$ rpki-client -vvf rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft File: ZUCRhgKOxUzUW1g0_77K9LePGcI.mft (raw, json) Hash identifier: 2uOEIX3CySHizdzKrHRZHjEG8QVvr0M0QNpLOF3NM2E= Subject key identifier: 2F:BD:DA:49:CD:29:82:47:1D:B0:53:4F:B0:67:3A:C1:31:A7:85:32 Authority key identifier: 65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 Certificate issuer: /CN=A917BBF1/serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Certificate serial: 0D0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft Manifest number: 0CE3 Signing time: Thu 16 Apr 2026 18:18:29 +0000 Manifest this update: Thu 16 Apr 2026 18:18:29 +0000 Manifest next update: Thu 23 Apr 2026 18:18:29 +0000 Files and hashes: 1: ZUCRhgKOxUzUW1g0_77K9LePGcI.crl (hash: 52x/Dte7BuGkhXkb8PNYPcYbI4QEgPK85r25tvwFSTs=) 2: FF4F13D4448711ECA80CFC34C4F9AE02.roa (hash: lDq/RoR1gtpy/cAfk0IFee9KhUVF1t6WS4LHb4U+atA=) 3: 3EED102CC53011F0ADCB012EC4F9AE02.roa (hash: LxKNHe3GpfHVZCaXnBap/M64zNmMtKYhFB34n7ePJpg=) 4: 1B54858065B711EE93D6ED6DC4F9AE02.roa (hash: RJJ5TtxisaxrsdKJrxokk1MUJk/sClMJ57OXkPbYyvk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 18:18:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3339 (0xd0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BBF1, serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Validity Not Before: Apr 16 18:18:29 2026 GMT Not After : Apr 23 18:18:29 2026 GMT Subject: CN=69e127f5-aee2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:bc:02:c9:e3:dc:84:5b:b6:07:ae:9b:4b:74: 87:9b:d7:f7:04:ec:2e:1b:c1:80:c9:79:e2:b0:0b: b2:97:5d:7c:8d:6b:73:1d:60:30:fd:af:45:4d:91: 53:b7:51:77:e7:77:b4:ce:b7:fa:c7:82:c9:3c:93: 85:eb:d8:a7:b0:6f:fe:ee:f1:e4:99:6f:70:c2:a3: 64:93:b8:01:18:70:6f:b6:91:9c:2b:21:66:1e:9c: b6:94:ba:1f:e0:04:23:05:7e:d0:06:1c:98:7c:29: 93:0b:59:b0:50:99:f4:7c:95:cf:41:3a:c1:c6:50: f3:7d:03:b2:18:bf:4d:59:a2:68:61:fb:c3:e0:58: 5d:70:2b:85:34:a9:95:10:6b:7e:2a:f2:94:51:af: 88:3c:81:c7:8c:74:06:61:83:c9:a7:8a:d9:df:ca: 4d:99:80:df:83:35:c1:64:2b:7a:3c:46:58:9f:e8: 75:8d:2c:4a:eb:a9:ef:53:e2:42:f8:95:5b:fa:eb: 44:01:2c:e6:65:96:82:bb:a1:ec:da:72:fb:c9:42: a4:f7:37:98:38:b8:b9:c7:e5:5b:47:36:ee:4a:d0: 84:7d:8c:28:8f:f6:46:4b:8c:f6:14:96:d3:69:12: 48:76:bf:74:a0:f8:dd:9b:42:be:3b:92:3e:33:5b: 60:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:BD:DA:49:CD:29:82:47:1D:B0:53:4F:B0:67:3A:C1:31:A7:85:32 X509v3 Authority Key Identifier: keyid:65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:56:be:39:aa:a8:e1:7d:ed:24:e6:20:2a:ef:04:11:e2:ca: 2c:98:30:8f:6e:ed:dd:a9:19:1e:38:32:d7:df:0a:56:ca:e9: fb:dd:27:dc:f1:ca:f5:93:c9:7b:43:1d:ce:24:eb:c1:ac:2a: d6:b1:4b:13:f0:25:5c:06:43:b7:27:9a:fe:68:33:3a:3c:e5: 68:9c:52:43:97:a7:fa:3b:d6:9f:98:e6:8a:d2:80:80:c7:4c: c6:da:4c:4f:21:20:93:c6:d7:ae:4e:e0:14:39:ab:40:12:fe: e6:66:b2:9c:3f:c9:b2:d5:fa:70:66:81:d8:51:c7:b8:d0:ae: 3c:00:73:33:6b:2b:96:f2:36:2e:fe:ad:93:3b:23:e6:ae:aa: b5:7e:19:8c:9c:a0:f9:17:67:dc:ac:cd:16:07:d8:3f:7c:54: 51:bf:cd:e7:05:10:b4:b5:75:2c:b0:03:07:0c:43:4d:7b:5d: 60:e6:a7:84:cd:1d:0c:56:4a:bf:5d:aa:3e:e3:b7:49:d9:72: fc:af:13:39:fb:60:e9:2a:70:d2:52:49:f1:17:63:57:fa:dd: 44:02:f1:4c:53:30:dd:fe:61:4f:69:00:2c:6f:2e:53:d5:0f: f9:e2:9d:a4:83:48:fa:21:26:91:9d:a2:9f:56:2d:73:74:92: 2a:fb:ae:1a -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCRjExMTAvBgNVBAUTKDY1NDA5MTg2MDI4RUM1NENENDVCNTgzNEZGQkVDQUY0 Qjc4RjE5QzIwHhcNMjYwNDE2MTgxODI5WhcNMjYwNDIzMTgxODI5WjAYMRYwFAYD VQQDEw02OWUxMjdmNS1hZWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmLwCyePchFu2B66bS3SHm9f3BOwuG8GAyXnisAuyl118jWtzHWAw/a9FTZFT t1F353e0zrf6x4LJPJOF69insG/+7vHkmW9wwqNkk7gBGHBvtpGcKyFmHpy2lLof 4AQjBX7QBhyYfCmTC1mwUJn0fJXPQTrBxlDzfQOyGL9NWaJoYfvD4FhdcCuFNKmV EGt+KvKUUa+IPIHHjHQGYYPJp4rZ38pNmYDfgzXBZCt6PEZYn+h1jSxK66nvU+JC +JVb+utEASzmZZaCu6Hs2nL7yUKk9zeYOLi5x+VbRzbuStCEfYwoj/ZGS4z2FJbT aRJIdr90oPjdm0K+O5I+M1tgCwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFC+92knN KYJHHbBTT7BnOsExp4UyMB8GA1UdIwQYMBaAFGVAkYYCjsVM1FtYNP++yvS3jxnC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkJGMS8yNDVEQzVDQTBB RjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hVelVXMWcwXzc3SzlMZVBH Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pVQ1JoZ0tPeFV6VVcxZzBfNzdLOUxlUEdjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkJGMS8yNDVEQzVDQTBBRjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hV elVXMWcwXzc3SzlMZVBHY0kubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAY1a+Oaqo4X3tJOYgKu8EEeLKLJgwj27t3akZHjgy198KVsrp+90n3PHK9ZPJ e0MdziTrwawq1rFLE/AlXAZDtyea/mgzOjzlaJxSQ5en+jvWn5jmitKAgMdMxtpM TyEgk8bXrk7gFDmrQBL+5maynD/JstX6cGaB2FHHuNCuPABzM2srlvI2Lv6tkzsj 5q6qtX4ZjJyg+Rdn3KzNFgfYP3xUUb/N5wUQtLV1LLADBwxDTXtdYOanhM0dDFZK v12qPuO3Sdly/K8TOftg6Spw0lJJ8RdjV/rdRALxTFMw3f5hT2kALG8uU9UP+eKd pINI+iEmkZ2in1Ytc3SSKvuuGg== -----END CERTIFICATE-----Generated at Fri Apr 17 17:57:38 2026 by rpki-client