$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft File: Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft (raw, json) Hash identifier: uQZ0saJtsEnDBRn0obtBQE+PGqxOX6jJGgkUD7TsOAc= Subject key identifier: 3B:2E:9B:53:D0:ED:51:10:DF:B8:39:F7:9A:AE:24:1D:CE:BC:AE:28 Authority key identifier: 67:D7:9C:3B:11:16:D3:6F:B9:E1:71:D6:65:8F:8F:43:B5:3C:72:FA Certificate issuer: /CN=A91BEC31/serialNumber=67D79C3B1116D36FB9E171D6658F8F43B53C72FA Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z9ecOxEW02-54XHWZY-PQ7U8cvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft Manifest number: D7 Signing time: Wed 25 Mar 2026 05:52:34 +0000 Manifest this update: Wed 25 Mar 2026 05:52:33 +0000 Manifest next update: Wed 01 Apr 2026 05:52:33 +0000 Files and hashes: 1: Z9ecOxEW02-54XHWZY-PQ7U8cvo.crl (hash: GvlM37X8+T3EWOnK4R5WCmgT3eOQnp6+4xe5+KcJt+Q=) 2: F8B0BFEEE4A411EF8C2D0460C4F9AE02.roa (hash: FdZFi23QV7iXfRCgsnkQHySpktc5P2BckuFIBWZjfUY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.crl rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z9ecOxEW02-54XHWZY-PQ7U8cvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:52:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEC31, serialNumber=67D79C3B1116D36FB9E171D6658F8F43B53C72FA Validity Not Before: Mar 25 05:52:33 2026 GMT Not After : Apr 1 05:52:33 2026 GMT Subject: CN=69c37822-9904 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:d7:3c:3a:40:ad:ad:d7:c1:70:5f:b9:2c:bb: d4:5a:74:00:82:b6:09:42:de:fb:01:ac:83:c2:f9: b8:d0:90:18:88:a4:31:a5:a4:bb:65:eb:10:9f:3e: 8a:56:40:f1:7b:1c:1c:37:9a:53:0e:f9:2f:9e:1c: 19:27:d1:fb:c0:95:5a:f3:bb:b3:b0:fb:63:38:68: b8:c6:0b:77:c1:38:d1:13:40:c2:3b:f4:c5:68:1d: cd:69:4c:04:7b:14:0a:ad:ab:c2:b4:e0:99:3d:f5: 0e:80:18:c1:72:7b:dc:7c:f9:ed:f8:c1:65:ca:12: 6a:52:6a:c8:3e:8f:dc:31:0c:b9:b2:e3:96:00:59: 3d:18:cf:9f:3d:24:bf:c8:bc:70:15:ae:d8:60:01: 9b:e5:24:39:9d:89:04:ed:c4:76:18:3f:53:86:d8: 58:6b:89:27:bd:16:f3:23:38:1c:e8:c0:6c:7b:e2: b6:74:e2:0a:d0:52:f7:61:47:13:1a:20:d1:1f:b8: 29:ca:cd:a3:f5:cf:5c:5b:8e:86:d6:49:1f:bf:39: 95:6b:09:1d:4b:26:17:b3:fc:bb:01:40:18:cb:ba: 65:85:8c:c8:aa:17:11:54:cc:1c:52:84:4a:1c:99: a4:28:46:ef:95:89:d8:92:fd:a9:d1:5d:ea:d7:41: 85:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:2E:9B:53:D0:ED:51:10:DF:B8:39:F7:9A:AE:24:1D:CE:BC:AE:28 X509v3 Authority Key Identifier: keyid:67:D7:9C:3B:11:16:D3:6F:B9:E1:71:D6:65:8F:8F:43:B5:3C:72:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z9ecOxEW02-54XHWZY-PQ7U8cvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEC31/3CF53622E4A411EFB276F25DC4F9AE02/Z9ecOxEW02-54XHWZY-PQ7U8cvo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:4b:2e:a2:5a:2d:47:1a:0a:dc:e3:40:b0:29:f4:5a:39:42: 32:fe:1c:de:df:77:94:19:54:dc:bc:f9:d4:fd:28:26:21:6d: a5:6d:81:ba:0f:a0:bb:6e:08:ac:40:1d:bc:de:7c:9d:0a:b6: 4e:17:6d:1d:53:1a:17:ac:6f:3f:6f:79:37:66:66:bd:96:64: 40:bc:44:72:a5:33:f0:71:a6:90:6a:04:b5:70:e6:15:ad:2c: d2:a5:53:bb:91:d1:d7:9f:f0:16:9a:95:16:3b:b3:4c:69:87: fc:d6:36:48:f6:a4:93:73:21:55:51:35:17:21:37:4d:4a:f7: 2c:f7:bf:1c:b0:52:bd:69:d7:fc:3f:84:25:1e:9a:e5:49:38: e6:3b:d9:e0:a2:1b:1e:b4:8b:fb:d9:82:3d:f6:fc:3f:a1:d3: 77:d5:ea:3a:d4:02:bb:a6:c0:75:97:c6:01:d8:72:99:5d:07: 6f:e8:64:22:3d:2f:a0:4f:83:d6:bb:09:73:b7:25:b0:74:07: 06:bf:f6:57:f7:85:bc:4a:35:6f:27:a7:d5:fc:87:64:0c:b2: a6:10:83:45:26:e1:ce:9d:61:29:c9:73:b4:be:f2:59:46:b4: ec:fd:36:da:dd:6f:02:a3:9f:5b:e2:cd:3d:bc:0c:ef:2b:30: 99:7a:b6:75 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVDMzExMTAvBgNVBAUTKDY3RDc5QzNCMTExNkQzNkZCOUUxNzFENjY1OEY4RjQz QjUzQzcyRkEwHhcNMjYwMzI1MDU1MjMzWhcNMjYwNDAxMDU1MjMzWjAYMRYwFAYD VQQDEw02OWMzNzgyMi05OTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi9c8OkCtrdfBcF+5LLvUWnQAgrYJQt77AayDwvm40JAYiKQxpaS7ZesQnz6K VkDxexwcN5pTDvkvnhwZJ9H7wJVa87uzsPtjOGi4xgt3wTjRE0DCO/TFaB3NaUwE exQKravCtOCZPfUOgBjBcnvcfPnt+MFlyhJqUmrIPo/cMQy5suOWAFk9GM+fPSS/ yLxwFa7YYAGb5SQ5nYkE7cR2GD9ThthYa4knvRbzIzgc6MBse+K2dOIK0FL3YUcT GiDRH7gpys2j9c9cW46G1kkfvzmVawkdSyYXs/y7AUAYy7plhYzIqhcRVMwcUoRK HJmkKEbvlYnYkv2p0V3q10GFUwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDsum1PQ 7VEQ37g595quJB3OvK4oMB8GA1UdIwQYMBaAFGfXnDsRFtNvueFx1mWPj0O1PHL6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUMzMS8zQ0Y1MzYyMkU0 QTQxMUVGQjI3NkYyNURDNEY5QUUwMi9aOWVjT3hFVzAyLTU0WEhXWlktUFE3VThj dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1o5ZWNPeEVXMDItNTRYSFdaWS1QUTdVOGN2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUMzMS8zQ0Y1MzYyMkU0QTQxMUVGQjI3NkYyNURDNEY5QUUwMi9aOWVjT3hFVzAy LTU0WEhXWlktUFE3VThjdm8ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvUsuolotRxoK3ONAsCn0WjlCMv4c3t93lBlU3Lz51P0oJiFtpW2Bug+gu24I rEAdvN58nQq2ThdtHVMaF6xvP295N2ZmvZZkQLxEcqUz8HGmkGoEtXDmFa0s0qVT u5HR15/wFpqVFjuzTGmH/NY2SPakk3MhVVE1FyE3TUr3LPe/HLBSvWnX/D+EJR6a 5Uk45jvZ4KIbHrSL+9mCPfb8P6HTd9XqOtQCu6bAdZfGAdhymV0Hb+hkIj0voE+D 1rsJc7clsHQHBr/2V/eFvEo1byen1fyHZAyyphCDRSbhzp1hKclztL7yWUa07P02 2t1vAqOfW+LNPbwM7yswmXq2dQ== -----END CERTIFICATE-----Generated at Thu Mar 26 04:10:42 2026 by rpki-client