$ rpki-client -vvf rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft File: tZsFZqgqmDvebfHF3kxYLJvKg5I.mft (raw, json) Hash identifier: dpfn+9GDN0ivmacYozVdQ2uoWPfGzfeViysdUELT2Oo= Subject key identifier: 13:DA:BE:3C:7E:0F:54:D3:06:BD:F8:EB:37:76:29:69:3A:0A:59:F3 Authority key identifier: B5:9B:05:66:A8:2A:98:3B:DE:6D:F1:C5:DE:4C:58:2C:9B:CA:83:92 Certificate issuer: /CN=A917C71E/serialNumber=B59B0566A82A983BDE6DF1C5DE4C582C9BCA8392 Certificate serial: 0C8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft Manifest number: 0C70 Signing time: Mon 02 Mar 2026 01:08:03 +0000 Manifest this update: Mon 02 Mar 2026 01:08:01 +0000 Manifest next update: Mon 09 Mar 2026 01:08:01 +0000 Files and hashes: 1: tZsFZqgqmDvebfHF3kxYLJvKg5I.crl (hash: 4akyd+TNeVPoepAScOT9mt0u4P76BLq+OukLIn/CzhA=) 2: CFF8393A232C11F0B9CB2044C4F9AE02.roa (hash: nEmNA11Dyl7nTFmnZC9S6fy/8rzvC71ench9nRz81iE=) 3: CB46AC50509111EF9E40402FC4F9AE02.roa (hash: J2Vubqi8ic0NqlP+qdXl9htU+adGeTvh1ITR3W4ptX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.crl rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:07:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3215 (0xc8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C71E, serialNumber=B59B0566A82A983BDE6DF1C5DE4C582C9BCA8392 Validity Not Before: Mar 2 01:08:01 2026 GMT Not After : Mar 9 01:08:01 2026 GMT Subject: CN=69a4e2f2-c870 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b7:8a:e3:b3:a1:c1:f8:3e:40:41:dc:49:00: 2b:f3:e1:38:3a:db:a9:00:f3:35:fe:ef:6c:4f:cb: 5f:55:ea:84:11:3b:70:68:bf:09:d0:d7:9b:e9:a3: 49:ba:76:e5:5a:47:6c:71:07:72:c7:43:0b:ca:1d: 50:a5:16:6f:ed:fd:79:69:40:b5:4a:cc:f5:78:b5: e3:56:60:4e:cf:7d:67:39:2f:92:03:f2:b9:b6:c9: 93:76:25:04:ca:93:89:16:f3:39:75:a9:08:76:75: da:a2:af:5a:5d:6d:a1:c6:74:c5:15:dc:f5:32:14: 10:b5:ee:08:b6:b1:11:20:c2:11:25:4a:32:38:f4: 80:2d:83:ea:72:42:c2:92:36:b1:3a:ec:dc:e4:ad: a0:1d:1d:f5:07:6e:7d:3b:16:c7:54:0c:6e:da:fe: 55:f6:8e:bb:2c:0c:5b:cf:15:20:95:03:c9:da:9b: 71:ca:77:71:10:75:41:8a:dd:1b:e2:bd:5f:0b:bc: ff:91:4c:c7:09:56:26:dc:78:74:e0:f1:a0:25:48: 88:8c:b7:d2:ab:57:38:b3:26:48:37:79:65:92:21: f9:42:8d:08:f9:d4:d3:6a:e4:03:ab:f5:f8:35:02: 3b:eb:dd:63:82:80:1f:51:27:1f:d6:bf:bd:59:40: 91:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:DA:BE:3C:7E:0F:54:D3:06:BD:F8:EB:37:76:29:69:3A:0A:59:F3 X509v3 Authority Key Identifier: keyid:B5:9B:05:66:A8:2A:98:3B:DE:6D:F1:C5:DE:4C:58:2C:9B:CA:83:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:c9:a2:dd:b1:1a:1b:5a:07:3f:e5:0a:18:97:93:24:b2:97: b5:84:d7:c6:a2:7e:c9:82:d9:3f:d4:3b:a0:4e:6f:f5:dd:3a: 81:13:7d:9f:1f:8d:63:de:1b:9a:07:37:82:90:cd:54:f4:b5: bc:fa:c0:a0:e2:43:f0:74:8c:9e:4d:b7:ef:9a:68:3a:62:5c: 8e:93:94:83:4c:d2:d4:e3:74:22:41:a6:9e:76:a3:74:92:8f: 31:00:db:5a:6a:09:82:97:11:53:76:d8:96:e0:df:fe:76:06: f5:e0:fe:0a:0f:87:8f:a3:61:63:dc:e4:32:e2:00:c5:3b:8d: d6:f2:9b:29:46:10:5d:d2:18:9c:b5:09:b6:9c:40:94:d0:e3: 19:24:34:18:c3:a5:53:38:f0:c0:fe:08:53:11:34:74:64:e3: 8a:e8:ef:93:72:25:da:a9:76:75:8f:93:01:5f:c8:78:05:19: e5:bf:e2:59:68:ca:4f:cf:0f:41:84:19:54:da:4f:4e:b1:e3: 51:ee:bc:06:e1:88:1a:b8:db:93:a2:23:a9:c0:ea:29:67:16: 94:a8:62:a7:f2:38:e8:1f:0b:0e:52:b1:d1:82:a2:80:48:d9: 02:4a:89:c9:0e:18:dc:2e:3c:58:11:e2:f0:dd:ef:c4:a1:64: b8:2d:e3:19 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICDI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M3MUUxMTAvBgNVBAUTKEI1OUIwNTY2QTgyQTk4M0JERTZERjFDNURFNEM1ODJD OUJDQTgzOTIwHhcNMjYwMzAyMDEwODAxWhcNMjYwMzA5MDEwODAxWjAYMRYwFAYD VQQDEw02OWE0ZTJmMi1jODcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubeK47Ohwfg+QEHcSQAr8+E4OtupAPM1/u9sT8tfVeqEETtwaL8J0Neb6aNJ unblWkdscQdyx0MLyh1QpRZv7f15aUC1Ssz1eLXjVmBOz31nOS+SA/K5tsmTdiUE ypOJFvM5dakIdnXaoq9aXW2hxnTFFdz1MhQQte4ItrERIMIRJUoyOPSALYPqckLC kjaxOuzc5K2gHR31B259OxbHVAxu2v5V9o67LAxbzxUglQPJ2ptxyndxEHVBit0b 4r1fC7z/kUzHCVYm3Hh04PGgJUiIjLfSq1c4syZIN3llkiH5Qo0I+dTTauQDq/X4 NQI7691jgoAfUScf1r+9WUCRpQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFBPavjx+ D1TTBr346zd2KWk6ClnzMB8GA1UdIwQYMBaAFLWbBWaoKpg73m3xxd5MWCybyoOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzcxRS9DNzhFNEE3MjFD QTgxMUVBOENCQjQ1NDNDNEY5QUUwMi90WnNGWnFncW1EdmViZkhGM2t4WUxKdktn NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rac0ZacWdxbUR2ZWJmSEYza3hZTEp2S2c1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzcxRS9DNzhFNEE3MjFDQTgxMUVBOENCQjQ1NDNDNEY5QUUwMi90WnNGWnFncW1E dmViZkhGM2t4WUxKdktnNUkubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAIcmi3bEaG1oHP+UKGJeTJLKXtYTXxqJ+yYLZP9Q7oE5v9d06gRN9nx+NY94b mgc3gpDNVPS1vPrAoOJD8HSMnk2375poOmJcjpOUg0zS1ON0IkGmnnajdJKPMQDb WmoJgpcRU3bYluDf/nYG9eD+Cg+Hj6NhY9zkMuIAxTuN1vKbKUYQXdIYnLUJtpxA lNDjGSQ0GMOlUzjwwP4IUxE0dGTjiujvk3Il2ql2dY+TAV/IeAUZ5b/iWWjKT88P QYQZVNpPTrHjUe68BuGIGrjbk6IjqcDqKWcWlKhip/I46B8LDlKx0YKigEjZAkqJ yQ4Y3C48WBHi8N3vxKFkuC3jGQ== -----END CERTIFICATE-----Generated at Mon Mar 2 15:33:59 2026 by rpki-client