$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: 8/yk0EU5TKe+nboMfaP20kUqqRe4H/deQIGzrx3Lx64= Subject key identifier: 2E:A7:B0:7C:01:E3:0C:22:B3:43:77:21:7E:9D:A3:7C:A7:02:0D:2B Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0D28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0D1F Signing time: Thu 26 Mar 2026 18:01:02 +0000 Manifest this update: Thu 26 Mar 2026 18:01:01 +0000 Manifest next update: Thu 02 Apr 2026 18:01:01 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: 7dUuK3l3HageYmUJOCAEeQRbL0ujyQF4hJ0XHoyVjrk=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: M4C8jEhIls7w2dv7sJFlagnJmuYCA5HtYmJCzU8Vk+c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3368 (0xd28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0, serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: Mar 26 18:01:01 2026 GMT Not After : Apr 2 18:01:01 2026 GMT Subject: CN=69c5745e-404c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:69:40:87:39:e5:36:0d:8c:6a:cc:59:27:74: b5:a4:d5:ac:28:97:7b:60:a8:fe:5e:ca:76:a8:d2: c2:49:2d:87:b9:02:94:ca:8e:8e:a6:3b:b0:41:35: 3e:cf:b3:23:ab:ec:67:f6:80:5f:a8:64:72:ab:01: 17:98:ef:a7:10:e1:b8:6e:0d:22:bf:ae:e7:70:1a: 91:cc:06:fd:52:f5:5e:aa:0d:84:a9:c1:3b:01:c0: 2b:c9:79:cb:e1:7b:3b:81:4b:82:84:81:ff:63:5e: ce:54:e1:f1:da:ad:c0:7d:3c:ff:92:db:0c:a0:fa: 02:b2:bc:8c:ad:dc:f7:b7:00:f3:7c:9c:07:eb:ec: 67:ac:de:ff:7f:dc:44:55:c4:97:11:db:91:f9:84: fa:c7:05:32:4d:20:c2:30:8b:9f:18:31:72:89:93: 4b:1a:ab:54:37:7f:84:e1:29:66:47:0e:91:e2:29: fe:84:cf:fd:b7:fb:1a:65:ef:0e:65:3a:7a:13:fa: ae:b7:d7:f7:93:53:3a:5c:76:66:37:6c:f2:68:41: ca:43:35:44:71:d0:8c:69:f2:60:c3:3a:24:ed:82: 63:93:c7:1a:d1:07:34:76:ef:b7:11:77:69:73:77: b9:7d:b7:62:65:fa:f2:75:96:ec:56:a4:e2:65:1d: 07:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:A7:B0:7C:01:E3:0C:22:B3:43:77:21:7E:9D:A3:7C:A7:02:0D:2B X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:96:37:6f:00:b0:e8:c2:fd:9b:1f:04:d8:93:b6:14:da:1f: dc:16:64:b5:93:a3:16:9a:84:e0:1e:03:68:f4:18:24:4e:25: 64:a6:13:42:9e:ea:03:2b:62:95:5d:c1:ef:ef:f9:02:6d:28: 79:c3:74:e6:1b:a7:61:2c:bb:a8:8d:7f:fd:0c:92:73:17:3d: b2:1d:e2:c4:82:ed:f1:70:22:45:fd:39:23:d9:6d:fe:da:f1: 5d:70:79:b9:cb:de:7d:5d:0f:ec:1b:67:19:da:e9:48:f4:bb: 54:09:41:f9:b9:3f:85:46:4b:cc:2f:fa:a5:0d:df:c2:76:b8: ca:4c:cf:39:d1:fd:a8:58:62:67:12:4b:d6:77:da:8a:ba:b6: 54:67:2c:b2:76:53:6a:fa:5c:bd:17:49:c5:4a:a8:1f:41:2b: 05:45:f0:83:04:4c:04:aa:aa:01:56:fa:32:e8:99:87:c0:58: fb:22:35:39:50:ab:11:d1:00:fe:e9:8b:71:b4:22:c1:5e:97: 5c:10:84:66:c4:a6:4e:22:c9:b3:b6:f9:f2:45:c6:fc:1b:c2: d4:95:fb:39:f1:4b:7b:36:33:24:20:1f:01:9f:08:ec:65:45: 3f:cf:15:0c:0d:bc:60:a9:e4:e4:b4:72:02:a3:56:dd:f9:6e: 95:60:0f:4e -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjYwMzI2MTgwMTAxWhcNMjYwNDAyMTgwMTAxWjAYMRYwFAYD VQQDEw02OWM1NzQ1ZS00MDRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6GlAhznlNg2MasxZJ3S1pNWsKJd7YKj+Xsp2qNLCSS2HuQKUyo6OpjuwQTU+ z7Mjq+xn9oBfqGRyqwEXmO+nEOG4bg0iv67ncBqRzAb9UvVeqg2EqcE7AcAryXnL 4Xs7gUuChIH/Y17OVOHx2q3AfTz/ktsMoPoCsryMrdz3twDzfJwH6+xnrN7/f9xE VcSXEduR+YT6xwUyTSDCMIufGDFyiZNLGqtUN3+E4SlmRw6R4in+hM/9t/saZe8O ZTp6E/qut9f3k1M6XHZmN2zyaEHKQzVEcdCMafJgwzok7YJjk8ca0Qc0du+3EXdp c3e5fbdiZfrydZbsVqTiZR0HPwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC6nsHwB 4wwis0N3IX6do3ynAg0rMB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaJY3bwCw6ML9mx8E2JO2FNof3BZktZOjFpqE4B4DaPQYJE4lZKYTQp7qAyti lV3B7+/5Am0oecN05hunYSy7qI1//QyScxc9sh3ixILt8XAiRf05I9lt/trxXXB5 ucvefV0P7BtnGdrpSPS7VAlB+bk/hUZLzC/6pQ3fwna4ykzPOdH9qFhiZxJL1nfa irq2VGcssnZTavpcvRdJxUqoH0ErBUXwgwRMBKqqAVb6MuiZh8BY+yI1OVCrEdEA /umLcbQiwV6XXBCEZsSmTiLJs7b58kXG/BvC1JX7OfFLezYzJCAfAZ8I7GVFP88V DA28YKnk5LRyAqNW3flulWAPTg== -----END CERTIFICATE-----Generated at Thu Mar 26 22:29:25 2026 by rpki-client