$ rpki-client -vvf rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft File: 2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft (raw, json) Hash identifier: bbCDB0F580dY4Kbq4HPxXoNW1U61h/0CogSeZopgGoc= Subject key identifier: E6:35:63:0C:30:95:79:AA:8C:27:B0:2B:15:98:52:D0:B2:33:E5:67 Authority key identifier: D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C Certificate issuer: /CN=A913664F/serialNumber=D9902C4E9472C7AD5082812FA7D077146AB7CB9C Certificate serial: 0233 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft Manifest number: 0220 Signing time: Sun 01 Mar 2026 23:34:05 +0000 Manifest this update: Sun 01 Mar 2026 23:34:03 +0000 Manifest next update: Sun 08 Mar 2026 23:34:03 +0000 Files and hashes: 1: 2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl (hash: Y6JIISglg1qODsIk6YshVBBX/JwrKOlxXDJOQeies5k=) 2: D2677928DD9811EDB2BBBA09C4F9AE02.roa (hash: hCwx0DM5AZe2LmvT1nwHBj2xXRoQx2u9h5+OYamek6Q=) 3: D1DDFDECDD9811EDB2BBBA09C4F9AE02.roa (hash: DS+0KFmcBE9DXzoqd+clX1iffNG/TJDheFzOy8o3k5w=) 4: B1E75D08DD7F11ED815F9B4DC4F9AE02.roa (hash: jCFeHTOEaf/tAa5ix+hQ/UsUVIVpLzQ1m9SstZe2Zt0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:34:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 563 (0x233) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913664F, serialNumber=D9902C4E9472C7AD5082812FA7D077146AB7CB9C Validity Not Before: Mar 1 23:34:03 2026 GMT Not After : Mar 8 23:34:03 2026 GMT Subject: CN=69a4cced-e137 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ae:1e:11:05:4b:ed:d2:b3:c8:76:96:b4:1c: 6d:7a:c2:7b:22:55:84:c0:bd:1b:3d:7a:08:60:20: ae:a5:f0:f8:35:29:d1:33:fb:8a:99:83:28:ae:c5: 42:81:02:01:e3:4b:63:d9:b7:96:53:e7:dc:35:98: ee:d8:cf:a3:41:69:da:5a:90:12:3f:96:38:83:8f: 2f:cf:65:22:01:2b:0e:7e:85:c2:f7:a6:4a:db:36: 12:f1:ab:d4:39:c3:21:24:b5:bd:f8:96:d9:26:7f: 91:37:d3:c9:8f:36:a4:ba:bd:48:7b:fe:79:57:4c: bb:71:c0:d1:06:18:77:32:cd:b5:93:e0:d1:f3:11: 6b:42:ff:e8:8e:15:0f:88:0d:7e:2d:40:ac:fa:d8: 19:ea:f4:87:74:22:92:5b:33:c7:8d:71:6d:04:4b: c8:26:54:60:b7:04:9d:e1:f4:3c:d1:0a:5b:c8:67: e4:52:ce:34:c7:23:80:e3:b1:e0:3d:58:8f:fb:dd: fa:97:84:fa:1b:c3:35:7c:ec:b2:15:0a:09:3e:8f: 19:bd:56:b6:54:d9:99:4e:f5:be:24:39:16:68:1a: b3:f8:57:5a:b1:66:65:c2:4c:8e:74:28:f5:de:0e: 30:b3:57:6b:39:e0:42:e3:49:b4:ca:26:f1:8a:91: 3c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:35:63:0C:30:95:79:AA:8C:27:B0:2B:15:98:52:D0:B2:33:E5:67 X509v3 Authority Key Identifier: keyid:D9:90:2C:4E:94:72:C7:AD:50:82:81:2F:A7:D0:77:14:6A:B7:CB:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2ZAsTpRyx61QgoEvp9B3FGq3y5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913664F/1E0854AEDD7D11ED91A0464DC4F9AE02/2ZAsTpRyx61QgoEvp9B3FGq3y5w.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:9c:67:6f:6f:cc:0c:f1:d5:d9:8d:81:33:86:ac:23:79:55: a7:b8:76:58:18:01:b2:ed:39:ec:d2:0b:2b:22:fa:76:b6:b9: c3:f1:03:32:50:f9:7b:71:b6:ee:5d:a2:a4:bd:de:8f:40:9e: b4:ac:30:b7:0a:c8:a1:4f:80:a5:5d:39:98:00:d4:2d:fe:b0: df:f3:90:f6:35:46:b6:a0:1e:59:cb:93:38:38:6f:3d:65:46: 19:ea:e7:c0:5a:47:e0:94:8d:55:2b:d3:ed:bf:c2:9a:5b:86: 46:7b:72:b4:88:bb:bd:5c:8d:48:48:f9:08:ae:74:53:85:55: a3:81:98:db:af:c7:91:cc:68:6a:fc:ff:06:d9:08:b5:4b:b7: c9:d5:85:73:b9:b0:d6:08:b7:db:a5:40:47:a9:83:ec:19:b2: 96:1b:5e:5a:36:86:18:b9:cb:cb:50:4f:46:bb:31:15:a7:e2: 80:30:40:08:ed:6d:13:72:7d:e0:3c:28:77:74:39:ae:10:8a: a5:b1:f9:89:99:4c:c8:6f:b0:1b:ed:80:99:8c:7d:f0:80:ee: b8:9b:53:4b:8b:14:25:d9:33:f0:3e:26:3c:cb:fb:78:ab:c9: bd:50:c9:62:9d:28:5d:55:08:8b:96:1e:e5:b4:bd:54:97:d4: 20:bb:92:4a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY2NEYxMTAvBgNVBAUTKEQ5OTAyQzRFOTQ3MkM3QUQ1MDgyODEyRkE3RDA3NzE0 NkFCN0NCOUMwHhcNMjYwMzAxMjMzNDAzWhcNMjYwMzA4MjMzNDAzWjAYMRYwFAYD VQQDEw02OWE0Y2NlZC1lMTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv64eEQVL7dKzyHaWtBxtesJ7IlWEwL0bPXoIYCCupfD4NSnRM/uKmYMorsVC gQIB40tj2beWU+fcNZju2M+jQWnaWpASP5Y4g48vz2UiASsOfoXC96ZK2zYS8avU OcMhJLW9+JbZJn+RN9PJjzakur1Ie/55V0y7ccDRBhh3Ms21k+DR8xFrQv/ojhUP iA1+LUCs+tgZ6vSHdCKSWzPHjXFtBEvIJlRgtwSd4fQ80QpbyGfkUs40xyOA47Hg PViP+936l4T6G8M1fOyyFQoJPo8ZvVa2VNmZTvW+JDkWaBqz+FdasWZlwkyOdCj1 3g4ws1drOeBC40m0yibxipE8PwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFOY1Ywww lXmqjCewKxWYUtCyM+VnMB8GA1UdIwQYMBaAFNmQLE6UcsetUIKBL6fQdxRqt8uc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjY0Ri8xRTA4NTRBRURE N0QxMUVEOTFBMDQ2NERDNEY5QUUwMi8yWkFzVHBSeXg2MVFnb0V2cDlCM0ZHcTN5 NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJaQXNUcFJ5eDYxUWdvRXZwOUIzRkdxM3k1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjY0Ri8xRTA4NTRBRUREN0QxMUVEOTFBMDQ2NERDNEY5QUUwMi8yWkFzVHBSeXg2 MVFnb0V2cDlCM0ZHcTN5NXcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAZ5xnb2/MDPHV2Y2BM4asI3lVp7h2WBgBsu057NILKyL6dra5w/EDMlD5e3G2 7l2ipL3ej0CetKwwtwrIoU+ApV05mADULf6w3/OQ9jVGtqAeWcuTODhvPWVGGern wFpH4JSNVSvT7b/CmluGRntytIi7vVyNSEj5CK50U4VVo4GY26/Hkcxoavz/BtkI tUu3ydWFc7mw1gi326VAR6mD7BmylhteWjaGGLnLy1BPRrsxFafigDBACO1tE3J9 4Dwod3Q5rhCKpbH5iZlMyG+wG+2AmYx98IDuuJtTS4sUJdkz8D4mPMv7eKvJvVDJ Yp0oXVUIi5Ye5bS9VJfUILuSSg== -----END CERTIFICATE-----Generated at Mon Mar 2 09:48:46 2026 by rpki-client