$ rpki-client -vvf rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft File: znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft (raw, json) Hash identifier: ikJzgur0fy3zk7AjRc12mUKae6KDT+mchLl9UBNk48o= Subject key identifier: 46:98:CD:5F:E8:BA:E9:BC:2A:6A:CA:DA:EB:73:C1:65:2A:46:F0:1C Authority key identifier: CE:70:3E:4E:F9:DF:2E:BE:38:65:0A:70:4A:4A:01:9C:2A:66:43:50 Certificate issuer: /CN=A9136C5E/serialNumber=CE703E4EF9DF2EBE38650A704A4A019C2A664350 Certificate serial: 0239 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft Manifest number: 0234 Signing time: Mon 02 Mar 2026 01:56:18 +0000 Manifest this update: Mon 02 Mar 2026 01:56:17 +0000 Manifest next update: Mon 09 Mar 2026 01:56:17 +0000 Files and hashes: 1: znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl (hash: NPHtxL8+Tc/OLnD31Z9qVVTOAo8TGYL86nsl3kHrvqw=) 2: 9BCEEFF4BC6911ED9B0FC554C4F9AE02.roa (hash: zv8nloA9U8eAmryUp26vTAYnavKSs7YqUby16TlyAj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:56:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 569 (0x239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136C5E, serialNumber=CE703E4EF9DF2EBE38650A704A4A019C2A664350 Validity Not Before: Mar 2 01:56:17 2026 GMT Not After : Mar 9 01:56:17 2026 GMT Subject: CN=69a4ee42-1202 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:dd:68:ae:46:e9:7c:4d:ab:93:31:ae:49:a0: 94:4e:fe:b9:9a:61:76:a8:ff:d1:b7:1f:4a:f0:76: c3:85:4d:e7:53:cb:c0:b2:c3:b4:68:29:ed:ad:48: 40:ac:c2:a5:51:6f:4a:ee:9b:a8:61:df:5f:6e:2d: b2:75:3a:53:d7:c8:fc:1d:16:b5:5b:0f:8a:98:cd: da:a2:cf:4c:79:17:eb:9e:94:41:54:60:e7:87:df: 8e:1e:07:9f:e8:d9:fc:5f:e1:af:b4:f4:5f:47:6a: 52:e0:6a:3e:dc:f5:71:9a:e9:7e:59:48:1d:9c:c9: 30:11:8b:b0:00:4d:2f:84:ba:8b:99:20:c9:e5:9a: 79:72:6b:9a:c8:b2:c0:6a:04:98:fb:67:dc:24:88: f8:14:2c:5a:f1:77:a9:b2:9d:8b:e4:b5:bd:14:b4: 93:af:2a:21:af:80:ce:dc:2c:cf:c7:1f:44:ee:83: f3:45:d2:a3:e6:6f:a3:8b:3c:a4:57:e0:6a:17:41: 90:4e:49:dd:5d:2e:09:6e:b2:17:0a:cc:36:c8:56: fb:ee:98:bc:c5:d1:71:b8:f5:1e:bb:06:92:25:50: a1:14:49:cc:93:b3:60:53:ec:09:23:d4:d6:d8:07: 5a:cb:39:f2:b0:4e:f9:87:79:e9:3d:da:32:9b:22: 61:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:98:CD:5F:E8:BA:E9:BC:2A:6A:CA:DA:EB:73:C1:65:2A:46:F0:1C X509v3 Authority Key Identifier: keyid:CE:70:3E:4E:F9:DF:2E:BE:38:65:0A:70:4A:4A:01:9C:2A:66:43:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/znA-TvnfLr44ZQpwSkoBnCpmQ1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136C5E/3EA6A250B97011ED8918467CC4F9AE02/znA-TvnfLr44ZQpwSkoBnCpmQ1A.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:91:06:52:ef:46:a5:ca:ef:48:2b:8a:b2:71:f9:b1:9b:b6: ae:5f:e2:64:7a:f6:04:7d:a9:1d:c7:05:31:17:75:3b:b9:03: 70:b5:34:3a:65:6c:c7:ec:2b:29:41:96:c1:01:39:5e:4f:19: b2:42:ce:96:2a:12:b4:50:5f:55:50:ea:a2:35:4e:cd:b3:c0: d8:2f:80:ed:01:fa:35:29:34:68:6f:78:82:58:69:ec:7d:8a: 9e:08:9c:d1:10:50:42:70:df:4e:65:37:b1:68:54:74:14:08: ff:a8:8f:1f:8b:a7:2f:ee:5a:c1:d6:00:3b:54:ff:94:16:f0: 83:af:15:e7:49:20:c0:3e:f1:3b:27:68:4a:f8:7e:4f:6b:55: e8:66:56:91:47:a4:82:be:2e:7d:38:c6:14:55:7e:18:81:a7: e2:0c:d0:82:55:28:a9:6e:4a:de:3a:d0:3d:e5:b6:f7:91:d4: d0:c8:9b:51:66:29:db:bc:ce:52:67:36:33:aa:0d:e2:2f:18: df:35:87:c8:b0:e2:9d:75:f5:46:82:fa:e3:65:b0:82:a0:cb: 1d:54:36:95:6d:6e:57:74:6d:05:fa:cd:3d:c2:11:8d:04:06: e2:d1:57:c5:cd:83:af:cb:96:5c:75:c5:c7:b0:36:4a:01:c6: 1b:02:c5:37 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZDNUUxMTAvBgNVBAUTKENFNzAzRTRFRjlERjJFQkUzODY1MEE3MDRBNEEwMTlD MkE2NjQzNTAwHhcNMjYwMzAyMDE1NjE3WhcNMjYwMzA5MDE1NjE3WjAYMRYwFAYD VQQDEw02OWE0ZWU0Mi0xMjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6N1orkbpfE2rkzGuSaCUTv65mmF2qP/Rtx9K8HbDhU3nU8vAssO0aCntrUhA rMKlUW9K7puoYd9fbi2ydTpT18j8HRa1Ww+KmM3aos9MeRfrnpRBVGDnh9+OHgef 6Nn8X+GvtPRfR2pS4Go+3PVxmul+WUgdnMkwEYuwAE0vhLqLmSDJ5Zp5cmuayLLA agSY+2fcJIj4FCxa8Xepsp2L5LW9FLSTryohr4DO3CzPxx9E7oPzRdKj5m+jizyk V+BqF0GQTkndXS4JbrIXCsw2yFb77pi8xdFxuPUeuwaSJVChFEnMk7NgU+wJI9TW 2AdayznysE75h3npPdoymyJh5QIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEaYzV/o uum8KmrK2utzwWUqRvAcMB8GA1UdIwQYMBaAFM5wPk753y6+OGUKcEpKAZwqZkNQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkM1RS8zRUE2QTI1MEI5 NzAxMUVEODkxODQ2N0NDNEY5QUUwMi96bkEtVHZuZkxyNDRaUXB3U2tvQm5DcG1R MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3puQS1Udm5mTHI0NFpRcHdTa29CbkNwbVExQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkM1RS8zRUE2QTI1MEI5NzAxMUVEODkxODQ2N0NDNEY5QUUwMi96bkEtVHZuZkxy NDRaUXB3U2tvQm5DcG1RMUEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEADJEGUu9GpcrvSCuKsnH5sZu2rl/iZHr2BH2pHccFMRd1O7kDcLU0OmVsx+wr KUGWwQE5Xk8ZskLOlioStFBfVVDqojVOzbPA2C+A7QH6NSk0aG94glhp7H2Kngic 0RBQQnDfTmU3sWhUdBQI/6iPH4unL+5awdYAO1T/lBbwg68V50kgwD7xOydoSvh+ T2tV6GZWkUekgr4ufTjGFFV+GIGn4gzQglUoqW5K3jrQPeW295HU0MibUWYp27zO Umc2M6oN4i8Y3zWHyLDinXX1RoL642WwgqDLHVQ2lW1uV3RtBfrNPcIRjQQG4tFX xc2Dr8uWXHXFx7A2SgHGGwLFNw== -----END CERTIFICATE-----Generated at Mon Mar 2 11:45:51 2026 by rpki-client