$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft File: z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft (raw, json) Hash identifier: RExtYDpehoPhnCdUg9vrOEzmgL1JAZhgb9NrVAw6OYo= Subject key identifier: 87:A1:AF:DE:BC:5A:52:D4:D6:CB:FD:10:36:14:88:59:58:9D:81:7D Authority key identifier: CF:66:83:74:EC:75:AB:5C:AC:D2:EA:73:05:15:F7:B7:76:4D:D9:21 Certificate issuer: /CN=A91E7ED9/serialNumber=CF668374EC75AB5CACD2EA730515F7B7764DD921 Certificate serial: 08B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft Manifest number: 08A8 Signing time: Tue 24 Mar 2026 20:14:27 +0000 Manifest this update: Tue 24 Mar 2026 20:14:26 +0000 Manifest next update: Tue 31 Mar 2026 20:14:26 +0000 Files and hashes: 1: z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl (hash: ZSQ2foR/u/LY4E0xzKZYCFetCtEkwDi0MozYrtTPbi0=) 2: DE349762DBA311EA8DE35866C4F9AE02.roa (hash: ye2w1MU0xLNOAhuqrYhDu4NrB2vk1m6TjmRZeLmnbh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:14:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2224 (0x8b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7ED9, serialNumber=CF668374EC75AB5CACD2EA730515F7B7764DD921 Validity Not Before: Mar 24 20:14:26 2026 GMT Not After : Mar 31 20:14:26 2026 GMT Subject: CN=69c2f0a3-1a44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:4f:9c:92:dd:c9:2c:1f:26:a9:a9:33:cc:34: 36:99:a6:ad:45:68:2a:51:b3:58:43:87:a1:0c:9a: 20:e3:57:24:fd:37:03:7e:79:3a:cf:2d:cb:9e:00: 68:c2:4e:ea:41:dd:44:3b:b3:88:14:64:b1:26:f2: 19:71:d9:d4:b2:6e:a1:d0:54:5d:52:a6:4a:3c:7b: 53:9e:42:90:44:1e:97:f1:a2:84:95:19:b5:fd:bb: 46:db:7a:80:18:18:be:93:ac:90:0b:ca:a6:ef:df: a1:24:e5:86:70:e4:bc:98:8f:f5:ba:44:74:c2:7a: 8f:48:ff:c7:ee:ad:f9:92:81:02:f7:31:60:a2:34: c9:78:81:c6:24:e3:a2:11:a5:24:6e:26:b7:91:3f: 28:c3:04:a5:26:3e:4a:8e:18:b1:b7:07:0f:0e:79: 0f:fa:e6:fd:db:72:f5:23:8b:e4:af:04:64:dc:f8: 19:e0:08:cc:7d:0e:86:85:40:f3:84:d3:58:01:ad: e2:16:49:43:55:05:3c:3a:20:65:4d:88:dd:ef:32: 1f:96:ed:ee:a5:18:e8:15:24:44:5f:d7:a8:cf:2f: 81:b4:5a:f5:2c:9d:f3:59:3a:06:56:86:33:32:cb: bb:db:67:92:e3:e0:b4:db:52:94:6e:9e:52:28:10: 5d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:A1:AF:DE:BC:5A:52:D4:D6:CB:FD:10:36:14:88:59:58:9D:81:7D X509v3 Authority Key Identifier: keyid:CF:66:83:74:EC:75:AB:5C:AC:D2:EA:73:05:15:F7:B7:76:4D:D9:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:e2:be:a8:d4:c3:cd:66:6e:6f:cd:1c:62:f1:d6:29:f4:91: e5:80:b0:61:00:27:7c:89:86:0a:73:c6:49:42:61:f4:b7:b0: 65:e2:90:b8:8f:e1:aa:ed:a2:85:e6:42:43:dd:e7:79:5b:22: ef:09:81:4f:89:e0:7c:11:e7:01:87:0e:22:de:5b:08:f6:6f: 25:9e:54:db:52:6b:42:1d:3a:39:c9:aa:7b:03:b5:95:68:19: 2b:0e:3e:fd:fc:e8:1f:1d:ca:cb:a1:c5:53:52:ae:24:d4:f4: 5a:75:ee:95:89:6c:9c:e6:ed:aa:6e:ca:86:f9:3c:90:24:2a: 60:f3:fa:7d:81:2a:bd:50:ab:1d:52:7f:01:5f:83:06:f8:08: 4c:61:c0:c2:d6:79:a3:77:2e:6a:40:49:bd:cb:29:de:c4:c7: aa:51:ba:3f:38:08:e4:54:7c:09:71:4d:af:d9:bb:6c:b0:77: dc:a5:ab:84:3d:0c:d7:63:3a:55:b6:3a:6a:be:da:ad:cf:da: 45:50:4e:2f:45:0e:e0:f5:0d:15:0b:8d:16:26:b9:97:cd:b8: 76:05:00:2a:94:01:8c:c4:ae:f2:25:d7:ce:a2:53:8f:0e:3a: 42:45:c1:8e:84:af:bf:a6:b6:fc:46:a8:ea:1a:67:46:96:98: 77:9c:0f:50 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFRDkxMTAvBgNVBAUTKENGNjY4Mzc0RUM3NUFCNUNBQ0QyRUE3MzA1MTVGN0I3 NzY0REQ5MjEwHhcNMjYwMzI0MjAxNDI2WhcNMjYwMzMxMjAxNDI2WjAYMRYwFAYD VQQDEw02OWMyZjBhMy0xYTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAik+ckt3JLB8mqakzzDQ2maatRWgqUbNYQ4ehDJog41ck/TcDfnk6zy3LngBo wk7qQd1EO7OIFGSxJvIZcdnUsm6h0FRdUqZKPHtTnkKQRB6X8aKElRm1/btG23qA GBi+k6yQC8qm79+hJOWGcOS8mI/1ukR0wnqPSP/H7q35koEC9zFgojTJeIHGJOOi EaUkbia3kT8owwSlJj5KjhixtwcPDnkP+ub923L1I4vkrwRk3PgZ4AjMfQ6GhUDz hNNYAa3iFklDVQU8OiBlTYjd7zIflu3upRjoFSREX9eozy+BtFr1LJ3zWToGVoYz Msu722eS4+C021KUbp5SKBBdlwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIehr968 WlLU1sv9EDYUiFlYnYF9MB8GA1UdIwQYMBaAFM9mg3TsdatcrNLqcwUV97d2Tdkh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0VEOS9GOEUwQjNCMkRC QTIxMUVBQTg4RjIwNjZDNEY5QUUwMi96MmFEZE94MXExeXMwdXB6QlJYM3QzWk4y U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3oyYURkT3gxcTF5czB1cHpCUlgzdDNaTjJTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0VEOS9GOEUwQjNCMkRCQTIxMUVBQTg4RjIwNjZDNEY5QUUwMi96MmFEZE94MXEx eXMwdXB6QlJYM3QzWk4yU0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAQeK+qNTDzWZub80cYvHWKfSR5YCwYQAnfImGCnPGSUJh9LewZeKQuI/hqu2i heZCQ93neVsi7wmBT4ngfBHnAYcOIt5bCPZvJZ5U21JrQh06OcmqewO1lWgZKw4+ /fzoHx3Ky6HFU1KuJNT0WnXulYlsnObtqm7Khvk8kCQqYPP6fYEqvVCrHVJ/AV+D BvgITGHAwtZ5o3cuakBJvcsp3sTHqlG6PzgI5FR8CXFNr9m7bLB33KWrhD0M12M6 VbY6ar7arc/aRVBOL0UO4PUNFQuNFia5l824dgUAKpQBjMSu8iXXzqJTjw46QkXB joSvv6a2/Eao6hpnRpaYd5wPUA== -----END CERTIFICATE-----Generated at Thu Mar 26 02:38:11 2026 by rpki-client