$ rpki-client -vvf rpki.apnic.net/member_repository/A914DCD4/B171DB50E1AA11F0AFCE84B84A6F56BC/zDdqaPyj4J8M61wsuRs02xTD68k.mft File: zDdqaPyj4J8M61wsuRs02xTD68k.mft (raw, json) Hash identifier: 4P4XQk6PGA2E6c1HfGnMKn0z1M2D9PJEBnQUYQGye14= Subject key identifier: DC:C3:33:E6:D1:DE:A0:49:26:2E:58:63:34:39:E3:F9:2E:61:EC:1C Authority key identifier: CC:37:6A:68:FC:A3:E0:9F:0C:EB:5C:2C:B9:1B:34:DB:14:C3:EB:C9 Certificate issuer: /CN=A914DCD4/serialNumber=CC376A68FCA3E09F0CEB5C2CB91B34DB14C3EBC9 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zDdqaPyj4J8M61wsuRs02xTD68k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DCD4/B171DB50E1AA11F0AFCE84B84A6F56BC/zDdqaPyj4J8M61wsuRs02xTD68k.mft Manifest number: 28 Signing time: Sun 01 Mar 2026 23:55:00 +0000 Manifest this update: Sun 01 Mar 2026 23:54:58 +0000 Manifest next update: Sun 08 Mar 2026 23:54:58 +0000 Files and hashes: 1: zDdqaPyj4J8M61wsuRs02xTD68k.crl (hash: B7wRl5bgVX2g1jvWnGkUiKkhmKyQcEpmpBjwuKpj0rc=) 2: 2A8244EEE1AB11F0A6B6CFD64A6F56BC.roa (hash: qXIrbZpx+nMIXxPB13YbBm5VVLpYWbDabD7TSj8LmXE=) 3: E611D250118111F1BD19AAF2323D8C67.roa (hash: xyMx1DXyOWbPcDpJqLZAo5xVhocEULVqBNJWlrQgJEQ=) 4: 8056379A118511F1AFA21CD3333D8C67.roa (hash: TeHsvpa9QF7lH4UluYTDSRIyf4FsEd2p9+zZt1iyLY4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DCD4/B171DB50E1AA11F0AFCE84B84A6F56BC/zDdqaPyj4J8M61wsuRs02xTD68k.crl rsync://rpki.apnic.net/member_repository/A914DCD4/B171DB50E1AA11F0AFCE84B84A6F56BC/zDdqaPyj4J8M61wsuRs02xTD68k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zDdqaPyj4J8M61wsuRs02xTD68k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:54:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DCD4, serialNumber=CC376A68FCA3E09F0CEB5C2CB91B34DB14C3EBC9 Validity Not Before: Mar 1 23:54:58 2026 GMT Not After : Mar 8 23:54:58 2026 GMT Subject: CN=69a4d1d4-949e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4d:1c:e0:b8:d5:af:61:38:88:d0:a8:f3:7d: 6d:d7:3a:c1:b5:e6:dd:73:0c:b7:20:bf:40:5d:20: b4:3d:cd:12:cf:c5:49:dc:d0:75:0f:5b:52:5b:b8: 94:be:61:fc:5a:57:fe:e1:0f:bb:65:70:70:d0:b9: cf:99:f9:f2:4f:b5:56:5a:cb:2b:5a:7d:2f:74:84: c9:8a:05:e2:30:ba:9d:a5:87:e5:5f:a2:57:24:ad: 3a:9c:31:3d:8b:7b:79:33:c4:b9:ac:ed:46:3e:ea: 10:3f:00:ea:30:a5:ec:15:d5:3f:c0:83:5b:c7:e6: a8:38:25:04:04:6b:d1:1a:a4:8c:63:ef:b1:e3:8d: 78:93:0f:01:a7:16:60:d7:f3:7f:e9:24:1a:f8:e3: df:64:53:c5:a5:dc:a4:5b:dd:b4:6e:01:73:36:b9: 80:7c:7a:e3:ec:39:bd:36:39:59:70:31:dd:32:22: 9d:78:f0:7f:b9:11:a1:22:cf:ce:0a:a2:8d:5c:9c: 93:5f:25:66:0c:0a:54:37:90:0e:33:69:f7:5b:5f: f1:c9:67:bb:3c:52:80:e8:21:4f:01:6f:66:4c:4b: 05:2f:58:fd:9a:54:03:e7:b2:99:fc:f3:ff:5d:e5: b6:28:08:93:d7:19:12:71:c3:55:c7:dc:7f:5b:68: b9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:C3:33:E6:D1:DE:A0:49:26:2E:58:63:34:39:E3:F9:2E:61:EC:1C X509v3 Authority Key Identifier: keyid:CC:37:6A:68:FC:A3:E0:9F:0C:EB:5C:2C:B9:1B:34:DB:14:C3:EB:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DCD4/B171DB50E1AA11F0AFCE84B84A6F56BC/zDdqaPyj4J8M61wsuRs02xTD68k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zDdqaPyj4J8M61wsuRs02xTD68k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DCD4/B171DB50E1AA11F0AFCE84B84A6F56BC/zDdqaPyj4J8M61wsuRs02xTD68k.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:41:aa:a2:47:3b:6f:70:a4:08:cc:e6:2c:42:1a:5c:ef:3d: a8:ba:4a:c0:49:e4:0b:45:c6:94:42:54:b2:a7:06:f9:d5:bf: be:d2:5e:d3:56:b4:0a:74:95:62:26:6e:bd:ed:5f:fe:3c:59: 2f:65:cc:16:d3:ac:0f:f4:59:a8:51:51:99:6f:2b:84:db:9a: b7:a8:dd:43:f4:86:1b:e3:e9:a7:94:ec:42:3f:33:d6:27:62: 7f:e6:12:f5:6b:59:77:5a:d5:07:b0:c4:4b:ea:65:15:5d:6f: 66:fb:c9:35:6b:10:28:0d:4b:de:6d:7b:4c:39:37:09:0d:e6: 6a:d1:41:f3:12:9a:d3:fe:69:b5:07:3b:ff:ec:80:0a:3c:61: cc:cf:6e:49:65:c6:49:11:26:78:e1:a9:53:c3:9a:2c:8f:11: 1d:25:fd:98:9c:6e:2e:cf:a3:52:92:a0:c5:c0:8e:ce:0a:c9: fb:73:bd:b6:60:7a:49:86:27:c1:ce:39:4d:5c:85:60:42:aa: 6d:e1:7a:55:e6:6c:89:3a:c8:6e:9c:bb:58:1b:21:72:0d:39: 1c:e6:fd:85:d3:b6:f4:1c:12:b7:18:65:44:52:00:f9:39:e4: 1e:d3:7c:18:9f:0c:09:bf:bb:ca:4e:07:bf:ed:96:ea:53:e2: a9:de:2a:19 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RENENDExMC8GA1UEBRMoQ0MzNzZBNjhGQ0EzRTA5RjBDRUI1QzJDQjkxQjM0REIx NEMzRUJDOTAeFw0yNjAzMDEyMzU0NThaFw0yNjAzMDgyMzU0NThaMBgxFjAUBgNV BAMTDTY5YTRkMWQ0LTk0OWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoTRzguNWvYTiI0KjzfW3XOsG15t1zDLcgv0BdILQ9zRLPxUnc0HUPW1JbuJS+ YfxaV/7hD7tlcHDQuc+Z+fJPtVZayytafS90hMmKBeIwup2lh+VfolckrTqcMT2L e3kzxLms7UY+6hA/AOowpewV1T/Ag1vH5qg4JQQEa9EapIxj77HjjXiTDwGnFmDX 83/pJBr4499kU8Wl3KRb3bRuAXM2uYB8euPsOb02OVlwMd0yIp148H+5EaEiz84K oo1cnJNfJWYMClQ3kA4zafdbX/HJZ7s8UoDoIU8Bb2ZMSwUvWP2aVAPnspn88/9d 5bYoCJPXGRJxw1XH3H9baLkNAgMBAAGjggJzMIICbzAdBgNVHQ4EFgQU3MMz5tHe oEkmLlhjNDnj+S5h7BwwHwYDVR0jBBgwFoAUzDdqaPyj4J8M61wsuRs02xTD68kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTREQ0Q0L0IxNzFEQjUwRTFB QTExRjBBRkNFODRCODRBNkY1NkJDL3pEZHFhUHlqNEo4TTYxd3N1UnMwMnhURDY4 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvekRkcWFQeWo0SjhNNjF3c3VSczAyeFRENjhrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZAGCCsGAQUFBwELBIGDMIGAMH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRE Q0Q0L0IxNzFEQjUwRTFBQTExRjBBRkNFODRCODRBNkY1NkJDL3pEZHFhUHlqNEo4 TTYxd3N1UnMwMnhURDY4ay5tZnQwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggr BgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IB AQBDQaqiRztvcKQIzOYsQhpc7z2oukrASeQLRcaUQlSypwb51b++0l7TVrQKdJVi Jm697V/+PFkvZcwW06wP9FmoUVGZbyuE25q3qN1D9IYb4+mnlOxCPzPWJ2J/5hL1 a1l3WtUHsMRL6mUVXW9m+8k1axAoDUvebXtMOTcJDeZq0UHzEprT/mm1Bzv/7IAK PGHMz25JZcZJESZ44alTw5osjxEdJf2YnG4uz6NSkqDFwI7OCsn7c722YHpJhifB zjlNXIVgQqpt4XpV5myJOshunLtYGyFyDTkc5v2F07b0HBK3GGVEUgD5OeQe03wY nwwJv7vKTge/7ZbqU+Kp3ioZ -----END CERTIFICATE-----Generated at Mon Mar 2 12:37:28 2026 by rpki-client