$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.mft File: zHDYc0KJ0wWlIzqZsJzXi4_WZks.mft (raw, json) Hash identifier: TDcYsHwzfXpAkzRUbNjVV7gLse5FbHQch01lZnZfEHw= Subject key identifier: 46:63:DC:A6:3D:18:F6:7F:CC:1C:49:30:22:A9:6B:0E:F6:83:E2:AC Authority key identifier: CC:70:D8:73:42:89:D3:05:A5:23:3A:99:B0:9C:D7:8B:8F:D6:66:4B Certificate issuer: /CN=A91DFA25/serialNumber=CC70D8734289D305A5233A99B09CD78B8FD6664B Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHDYc0KJ0wWlIzqZsJzXi4_WZks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.mft Manifest number: 37 Signing time: Wed 25 Mar 2026 07:49:43 +0000 Manifest this update: Wed 25 Mar 2026 07:49:43 +0000 Manifest next update: Wed 01 Apr 2026 07:49:43 +0000 Files and hashes: 1: zHDYc0KJ0wWlIzqZsJzXi4_WZks.crl (hash: lmgOr52rkxDEkinDh0S71mXLEmDmwJmSt83o3IKwGCM=) 2: 9E283D22E07A11F0AD28F7913A6F56BC.roa (hash: zM/gqOyVFktPoDA/WeuwpVQb7+CuTjfIizkBCA5c5Lg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.crl rsync://rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHDYc0KJ0wWlIzqZsJzXi4_WZks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFA25, serialNumber=CC70D8734289D305A5233A99B09CD78B8FD6664B Validity Not Before: Mar 25 07:49:43 2026 GMT Not After : Apr 1 07:49:43 2026 GMT Subject: CN=69c39397-835b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:61:b2:71:94:9b:15:3b:15:0d:a3:27:3f:08: bb:d4:69:82:87:0b:c8:12:62:8e:10:cc:a3:48:5c: 00:9b:4f:5d:70:fb:0a:0f:9d:15:6b:6b:55:d8:0e: ec:7e:45:3e:fa:65:12:d0:0c:d3:f2:ec:e9:29:c7: d8:fe:7e:6e:3f:77:e1:8a:9b:7b:0a:29:b6:c2:ab: e3:8a:b3:71:a0:f1:32:c8:cc:2d:87:75:cf:d2:d7: 3c:74:04:c7:2e:87:e6:1f:ca:06:ca:12:41:51:db: 9e:78:d4:05:a7:ec:df:8d:e6:f3:39:33:a1:08:22: 93:34:a5:58:10:6c:ed:04:3d:20:c0:d4:5d:96:34: 2c:6d:f2:60:10:6a:c8:ff:fc:f4:5e:82:ef:57:0f: e0:7c:96:f0:09:87:94:1c:7f:f8:da:2d:de:0c:17: f2:8e:89:5d:b1:3b:5d:ba:4c:99:fc:a3:c1:3e:ab: 4b:a4:aa:99:51:1f:4d:a6:a9:05:3e:62:2e:b7:6f: c4:7c:8b:79:ca:f2:46:29:40:fd:b7:e5:68:1d:14: 1c:60:f3:e2:25:7f:8d:47:29:b7:3e:40:64:2f:64: e6:f4:9d:49:85:44:89:04:56:ea:79:10:2d:18:da: a0:87:45:24:d5:1e:49:93:be:09:ef:3c:be:20:8f: bb:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:63:DC:A6:3D:18:F6:7F:CC:1C:49:30:22:A9:6B:0E:F6:83:E2:AC X509v3 Authority Key Identifier: keyid:CC:70:D8:73:42:89:D3:05:A5:23:3A:99:B0:9C:D7:8B:8F:D6:66:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHDYc0KJ0wWlIzqZsJzXi4_WZks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFA25/70F978F2E07511F0A5642F05396F56BC/zHDYc0KJ0wWlIzqZsJzXi4_WZks.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:a8:c0:07:15:b1:3e:c1:96:58:cf:ae:04:52:54:4f:cc:68: b8:58:9c:cb:e4:39:cd:39:7b:7d:6c:a6:0e:57:4e:d3:26:b8: 72:10:08:46:5e:78:ef:61:c8:02:b1:c4:6a:4c:53:9b:cd:11: 81:93:35:43:6f:3f:f6:96:0a:c3:a7:81:2d:01:81:46:f3:18: 54:2f:08:b2:bc:5b:98:4d:8f:96:55:d7:e5:a8:f9:13:fc:79: e5:86:60:79:82:49:00:2e:c0:ab:4a:6f:05:3a:7b:6e:b4:8a: 71:1d:d6:c4:13:68:e5:f6:bf:5f:7e:dc:ef:67:4c:a6:8c:32: 4b:31:0b:e7:7f:8d:db:64:2c:18:6e:db:6f:8f:ad:e9:a3:49: a3:9a:bd:74:a4:3a:f5:50:2d:62:87:f2:c9:e7:56:c1:b9:da: a4:3b:bf:49:47:b7:f1:c3:c8:ab:c2:05:d0:3b:57:73:af:b6: 10:38:47:7e:3c:a3:ee:79:f2:bd:df:1f:44:ad:bd:04:ab:b7: 08:72:1f:c3:b7:90:3f:f4:82:e5:b0:c4:be:1c:9c:1b:04:83: dc:2f:de:63:36:9c:17:3a:b2:b0:ed:69:7c:e7:ca:99:30:03: 50:c6:2d:d8:98:89:80:70:35:b7:be:98:36:bf:ee:84:35:6f: 99:96:ba:22 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RkEyNTExMC8GA1UEBRMoQ0M3MEQ4NzM0Mjg5RDMwNUE1MjMzQTk5QjA5Q0Q3OEI4 RkQ2NjY0QjAeFw0yNjAzMjUwNzQ5NDNaFw0yNjA0MDEwNzQ5NDNaMBgxFjAUBgNV BAMTDTY5YzM5Mzk3LTgzNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvYbJxlJsVOxUNoyc/CLvUaYKHC8gSYo4QzKNIXACbT11w+woPnRVra1XYDux+ RT76ZRLQDNPy7Okpx9j+fm4/d+GKm3sKKbbCq+OKs3Gg8TLIzC2Hdc/S1zx0BMcu h+YfygbKEkFR25541AWn7N+N5vM5M6EIIpM0pVgQbO0EPSDA1F2WNCxt8mAQasj/ /PRegu9XD+B8lvAJh5Qcf/jaLd4MF/KOiV2xO126TJn8o8E+q0ukqplRH02mqQU+ Yi63b8R8i3nK8kYpQP235WgdFBxg8+Ilf41HKbc+QGQvZOb0nUmFRIkEVup5EC0Y 2qCHRSTVHkmTvgnvPL4gj7tJAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQURmPcpj0Y 9n/MHEkwIqlrDvaD4qwwHwYDVR0jBBgwFoAUzHDYc0KJ0wWlIzqZsJzXi4/WZksw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGQTI1LzcwRjk3OEYyRTA3 NTExRjBBNTY0MkYwNTM5NkY1NkJDL3pIRFljMEtKMHdXbEl6cVpzSnpYaTRfV1pr cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvekhEWWMwS0owd1dsSXpxWnNKelhpNF9XWmtzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURG QTI1LzcwRjk3OEYyRTA3NTExRjBBNTY0MkYwNTM5NkY1NkJDL3pIRFljMEtKMHdX bEl6cVpzSnpYaTRfV1prcy5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQByqMAHFbE+wZZYz64EUlRPzGi4WJzL5DnNOXt9bKYOV07TJrhyEAhGXnjvYcgC scRqTFObzRGBkzVDbz/2lgrDp4EtAYFG8xhULwiyvFuYTY+WVdflqPkT/HnlhmB5 gkkALsCrSm8FOntutIpxHdbEE2jl9r9fftzvZ0ymjDJLMQvnf43bZCwYbttvj63p o0mjmr10pDr1UC1ih/LJ51bBudqkO79JR7fxw8irwgXQO1dzr7YQOEd+PKPuefK9 3x9Erb0Eq7cIch/Dt5A/9ILlsMS+HJwbBIPcL95jNpwXOrKw7Wl858qZMANQxi3Y mImAcDW3vpg2v+6ENW+Zlroi -----END CERTIFICATE-----Generated at Thu Mar 26 02:47:14 2026 by rpki-client