$ rpki-client -vvf rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft File: ZGscQagf9-WCtezcHO9UzmEVJWM.mft (raw, json) Hash identifier: k93kIRfXjbnTQdxquPaHa3WbsBAdtfF2EocL5YlddHM= Subject key identifier: 71:96:F4:06:46:AD:92:2E:30:51:7E:67:FA:B0:20:EA:E6:1B:18:83 Authority key identifier: 64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63 Certificate issuer: /CN=A9129D4A/serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563 Certificate serial: 1DED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft Manifest number: 1DE1 Signing time: Mon 02 Mar 2026 01:46:01 +0000 Manifest this update: Mon 02 Mar 2026 01:45:59 +0000 Manifest next update: Mon 09 Mar 2026 01:45:59 +0000 Files and hashes: 1: ZGscQagf9-WCtezcHO9UzmEVJWM.crl (hash: ueRnNyCmCwVWv1fbp7iHxj8gdBDLoosKmL/Ga4lI2P0=) 2: 810AF2B0AC9611E6A37EC415C4F9AE02.roa (hash: 3geyNyHlLt4m67I8XY+XLIc0Dfd7U5LMWFn+gd8QVdg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:45:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7661 (0x1ded) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129D4A, serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563 Validity Not Before: Mar 2 01:45:59 2026 GMT Not After : Mar 9 01:45:59 2026 GMT Subject: CN=69a4ebd9-163e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:0b:69:93:5f:ea:eb:d5:f6:f8:14:6a:92:85: 35:9b:b4:88:56:0c:c0:a6:d9:ec:3c:71:fd:39:ca: ed:d9:4d:a2:86:f9:fa:53:64:73:bb:f9:08:25:30: bd:8d:a0:61:92:f6:1d:5b:d3:7c:10:07:1f:2e:ad: d1:4a:bf:da:41:0e:77:58:9f:5e:2a:95:7e:97:98: e1:bf:fe:3e:b4:0d:d6:80:7f:45:aa:87:47:3a:99: 8d:93:74:bf:05:95:63:b9:84:4a:3f:07:0c:c4:4d: 15:bc:e3:9a:ee:3c:99:5b:37:89:89:79:54:d0:64: 73:0d:1b:92:a0:0f:a7:2a:d4:7b:be:56:e1:ad:10: 8b:be:ba:dd:1d:94:c2:bf:f0:2f:d6:7f:f3:b8:30: a3:a1:0d:af:aa:5a:df:6f:a6:19:a9:ad:c8:13:21: 9a:dc:b5:30:a3:7e:29:e4:ed:6c:d6:24:6f:ff:98: 24:e2:4d:d6:60:e2:e0:30:35:04:21:23:f2:ed:4d: 54:5a:18:7a:91:45:00:c5:82:ec:e3:ca:29:4c:36: b4:21:cd:43:49:a9:00:84:f6:bb:57:a8:b2:3b:3b: ff:8b:57:2f:9b:d7:7a:91:91:88:a3:cf:f0:03:7f: cf:db:5f:3e:30:51:1d:f2:c5:57:03:f1:fe:af:9c: 70:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:96:F4:06:46:AD:92:2E:30:51:7E:67:FA:B0:20:EA:E6:1B:18:83 X509v3 Authority Key Identifier: keyid:64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:c1:f4:0e:26:da:07:c5:b1:2c:9c:8b:bb:48:6a:07:83:b8: f0:02:07:74:32:4e:aa:ea:d7:92:7f:6e:59:4a:34:bf:5a:da: bb:2d:eb:b8:dc:a1:e2:22:05:69:9b:cf:8f:1f:02:1f:7d:25: 83:e8:54:14:e7:c8:ef:5d:03:bd:1d:66:db:b3:5b:78:ba:97: e8:e7:75:50:e4:86:0b:97:ab:df:77:e1:b1:e6:30:60:2f:6a: 08:a9:e7:88:40:61:b3:6d:24:4f:2c:c4:e1:57:cd:0f:cf:be: 90:de:40:03:d4:10:1a:39:49:0e:75:9d:bc:7d:9a:73:13:56: 21:2a:f4:1d:25:5d:ab:27:13:52:1c:d8:00:b9:cb:5f:f5:53: 14:e5:7b:40:34:6a:ed:35:e6:f8:66:b1:53:a4:03:a3:59:f0: f4:98:07:2d:05:48:4d:d2:11:cd:5e:50:a5:e0:3b:1e:5a:bb: ec:f8:19:05:95:6f:33:8b:72:f8:e1:40:de:6c:f5:6c:fd:62: 76:c1:ac:14:c3:99:81:aa:20:21:f9:a3:48:a3:86:6b:74:a2: a1:b8:a6:58:41:eb:99:f7:ad:c2:0b:c0:f7:1d:af:11:e8:a7: fb:95:96:11:a0:ab:a4:fe:84:22:e2:67:ee:27:d7:35:d6:b4: 78:00:a9:d4 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICHe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlENEExMTAvBgNVBAUTKDY0NkIxQzQxQTgxRkY3RTU4MkI1RUNEQzFDRUY1NENF NjExNTI1NjMwHhcNMjYwMzAyMDE0NTU5WhcNMjYwMzA5MDE0NTU5WjAYMRYwFAYD VQQDEw02OWE0ZWJkOS0xNjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnwtpk1/q69X2+BRqkoU1m7SIVgzAptnsPHH9Ocrt2U2ihvn6U2Rzu/kIJTC9 jaBhkvYdW9N8EAcfLq3RSr/aQQ53WJ9eKpV+l5jhv/4+tA3WgH9FqodHOpmNk3S/ BZVjuYRKPwcMxE0VvOOa7jyZWzeJiXlU0GRzDRuSoA+nKtR7vlbhrRCLvrrdHZTC v/Av1n/zuDCjoQ2vqlrfb6YZqa3IEyGa3LUwo34p5O1s1iRv/5gk4k3WYOLgMDUE ISPy7U1UWhh6kUUAxYLs48opTDa0Ic1DSakAhPa7V6iyOzv/i1cvm9d6kZGIo8/w A3/P218+MFEd8sVXA/H+r5xwXQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHGW9AZG rZIuMFF+Z/qwIOrmGxiDMB8GA1UdIwQYMBaAFGRrHEGoH/flgrXs3BzvVM5hFSVj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUQ0QS8yNDgxMDNBNEFD OTYxMUU2QTU2MUEzMTVDNEY5QUUwMi9aR3NjUWFnZjktV0N0ZXpjSE85VXptRVZK V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pHc2NRYWdmOS1XQ3RlemNITzlVem1FVkpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUQ0QS8yNDgxMDNBNEFDOTYxMUU2QTU2MUEzMTVDNEY5QUUwMi9aR3NjUWFnZjkt V0N0ZXpjSE85VXptRVZKV00ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUcH0DibaB8WxLJyLu0hqB4O48AIHdDJOqurXkn9uWUo0v1rauy3ruNyh4iIF aZvPjx8CH30lg+hUFOfI710DvR1m27NbeLqX6Od1UOSGC5er33fhseYwYC9qCKnn iEBhs20kTyzE4VfND8++kN5AA9QQGjlJDnWdvH2acxNWISr0HSVdqycTUhzYALnL X/VTFOV7QDRq7TXm+GaxU6QDo1nw9JgHLQVITdIRzV5QpeA7Hlq77PgZBZVvM4ty +OFA3mz1bP1idsGsFMOZgaogIfmjSKOGa3SiobimWEHrmfetwgvA9x2vEein+5WW EaCrpP6EIuJn7ifXNda0eACp1A== -----END CERTIFICATE-----Generated at Mon Mar 2 16:44:54 2026 by rpki-client