$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft File: z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft (raw, json) Hash identifier: C7K0QdsAYY2EZLfwqvh2xNSiNQBeTrwIa3aYCOHZCJg= Subject key identifier: 0E:ED:D4:48:5F:0E:24:44:52:B9:D1:7C:F5:0E:C7:85:FE:9A:ED:B0 Authority key identifier: CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF Certificate issuer: /CN=A91F8F9B/serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft Manifest number: 012E Signing time: Wed 25 Mar 2026 04:46:12 +0000 Manifest this update: Wed 25 Mar 2026 04:46:12 +0000 Manifest next update: Wed 01 Apr 2026 04:46:12 +0000 Files and hashes: 1: z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl (hash: AF6Roxjh2CHgfwkAD1aqwkYct/CpnXFt+xcDvI6oo1A=) 2: 7143C5B85DBF11EFB8714857C4F9AE02.roa (hash: HnPe7oTE/NJwLfNgQpYdaZfEzbuO3TebzvAvQ+UM9po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:46:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8F9B, serialNumber=CFBB038FDB838654204962980AD221C9415D5CFF Validity Not Before: Mar 25 04:46:12 2026 GMT Not After : Apr 1 04:46:12 2026 GMT Subject: CN=69c36894-8912 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:8c:bf:9c:7a:de:4c:41:9c:f0:19:83:6e:12: ea:b5:75:42:ea:5c:4f:97:b4:7e:8e:7b:f8:69:9e: 1c:80:c9:16:fd:bb:92:22:57:dd:21:79:1d:86:59: 8c:e5:23:0d:84:06:a0:0c:7d:c0:a3:ff:6f:a6:8e: c2:12:cc:6f:1e:eb:ec:a6:d3:ec:8e:58:56:5e:2f: bd:fa:b1:1f:dd:1c:44:93:c1:74:cc:ee:a7:10:03: 72:e5:fb:7c:3d:39:48:ab:6a:0c:07:40:20:04:86: 3d:0c:cd:55:2c:2b:32:03:59:c3:71:d8:b1:aa:98: a5:da:09:e6:a4:a3:27:c6:61:15:2d:f5:61:4c:c5: 18:af:1f:af:dd:2d:71:da:1c:e5:bc:c1:a2:0e:b6: bf:52:5c:bb:cc:e9:7d:ec:3f:6c:04:bf:8b:83:37: bd:da:7a:00:26:ef:93:06:ea:ed:f9:ee:72:58:e3: 50:a0:44:df:e2:a0:74:ca:2e:59:08:48:f2:b3:c4: 9c:6f:6f:a2:0f:2b:ae:49:7d:9e:91:9a:a3:48:19: fe:88:b5:9a:ad:60:8b:94:25:e6:4a:58:37:f9:22: 8d:ba:26:63:b6:3f:a2:48:89:d1:c3:4d:4d:c8:4d: a2:c5:ef:25:f5:97:49:67:d3:3d:6a:cb:b4:da:06: ba:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:ED:D4:48:5F:0E:24:44:52:B9:D1:7C:F5:0E:C7:85:FE:9A:ED:B0 X509v3 Authority Key Identifier: keyid:CF:BB:03:8F:DB:83:86:54:20:49:62:98:0A:D2:21:C9:41:5D:5C:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z7sDj9uDhlQgSWKYCtIhyUFdXP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8F9B/F902E5305DBD11EF8A06ED40C4F9AE02/z7sDj9uDhlQgSWKYCtIhyUFdXP8.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:6e:37:3a:a7:18:fa:c2:4f:8c:5a:4a:78:e2:a6:c3:ae:34: dc:cb:8c:d3:f9:d0:86:ed:a8:82:9b:fc:24:79:d2:ef:db:a6: 48:43:58:db:ff:da:f6:8c:81:53:ef:08:79:a8:db:a9:5d:de: a7:a3:69:f9:8b:c2:28:cc:7f:99:30:bc:11:16:23:19:c4:b0: d3:a4:30:39:e2:63:9d:89:5c:73:78:b5:31:b1:4c:f4:d6:de: 38:4f:68:7e:b2:b8:ad:88:a7:7e:d7:36:46:4a:25:0c:78:4c: af:ef:01:68:d4:53:6d:e0:0b:77:43:5b:22:b9:78:8b:ed:26: dc:bb:18:3a:57:05:c7:c4:77:27:d5:a6:91:7a:6a:20:dc:f2: 98:e3:1e:37:ce:48:7f:41:75:58:13:f2:86:52:2e:4c:03:80: e1:81:99:ca:62:93:7d:b4:a4:bc:1c:bc:ea:fb:eb:3c:b5:5a: 2c:5e:37:bc:be:7e:90:56:c7:20:9c:94:2a:9b:83:07:9a:b3: e0:bf:99:1c:36:ea:67:d7:15:e3:ca:2b:f5:e0:62:f8:7c:cd: 92:c3:2c:11:ad:23:41:5a:fa:e3:46:9d:79:cd:5a:20:06:5f: 51:35:aa:fd:d3:2c:a1:5b:e6:2d:4a:94:9e:b1:35:60:0c:ac: bb:7b:99:cf -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhGOUIxMTAvBgNVBAUTKENGQkIwMzhGREI4Mzg2NTQyMDQ5NjI5ODBBRDIyMUM5 NDE1RDVDRkYwHhcNMjYwMzI1MDQ0NjEyWhcNMjYwNDAxMDQ0NjEyWjAYMRYwFAYD VQQDEw02OWMzNjg5NC04OTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj4y/nHreTEGc8BmDbhLqtXVC6lxPl7R+jnv4aZ4cgMkW/buSIlfdIXkdhlmM 5SMNhAagDH3Ao/9vpo7CEsxvHuvsptPsjlhWXi+9+rEf3RxEk8F0zO6nEANy5ft8 PTlIq2oMB0AgBIY9DM1VLCsyA1nDcdixqpil2gnmpKMnxmEVLfVhTMUYrx+v3S1x 2hzlvMGiDra/Uly7zOl97D9sBL+Lgze92noAJu+TBurt+e5yWONQoETf4qB0yi5Z CEjys8Scb2+iDyuuSX2ekZqjSBn+iLWarWCLlCXmSlg3+SKNuiZjtj+iSInRw01N yE2ixe8l9ZdJZ9M9asu02ga68wIDAQABo4ICczCCAm8wHQYDVR0OBBYEFA7t1Ehf DiREUrnRfPUOx4X+mu2wMB8GA1UdIwQYMBaAFM+7A4/bg4ZUIElimArSIclBXVz/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEY5Qi9GOTAyRTUzMDVE QkQxMUVGOEEwNkVENDBDNEY5QUUwMi96N3NEajl1RGhsUWdTV0tZQ3RJaHlVRmRY UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3o3c0RqOXVEaGxRZ1NXS1lDdEloeVVGZFhQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEY5Qi9GOTAyRTUzMDVEQkQxMUVGOEEwNkVENDBDNEY5QUUwMi96N3NEajl1RGhs UWdTV0tZQ3RJaHlVRmRYUDgubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEApG43OqcY+sJPjFpKeOKmw6403MuM0/nQhu2ogpv8JHnS79umSENY2//a9oyB U+8IeajbqV3ep6Np+YvCKMx/mTC8ERYjGcSw06QwOeJjnYlcc3i1MbFM9NbeOE9o frK4rYinftc2RkolDHhMr+8BaNRTbeALd0NbIrl4i+0m3LsYOlcFx8R3J9WmkXpq INzymOMeN85If0F1WBPyhlIuTAOA4YGZymKTfbSkvBy86vvrPLVaLF43vL5+kFbH IJyUKpuDB5qz4L+ZHDbqZ9cV48or9eBi+HzNksMsEa0jQVr640adec1aIAZfUTWq /dMsoVvmLUqUnrE1YAysu3uZzw== -----END CERTIFICATE-----Generated at Thu Mar 26 16:03:36 2026 by rpki-client