$ rpki-client -vvf rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.mft File: nzVmCVwLDAIx0LuWkl4DidHCbFc.mft (raw, json) Hash identifier: 3rq97iS0Kk0OX2RjMYq5j2BEs26bZp2sXGLgxFtIsws= Subject key identifier: 78:E8:63:FB:24:0D:C8:7C:65:C6:27:68:AE:C8:7A:76:02:CA:88:25 Authority key identifier: 9F:35:66:09:5C:0B:0C:02:31:D0:BB:96:92:5E:03:89:D1:C2:6C:57 Certificate issuer: /CN=A911403B/serialNumber=9F3566095C0B0C0231D0BB96925E0389D1C26C57 Certificate serial: 04C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nzVmCVwLDAIx0LuWkl4DidHCbFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.mft Manifest number: 04BA Signing time: Sun 01 Mar 2026 00:35:26 +0000 Manifest this update: Sun 01 Mar 2026 00:35:25 +0000 Manifest next update: Sun 08 Mar 2026 00:35:25 +0000 Files and hashes: 1: nzVmCVwLDAIx0LuWkl4DidHCbFc.crl (hash: Ahi0d0pPlEcLFKgALRut+MNR+mJa1Jpt2aViJ6OOTH8=) 2: 2D8428C662F511ECA1FC5A6CC4F9AE02.roa (hash: NcqHQBCnCxmIvPf04GSJviSLlikjuumtmafQTFeXa10=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.crl rsync://rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nzVmCVwLDAIx0LuWkl4DidHCbFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 00:35:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1216 (0x4c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911403B, serialNumber=9F3566095C0B0C0231D0BB96925E0389D1C26C57 Validity Not Before: Mar 1 00:35:25 2026 GMT Not After : Mar 8 00:35:25 2026 GMT Subject: CN=69a389cd-35e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:db:0b:ce:99:8c:65:fd:e8:42:62:e6:d9:29: c8:bf:f9:61:09:fe:d4:f2:1a:4f:dd:51:49:38:48: 49:c7:54:a9:44:66:66:b9:1b:7d:08:fc:11:c9:c6: 1d:6e:05:f5:e7:b9:77:f8:c4:a2:2d:29:66:22:c3: ed:76:f1:98:03:d5:88:78:77:81:de:48:d1:5b:55: 29:31:a2:8a:cb:26:6e:ec:75:5e:82:40:3a:e7:75: e1:54:32:1d:5c:af:60:83:75:06:cc:83:92:d3:85: a2:56:93:92:54:39:52:37:be:cb:cd:71:8b:3f:29: b3:11:07:d2:32:92:8a:99:37:19:73:9e:7b:83:83: 44:0f:d0:b2:cd:c4:25:e0:92:d4:eb:11:01:70:e8: 55:42:da:1b:cd:e6:8b:b0:96:0d:32:34:b7:5f:a0: 76:13:27:d4:da:33:1d:2d:4c:3a:c3:a7:64:24:53: c2:71:e0:30:61:62:fe:cd:e4:7d:c5:4e:d9:88:b8: a9:af:83:d2:d2:ce:f8:6e:0f:db:06:38:12:2a:70: 4a:44:4a:65:c4:81:1c:50:1b:da:6b:90:e8:3f:c5: 8d:2f:80:80:37:d5:f5:db:fc:3b:3b:6c:e7:fb:02: 93:82:94:7f:1b:25:21:e6:0d:2d:82:a1:44:e3:5e: cb:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:E8:63:FB:24:0D:C8:7C:65:C6:27:68:AE:C8:7A:76:02:CA:88:25 X509v3 Authority Key Identifier: keyid:9F:35:66:09:5C:0B:0C:02:31:D0:BB:96:92:5E:03:89:D1:C2:6C:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nzVmCVwLDAIx0LuWkl4DidHCbFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:1a:d9:37:b0:dd:a8:b7:a8:e1:9f:6b:fd:9e:a9:01:1e:df: b8:4e:31:b9:e2:3a:13:0f:93:27:7b:5c:8a:46:14:92:51:bd: 22:ab:ec:55:c3:51:75:dd:08:88:0e:e4:9f:6d:1e:62:d8:13: fa:53:6e:be:d2:9e:41:1b:6e:c6:e1:52:b0:7a:89:da:80:85: d9:09:16:31:9b:ba:11:0f:10:07:2f:b3:7d:cd:9b:24:97:1d: 67:29:fd:4d:54:e6:77:cb:37:d7:aa:32:76:ef:d9:f3:a1:f9: 1a:76:80:94:ae:c9:99:5e:67:19:3a:ca:dc:e2:07:97:31:c7: 7b:e5:a8:e4:c8:4f:a3:f6:49:aa:79:40:54:99:b0:8e:21:f0: 68:c4:84:78:74:2e:eb:82:03:5d:fd:05:61:4e:63:b1:1b:96: 74:56:ad:dc:b1:b7:c3:a7:e9:07:17:81:04:a7:24:03:76:61: 4d:67:be:48:79:f1:ab:89:73:fa:aa:c7:09:b3:02:1a:49:18: 48:54:01:0f:2b:52:c4:67:7d:09:e6:28:56:6a:fc:a8:3a:c1: 84:86:c3:5d:98:2f:6f:86:6e:3b:d4:78:fb:d2:ee:84:d0:88: d5:b3:d3:2c:bd:c7:5a:6f:17:bb:35:e1:3d:dd:ed:c2:ea:bf: 2f:1c:e5:36 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQwM0IxMTAvBgNVBAUTKDlGMzU2NjA5NUMwQjBDMDIzMUQwQkI5NjkyNUUwMzg5 RDFDMjZDNTcwHhcNMjYwMzAxMDAzNTI1WhcNMjYwMzA4MDAzNTI1WjAYMRYwFAYD VQQDDA02OWEzODljZC0zNWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNsLzpmMZf3oQmLm2SnIv/lhCf7U8hpP3VFJOEhJx1SpRGZmuRt9CPwRycYd bgX157l3+MSiLSlmIsPtdvGYA9WIeHeB3kjRW1UpMaKKyyZu7HVegkA653XhVDId XK9gg3UGzIOS04WiVpOSVDlSN77LzXGLPymzEQfSMpKKmTcZc557g4NED9CyzcQl 4JLU6xEBcOhVQtobzeaLsJYNMjS3X6B2EyfU2jMdLUw6w6dkJFPCceAwYWL+zeR9 xU7ZiLipr4PS0s74bg/bBjgSKnBKREplxIEcUBvaa5DoP8WNL4CAN9X12/w7O2zn +wKTgpR/GyUh5g0tgqFE417LhQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHjoY/sk Dch8ZcYnaK7IenYCyoglMB8GA1UdIwQYMBaAFJ81ZglcCwwCMdC7lpJeA4nRwmxX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDAzQi80QUE3NEI3NDYy REExMUVDQjM3MUM3NjdDNEY5QUUwMi9uelZtQ1Z3TERBSXgwTHVXa2w0RGlkSENi RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL256Vm1DVndMREFJeDBMdVdrbDREaWRIQ2JGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDAzQi80QUE3NEI3NDYyREExMUVDQjM3MUM3NjdDNEY5QUUwMi9uelZtQ1Z3TERB SXgwTHVXa2w0RGlkSENiRmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAVRrZN7DdqLeo4Z9r/Z6pAR7fuE4xueI6Ew+TJ3tcikYUklG9IqvsVcNRdd0I iA7kn20eYtgT+lNuvtKeQRtuxuFSsHqJ2oCF2QkWMZu6EQ8QBy+zfc2bJJcdZyn9 TVTmd8s316oydu/Z86H5GnaAlK7JmV5nGTrK3OIHlzHHe+Wo5MhPo/ZJqnlAVJmw jiHwaMSEeHQu64IDXf0FYU5jsRuWdFat3LG3w6fpBxeBBKckA3ZhTWe+SHnxq4lz +qrHCbMCGkkYSFQBDytSxGd9CeYoVmr8qDrBhIbDXZgvb4ZuO9R4+9LuhNCI1bPT LL3HWm8XuzXhPd3twuq/LxzlNg== -----END CERTIFICATE-----Generated at Mon Mar 2 00:11:16 2026 by rpki-client