$ rpki-client -vvf rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft File: ZUCRhgKOxUzUW1g0_77K9LePGcI.mft (raw, json) Hash identifier: fLR7E2+4d9/3QqM+mf9sCJpFejXGquhNLyvYgE+ARI8= Subject key identifier: 41:0F:2A:21:15:12:BB:32:31:35:82:4F:77:6B:2A:B6:EB:7D:3C:F1 Authority key identifier: 65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 Certificate issuer: /CN=A917BBF1/serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Certificate serial: 0CF3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft Manifest number: 0CCB Signing time: Mon 02 Mar 2026 01:45:57 +0000 Manifest this update: Mon 02 Mar 2026 01:45:56 +0000 Manifest next update: Mon 09 Mar 2026 01:45:56 +0000 Files and hashes: 1: ZUCRhgKOxUzUW1g0_77K9LePGcI.crl (hash: u+ulSpQEElMjLE6LXO3LP399np8EioFRaFerssoWkWk=) 2: FF4F13D4448711ECA80CFC34C4F9AE02.roa (hash: lDq/RoR1gtpy/cAfk0IFee9KhUVF1t6WS4LHb4U+atA=) 3: 1B54858065B711EE93D6ED6DC4F9AE02.roa (hash: RJJ5TtxisaxrsdKJrxokk1MUJk/sClMJ57OXkPbYyvk=) 4: 3EED102CC53011F0ADCB012EC4F9AE02.roa (hash: LxKNHe3GpfHVZCaXnBap/M64zNmMtKYhFB34n7ePJpg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:45:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3315 (0xcf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BBF1, serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Validity Not Before: Mar 2 01:45:56 2026 GMT Not After : Mar 9 01:45:56 2026 GMT Subject: CN=69a4ebd5-2798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c8:e6:16:3f:5c:2f:71:6d:f4:92:2b:19:42: ce:b4:13:76:5a:e3:18:d9:2c:e4:28:ab:35:74:2a: ef:cf:02:c2:e6:18:b0:a2:08:54:e2:b6:5f:5e:89: 59:65:3f:37:99:ed:83:89:9d:8f:98:ff:58:68:88: b0:1d:68:93:5d:2e:fb:26:b2:18:2b:f6:be:4e:ac: 2c:1c:ad:ce:2b:66:1c:ed:71:8a:47:f0:05:f1:56: a4:fb:76:11:f1:5c:3c:e5:6d:91:4a:b3:15:22:58: f2:b8:43:34:5d:cd:43:3c:1f:1a:0e:ff:6a:31:e1: bc:f6:97:aa:55:1f:88:b5:b4:7c:d7:e9:b4:e9:f1: 28:46:36:a6:cf:37:90:0f:25:4f:2b:86:4f:85:9b: 63:14:6e:55:ae:c0:96:6e:ea:9a:58:b0:7a:d9:a3: 03:c3:08:5c:05:9b:18:30:68:c3:a3:96:bd:09:d5: 1c:7a:2f:40:f7:33:5d:62:2f:4c:1f:b4:5c:5f:d6: 8a:4f:fa:0d:39:ba:ce:9c:f4:c9:77:a1:ea:af:32: 4e:1b:d4:25:fd:60:a9:aa:4d:99:32:97:b9:e4:6a: c1:e3:5a:d7:db:d1:2a:c9:62:69:6e:e6:50:4a:39: 31:b2:4e:26:7f:11:2f:4d:35:19:ea:35:01:55:9c: 0c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:0F:2A:21:15:12:BB:32:31:35:82:4F:77:6B:2A:B6:EB:7D:3C:F1 X509v3 Authority Key Identifier: keyid:65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:38:d7:92:83:df:19:00:29:d0:27:cd:dd:2d:32:7c:12:9b: a8:8e:f8:00:b2:d0:31:8d:f3:23:8e:95:21:45:17:a1:bf:72: 6f:93:7b:40:a7:15:14:09:0b:58:f1:14:0f:a6:a7:72:32:09: 81:65:3f:7d:f9:56:c6:6b:3a:90:10:22:34:dd:59:2d:e5:29: 39:4a:4c:83:26:8c:18:e6:60:95:db:5b:aa:e3:a5:46:87:52: 27:5b:b7:20:6f:04:aa:34:e6:df:29:1f:8d:9a:ae:d4:5f:19: 70:5a:f0:e7:90:16:61:a1:5b:75:25:67:82:5e:f4:6a:6f:84: 5d:1e:99:5f:34:b5:00:bd:c0:45:2f:88:ee:f7:ef:fb:29:e9: 27:e3:df:93:1d:68:0d:f9:77:c5:e7:55:30:fb:be:59:64:5d: 57:ae:00:13:f8:72:65:cd:1b:d9:08:e0:67:63:29:29:2c:be: 93:ad:b7:c3:a3:15:2f:59:ab:f6:55:52:e8:e8:bc:85:6b:6e: e7:9f:ef:69:75:d9:f4:4c:a8:f8:bb:83:fa:e4:0f:5c:29:3a: 31:46:60:38:f7:8a:b1:97:da:7a:90:e5:b4:31:77:86:1a:3e: 2e:4c:6d:f8:00:43:1c:83:a4:e5:6a:33:17:97:cd:02:6e:bc: d0:25:8e:51 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCRjExMTAvBgNVBAUTKDY1NDA5MTg2MDI4RUM1NENENDVCNTgzNEZGQkVDQUY0 Qjc4RjE5QzIwHhcNMjYwMzAyMDE0NTU2WhcNMjYwMzA5MDE0NTU2WjAYMRYwFAYD VQQDEw02OWE0ZWJkNS0yNzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8jmFj9cL3Ft9JIrGULOtBN2WuMY2SzkKKs1dCrvzwLC5hiwoghU4rZfXolZ ZT83me2DiZ2PmP9YaIiwHWiTXS77JrIYK/a+TqwsHK3OK2Yc7XGKR/AF8Vak+3YR 8Vw85W2RSrMVIljyuEM0Xc1DPB8aDv9qMeG89peqVR+ItbR81+m06fEoRjamzzeQ DyVPK4ZPhZtjFG5VrsCWbuqaWLB62aMDwwhcBZsYMGjDo5a9CdUcei9A9zNdYi9M H7RcX9aKT/oNObrOnPTJd6HqrzJOG9Ql/WCpqk2ZMpe55GrB41rX29EqyWJpbuZQ Sjkxsk4mfxEvTTUZ6jUBVZwMZQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFEEPKiEV ErsyMTWCT3drKrbrfTzxMB8GA1UdIwQYMBaAFGVAkYYCjsVM1FtYNP++yvS3jxnC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkJGMS8yNDVEQzVDQTBB RjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hVelVXMWcwXzc3SzlMZVBH Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pVQ1JoZ0tPeFV6VVcxZzBfNzdLOUxlUEdjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkJGMS8yNDVEQzVDQTBBRjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hV elVXMWcwXzc3SzlMZVBHY0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAbTjXkoPfGQAp0CfN3S0yfBKbqI74ALLQMY3zI46VIUUXob9yb5N7QKcVFAkL WPEUD6ancjIJgWU/fflWxms6kBAiNN1ZLeUpOUpMgyaMGOZgldtbquOlRodSJ1u3 IG8EqjTm3ykfjZqu1F8ZcFrw55AWYaFbdSVngl70am+EXR6ZXzS1AL3ARS+I7vfv +ynpJ+Pfkx1oDfl3xedVMPu+WWRdV64AE/hyZc0b2QjgZ2MpKSy+k623w6MVL1mr 9lVS6Oi8hWtu55/vaXXZ9Eyo+LuD+uQPXCk6MUZgOPeKsZfaepDltDF3hho+Lkxt +ABDHIOk5WozF5fNAm680CWOUQ== -----END CERTIFICATE-----Generated at Mon Mar 2 15:35:05 2026 by rpki-client