$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft File: z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft (raw, json) Hash identifier: GKmgLhEIprCXiqj/9h8Lrz8eeTTOYYHI978acYVAFGg= Subject key identifier: AD:22:D2:09:16:CB:07:8E:57:78:49:22:AA:AE:27:FB:8D:86:37:E0 Authority key identifier: CF:80:4A:6F:3D:86:A1:97:13:A4:E8:86:D5:97:B4:DC:64:45:68:6A Certificate issuer: /CN=A9149C62/serialNumber=CF804A6F3D86A19713A4E886D597B4DC6445686A Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft Manifest number: 0104 Signing time: Sun 01 Mar 2026 07:17:35 +0000 Manifest this update: Sun 01 Mar 2026 07:17:34 +0000 Manifest next update: Sun 08 Mar 2026 07:17:34 +0000 Files and hashes: 1: z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl (hash: arwxXml5+1qkHZJkZHf5m/dWAIRvJl0oGiTf6aKBs/g=) 2: D7A7F3FEE18711F0A8B43181426F56BC.roa (hash: vYKoPSfFLuXVy0A8zTQtYmFtyImPKcp/50daoXBvX1o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:17:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C62, serialNumber=CF804A6F3D86A19713A4E886D597B4DC6445686A Validity Not Before: Mar 1 07:17:34 2026 GMT Not After : Mar 8 07:17:34 2026 GMT Subject: CN=69a3e80f-06ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5a:c9:16:c6:3a:5a:fd:17:e1:36:f4:25:84: be:80:37:6b:d0:a1:69:29:59:ed:54:d5:0e:b3:22: 15:b9:5b:8e:67:c8:13:de:cc:71:c9:65:8a:c0:a2: 57:11:b6:f2:4b:73:9b:15:4d:b4:9a:9d:c1:8b:a6: 0e:e2:2a:87:81:fa:7a:f2:ec:de:b8:3d:97:e8:e6: 35:8b:99:68:9d:3a:ca:a0:49:e1:89:9a:46:f5:05: a1:66:d5:61:0e:8a:99:fd:6f:b3:bc:85:fa:8d:01: f1:40:14:31:32:87:0c:30:ca:3f:f0:14:ac:46:83: f1:c9:f0:19:4e:f7:14:10:93:cd:5e:8c:3a:18:a6: 15:5c:1e:87:c3:52:fd:0c:7b:6b:72:59:b8:c4:c7: 83:fd:16:dc:72:be:cd:73:da:18:2f:5c:2e:d1:e0: a9:ab:85:ea:2a:8e:52:c8:5a:d8:b7:c7:3f:fd:fa: 49:cb:57:4e:c8:2f:03:eb:10:c7:cf:c9:9f:90:55: 96:3d:82:87:96:29:5b:69:94:90:02:7d:7f:c9:03: a7:b2:38:a6:c7:32:21:22:48:aa:84:1d:55:14:e4: 5c:40:6b:d2:7d:16:de:bb:1e:e4:44:6a:09:6d:77: 64:b3:a8:71:5e:60:24:cc:12:e0:b2:fe:7d:d6:83: 19:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:22:D2:09:16:CB:07:8E:57:78:49:22:AA:AE:27:FB:8D:86:37:E0 X509v3 Authority Key Identifier: keyid:CF:80:4A:6F:3D:86:A1:97:13:A4:E8:86:D5:97:B4:DC:64:45:68:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:19:7a:97:23:09:76:a0:4c:6e:a3:fd:d8:46:99:e9:55:f8: a3:b7:8f:03:f7:f5:7f:80:d0:c2:c6:37:dc:08:d7:29:7e:8e: b7:f3:0b:5c:98:13:82:b5:1e:c4:30:72:28:68:cc:b8:30:48: 06:32:d3:85:af:d3:31:b1:1c:e1:86:c5:69:c6:5c:ca:f2:77: cb:de:10:10:ed:6a:7f:78:26:8f:6c:2c:4b:05:7c:01:15:8a: 9a:92:3a:01:de:ed:58:c4:2a:ad:6c:1b:bb:f6:c9:3b:5a:6f: ef:6d:ae:22:ee:b0:44:7a:a5:7f:33:4f:c0:5f:c4:20:4b:d6: 62:f4:59:b8:4d:27:36:f3:a1:65:5f:3b:b2:1e:7b:d2:4e:70: 71:e6:88:9d:c9:fa:c7:bb:d7:d5:a3:99:ca:b4:97:0d:9d:82: 70:8c:7d:94:5b:ac:41:97:e5:57:d4:63:ba:fe:b4:de:39:82: 43:f1:79:5d:09:3d:84:5e:ea:fb:87:7f:ce:15:1a:7b:a0:b2: a6:3f:cd:26:65:c1:b1:91:d1:60:5d:3e:aa:8a:c5:e5:a5:4f: db:d9:ce:2f:60:d6:45:fe:bb:b9:b2:fe:63:97:79:97:13:a7: 56:cf:99:9c:12:73:cd:c1:b9:2b:8a:52:03:79:63:8d:0b:1e: ab:ac:99:ac -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDNjIxMTAvBgNVBAUTKENGODA0QTZGM0Q4NkExOTcxM0E0RTg4NkQ1OTdCNERD NjQ0NTY4NkEwHhcNMjYwMzAxMDcxNzM0WhcNMjYwMzA4MDcxNzM0WjAYMRYwFAYD VQQDEw02OWEzZTgwZi0wNmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqFrJFsY6Wv0X4Tb0JYS+gDdr0KFpKVntVNUOsyIVuVuOZ8gT3sxxyWWKwKJX EbbyS3ObFU20mp3Bi6YO4iqHgfp68uzeuD2X6OY1i5lonTrKoEnhiZpG9QWhZtVh DoqZ/W+zvIX6jQHxQBQxMocMMMo/8BSsRoPxyfAZTvcUEJPNXow6GKYVXB6Hw1L9 DHtrclm4xMeD/Rbccr7Nc9oYL1wu0eCpq4XqKo5SyFrYt8c//fpJy1dOyC8D6xDH z8mfkFWWPYKHlilbaZSQAn1/yQOnsjimxzIhIkiqhB1VFORcQGvSfRbeux7kRGoJ bXdks6hxXmAkzBLgsv591oMZjwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFK0i0gkW yweOV3hJIqquJ/uNhjfgMB8GA1UdIwQYMBaAFM+ASm89hqGXE6TohtWXtNxkRWhq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUM2Mi84NEY0NkI2ODk4 MTUxMUVGQTRCRDNENTdDNEY5QUUwMi96NEJLYnoyR29aY1RwT2lHMVplMDNHUkZh R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o0QktiejJHb1pjVHBPaUcxWmUwM0dSRmFHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUM2Mi84NEY0NkI2ODk4MTUxMUVGQTRCRDNENTdDNEY5QUUwMi96NEJLYnoyR29a Y1RwT2lHMVplMDNHUkZhR28ubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAlBl6lyMJdqBMbqP92EaZ6VX4o7ePA/f1f4DQwsY33AjXKX6Ot/MLXJgTgrUe xDByKGjMuDBIBjLTha/TMbEc4YbFacZcyvJ3y94QEO1qf3gmj2wsSwV8ARWKmpI6 Ad7tWMQqrWwbu/bJO1pv722uIu6wRHqlfzNPwF/EIEvWYvRZuE0nNvOhZV87sh57 0k5wceaIncn6x7vX1aOZyrSXDZ2CcIx9lFusQZflV9Rjuv603jmCQ/F5XQk9hF7q +4d/zhUae6Cypj/NJmXBsZHRYF0+qorF5aVP29nOL2DWRf67ubL+Y5d5lxOnVs+Z nBJzzcG5K4pSA3ljjQseq6yZrA== -----END CERTIFICATE-----Generated at Mon Mar 2 02:06:34 2026 by rpki-client