$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft File: zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft (raw, json) Hash identifier: ACO2BeYPnrJRDzsi2aj9cQpu2u0EyJn/Av1qnxrYYxw= Subject key identifier: 15:01:E2:4B:D8:A8:FC:66:75:6A:4F:2F:3B:9F:1C:DB:DB:48:E6:D7 Authority key identifier: CC:54:19:C8:A7:8B:CD:53:AD:17:1C:5B:74:A4:07:1D:95:39:50:49 Certificate issuer: /CN=A91ED8E0/serialNumber=CC5419C8A78BCD53AD171C5B74A4071D95395049 Certificate serial: 096A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft Manifest number: 0950 Signing time: Tue 24 Mar 2026 19:55:41 +0000 Manifest this update: Tue 24 Mar 2026 19:55:40 +0000 Manifest next update: Tue 31 Mar 2026 19:55:40 +0000 Files and hashes: 1: zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl (hash: d4YUKU1OBzKxZX+5KxxFwOYehAKJwGBs6cLQL4PStbc=) 2: 2BEC62FA5DA011EF8E541175C4F9AE02.roa (hash: PDPdfJs3Sp/L4O6BvH4/f/PfyDghykuDm6tMTYKRkIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:55:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2410 (0x96a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED8E0, serialNumber=CC5419C8A78BCD53AD171C5B74A4071D95395049 Validity Not Before: Mar 24 19:55:40 2026 GMT Not After : Mar 31 19:55:40 2026 GMT Subject: CN=69c2ec3c-72ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8b:3f:ad:24:36:53:5f:99:57:f9:71:cb:e9: d1:9d:09:5b:27:ec:33:cf:93:69:f0:21:06:1c:e5: c6:32:ec:c4:a7:44:b5:fe:3f:dd:5f:c8:de:2d:43: 89:80:9b:7a:ca:fb:9b:04:ad:d6:3d:26:22:ed:de: 2d:e0:38:2a:8f:e9:40:8b:9f:1b:54:88:91:6c:ee: 6a:b1:6c:3b:a7:b2:47:44:b0:a4:31:2e:7c:68:cd: 5f:48:d5:a7:73:09:c4:25:41:d3:90:65:f1:8c:ca: 7e:ae:6d:0d:32:98:b4:71:c1:bb:b6:e7:37:6f:95: e8:f8:87:02:a0:dc:4d:a4:55:c0:0a:a5:7a:a7:36: 07:a4:ec:56:ed:3a:64:04:87:ca:61:b6:94:fa:43: 3d:54:44:66:9f:b1:1a:f6:fb:1f:e9:d7:b8:21:f9: b2:c6:aa:bc:8c:82:a1:e4:09:00:c1:8a:bd:4b:12: 1f:78:50:f3:29:e0:2b:4c:93:5d:5e:90:e8:da:c6: f8:d2:e8:d3:e0:17:8d:82:21:eb:1f:45:95:fd:d5: 64:5b:46:1d:9c:1d:a5:66:31:09:8e:51:52:7d:24: 4d:ec:5e:8a:8d:b7:f8:07:31:be:46:30:49:93:65: f4:ce:27:6c:9a:2f:6a:63:f5:72:f8:ae:b5:66:d9: 5a:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:01:E2:4B:D8:A8:FC:66:75:6A:4F:2F:3B:9F:1C:DB:DB:48:E6:D7 X509v3 Authority Key Identifier: keyid:CC:54:19:C8:A7:8B:CD:53:AD:17:1C:5B:74:A4:07:1D:95:39:50:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:e1:2b:ac:d3:e0:1b:50:3b:04:5d:6c:9e:50:6c:b6:4d:89: ce:81:d9:3f:12:35:65:c8:2d:13:15:72:7e:c6:9d:ce:59:1f: 0a:ab:3b:f7:32:b6:b6:2b:b4:4d:4a:54:ae:49:ec:2f:fa:06: 62:76:02:65:9e:36:24:43:e5:f9:45:9f:0b:dc:ab:98:f0:66: c8:cc:1b:74:cb:2b:6c:93:cf:87:2c:1a:6c:80:f0:2e:e2:ff: 46:b1:77:77:8d:85:25:52:68:bd:ec:04:a9:4b:be:f1:11:33: 76:e0:10:af:00:d8:a3:9d:8c:f9:eb:a2:87:5b:b2:79:c9:9d: 38:9f:a3:f8:c0:44:3f:33:5c:9c:67:a0:77:87:1d:c2:ea:a2: 83:c3:42:a8:1b:2f:8e:19:27:55:42:3b:d8:47:96:ff:d7:65: 4c:83:28:99:61:1c:0e:7a:21:d2:ee:42:e5:81:4b:3e:be:9d: 53:23:26:5a:2f:f1:9e:29:c9:a7:01:d9:20:45:af:98:34:e2: 62:45:cf:63:f6:b0:b3:e0:2d:82:81:94:4b:0c:dd:66:14:17: 41:de:e4:22:18:b7:f9:ad:38:50:0c:c9:c4:ed:42:14:52:95: 0f:76:df:61:d5:3e:35:34:ac:49:8c:e7:df:5a:29:68:4a:79: c5:45:95:99 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICCWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ4RTAxMTAvBgNVBAUTKENDNTQxOUM4QTc4QkNENTNBRDE3MUM1Qjc0QTQwNzFE OTUzOTUwNDkwHhcNMjYwMzI0MTk1NTQwWhcNMjYwMzMxMTk1NTQwWjAYMRYwFAYD VQQDEw02OWMyZWMzYy03MmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYs/rSQ2U1+ZV/lxy+nRnQlbJ+wzz5Np8CEGHOXGMuzEp0S1/j/dX8jeLUOJ gJt6yvubBK3WPSYi7d4t4Dgqj+lAi58bVIiRbO5qsWw7p7JHRLCkMS58aM1fSNWn cwnEJUHTkGXxjMp+rm0NMpi0ccG7tuc3b5Xo+IcCoNxNpFXACqV6pzYHpOxW7Tpk BIfKYbaU+kM9VERmn7Ea9vsf6de4Ifmyxqq8jIKh5AkAwYq9SxIfeFDzKeArTJNd XpDo2sb40ujT4BeNgiHrH0WV/dVkW0YdnB2lZjEJjlFSfSRN7F6Kjbf4BzG+RjBJ k2X0zidsmi9qY/Vy+K61ZtlaGQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBUB4kvY qPxmdWpPLzufHNvbSObXMB8GA1UdIwQYMBaAFMxUGcini81TrRccW3SkBx2VOVBJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDhFMC9FRTJENTMyNkI5 NDcxMUVBOEE2NDlFNzZDNEY5QUUwMi96RlFaeUtlTHpWT3RGeHhiZEtRSEhaVTVV RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGUVp5S2VMelZPdEZ4eGJkS1FISFpVNVVFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDhFMC9FRTJENTMyNkI5NDcxMUVBOEE2NDlFNzZDNEY5QUUwMi96RlFaeUtlTHpW T3RGeHhiZEtRSEhaVTVVRWsubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAT+ErrNPgG1A7BF1snlBstk2JzoHZPxI1ZcgtExVyfsadzlkfCqs79zK2tiu0 TUpUrknsL/oGYnYCZZ42JEPl+UWfC9yrmPBmyMwbdMsrbJPPhywabIDwLuL/RrF3 d42FJVJovewEqUu+8REzduAQrwDYo52M+euih1uyecmdOJ+j+MBEPzNcnGegd4cd wuqig8NCqBsvjhknVUI72EeW/9dlTIMomWEcDnoh0u5C5YFLPr6dUyMmWi/xninJ pwHZIEWvmDTiYkXPY/aws+AtgoGUSwzdZhQXQd7kIhi3+a04UAzJxO1CFFKVD3bf YdU+NTSsSYzn31opaEp5xUWVmQ== -----END CERTIFICATE-----Generated at Thu Mar 26 18:25:14 2026 by rpki-client