$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft File: RZTy7BffVsPQZUDzZtKvEYsxfx4.mft (raw, json) Hash identifier: 1wxO8QKLadE2hFNJ2k4JQ0bbkPaUM6gSwHBmWUfZMFU= Subject key identifier: 33:AB:68:AD:0D:47:52:54:E7:FA:80:B0:5F:A0:27:4E:C2:9E:58:11 Authority key identifier: 45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E Certificate issuer: /CN=A91CE978/serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Certificate serial: 01A4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft Manifest number: 01A0 Signing time: Thu 26 Mar 2026 14:54:57 +0000 Manifest this update: Thu 26 Mar 2026 14:54:56 +0000 Manifest next update: Thu 02 Apr 2026 14:54:56 +0000 Files and hashes: 1: RZTy7BffVsPQZUDzZtKvEYsxfx4.crl (hash: 2OUVSySafz4NqKH/ZaZJ40vbkMexMOg8WzRmxVaXuK4=) 2: 30EAE110B9AD11EE83063243C4F9AE02.roa (hash: kFv7yndhwJadcacui8r5QOrU0uIwRhKTiJr7YW1IOaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Validity Not Before: Mar 26 14:54:56 2026 GMT Not After : Apr 2 14:54:56 2026 GMT Subject: CN=69c548c1-aaa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2b:f9:86:1d:81:c8:cd:c8:f7:80:4d:66:27: f4:fc:4d:66:95:c2:bd:9f:9c:e5:b4:c1:48:b3:db: ba:a5:e0:7d:49:6b:7a:e4:e7:9d:27:0d:e6:c3:3c: 8f:d7:61:56:da:1e:13:45:ec:63:a0:85:4e:fd:d4: 81:7b:e8:41:81:89:b6:92:21:9a:9f:99:c1:3f:2b: 35:ac:cd:6b:a9:7b:30:bc:4a:a8:98:d8:4d:73:dc: 07:6e:57:37:57:c5:81:01:a5:36:49:fb:25:cf:de: ab:4a:01:d5:32:e0:86:3b:b1:29:36:f3:51:68:ae: b8:6c:08:5b:b4:72:b8:8d:e2:b5:c5:87:c8:20:df: 1f:da:50:6f:41:f1:9c:95:fc:8c:26:ce:48:8f:f2: cf:4d:23:0d:1b:f1:87:82:eb:7f:a9:6b:39:5a:97: 19:29:7b:b8:54:47:fc:fe:0c:7b:4c:74:d0:1c:13: 7c:be:ad:23:aa:40:70:7e:93:a1:e3:7a:b4:6d:7e: 9b:5a:1b:25:22:9c:39:f0:a5:5c:29:b8:ec:98:d6: 32:bf:1c:70:1f:6a:54:fa:a2:37:d2:3f:26:c0:7c: 36:90:41:de:5b:1b:6e:ed:be:15:7e:66:1c:99:3e: 0d:64:68:e3:f2:08:be:69:da:06:ef:17:6f:b5:60: 55:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:AB:68:AD:0D:47:52:54:E7:FA:80:B0:5F:A0:27:4E:C2:9E:58:11 X509v3 Authority Key Identifier: keyid:45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:61:1b:f2:84:00:36:1f:29:a2:ea:cb:08:75:63:28:0a:ce: 59:c2:f7:70:cd:f1:6f:c5:38:08:86:f3:94:d4:65:b1:98:95: 9b:e1:10:4a:eb:a9:69:0d:23:95:f2:e9:75:a1:16:ed:75:15: 1e:08:b2:f0:03:d2:36:db:91:a4:a8:1b:42:46:4a:05:f9:d8: 4e:bb:f9:63:5f:6d:60:81:26:b2:16:60:7e:80:6b:cd:46:68: c3:85:16:3f:3b:64:e3:eb:b1:30:94:f2:36:d5:69:3d:f3:f3: 64:6f:c9:b8:ad:f6:17:90:f7:1d:9b:f1:92:ef:ec:21:ad:d8: f2:0e:86:64:53:9d:9a:a6:7a:db:7d:6d:53:84:40:32:5f:c0: 59:c0:77:d4:21:fb:d7:a8:18:b8:b2:72:ab:58:56:72:5c:18: 28:5e:e9:ef:ee:7b:78:5e:18:fd:c7:67:04:bf:e2:8e:d4:9c: cf:6a:06:5e:3c:3e:24:56:ba:0b:4c:40:b1:6a:29:da:9c:b3: 10:3a:b2:5b:4e:07:34:5d:2c:66:ac:bf:38:ae:66:28:6e:1e: a6:cf:33:77:20:08:2b:f3:c6:56:14:94:82:a5:cb:60:94:cf: dc:e7:a6:98:a9:d0:13:34:1b:b7:e2:3c:ee:8e:5b:ce:08:e7: 03:52:0c:5b -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDQ1OTRGMkVDMTdERjU2QzNEMDY1NDBGMzY2RDJBRjEx OEIzMTdGMUUwHhcNMjYwMzI2MTQ1NDU2WhcNMjYwNDAyMTQ1NDU2WjAYMRYwFAYD VQQDEw02OWM1NDhjMS1hYWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApiv5hh2ByM3I94BNZif0/E1mlcK9n5zltMFIs9u6peB9SWt65OedJw3mwzyP 12FW2h4TRexjoIVO/dSBe+hBgYm2kiGan5nBPys1rM1rqXswvEqomNhNc9wHblc3 V8WBAaU2Sfslz96rSgHVMuCGO7EpNvNRaK64bAhbtHK4jeK1xYfIIN8f2lBvQfGc lfyMJs5Ij/LPTSMNG/GHgut/qWs5WpcZKXu4VEf8/gx7THTQHBN8vq0jqkBwfpOh 43q0bX6bWhslIpw58KVcKbjsmNYyvxxwH2pU+qI30j8mwHw2kEHeWxtu7b4VfmYc mT4NZGjj8gi+adoG7xdvtWBVEQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDOraK0N R1JU5/qAsF+gJ07CnlgRMB8GA1UdIwQYMBaAFEWU8uwX31bD0GVA82bSrxGLMX8e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC81REI1NTVBQUI4 REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZzUFFaVUR6WnRLdkVZc3hm eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JaVHk3QmZmVnNQUVpVRHpadEt2RVlzeGZ4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC81REI1NTVBQUI4REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZz UFFaVUR6WnRLdkVZc3hmeDQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAkWEb8oQANh8pourLCHVjKArOWcL3cM3xb8U4CIbzlNRlsZiVm+EQSuupaQ0j lfLpdaEW7XUVHgiy8APSNtuRpKgbQkZKBfnYTrv5Y19tYIEmshZgfoBrzUZow4UW Pztk4+uxMJTyNtVpPfPzZG/JuK32F5D3HZvxku/sIa3Y8g6GZFOdmqZ6231tU4RA Ml/AWcB31CH716gYuLJyq1hWclwYKF7p7+57eF4Y/cdnBL/ijtScz2oGXjw+JFa6 C0xAsWop2pyzEDqyW04HNF0sZqy/OK5mKG4eps8zdyAIK/PGVhSUgqXLYJTP3Oem mKnQEzQbt+I87o5bzgjnA1IMWw== -----END CERTIFICATE-----Generated at Thu Mar 26 18:45:14 2026 by rpki-client