$ rpki-client -vvf rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft File: PzH7XY70fa043ZLqGonoiHFAOjE.mft (raw, json) Hash identifier: TgyIJhsB2Rf7Nx9++ogd9ZVsRX8XouBu6MZY3YuYqX8= Subject key identifier: 14:A4:06:2A:16:C8:43:23:FC:AD:5C:00:CA:82:32:8C:5B:84:63:E4 Authority key identifier: 3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 Certificate issuer: /CN=A91C66B2/serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft Manifest number: AB Signing time: Wed 25 Mar 2026 06:22:49 +0000 Manifest this update: Wed 25 Mar 2026 06:22:48 +0000 Manifest next update: Wed 01 Apr 2026 06:22:48 +0000 Files and hashes: 1: PzH7XY70fa043ZLqGonoiHFAOjE.crl (hash: KM8lNWQNNKR04ocgDPjr/3L3BvcbppEkTt+IlcY11WM=) 2: F8C50B08201711F0A5D51F16C4F9AE02.roa (hash: 0V0IRbzifSTjNSAVOPWTTktiswJ9KarZ5qkmJcePTMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:22:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C66B2, serialNumber=3F31FB5D8EF47DAD38DD92EA1A89E88871403A31 Validity Not Before: Mar 25 06:22:48 2026 GMT Not After : Apr 1 06:22:48 2026 GMT Subject: CN=69c37f39-55ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:31:0f:84:f6:e9:2e:17:7d:89:b6:30:5d:16: 11:0b:36:17:89:94:67:ec:ae:39:dc:02:92:0f:31: 8e:84:5d:d6:34:f6:42:1d:8e:27:2c:ff:75:bf:ec: ef:55:57:31:bb:0e:3f:bd:fe:3a:6f:65:7c:2b:19: 9a:46:4f:97:a8:21:b0:78:64:af:c3:7a:87:24:8b: 63:0e:44:f9:e8:12:d1:04:01:3b:9c:96:c9:7e:2f: c3:de:61:12:f6:5d:81:f5:9a:c9:49:d4:32:c4:75: 1d:be:9c:d3:8e:53:d8:11:02:ba:40:15:17:7d:c1: c8:c7:e2:97:18:79:f3:4d:59:0c:66:e0:82:c5:5f: 38:b8:33:1d:75:bd:10:10:b6:2c:82:97:e1:d0:49: fe:85:c1:6a:1e:db:80:2e:4b:19:b1:bc:65:ab:52: ae:43:84:29:8c:94:99:1c:90:a3:f5:d9:2a:5e:c1: a9:2f:3c:36:4c:ba:70:2e:68:36:ce:55:da:78:ec: ca:ad:c4:87:0f:6f:44:40:2e:50:5c:60:f3:dc:09: 61:87:6a:69:00:5b:f7:44:43:cc:b3:8f:4e:46:80: 1c:56:b1:7e:4a:d7:39:45:0e:c5:25:ec:71:bb:7c: 06:cd:8c:ce:d8:20:59:db:11:7f:91:a0:fb:e9:2b: 84:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:A4:06:2A:16:C8:43:23:FC:AD:5C:00:CA:82:32:8C:5B:84:63:E4 X509v3 Authority Key Identifier: keyid:3F:31:FB:5D:8E:F4:7D:AD:38:DD:92:EA:1A:89:E8:88:71:40:3A:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzH7XY70fa043ZLqGonoiHFAOjE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C66B2/C4F15472201611F0A8D74314C4F9AE02/PzH7XY70fa043ZLqGonoiHFAOjE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:ce:42:a9:73:21:7a:39:7c:fb:c3:f5:d7:bf:20:fe:a6:db: 93:02:a9:8a:70:5c:4e:a5:ae:20:92:f9:e2:f2:ba:c9:68:25: 79:e0:94:22:2a:f1:db:85:6c:26:ec:65:ea:c3:7d:f1:a1:f3: 71:67:31:76:2c:cc:93:01:2e:83:bd:97:42:2c:23:e6:d3:d2: cc:8a:c6:40:e4:6f:61:4a:25:af:23:c3:c4:b4:c0:9d:39:41: 13:eb:a2:93:9a:1b:21:f7:fa:72:92:db:82:2a:41:07:6a:fa: 1c:1b:ad:30:0b:60:a6:ef:98:03:3f:7d:86:dc:91:d7:eb:d1: d2:ef:7c:31:bd:17:6b:98:a7:08:66:c1:a6:c4:88:70:c2:44: 56:a9:6c:85:cb:bb:30:7d:c4:9f:e8:4a:93:bf:46:89:77:f5: 42:00:21:84:bc:aa:ea:96:ab:30:99:70:ff:a2:d4:61:80:63: b1:b7:ba:4a:6d:1d:64:5d:26:7b:99:32:00:50:32:33:7c:af: 8b:28:b7:74:5f:e9:ef:e3:b2:d8:68:f1:16:89:67:c8:1f:3d: 79:ee:3a:3b:6c:19:be:c8:40:b4:5f:8b:1a:5d:a7:cc:b4:14: a7:76:b3:67:95:d7:09:51:b0:2f:e2:fe:86:02:70:9e:c0:90: a4:d1:9f:67 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY2QjIxMTAvBgNVBAUTKDNGMzFGQjVEOEVGNDdEQUQzOEREOTJFQTFBODlFODg4 NzE0MDNBMzEwHhcNMjYwMzI1MDYyMjQ4WhcNMjYwNDAxMDYyMjQ4WjAYMRYwFAYD VQQDEw02OWMzN2YzOS01NWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkTEPhPbpLhd9ibYwXRYRCzYXiZRn7K453AKSDzGOhF3WNPZCHY4nLP91v+zv VVcxuw4/vf46b2V8KxmaRk+XqCGweGSvw3qHJItjDkT56BLRBAE7nJbJfi/D3mES 9l2B9ZrJSdQyxHUdvpzTjlPYEQK6QBUXfcHIx+KXGHnzTVkMZuCCxV84uDMddb0Q ELYsgpfh0En+hcFqHtuALksZsbxlq1KuQ4QpjJSZHJCj9dkqXsGpLzw2TLpwLmg2 zlXaeOzKrcSHD29EQC5QXGDz3Alhh2ppAFv3REPMs49ORoAcVrF+Stc5RQ7FJexx u3wGzYzO2CBZ2xF/kaD76SuEIwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBSkBioW yEMj/K1cAMqCMoxbhGPkMB8GA1UdIwQYMBaAFD8x+12O9H2tON2S6hqJ6IhxQDox MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjZCMi9DNEYxNTQ3MjIw MTYxMUYwQThENzQzMTRDNEY5QUUwMi9Qekg3WFk3MGZhMDQzWkxxR29ub2lIRkFP akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B6SDdYWTcwZmEwNDNaTHFHb25vaUhGQU9qRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjZCMi9DNEYxNTQ3MjIwMTYxMUYwQThENzQzMTRDNEY5QUUwMi9Qekg3WFk3MGZh MDQzWkxxR29ub2lIRkFPakUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZs5CqXMhejl8+8P1178g/qbbkwKpinBcTqWuIJL54vK6yWgleeCUIirx24Vs Juxl6sN98aHzcWcxdizMkwEug72XQiwj5tPSzIrGQORvYUolryPDxLTAnTlBE+ui k5obIff6cpLbgipBB2r6HButMAtgpu+YAz99htyR1+vR0u98Mb0Xa5inCGbBpsSI cMJEVqlshcu7MH3En+hKk79GiXf1QgAhhLyq6parMJlw/6LUYYBjsbe6Sm0dZF0m e5kyAFAyM3yviyi3dF/p7+Oy2GjxFolnyB89ee46O2wZvshAtF+LGl2nzLQUp3az Z5XXCVGwL+L+hgJwnsCQpNGfZw== -----END CERTIFICATE-----Generated at Thu Mar 26 00:52:33 2026 by rpki-client