$ rpki-client -vvf rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft File: zlgHMAQJCIdOtirydgUp51w9XGg.mft (raw, json) Hash identifier: dqHHjll3vBAaYCTqMaKOptE7dxrPdBN2CIkoOEHZ5cM= Subject key identifier: 2B:7C:96:6C:44:DF:99:4B:25:BB:69:9C:AA:8C:A7:E8:51:08:1A:CB Authority key identifier: CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68 Certificate issuer: /CN=A91E89CD/serialNumber=CE580730040908874EB62AF2760529E75C3D5C68 Certificate serial: 098D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft Manifest number: 0978 Signing time: Tue 24 Mar 2026 19:50:49 +0000 Manifest this update: Tue 24 Mar 2026 19:50:49 +0000 Manifest next update: Tue 31 Mar 2026 19:50:49 +0000 Files and hashes: 1: zlgHMAQJCIdOtirydgUp51w9XGg.crl (hash: 4TrQ7NvishNQ0NafWdUvefs5lTEu3QDJw/Qj1CKfHLM=) 2: D3ECF4B8E61D11EBB92C167BC4F9AE02.roa (hash: JpJW44EKjdDGS9i2UbNxoq47VGQn3OM7oBb7lk+F9fo=) 3: 8698CD28A42211EB91621734C4F9AE02.roa (hash: QYOZ1apbmHEgFA/KTyiwZS4fSNem6E5RLUuLMFBIYIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2445 (0x98d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E89CD, serialNumber=CE580730040908874EB62AF2760529E75C3D5C68 Validity Not Before: Mar 24 19:50:49 2026 GMT Not After : Mar 31 19:50:49 2026 GMT Subject: CN=69c2eb19-2ab4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:03:b1:3f:05:6d:e8:4d:b0:e1:39:f4:f0:6c: 78:33:5b:6b:f6:ab:bd:66:ca:6d:84:b7:b9:b6:bb: 5b:76:d3:ea:83:32:d6:ac:22:21:9f:37:02:b2:b4: 5c:b1:ba:58:c7:d1:f4:c0:06:ce:80:34:10:c5:bb: a2:8b:f7:f7:c5:90:e5:b5:a4:29:58:c2:e1:41:ba: a9:6d:98:97:57:82:04:a4:c4:8b:b1:f6:b4:50:5c: 9d:50:af:b3:5a:51:f0:fd:83:dc:e5:dc:ba:be:a0: d4:f0:e2:3a:ef:f1:8f:1b:ab:04:12:21:28:2d:05: 61:38:99:c1:22:66:2b:ad:d3:ed:95:31:12:99:42: 68:6c:40:02:bc:f2:16:c4:4f:81:ad:59:2d:38:53: 3e:67:bb:0b:e1:1d:e6:8e:22:40:31:9f:a2:ed:65: f1:b2:2f:8c:74:8c:4a:16:15:83:f5:00:e6:57:74: 52:1c:24:98:3e:57:3e:b8:8b:88:af:69:c0:d1:72: 36:43:04:67:db:63:4b:8a:9d:19:c5:f8:8b:1b:20: 18:6c:88:c2:2b:77:8c:e5:29:5f:b3:ae:eb:cb:07: c1:12:a6:9c:a9:e1:9d:1b:98:b9:29:c8:43:da:e5: 92:a2:21:9b:3b:32:45:31:45:f5:7d:45:a6:96:4e: f1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:7C:96:6C:44:DF:99:4B:25:BB:69:9C:AA:8C:A7:E8:51:08:1A:CB X509v3 Authority Key Identifier: keyid:CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:ac:35:7e:3b:e2:d1:4e:da:d8:b6:0a:3a:e3:d6:ec:2c:b0: e0:42:7e:c9:a8:ad:37:34:b6:bc:41:d5:ca:c9:50:9b:9f:ec: 64:e6:7b:89:61:1c:74:76:18:d5:1c:7e:47:db:47:a7:cb:5c: 84:ef:2f:47:d6:7c:3d:a5:8d:41:b0:6c:47:ab:a3:08:cc:27: 60:18:e1:3b:75:44:1f:55:80:e7:3e:90:e7:4a:96:fb:3e:20: b7:b4:4b:c0:8f:3e:4a:ba:bd:92:d8:12:9a:60:3c:68:50:be: 61:0f:5c:60:08:82:e4:18:4f:d0:dd:eb:25:db:6d:15:0f:91: b5:1b:68:d9:fb:ed:49:f2:22:66:76:e6:58:08:83:fe:ca:81: 54:e8:cb:bb:5f:12:60:43:0a:d8:44:bc:a4:a5:63:5e:3b:b0: 4e:65:f5:fb:bf:34:f6:bd:96:c4:64:eb:c3:33:74:83:34:8b: 80:14:ed:43:15:cd:b0:52:3b:9a:f2:97:cd:1c:03:ba:bd:14: 82:df:60:29:04:e7:19:9b:2e:e6:48:1a:2a:21:a8:2b:ba:25: 79:7b:e3:bf:14:a3:6b:e2:45:7c:87:b4:eb:ec:55:86:8a:5f: 8d:74:d8:18:2f:35:50:31:4a:47:73:97:02:bc:ee:c8:7d:c3: 5a:5c:81:66 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg5Q0QxMTAvBgNVBAUTKENFNTgwNzMwMDQwOTA4ODc0RUI2MkFGMjc2MDUyOUU3 NUMzRDVDNjgwHhcNMjYwMzI0MTk1MDQ5WhcNMjYwMzMxMTk1MDQ5WjAYMRYwFAYD VQQDEw02OWMyZWIxOS0yYWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkgOxPwVt6E2w4Tn08Gx4M1tr9qu9ZspthLe5trtbdtPqgzLWrCIhnzcCsrRc sbpYx9H0wAbOgDQQxbuii/f3xZDltaQpWMLhQbqpbZiXV4IEpMSLsfa0UFydUK+z WlHw/YPc5dy6vqDU8OI67/GPG6sEEiEoLQVhOJnBImYrrdPtlTESmUJobEACvPIW xE+BrVktOFM+Z7sL4R3mjiJAMZ+i7WXxsi+MdIxKFhWD9QDmV3RSHCSYPlc+uIuI r2nA0XI2QwRn22NLip0ZxfiLGyAYbIjCK3eM5Slfs67rywfBEqacqeGdG5i5KchD 2uWSoiGbOzJFMUX1fUWmlk7xHQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFCt8lmxE 35lLJbtpnKqMp+hRCBrLMB8GA1UdIwQYMBaAFM5YBzAECQiHTrYq8nYFKedcPVxo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODlDRC8zQzBENEExNkIw NTUxMUVBQTA0NUI4MEVDNEY5QUUwMi96bGdITUFRSkNJZE90aXJ5ZGdVcDUxdzlY R2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3psZ0hNQVFKQ0lkT3RpcnlkZ1VwNTF3OVhHZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODlDRC8zQzBENEExNkIwNTUxMUVBQTA0NUI4MEVDNEY5QUUwMi96bGdITUFRSkNJ ZE90aXJ5ZGdVcDUxdzlYR2cubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeqw1fjvi0U7a2LYKOuPW7Cyw4EJ+yaitNzS2vEHVyslQm5/sZOZ7iWEcdHYY 1Rx+R9tHp8tchO8vR9Z8PaWNQbBsR6ujCMwnYBjhO3VEH1WA5z6Q50qW+z4gt7RL wI8+Srq9ktgSmmA8aFC+YQ9cYAiC5BhP0N3rJdttFQ+RtRto2fvtSfIiZnbmWAiD /sqBVOjLu18SYEMK2ES8pKVjXjuwTmX1+7809r2WxGTrwzN0gzSLgBTtQxXNsFI7 mvKXzRwDur0Ugt9gKQTnGZsu5kgaKiGoK7oleXvjvxSja+JFfIe06+xVhopfjXTY GC81UDFKR3OXArzuyH3DWlyBZg== -----END CERTIFICATE-----Generated at Thu Mar 26 04:27:08 2026 by rpki-client