$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft File: AO-zr_90_WIfS42RFpt6HEOzlBc.mft (raw, json) Hash identifier: iFGO6gZVCrD9w27YVcgqwJVFbUpaWYFxhlFQIZQDgp0= Subject key identifier: 71:CA:6D:92:3B:38:D7:DE:B0:CD:FA:73:B9:16:13:C7:F8:F5:06:29 Authority key identifier: 00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17 Certificate issuer: /CN=A912C8FA/serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417 Certificate serial: 01FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft Manifest number: 01F1 Signing time: Fri 17 Apr 2026 03:07:26 +0000 Manifest this update: Fri 17 Apr 2026 03:07:26 +0000 Manifest next update: Fri 24 Apr 2026 03:07:26 +0000 Files and hashes: 1: AO-zr_90_WIfS42RFpt6HEOzlBc.crl (hash: cQx1vSM7OBEL1WrVV3PCO4OKdNTLE6XwnN2990voWzQ=) 2: A80498FABAAB11EEBA024655C4F9AE02.roa (hash: MYk/tsmYPGKMW1RbLDFAli+RCLkeKhKWOLY72aWyJCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 03:07:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 508 (0x1fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8FA, serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417 Validity Not Before: Apr 17 03:07:26 2026 GMT Not After : Apr 24 03:07:26 2026 GMT Subject: CN=69e1a3ee-097e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e0:f8:c0:63:df:7a:e3:57:05:c7:d4:db:66: a6:74:81:7b:93:40:58:b3:20:6b:11:e9:ff:e5:8f: d7:ac:57:84:a7:09:a7:df:91:c6:e8:94:6b:f8:94: f8:eb:08:fc:9c:87:0c:e4:af:ab:3e:1c:fc:44:ac: 37:28:ac:28:3e:2a:7b:cb:21:e8:ed:7e:98:2b:86: 97:ef:cf:8c:91:14:1c:0b:2c:6b:97:4c:82:73:d2: 55:55:51:4f:7a:dc:ae:e4:aa:e9:f2:b3:35:96:77: 7d:f7:96:f6:ef:5f:a2:5e:ea:a0:0a:8f:78:ce:47: 1a:1e:78:04:50:c3:82:0c:c7:f0:53:54:cd:5d:4d: f8:f0:73:e8:69:a1:05:a8:6a:c6:c0:da:e0:e5:c8: 62:95:b0:52:67:74:4b:e9:0f:32:7f:18:f9:bf:b6: 4f:3e:9c:a4:fc:d2:60:4d:e9:22:73:0d:d4:81:00: 8a:d8:4c:e1:38:0d:0e:ac:b2:b1:e5:b8:ec:91:be: eb:13:ab:66:b2:dd:23:8f:5c:d3:f3:c4:3c:90:f0: 85:ed:e6:2d:68:0e:60:24:b7:86:18:f1:b2:7e:b4: 3a:08:1a:52:af:9f:48:40:e9:76:2c:16:4b:0c:53: 27:7c:4b:00:fe:c6:84:f4:0c:fc:e6:b5:85:da:51: 53:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:CA:6D:92:3B:38:D7:DE:B0:CD:FA:73:B9:16:13:C7:F8:F5:06:29 X509v3 Authority Key Identifier: keyid:00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:21:23:b3:b6:2d:6f:d0:36:0d:97:05:d0:d0:e2:40:8d:48: c1:1c:be:75:a2:29:06:45:3f:7b:8b:57:20:1e:ec:1a:13:7c: 96:63:73:f4:39:d2:8e:47:42:3b:a3:16:9b:3c:c2:58:16:7e: e3:37:09:af:c4:ca:1c:e7:94:f0:52:b2:7f:3c:b9:42:8d:8b: e1:ce:9b:8d:6d:85:94:40:ef:8c:3d:39:3b:27:82:1f:c0:ae: f0:ba:88:3e:27:f6:ae:1a:e0:b0:65:10:5f:f0:4d:f8:08:59: da:2c:7c:d9:f2:33:e2:bd:19:ca:88:7a:ac:ee:c5:e5:8f:c0: f3:77:57:a4:75:57:58:3c:d6:64:9e:7b:bc:db:83:69:01:eb: 14:c8:a8:3c:78:1f:8b:42:7b:01:09:39:63:91:c2:b5:51:55: 43:7c:aa:10:78:da:4e:ca:f2:99:92:f6:fb:6e:13:9a:d3:07: 17:86:85:e0:53:47:83:88:30:28:90:0d:83:3a:87:d6:9b:70: 6f:a0:19:20:da:bb:34:79:8e:3d:10:b0:11:b5:c9:51:73:4b: ce:bc:49:c2:8b:34:ca:4a:90:21:0e:80:ef:04:64:d2:74:16: af:f6:73:ef:b5:39:9a:01:57:47:3a:de:48:00:97:4e:40:6f: f7:ff:83:06 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4RkExMTAvBgNVBAUTKDAwRUZCM0FGRkY3NEZENjIxRjRCOEQ5MTE2OUI3QTFD NDNCMzk0MTcwHhcNMjYwNDE3MDMwNzI2WhcNMjYwNDI0MDMwNzI2WjAYMRYwFAYD VQQDEw02OWUxYTNlZS0wOTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOD4wGPfeuNXBcfU22amdIF7k0BYsyBrEen/5Y/XrFeEpwmn35HG6JRr+JT4 6wj8nIcM5K+rPhz8RKw3KKwoPip7yyHo7X6YK4aX78+MkRQcCyxrl0yCc9JVVVFP etyu5Krp8rM1lnd995b271+iXuqgCo94zkcaHngEUMOCDMfwU1TNXU348HPoaaEF qGrGwNrg5chilbBSZ3RL6Q8yfxj5v7ZPPpyk/NJgTekicw3UgQCK2EzhOA0OrLKx 5bjskb7rE6tmst0jj1zT88Q8kPCF7eYtaA5gJLeGGPGyfrQ6CBpSr59IQOl2LBZL DFMnfEsA/saE9Az85rWF2lFTaQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFHHKbZI7 ONfesM36c7kWE8f49QYpMB8GA1UdIwQYMBaAFADvs6//dP1iH0uNkRabehxDs5QX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhGQS80MDAzRjkzMDU0 QTMxMUVFQjc1RjQ2ODZDNEY5QUUwMi9BTy16cl85MF9XSWZTNDJSRnB0NkhFT3ps QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FPLXpyXzkwX1dJZlM0MlJGcHQ2SEVPemxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhGQS80MDAzRjkzMDU0QTMxMUVFQjc1RjQ2ODZDNEY5QUUwMi9BTy16cl85MF9X SWZTNDJSRnB0NkhFT3psQmMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAACEjs7Ytb9A2DZcF0NDiQI1IwRy+daIpBkU/e4tXIB7sGhN8lmNz9DnSjkdC O6MWmzzCWBZ+4zcJr8TKHOeU8FKyfzy5Qo2L4c6bjW2FlEDvjD05OyeCH8Cu8LqI Pif2rhrgsGUQX/BN+AhZ2ix82fIz4r0Zyoh6rO7F5Y/A83dXpHVXWDzWZJ57vNuD aQHrFMioPHgfi0J7AQk5Y5HCtVFVQ3yqEHjaTsrymZL2+24TmtMHF4aF4FNHg4gw KJANgzqH1ptwb6AZINq7NHmOPRCwEbXJUXNLzrxJwos0ykqQIQ6A7wRk0nQWr/Zz 77U5mgFXRzreSACXTkBv9/+DBg== -----END CERTIFICATE-----Generated at Fri Apr 17 17:22:30 2026 by rpki-client