$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft File: ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft (raw, json) Hash identifier: GgqV2BCBAZngPJmv1fGh1EjaFyizbgVg0kWwISTnMtQ= Subject key identifier: 6D:0C:E2:0D:F2:18:C3:0B:68:EC:A4:1F:99:30:49:A8:46:C0:43:3A Authority key identifier: 65:54:2C:EC:28:11:1F:C5:4B:A3:D2:AE:E3:3F:4C:E8:7B:7F:90:AD Certificate issuer: /CN=A91E4743/serialNumber=65542CEC28111FC54BA3D2AEE33F4CE87B7F90AD Certificate serial: 094B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft Manifest number: 0969 Signing time: Tue 24 Mar 2026 19:57:24 +0000 Manifest this update: Tue 24 Mar 2026 19:57:24 +0000 Manifest next update: Tue 31 Mar 2026 19:57:24 +0000 Files and hashes: 1: ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.crl (hash: 74oQD69NzCepB3MU4XVTK09m74KGKuDAM07CUiK338o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.crl rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:57:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2379 (0x94b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4743, serialNumber=65542CEC28111FC54BA3D2AEE33F4CE87B7F90AD Validity Not Before: Mar 24 19:57:24 2026 GMT Not After : Mar 31 19:57:24 2026 GMT Subject: CN=69c2eca4-788c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:58:98:3a:cc:0c:76:39:a4:bd:6f:22:a5:40: 13:fa:15:ac:0d:23:58:a2:0d:92:cf:d9:70:d6:6a: 73:50:21:46:72:b1:08:37:e7:b3:32:ab:23:2a:50: d1:fa:ca:7c:30:a1:69:bb:57:8a:62:4d:ab:d8:65: 61:c2:dc:23:9a:4e:f7:95:b9:95:47:ca:f6:3b:38: f3:90:0d:6f:32:63:89:97:bb:a2:d4:22:61:57:20: f1:a5:71:51:07:0a:de:72:db:8c:4f:97:93:11:ec: b3:e6:84:98:e5:ad:1b:bd:71:c1:50:bb:c7:89:8b: 9f:2e:eb:70:8d:e3:62:37:e6:3b:d9:bf:24:43:1b: 07:b6:40:8d:cd:80:24:e3:26:a8:1a:e3:1f:5f:91: 97:7c:00:c1:ae:8e:a3:67:48:e3:08:07:0d:63:65: 8a:f3:8d:46:5b:60:ce:48:29:d9:0d:89:30:a1:77: 31:fe:27:07:3c:c2:10:6d:8d:03:03:37:5b:75:59: 44:2a:c5:6d:c2:70:58:19:8b:7e:7a:a9:f1:86:0e: e8:63:45:45:fe:3c:79:f9:0f:33:e1:8a:03:19:6b: 61:44:08:93:77:03:57:85:ac:de:22:56:ef:b6:cd: e1:8c:73:5a:b3:2e:f6:40:31:7c:a1:9a:70:8b:b3: df:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:0C:E2:0D:F2:18:C3:0B:68:EC:A4:1F:99:30:49:A8:46:C0:43:3A X509v3 Authority Key Identifier: keyid:65:54:2C:EC:28:11:1F:C5:4B:A3:D2:AE:E3:3F:4C:E8:7B:7F:90:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4743/670F8092BB6F11EA961FB84EC4F9AE02/ZVQs7CgRH8VLo9Ku4z9M6Ht_kK0.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:46:c5:ae:b9:46:27:89:03:fe:c1:c5:4b:ec:33:16:36:4f: 71:97:e0:b5:b5:f1:67:e3:b3:b3:29:17:fe:e0:bb:d3:40:e0: 93:54:85:55:2f:d6:ff:ed:c7:e0:13:19:c4:e0:dd:a8:4a:c3: 4b:d2:7a:6d:57:9e:75:96:e0:df:3c:01:2d:7f:ed:54:49:8f: f0:4b:25:44:bc:c7:6a:21:52:7b:df:4b:c7:41:b7:6f:3e:3c: a9:dd:f4:c1:3d:c4:b7:75:68:51:43:af:00:b7:92:f2:5d:46: 27:1d:3f:86:c3:6c:d5:5c:9b:19:20:bc:0b:7a:03:15:c6:96: 5f:45:af:f6:26:7f:2f:4b:6a:d8:4a:7c:3e:1a:21:1f:95:c8: 2d:77:6e:a4:3a:7d:2b:39:f2:82:26:b0:46:61:4d:59:8c:f7: 18:c6:f6:8c:b4:2b:5b:94:b0:92:a4:a9:98:82:6f:3b:09:3f: eb:43:d8:d2:28:ce:e0:db:42:90:44:05:b7:94:82:f2:e6:83: 7b:48:fd:72:16:1e:64:16:50:72:f8:17:57:67:fb:b9:63:de: 6a:e8:bb:7d:23:bc:0f:1b:e3:23:f1:02:54:f9:7c:40:5d:c8: 4b:10:f4:7f:a8:33:a9:c8:9b:63:9f:e4:43:d4:af:ad:14:4a: 74:45:f5:15 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ3NDMxMTAvBgNVBAUTKDY1NTQyQ0VDMjgxMTFGQzU0QkEzRDJBRUUzM0Y0Q0U4 N0I3RjkwQUQwHhcNMjYwMzI0MTk1NzI0WhcNMjYwMzMxMTk1NzI0WjAYMRYwFAYD VQQDEw02OWMyZWNhNC03ODhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwliYOswMdjmkvW8ipUAT+hWsDSNYog2Sz9lw1mpzUCFGcrEIN+ezMqsjKlDR +sp8MKFpu1eKYk2r2GVhwtwjmk73lbmVR8r2OzjzkA1vMmOJl7ui1CJhVyDxpXFR BwrectuMT5eTEeyz5oSY5a0bvXHBULvHiYufLutwjeNiN+Y72b8kQxsHtkCNzYAk 4yaoGuMfX5GXfADBro6jZ0jjCAcNY2WK841GW2DOSCnZDYkwoXcx/icHPMIQbY0D AzdbdVlEKsVtwnBYGYt+eqnxhg7oY0VF/jx5+Q8z4YoDGWthRAiTdwNXhazeIlbv ts3hjHNasy72QDF8oZpwi7Pf+wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFG0M4g3y GMMLaOykH5kwSahGwEM6MB8GA1UdIwQYMBaAFGVULOwoER/FS6PSruM/TOh7f5Ct MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDc0My82NzBGODA5MkJC NkYxMUVBOTYxRkI4NEVDNEY5QUUwMi9aVlFzN0NnUkg4VkxvOUt1NHo5TTZIdF9r SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pWUXM3Q2dSSDhWTG85S3U0ejlNNkh0X2tLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDc0My82NzBGODA5MkJCNkYxMUVBOTYxRkI4NEVDNEY5QUUwMi9aVlFzN0NnUkg4 VkxvOUt1NHo5TTZIdF9rSzAubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAcEbFrrlGJ4kD/sHFS+wzFjZPcZfgtbXxZ+OzsykX/uC700Dgk1SFVS/W/+3H 4BMZxODdqErDS9J6bVeedZbg3zwBLX/tVEmP8EslRLzHaiFSe99Lx0G3bz48qd30 wT3Et3VoUUOvALeS8l1GJx0/hsNs1VybGSC8C3oDFcaWX0Wv9iZ/L0tq2Ep8Phoh H5XILXdupDp9KznygiawRmFNWYz3GMb2jLQrW5SwkqSpmIJvOwk/60PY0ijO4NtC kEQFt5SC8uaDe0j9chYeZBZQcvgXV2f7uWPeaui7fSO8DxvjI/ECVPl8QF3ISxD0 f6gzqcibY5/kQ9SvrRRKdEX1FQ== -----END CERTIFICATE-----Generated at Thu Mar 26 19:49:07 2026 by rpki-client