5NENBMDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RU eG1heXYya1ZQeUJJUy03bkUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFOe68xDVDDjcVfYqBGSgzTm9s976C3NPIkzlBmhaGKxG7d9LT7NuMvbYkOKj /qHzUNBSgV6xKCkvSWlb7TzXKTWLyVTiyStUSCHEUPqpaH+hCtu0LcmAel62yKqp w/tac892g1xPhMmLh/2FjQICGbDqxeAMzonQvhttIIHysVrspGGbnaFW3xmSZebL Ew/63aB9a4ML1qcFOFfud06H5Fff50R8R/NsJhoYpdkNfkuhN7EENzdqF/7nn0cq 2TTw8BcxDERLek2HgiPaxpTB/TQ2WwS8udJj9SOfFkqQcTakmFyH0BGkcOiBAdEX DL1OOy0XTm8GJRDqxYHBZZ0njQ== -----END CERTIFICATE-----Generated at Thu Mar 26 19:09:53 2026 by rpki-client