$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft File: zdfMWZTjQE5sI66UKlkhi1fFwTE.mft (raw, json) Hash identifier: p1NIEQdSlBb1gpEA2xl59ghVAxXlGnphmDPIxRm+jj8= Subject key identifier: C4:56:27:FB:F2:33:47:84:4E:DD:AB:DF:DB:51:A0:3B:B5:46:F1:2B Authority key identifier: CD:D7:CC:59:94:E3:40:4E:6C:23:AE:94:2A:59:21:8B:57:C5:C1:31 Certificate issuer: /CN=A91EA6A1/serialNumber=CDD7CC5994E3404E6C23AE942A59218B57C5C131 Certificate serial: 0225 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft Manifest number: 0213 Signing time: Wed 25 Mar 2026 02:17:37 +0000 Manifest this update: Wed 25 Mar 2026 02:17:36 +0000 Manifest next update: Wed 01 Apr 2026 02:17:36 +0000 Files and hashes: 1: zdfMWZTjQE5sI66UKlkhi1fFwTE.crl (hash: KfV6qMAnmH6lDDjD+nEsK12EKoyP0ox3OZNJyrl9vzc=) 2: 1D45B78003C211EEB2272068C4F9AE02.roa (hash: C3/n/+v8kI1L85XbnP1WA7ETUgCOUM9dKDiIQ1P+/Ys=) 3: 1DDE652A03C211EEB2272068C4F9AE02.roa (hash: llFnAd4PvWtf3MG4Cdslgb2xYToNMlGGxLhDUepbhB0=) 4: 1E7F6B9603C211EEB2272068C4F9AE02.roa (hash: 63/+lesN0/eCHS2MKvIDobrmNwR0+nGA552s4bk+OsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.crl rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:17:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 549 (0x225) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA6A1, serialNumber=CDD7CC5994E3404E6C23AE942A59218B57C5C131 Validity Not Before: Mar 25 02:17:36 2026 GMT Not After : Apr 1 02:17:36 2026 GMT Subject: CN=69c345c0-f677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:52:03:31:36:48:00:b0:c2:2e:e4:51:0d:f9: f2:0b:31:7a:e5:1e:c3:07:5f:d0:15:25:fe:c1:f3: 0b:a1:08:d2:ca:cb:66:fe:b8:b3:b1:2e:f6:0a:20: 71:4c:fc:d4:9e:03:eb:a3:29:d3:22:db:03:a1:48: 76:de:98:4d:a5:18:1b:fa:b8:83:0b:cc:e6:67:c1: b6:8d:70:1d:ed:eb:08:8b:e6:92:0d:be:74:b9:10: 99:83:a0:0e:76:92:50:9d:9b:ac:f1:a6:7c:5d:5d: 0c:3e:0c:50:31:80:42:7c:8b:f0:5e:d3:4c:2c:fe: 49:b9:84:78:cb:b8:94:30:bf:c3:83:77:52:ba:ca: 43:d2:21:66:6b:26:6b:01:44:52:b2:8e:c1:0d:70: 70:31:6c:e3:08:65:2e:db:42:21:4f:25:cb:86:04: ab:66:48:a3:e8:5a:ed:70:33:21:69:ca:35:fd:ad: 08:3f:d9:8f:b4:8e:2a:4c:f1:2e:68:9f:02:e1:bf: 1a:7d:2e:99:a0:b2:a7:3e:10:56:95:f2:8a:83:f2: 4e:b1:5c:2e:fc:a0:29:52:1f:ef:9f:87:27:54:e0: e3:27:1d:5f:bc:41:54:e7:e0:68:5a:f3:5b:55:98: 63:9a:e7:e2:7f:37:21:b2:15:b4:ff:c2:bc:e5:7c: f0:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:56:27:FB:F2:33:47:84:4E:DD:AB:DF:DB:51:A0:3B:B5:46:F1:2B X509v3 Authority Key Identifier: keyid:CD:D7:CC:59:94:E3:40:4E:6C:23:AE:94:2A:59:21:8B:57:C5:C1:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d6:7d:d5:bf:e6:8a:f4:53:8b:dc:60:5b:37:c8:a2:79:de:86: 57:9c:e1:e0:fb:b8:64:24:fb:f1:6d:07:bc:49:6f:d3:e3:04: 4a:ce:c9:40:8e:75:d4:d9:21:17:9b:5c:b6:e4:cb:df:3d:af: 7d:78:0a:87:19:b3:ae:a1:d6:5b:46:f9:5d:95:b6:bb:17:2e: f6:84:6a:49:cf:f6:40:09:c3:c9:e3:ed:c6:41:3a:f0:ec:c7: 36:19:ae:dd:0c:09:e1:91:96:19:4c:73:30:41:9a:52:ad:06: bc:57:20:25:78:54:26:39:09:6e:ed:35:bb:ed:e1:30:41:68: 5c:5f:24:40:0e:34:db:66:f0:0b:d4:35:42:e6:7f:1b:fc:f6: 75:7a:83:30:c4:f9:0a:b1:e0:80:87:ea:c9:28:a3:07:df:dd: 54:2a:a6:e8:58:2c:b1:ee:f0:ca:8b:75:55:e9:89:1f:04:53: 42:35:ed:5a:a0:fe:9a:26:23:6d:75:58:25:14:38:90:cc:21: 07:8a:9e:82:f3:13:68:4f:f9:ae:1c:64:8d:60:63:6f:62:3d: 9a:ea:89:c1:21:02:db:06:2f:cc:5b:e4:01:1a:d7:0c:c9:cb: 1a:c0:9e:e5:17:d5:b2:67:1a:29:a1:85:fb:31:bc:5b:8f:5d: e3:c2:ee:19 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2QTExMTAvBgNVBAUTKENERDdDQzU5OTRFMzQwNEU2QzIzQUU5NDJBNTkyMThC NTdDNUMxMzEwHhcNMjYwMzI1MDIxNzM2WhcNMjYwNDAxMDIxNzM2WjAYMRYwFAYD VQQDEw02OWMzNDVjMC1mNjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplIDMTZIALDCLuRRDfnyCzF65R7DB1/QFSX+wfMLoQjSystm/rizsS72CiBx TPzUngProynTItsDoUh23phNpRgb+riDC8zmZ8G2jXAd7esIi+aSDb50uRCZg6AO dpJQnZus8aZ8XV0MPgxQMYBCfIvwXtNMLP5JuYR4y7iUML/Dg3dSuspD0iFmayZr AURSso7BDXBwMWzjCGUu20IhTyXLhgSrZkij6FrtcDMhaco1/a0IP9mPtI4qTPEu aJ8C4b8afS6ZoLKnPhBWlfKKg/JOsVwu/KApUh/vn4cnVODjJx1fvEFU5+BoWvNb VZhjmufifzchshW0/8K85Xzw8wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFMRWJ/vy M0eETt2r39tRoDu1RvErMB8GA1UdIwQYMBaAFM3XzFmU40BObCOulCpZIYtXxcEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTZBMS8zMTVCN0UwOEZG N0IxMUVEQTYyREYxMEVDNEY5QUUwMi96ZGZNV1pUalFFNXNJNjZVS2xraGkxZkZ3 VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pkZk1XWlRqUUU1c0k2NlVLbGtoaTFmRndURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTZBMS8zMTVCN0UwOEZGN0IxMUVEQTYyREYxMEVDNEY5QUUwMi96ZGZNV1pUalFF NXNJNjZVS2xraGkxZkZ3VEUubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA1n3Vv+aK9FOL3GBbN8iied6GV5zh4Pu4ZCT78W0HvElv0+MESs7JQI511Nkh F5tctuTL3z2vfXgKhxmzrqHWW0b5XZW2uxcu9oRqSc/2QAnDyePtxkE68OzHNhmu 3QwJ4ZGWGUxzMEGaUq0GvFcgJXhUJjkJbu01u+3hMEFoXF8kQA4022bwC9Q1QuZ/ G/z2dXqDMMT5CrHggIfqySijB9/dVCqm6Fgsse7wyot1VemJHwRTQjXtWqD+miYj bXVYJRQ4kMwhB4qegvMTaE/5rhxkjWBjb2I9muqJwSEC2wYvzFvkARrXDMnLGsCe 5RfVsmcaKaGF+zG8W49d48LuGQ== -----END CERTIFICATE-----Generated at Thu Mar 26 16:29:53 2026 by rpki-client