$ rpki-client -vvf rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft File: zES2e9GPRfbhN63kcxM1pVGmYSc.mft (raw, json) Hash identifier: tI5UP9yKGugLf3ApbBuoTKEyd/4nZkdyQp1H0UzBBvk= Subject key identifier: 30:FD:D8:CA:22:00:5F:27:EA:21:AC:0D:62:72:F0:56:10:67:D0:35 Authority key identifier: CC:44:B6:7B:D1:8F:45:F6:E1:37:AD:E4:73:13:35:A5:51:A6:61:27 Certificate issuer: /CN=A916523A/serialNumber=CC44B67BD18F45F6E137ADE4731335A551A66127 Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft Manifest number: 84 Signing time: Sun 01 Mar 2026 08:57:16 +0000 Manifest this update: Sun 01 Mar 2026 08:57:15 +0000 Manifest next update: Sun 08 Mar 2026 08:57:15 +0000 Files and hashes: 1: zES2e9GPRfbhN63kcxM1pVGmYSc.crl (hash: xQganrIletknPOIXEHhDcTfAfE6w4D5o0JTcscr4SHA=) 2: 469F3FE44CDF11F08D2EFF16C4F9AE02.roa (hash: daCSAN1/L7FpC1GH73B6zID6rVi/iS9JfJ6E1UGDmuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.crl rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:57:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916523A, serialNumber=CC44B67BD18F45F6E137ADE4731335A551A66127 Validity Not Before: Mar 1 08:57:15 2026 GMT Not After : Mar 8 08:57:15 2026 GMT Subject: CN=69a3ff6c-979c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:b9:10:77:76:57:a0:02:80:b7:7a:01:53:3a: 9c:8d:21:04:7d:64:96:0f:d8:97:ba:e9:b6:b9:9a: 1c:4e:7d:08:d8:66:20:bc:16:f7:f2:fc:57:f4:9b: ca:00:c1:38:ef:2f:cd:47:38:56:0c:e8:35:53:ee: e3:17:fc:f3:e9:0e:03:91:66:75:0b:3f:ec:fd:02: d2:2c:ca:ae:de:eb:02:c0:dd:fc:70:09:00:97:e8: ea:a1:5d:46:45:7a:19:3a:49:ca:d2:ac:61:98:f7: 85:40:26:9c:22:3a:65:f3:c5:68:fa:3b:90:d3:a2: 96:9a:c4:1a:53:2d:fe:47:04:34:a8:dc:b0:07:d6: 67:7a:70:6f:98:8c:60:dc:b8:bb:15:6d:5d:06:0d: 7f:f4:bf:8e:94:e0:c5:ad:35:a7:f4:78:11:3d:c1: 8d:b5:ba:f1:16:79:ff:84:63:44:b4:a6:a6:34:f6: 3f:39:23:c4:a0:86:c9:f7:2f:94:36:dd:39:c1:ce: 3f:eb:2b:6b:40:a6:4a:25:b6:99:4a:94:de:44:d9: 9a:ed:0a:ed:07:a0:ad:8c:3e:aa:eb:21:ab:c0:34: e0:6e:f0:ac:aa:f9:72:dc:fb:51:b2:53:fb:49:dd: 59:3e:00:0b:a0:e1:72:82:52:ae:dd:dd:09:82:3d: 52:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:FD:D8:CA:22:00:5F:27:EA:21:AC:0D:62:72:F0:56:10:67:D0:35 X509v3 Authority Key Identifier: keyid:CC:44:B6:7B:D1:8F:45:F6:E1:37:AD:E4:73:13:35:A5:51:A6:61:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zES2e9GPRfbhN63kcxM1pVGmYSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916523A/E75B878C4CDD11F0BFA08F80C4F9AE02/zES2e9GPRfbhN63kcxM1pVGmYSc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:39:33:16:8d:e3:8b:9f:c4:73:ad:1c:fb:75:57:22:00:8c: 67:b8:63:f8:92:b2:26:42:60:a9:44:69:d8:63:aa:25:6c:a5: 6f:34:1e:80:a6:5a:98:60:0c:3f:ef:d1:9f:81:51:1e:a0:1e: 60:65:e0:1e:9b:c6:f5:c2:58:55:47:2e:4c:f3:9c:5b:09:a8: 88:e0:e3:7b:ed:52:4b:52:00:ba:7f:25:61:2b:e1:c3:a0:5b: db:ba:60:aa:4a:1b:1a:1a:70:50:58:b6:d3:50:a2:ef:19:70: f4:25:8f:3f:e1:48:b1:73:aa:1f:f1:6d:f9:c7:5d:8b:5a:e5: 36:bb:77:0a:7c:cb:81:64:64:52:f7:a5:94:f9:1b:19:6e:cb: 7f:d9:d5:80:bd:d4:38:83:70:21:a6:ac:4e:03:b7:a7:89:f1: 40:27:5e:34:8b:e4:29:0b:09:c3:d9:1e:65:fe:22:2e:f8:4b: 69:2b:05:0e:ef:cb:1c:39:3f:da:b7:5d:55:b3:55:11:b7:75: 89:20:6b:0c:9a:18:bd:45:0a:03:48:7b:08:07:59:cb:b6:8a: a3:b5:47:a6:05:d9:dc:a4:1b:12:60:bc:37:9c:4d:01:42:66: e0:da:dd:d0:f6:50:eb:fa:9a:d6:e8:b7:7c:49:1c:c2:a9:92: 34:32:50:d8 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUyM0ExMTAvBgNVBAUTKENDNDRCNjdCRDE4RjQ1RjZFMTM3QURFNDczMTMzNUE1 NTFBNjYxMjcwHhcNMjYwMzAxMDg1NzE1WhcNMjYwMzA4MDg1NzE1WjAYMRYwFAYD VQQDEw02OWEzZmY2Yy05NzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhbkQd3ZXoAKAt3oBUzqcjSEEfWSWD9iXuum2uZocTn0I2GYgvBb38vxX9JvK AME47y/NRzhWDOg1U+7jF/zz6Q4DkWZ1Cz/s/QLSLMqu3usCwN38cAkAl+jqoV1G RXoZOknK0qxhmPeFQCacIjpl88Vo+juQ06KWmsQaUy3+RwQ0qNywB9ZnenBvmIxg 3Li7FW1dBg1/9L+OlODFrTWn9HgRPcGNtbrxFnn/hGNEtKamNPY/OSPEoIbJ9y+U Nt05wc4/6ytrQKZKJbaZSpTeRNma7QrtB6CtjD6q6yGrwDTgbvCsqvly3PtRslP7 Sd1ZPgALoOFyglKu3d0Jgj1SvwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFDD92Moi AF8n6iGsDWJy8FYQZ9A1MB8GA1UdIwQYMBaAFMxEtnvRj0X24Tet5HMTNaVRpmEn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTIzQS9FNzVCODc4QzRD REQxMUYwQkZBMDhGODBDNEY5QUUwMi96RVMyZTlHUFJmYmhONjNrY3hNMXBWR21Z U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pFUzJlOUdQUmZiaE42M2tjeE0xcFZHbVlTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTIzQS9FNzVCODc4QzRDREQxMUYwQkZBMDhGODBDNEY5QUUwMi96RVMyZTlHUFJm YmhONjNrY3hNMXBWR21ZU2MubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArTkzFo3ji5/Ec60c+3VXIgCMZ7hj+JKyJkJgqURp2GOqJWylbzQegKZamGAM P+/Rn4FRHqAeYGXgHpvG9cJYVUcuTPOcWwmoiODje+1SS1IAun8lYSvhw6Bb27pg qkobGhpwUFi201Ci7xlw9CWPP+FIsXOqH/Ft+cddi1rlNrt3CnzLgWRkUvellPkb GW7Lf9nVgL3UOINwIaasTgO3p4nxQCdeNIvkKQsJw9keZf4iLvhLaSsFDu/LHDk/ 2rddVbNVEbd1iSBrDJoYvUUKA0h7CAdZy7aKo7VHpgXZ3KQbEmC8N5xNAUJm4Nrd 0PZQ6/qa1ui3fEkcwqmSNDJQ2A== -----END CERTIFICATE-----Generated at Sun Mar 1 22:22:03 2026 by rpki-client