$ rpki-client -vvf rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft File: ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft (raw, json) Hash identifier: HKaYr1PG6lFaYk/QglUjDCv45YACV2OPjrhExjerBNE= Subject key identifier: 6B:B8:B6:1A:ED:A5:A1:36:58:B0:CF:00:58:01:F5:33:15:0A:1E:41 Authority key identifier: 64:CC:C1:66:C5:8C:38:FE:8C:C1:97:6F:5C:F0:7C:1D:D0:6F:68:14 Certificate issuer: /CN=A91F09FE/serialNumber=64CCC166C58C38FE8CC1976F5CF07C1DD06F6814 Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft Manifest number: 0104 Signing time: Wed 25 Mar 2026 05:16:43 +0000 Manifest this update: Wed 25 Mar 2026 05:16:43 +0000 Manifest next update: Wed 01 Apr 2026 05:16:43 +0000 Files and hashes: 1: ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.crl (hash: kT8o17NdCquGhJoeK0uw618vMrA/ea+T4dmH3Y/Gf2s=) 2: 841585749B1211EFBFBF913CC4F9AE02.roa (hash: gdDMQEhJKbqQYoRrpzaidx3PSUdHajAqC/+MOePDuxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.crl rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:16:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F09FE, serialNumber=64CCC166C58C38FE8CC1976F5CF07C1DD06F6814 Validity Not Before: Mar 25 05:16:43 2026 GMT Not After : Apr 1 05:16:43 2026 GMT Subject: CN=69c36fbb-980b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d4:6a:ae:fe:2a:3b:9a:dd:f6:89:3b:d6:e9: c1:c2:75:f1:c0:8e:45:4a:e9:20:66:e4:28:70:e7: 5c:91:85:4e:2b:10:fc:60:4e:ff:21:6d:b4:eb:1b: 8c:7e:cf:e3:83:20:56:49:d8:ee:af:90:0f:75:b8: 50:63:5e:64:2b:26:b8:72:85:d6:05:45:48:f1:39: fb:9b:ba:24:f7:99:83:e8:25:b7:bc:00:24:81:92: 4a:37:70:09:02:d8:de:c2:6a:0f:cd:cc:73:fe:81: 32:74:6a:3c:e4:cc:5b:43:9d:03:f8:a0:fd:28:b1: b4:fe:c3:92:d1:9e:3a:63:fb:bc:e6:ed:d2:c3:7c: 8a:fc:85:d1:b0:d0:be:88:22:11:15:a8:95:41:32: f6:36:cf:f6:f7:66:c6:a5:48:1b:0e:3c:ee:1f:2b: c8:bb:79:84:af:df:36:92:f8:3a:b1:af:c0:b1:68: 9d:b3:81:d5:6b:7e:f8:cd:3f:e9:25:d6:8b:8e:00: 88:15:28:c4:cd:a8:cc:ec:8e:f2:92:fd:66:f8:4a: 54:9d:76:34:a7:ce:e3:1c:77:9c:59:e2:5d:4f:a7: b1:cc:b0:4f:bf:a5:dc:82:21:ec:19:89:c4:40:03: 54:9b:2d:a7:f1:b9:9b:98:17:06:2e:2e:ba:4b:0d: 22:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:B8:B6:1A:ED:A5:A1:36:58:B0:CF:00:58:01:F5:33:15:0A:1E:41 X509v3 Authority Key Identifier: keyid:64:CC:C1:66:C5:8C:38:FE:8C:C1:97:6F:5C:F0:7C:1D:D0:6F:68:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F09FE/3803AA1C9B1211EFA87BB43BC4F9AE02/ZMzBZsWMOP6MwZdvXPB8HdBvaBQ.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:cd:9e:ba:67:f6:55:a6:68:b9:05:fd:0c:a2:35:53:37:bb: 6b:09:93:39:8a:76:14:2a:6a:7a:a6:16:9d:1f:33:69:a6:82: 8a:60:0d:c5:ce:c7:32:3d:16:75:c0:d8:1c:02:b6:78:b3:f7: b8:31:1d:9d:3d:c1:b2:eb:c3:fb:10:c6:f0:44:69:89:ba:55: c7:c9:77:a9:61:27:1b:3f:a8:47:54:63:a0:f9:ea:af:f8:e0: 6c:a0:03:41:ee:3e:f3:09:70:3b:61:7d:f3:5d:23:56:2a:76: d2:24:2b:a8:5a:d8:a4:d0:97:06:89:77:72:bc:77:a1:ce:94: a9:64:02:2e:c3:75:6c:5a:9a:36:c6:21:fa:e7:a7:39:0e:ba: 5a:ec:c5:7c:e0:67:00:fd:fc:ba:62:d2:44:92:87:0a:78:ac: 5a:85:8c:05:0f:17:29:25:a2:e0:30:8d:e3:57:9a:35:3f:83: dc:c1:ec:a2:bc:c9:14:e2:fa:f5:3f:b0:90:cc:e9:83:db:03: b8:d6:78:b9:22:1f:16:b3:af:ab:fc:6e:68:14:67:91:13:6f: 37:e4:9e:0f:a4:30:0d:75:d1:f5:26:2a:09:1e:62:52:0a:0f: d5:29:7e:52:10:81:0a:50:52:86:c2:d3:43:14:9a:e6:4f:b8: 21:78:9f:b8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA5RkUxMTAvBgNVBAUTKDY0Q0NDMTY2QzU4QzM4RkU4Q0MxOTc2RjVDRjA3QzFE RDA2RjY4MTQwHhcNMjYwMzI1MDUxNjQzWhcNMjYwNDAxMDUxNjQzWjAYMRYwFAYD VQQDEw02OWMzNmZiYi05ODBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtRqrv4qO5rd9ok71unBwnXxwI5FSukgZuQocOdckYVOKxD8YE7/IW206xuM fs/jgyBWSdjur5APdbhQY15kKya4coXWBUVI8Tn7m7ok95mD6CW3vAAkgZJKN3AJ AtjewmoPzcxz/oEydGo85MxbQ50D+KD9KLG0/sOS0Z46Y/u85u3Sw3yK/IXRsNC+ iCIRFaiVQTL2Ns/292bGpUgbDjzuHyvIu3mEr982kvg6sa/AsWids4HVa374zT/p JdaLjgCIFSjEzajM7I7ykv1m+EpUnXY0p87jHHecWeJdT6exzLBPv6XcgiHsGYnE QANUmy2n8bmbmBcGLi66Sw0ihwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGu4thrt paE2WLDPAFgB9TMVCh5BMB8GA1UdIwQYMBaAFGTMwWbFjDj+jMGXb1zwfB3Qb2gU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDlGRS8zODAzQUExQzlC MTIxMUVGQTg3QkI0M0JDNEY5QUUwMi9aTXpCWnNXTU9QNk13WmR2WFBCOEhkQnZh QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pNekJac1dNT1A2TXdaZHZYUEI4SGRCdmFCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDlGRS8zODAzQUExQzlCMTIxMUVGQTg3QkI0M0JDNEY5QUUwMi9aTXpCWnNXTU9Q Nk13WmR2WFBCOEhkQnZhQlEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEARs2eumf2VaZouQX9DKI1Uze7awmTOYp2FCpqeqYWnR8zaaaCimANxc7HMj0W dcDYHAK2eLP3uDEdnT3BsuvD+xDG8ERpibpVx8l3qWEnGz+oR1RjoPnqr/jgbKAD Qe4+8wlwO2F9810jVip20iQrqFrYpNCXBol3crx3oc6UqWQCLsN1bFqaNsYh+uen OQ66WuzFfOBnAP38umLSRJKHCnisWoWMBQ8XKSWi4DCN41eaNT+D3MHsorzJFOL6 9T+wkMzpg9sDuNZ4uSIfFrOvq/xuaBRnkRNvN+SeD6QwDXXR9SYqCR5iUgoP1Sl+ UhCBClBShsLTQxSa5k+4IXifuA== -----END CERTIFICATE-----Generated at Thu Mar 26 16:53:19 2026 by rpki-client