$ rpki-client -vvf rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft File: zmNwmX29E9IOXsYWW1qe46KCprA.mft (raw, json) Hash identifier: 0PJOY/Wrd2Qy05hgtqdcd1rdu6br4/9eeuwYlEO/G4A= Subject key identifier: 6C:CD:0A:58:00:C0:5C:19:3A:A8:36:D0:AC:A1:B8:1F:68:CA:CD:CE Authority key identifier: CE:63:70:99:7D:BD:13:D2:0E:5E:C6:16:5B:5A:9E:E3:A2:82:A6:B0 Certificate issuer: /CN=A917ACA8/serialNumber=CE6370997DBD13D20E5EC6165B5A9EE3A282A6B0 Certificate serial: 01B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft Manifest number: 01A5 Signing time: Sun 01 Mar 2026 05:11:33 +0000 Manifest this update: Sun 01 Mar 2026 05:11:33 +0000 Manifest next update: Sun 08 Mar 2026 05:11:33 +0000 Files and hashes: 1: zmNwmX29E9IOXsYWW1qe46KCprA.crl (hash: WumIKJJbGCxvReJnYT4kHEYGgm5UDJluFW73NZb64VM=) 2: CC389424E71D11F0959F3B7B706F56BC.roa (hash: XrkvDZl305JjEZHdxRpAIZsUCABh+4O4F2uA7YcPSEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.crl rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 05:11:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ACA8, serialNumber=CE6370997DBD13D20E5EC6165B5A9EE3A282A6B0 Validity Not Before: Mar 1 05:11:33 2026 GMT Not After : Mar 8 05:11:33 2026 GMT Subject: CN=69a3ca85-e769 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d2:a7:6b:0f:89:87:a0:2b:2c:9e:67:70:9e: 45:c0:04:b1:b5:34:e8:57:90:a7:fb:68:5f:f2:16: 04:13:b7:45:06:69:04:a8:ed:2f:bb:97:7f:27:97: 86:e8:5d:c1:1e:11:11:11:7f:e6:36:42:bb:76:a6: ab:bf:6f:3d:6b:16:10:dd:e6:7c:47:a3:fb:70:d9: e3:bc:6a:3b:12:8a:a0:c9:02:1a:aa:23:90:f9:e3: 06:8e:de:50:aa:65:97:98:92:9a:41:61:0e:a5:18: ce:f7:d2:87:93:07:db:02:4d:bf:73:75:07:a7:6b: 3b:72:de:b1:13:14:92:96:86:25:ec:ce:90:94:e0: 5f:c4:b1:c7:58:b4:b8:bf:ad:fd:0d:8e:61:08:2d: 7c:e8:6f:14:56:2e:a1:a2:55:3b:80:7e:83:a0:1d: d6:dd:0b:65:7e:6e:d6:52:0b:87:28:3f:bd:03:97: ed:f5:70:d3:c1:b2:f5:5f:e7:b8:7c:d8:9b:ae:5b: 13:98:46:45:59:3b:6b:f2:81:c6:2f:64:8f:12:28: 7a:af:b0:01:cf:f1:66:17:19:46:43:21:16:ca:36: ea:d7:ce:98:73:fe:c0:4d:02:3d:ec:40:ad:12:50: 50:b0:2d:98:6f:76:80:10:cc:d5:e2:2a:16:dc:b8: 8f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:CD:0A:58:00:C0:5C:19:3A:A8:36:D0:AC:A1:B8:1F:68:CA:CD:CE X509v3 Authority Key Identifier: keyid:CE:63:70:99:7D:BD:13:D2:0E:5E:C6:16:5B:5A:9E:E3:A2:82:A6:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:be:5c:6e:25:dd:8b:1b:3b:15:cc:44:54:a0:ff:60:21:38: 09:bd:4c:85:70:43:7f:64:3c:52:07:1c:37:66:d8:24:e9:c3: 03:0e:3c:f7:2f:7d:e9:33:3d:03:7e:02:a1:bf:58:6a:7c:82: 2d:c8:04:d7:be:42:b6:09:ea:db:fc:09:2b:84:5d:0e:bf:a2: 42:c5:4d:ff:3a:8f:8a:07:78:ca:6e:f2:f9:13:23:e8:40:9c: 9f:2c:b6:11:e6:07:30:56:ce:07:d0:c8:17:2f:0c:ed:76:2b: 0a:eb:ff:3b:80:90:42:4f:c2:14:51:cc:a9:39:c4:69:bd:1b: 4e:dc:16:b5:bc:d0:33:3b:f5:e4:14:d3:69:ca:db:75:bd:b5: b1:3d:9e:a2:ff:33:65:62:81:d1:d2:02:86:2d:85:1d:f0:c0: cd:2c:06:39:ca:eb:23:c5:bf:78:ce:a0:b6:4d:6d:c3:19:c0: 06:b1:84:66:70:75:3f:f5:c7:5d:77:7b:fd:c8:c6:dd:b1:de: c2:0d:5f:42:71:c2:de:60:cd:68:1e:4a:8e:64:58:ab:01:23: e5:9b:1f:12:c3:0f:47:85:76:64:54:61:2b:55:cd:f5:65:6a: 5a:05:ed:74:e5:e4:73:d9:55:07:42:32:80:94:f8:04:d3:04: 90:7d:91:38 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDQTgxMTAvBgNVBAUTKENFNjM3MDk5N0RCRDEzRDIwRTVFQzYxNjVCNUE5RUUz QTI4MkE2QjAwHhcNMjYwMzAxMDUxMTMzWhcNMjYwMzA4MDUxMTMzWjAYMRYwFAYD VQQDDA02OWEzY2E4NS1lNzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5NKnaw+Jh6ArLJ5ncJ5FwASxtTToV5Cn+2hf8hYEE7dFBmkEqO0vu5d/J5eG 6F3BHhEREX/mNkK7dqarv289axYQ3eZ8R6P7cNnjvGo7EoqgyQIaqiOQ+eMGjt5Q qmWXmJKaQWEOpRjO99KHkwfbAk2/c3UHp2s7ct6xExSSloYl7M6QlOBfxLHHWLS4 v639DY5hCC186G8UVi6holU7gH6DoB3W3Qtlfm7WUguHKD+9A5ft9XDTwbL1X+e4 fNibrlsTmEZFWTtr8oHGL2SPEih6r7ABz/FmFxlGQyEWyjbq186Yc/7ATQI97ECt ElBQsC2Yb3aAEMzV4ioW3LiPWQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFGzNClgA wFwZOqg20KyhuB9oys3OMB8GA1UdIwQYMBaAFM5jcJl9vRPSDl7GFltanuOigqaw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUNBOC9GOTcxNEFFNkFB RkExMUVFQTIyMUU3MkVDNEY5QUUwMi96bU53bVgyOUU5SU9Yc1lXVzFxZTQ2S0Nw ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ptTndtWDI5RTlJT1hzWVdXMXFlNDZLQ3ByQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUNBOC9GOTcxNEFFNkFBRkExMUVFQTIyMUU3MkVDNEY5QUUwMi96bU53bVgyOUU5 SU9Yc1lXVzFxZTQ2S0NwckEubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaL5cbiXdixs7FcxEVKD/YCE4Cb1MhXBDf2Q8UgccN2bYJOnDAw489y996TM9 A34Cob9YanyCLcgE175Ctgnq2/wJK4RdDr+iQsVN/zqPigd4ym7y+RMj6ECcnyy2 EeYHMFbOB9DIFy8M7XYrCuv/O4CQQk/CFFHMqTnEab0bTtwWtbzQMzv15BTTacrb db21sT2eov8zZWKB0dIChi2FHfDAzSwGOcrrI8W/eM6gtk1twxnABrGEZnB1P/XH XXd7/cjG3bHewg1fQnHC3mDNaB5KjmRYqwEj5ZsfEsMPR4V2ZFRhK1XN9WVqWgXt dOXkc9lVB0IygJT4BNMEkH2ROA== -----END CERTIFICATE-----Generated at Sun Mar 1 20:27:41 2026 by rpki-client