$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft File: z4nWqxHn1Hqhe0MJxypytxy6R64.mft (raw, json) Hash identifier: +7jKbwJ+iDXhCdwaYJwvnlOb5pt85hGe27L7TSn16ps= Subject key identifier: B7:A5:3B:BD:DB:20:37:79:09:BE:90:6C:BE:3D:BE:51:2B:59:F9:DD Authority key identifier: CF:89:D6:AB:11:E7:D4:7A:A1:7B:43:09:C7:2A:72:B7:1C:BA:47:AE Certificate issuer: /CN=A91E4D9B/serialNumber=CF89D6AB11E7D47AA17B4309C72A72B71CBA47AE Certificate serial: 090A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft Manifest number: 08FD Signing time: Tue 24 Mar 2026 20:06:33 +0000 Manifest this update: Tue 24 Mar 2026 20:06:32 +0000 Manifest next update: Tue 31 Mar 2026 20:06:32 +0000 Files and hashes: 1: z4nWqxHn1Hqhe0MJxypytxy6R64.crl (hash: R/oiwz+gs7DVmrIp+onUcsezykxN+VQpfxC5kaLef/c=) 2: CCF7B8AA22B811ECAD21FB20C4F9AE02.roa (hash: fbNgVaH91F2eFS+HbujhsXeCcZKoS980Yjgt5GelWLU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.crl rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:06:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2314 (0x90a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D9B, serialNumber=CF89D6AB11E7D47AA17B4309C72A72B71CBA47AE Validity Not Before: Mar 24 20:06:32 2026 GMT Not After : Mar 31 20:06:32 2026 GMT Subject: CN=69c2eec9-87dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:59:db:40:70:db:be:56:25:e7:1b:d8:8d:29: e4:67:60:f0:5b:56:c2:80:9c:4b:fc:54:d0:c3:c6: f8:07:e4:6c:b4:fa:56:00:85:f3:7f:35:66:7a:77: 88:72:31:fe:ab:b2:92:51:52:31:d5:30:61:8a:16: 74:37:1f:89:d2:3c:e1:7e:bf:1c:52:6a:b9:c2:06: 14:91:b0:5f:19:c7:76:29:e3:a8:d1:9e:fb:be:7d: 01:8f:73:da:38:73:1f:8d:9d:d1:c5:3e:ef:a4:a3: 93:04:f4:4f:85:cf:f4:db:37:28:56:80:c6:47:e3: 9c:65:ac:b9:cd:08:30:bd:79:2e:df:35:02:78:cf: 03:b4:51:e8:23:6d:f8:6f:1d:44:58:ee:21:95:a9: 2c:01:0a:30:fd:20:6c:c6:7c:b4:be:86:f7:36:48: f3:4a:6d:f7:1a:48:50:30:a8:b1:6e:56:18:87:00: 15:1f:f2:de:ae:8c:c1:78:1c:23:32:90:c1:94:be: 06:40:3c:31:33:76:92:db:3c:a6:d1:8a:07:1e:ef: 75:73:11:6c:01:83:65:45:04:cb:fa:c1:d5:25:5a: f6:66:07:ae:70:e4:0c:8c:ef:89:7f:42:76:08:37: f6:8a:54:0b:15:96:1d:31:64:75:8e:dd:61:b7:e0: f0:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:A5:3B:BD:DB:20:37:79:09:BE:90:6C:BE:3D:BE:51:2B:59:F9:DD X509v3 Authority Key Identifier: keyid:CF:89:D6:AB:11:E7:D4:7A:A1:7B:43:09:C7:2A:72:B7:1C:BA:47:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:5a:3c:7b:e6:0e:89:a8:e7:87:32:54:d3:d0:46:b9:e5:62: a9:64:e1:51:3e:5a:36:64:da:77:8d:ce:2e:af:d2:25:50:92: bb:bb:c2:7e:a5:17:ea:3c:ca:b4:2d:ec:02:df:6f:c0:30:5c: 83:22:86:00:24:f9:2c:84:3b:1a:a6:b3:50:60:2c:43:a2:5b: 8a:d8:e2:6f:a9:5c:f4:0b:68:a1:f1:1d:8d:a9:e4:70:de:f9: e1:cc:5b:aa:97:63:4a:aa:50:3e:f1:c6:36:82:7b:97:12:99: 5d:b1:37:f9:b9:5c:5f:03:4c:e7:d0:a5:98:49:f8:b4:c6:68: a0:21:16:b4:20:b8:6c:1a:59:81:00:b0:ba:da:87:fa:9a:dd: dc:32:b2:78:be:d7:7f:68:2c:7e:c8:4d:51:7f:95:d1:d5:e4: 8b:d4:fd:4a:e7:21:98:8a:25:64:df:56:ac:d6:b3:00:b6:f8: 40:03:d7:cc:55:1a:35:a3:dd:e5:20:58:c6:f7:6e:02:f9:6e: cb:19:5a:45:c3:57:8d:14:37:b1:9e:fd:30:f1:c7:83:60:09: d9:25:f4:1b:a7:e0:68:9c:91:57:5b:be:e2:32:8b:bb:8d:28: 94:4b:69:0b:a3:e4:12:01:01:ad:a1:33:a5:5b:bb:fa:fc:ae: 74:ea:89:66 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREOUIxMTAvBgNVBAUTKENGODlENkFCMTFFN0Q0N0FBMTdCNDMwOUM3MkE3MkI3 MUNCQTQ3QUUwHhcNMjYwMzI0MjAwNjMyWhcNMjYwMzMxMjAwNjMyWjAYMRYwFAYD VQQDEw02OWMyZWVjOS04N2RkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVnbQHDbvlYl5xvYjSnkZ2DwW1bCgJxL/FTQw8b4B+RstPpWAIXzfzVmeneI cjH+q7KSUVIx1TBhihZ0Nx+J0jzhfr8cUmq5wgYUkbBfGcd2KeOo0Z77vn0Bj3Pa OHMfjZ3RxT7vpKOTBPRPhc/02zcoVoDGR+OcZay5zQgwvXku3zUCeM8DtFHoI234 bx1EWO4hlaksAQow/SBsxny0vob3NkjzSm33GkhQMKixblYYhwAVH/LerozBeBwj MpDBlL4GQDwxM3aS2zym0YoHHu91cxFsAYNlRQTL+sHVJVr2ZgeucOQMjO+Jf0J2 CDf2ilQLFZYdMWR1jt1ht+Dw/QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLelO73b IDd5Cb6QbL49vlErWfndMB8GA1UdIwQYMBaAFM+J1qsR59R6oXtDCccqcrccukeu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQ5Qi9GNUJBQTNEOEM4 MDAxMUVBODdENDRBNzhDNEY5QUUwMi96NG5XcXhIbjFIcWhlME1KeHlweXR4eTZS NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o0bldxeEhuMUhxaGUwTUp4eXB5dHh5NlI2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQ5Qi9GNUJBQTNEOEM4MDAxMUVBODdENDRBNzhDNEY5QUUwMi96NG5XcXhIbjFI cWhlME1KeHlweXR4eTZSNjQubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAWFo8e+YOiajnhzJU09BGueViqWThUT5aNmTad43OLq/SJVCSu7vCfqUX6jzK tC3sAt9vwDBcgyKGACT5LIQ7GqazUGAsQ6Jbitjib6lc9AtoofEdjankcN754cxb qpdjSqpQPvHGNoJ7lxKZXbE3+blcXwNM59ClmEn4tMZooCEWtCC4bBpZgQCwutqH +prd3DKyeL7Xf2gsfshNUX+V0dXki9T9SuchmIolZN9WrNazALb4QAPXzFUaNaPd 5SBYxvduAvluyxlaRcNXjRQ3sZ79MPHHg2AJ2SX0G6fgaJyRV1u+4jKLu40olEtp C6PkEgEBraEzpVu7+vyudOqJZg== -----END CERTIFICATE-----Generated at Thu Mar 26 19:55:03 2026 by rpki-client