$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft File: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft (raw, json) Hash identifier: VWdVQb8LgHiI89AvbLdd1lgzPXs/8bBxpK6dGrvDv6I= Subject key identifier: 66:62:20:E9:70:56:EB:8F:3B:45:1B:77:A2:01:FF:DD:86:B4:EB:A0 Authority key identifier: D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 Certificate issuer: /CN=A91795CA/serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Certificate serial: 0708 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft Manifest number: 06FD Signing time: Mon 02 Mar 2026 02:23:00 +0000 Manifest this update: Mon 02 Mar 2026 02:22:58 +0000 Manifest next update: Mon 09 Mar 2026 02:22:58 +0000 Files and hashes: 1: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl (hash: 0uhauserAV1cpsgEEVaYbyrLG2kGoRhHhYT16XoMi+Q=) 2: 0BEE202087BA11EBBBA56067C4F9AE02.roa (hash: kfNHjmM4llhwfmGMMRHrrJHm+acq8kgyjCe1MOK7NGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1800 (0x708) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA, serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Validity Not Before: Mar 2 02:22:58 2026 GMT Not After : Mar 9 02:22:58 2026 GMT Subject: CN=69a4f484-ef5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:4e:98:1c:1d:59:0a:1e:18:3d:2b:64:db:d2: 30:ba:6d:fc:eb:fd:f2:74:66:8b:2b:36:7b:e2:ae: c9:92:f3:92:97:10:c0:db:70:8e:d9:31:e9:b9:4e: 20:8f:43:26:24:58:99:e4:fb:33:94:75:f2:a5:b8: 8b:7a:2f:52:e1:36:7d:e7:d4:f2:ba:b0:e1:69:87: eb:76:05:bf:7e:c2:83:a9:1d:e1:aa:a5:a5:b1:15: 5f:b9:7c:68:c0:49:85:d2:31:c6:2b:0f:bf:08:f5: 1a:67:0c:e1:8c:8b:54:1a:02:7a:93:76:90:20:0d: 9b:20:be:e6:0e:28:a4:1b:76:37:52:e2:89:87:ea: 35:49:98:38:c6:fb:05:b3:fc:a1:b6:87:cd:e7:57: e4:a6:39:45:07:5e:39:44:d0:ca:16:be:dd:b3:20: 6f:75:6c:ef:2c:3b:00:58:29:e9:e3:9d:52:f2:b6: 6b:87:0a:53:f2:69:ed:1c:97:bd:54:9b:9a:bf:a6: 48:90:d9:de:69:16:48:22:12:b9:e4:7e:91:73:6f: 83:89:5f:19:7f:0a:f8:3e:aa:d1:08:cb:f2:9c:e0: 78:b6:b6:4f:bc:e8:cb:1d:42:3a:48:95:0e:87:4b: f8:f2:7d:d2:bb:06:ff:f8:c9:a0:91:70:65:67:74: 95:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:62:20:E9:70:56:EB:8F:3B:45:1B:77:A2:01:FF:DD:86:B4:EB:A0 X509v3 Authority Key Identifier: keyid:D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:b2:c4:a3:71:87:4c:b4:a8:5c:b2:2e:41:b2:66:f4:01:06: 70:3b:0c:06:41:6c:71:78:d1:d3:f6:24:ca:5d:c8:f4:4c:c7: b6:be:bf:63:14:dd:4d:f5:7f:e4:4d:c2:2a:2a:37:17:ee:bb: 42:4b:06:ff:36:f3:9b:10:29:58:cb:cf:58:6d:c6:84:21:f6: 00:4c:1b:17:d6:9c:7f:75:ad:59:08:70:32:54:50:25:55:69: 23:28:de:6b:d6:b3:af:60:05:70:f1:5c:39:20:14:4d:77:7f: ff:c6:29:69:cd:74:f2:4b:b9:8c:21:c7:2b:1d:b2:c7:aa:55: 89:74:28:f1:2f:ef:62:89:c2:40:28:30:28:4d:70:e7:67:a9: d8:ab:de:08:8c:90:c3:6b:b6:dc:52:7b:c5:f9:82:36:f2:29: c0:44:09:eb:5c:23:84:68:6a:aa:a8:74:3c:19:b6:c2:3a:f7: 16:dd:25:2c:6a:a1:32:79:cc:86:4a:db:cb:b9:c6:4e:3c:85: 98:e4:79:91:88:a6:0c:f2:48:bf:5d:a5:83:fe:24:12:95:4f: f8:8c:ce:ed:fe:88:0e:1c:f9:2d:bf:2c:ec:99:82:e9:c9:c1: 1a:5a:4e:ee:db:ea:04:eb:35:13:b7:cd:f9:86:74:9c:c8:f2: a7:83:b4:49 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICBwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKEQ5NUNFNUZCMzY5MTVDM0Q4Q0RCMTBEQjg2NEE0Qzcx OTMzQ0RBNDEwHhcNMjYwMzAyMDIyMjU4WhcNMjYwMzA5MDIyMjU4WjAYMRYwFAYD VQQDEw02OWE0ZjQ4NC1lZjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArU6YHB1ZCh4YPStk29Iwum386/3ydGaLKzZ74q7JkvOSlxDA23CO2THpuU4g j0MmJFiZ5PszlHXypbiLei9S4TZ959TyurDhaYfrdgW/fsKDqR3hqqWlsRVfuXxo wEmF0jHGKw+/CPUaZwzhjItUGgJ6k3aQIA2bIL7mDiikG3Y3UuKJh+o1SZg4xvsF s/yhtofN51fkpjlFB145RNDKFr7dsyBvdWzvLDsAWCnp451S8rZrhwpT8mntHJe9 VJuav6ZIkNneaRZIIhK55H6Rc2+DiV8Zfwr4PqrRCMvynOB4trZPvOjLHUI6SJUO h0v48n3Suwb/+MmgkXBlZ3SVXwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGZiIOlw VuuPO0Ubd6IB/92GtOugMB8GA1UdIwQYMBaAFNlc5fs2kVw9jNsQ24ZKTHGTPNpB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS9GMzY0M0IxMDgz MDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhEMk0yeERiaGtwTWNaTTgy a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJWemwtemFSWEQyTTJ4RGJoa3BNY1pNODJrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS9GMzY0M0IxMDgzMDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhE Mk0yeERiaGtwTWNaTTgya0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAvLLEo3GHTLSoXLIuQbJm9AEGcDsMBkFscXjR0/Ykyl3I9EzHtr6/YxTdTfV/ 5E3CKio3F+67QksG/zbzmxApWMvPWG3GhCH2AEwbF9acf3WtWQhwMlRQJVVpIyje a9azr2AFcPFcOSAUTXd//8Ypac108ku5jCHHKx2yx6pViXQo8S/vYonCQCgwKE1w 52ep2KveCIyQw2u23FJ7xfmCNvIpwEQJ61wjhGhqqqh0PBm2wjr3Ft0lLGqhMnnM hkrby7nGTjyFmOR5kYimDPJIv12lg/4kEpVP+IzO7f6IDhz5Lb8s7JmC6cnBGlpO 7tvqBOs1E7fN+YZ0nMjyp4O0SQ== -----END CERTIFICATE-----Generated at Mon Mar 2 15:53:26 2026 by rpki-client