$ rpki-client -vvf rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft File: z7B65d0AqScU2zWnIQRdnS644xc.mft (raw, json) Hash identifier: MqWrgRA/qzIg4CqmvA6mDcs5TlmUclDP3IpnTfT09l0= Subject key identifier: D2:B6:CE:1A:D4:84:91:DB:05:F0:CD:E2:EF:86:D6:37:CA:F4:FD:5F Authority key identifier: CF:B0:7A:E5:DD:00:A9:27:14:DB:35:A7:21:04:5D:9D:2E:B8:E3:17 Certificate issuer: /CN=A9189A9F/serialNumber=CFB07AE5DD00A92714DB35A721045D9D2EB8E317 Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft Manifest number: 04E3 Signing time: Sun 01 Mar 2026 00:58:30 +0000 Manifest this update: Sun 01 Mar 2026 00:58:29 +0000 Manifest next update: Sun 08 Mar 2026 00:58:29 +0000 Files and hashes: 1: z7B65d0AqScU2zWnIQRdnS644xc.crl (hash: q96zXjGbcfFzt6/H7rYyHS8tKeSLmFyHULqPwU5ybyQ=) 2: 42A92B3C3BAC11F0882B5B62C4F9AE02.roa (hash: 3kUfpfWFsRQio/I2rlN7rqdOffzKtu9waWZ7PwEcB0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.crl rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 00:58:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189A9F, serialNumber=CFB07AE5DD00A92714DB35A721045D9D2EB8E317 Validity Not Before: Mar 1 00:58:29 2026 GMT Not After : Mar 8 00:58:29 2026 GMT Subject: CN=69a38f36-fbc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:88:eb:58:c8:a8:3e:d4:94:e0:5e:85:97:43: 48:0c:b3:fd:18:9c:e1:bd:4d:60:ad:0c:81:8f:6b: 70:1c:93:b4:67:8c:34:6d:ad:3c:50:14:d2:28:fe: a5:4a:ed:86:6b:ce:10:a7:ad:95:ac:05:73:3a:a7: 1f:34:df:30:ed:9e:84:92:14:4e:c5:e1:3b:19:fc: b6:c4:b1:ef:2a:d5:0f:ce:c4:81:a2:a9:9b:02:1a: 93:a2:e0:cf:5d:50:c8:31:1d:06:62:18:cf:0c:23: a8:0c:64:33:6e:a1:ce:1b:33:47:ac:df:6d:20:b4: 0f:8e:2b:93:03:c3:d8:1a:2a:6f:f6:f8:38:06:20: b1:ec:b5:47:92:c7:72:7d:d9:2c:3f:74:eb:f0:0d: c5:62:00:ae:08:1d:a8:72:72:c6:ac:cd:9d:c2:9e: f5:a9:d9:c1:9d:a1:08:f1:18:cd:64:c4:4b:8a:3b: 3f:8e:dd:4b:1f:77:5e:fc:81:d9:37:eb:19:92:4e: 5e:14:e7:89:1a:86:4e:88:dc:ec:28:e6:69:be:7d: 08:bc:43:fc:bf:e1:7e:d8:73:7f:b7:f4:e2:03:17: 8e:c5:fb:fd:f4:6a:81:5f:79:b7:29:7c:3a:5c:32: 62:c3:68:bf:db:8b:8c:6c:f9:09:1c:57:ec:82:a2: 3d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:B6:CE:1A:D4:84:91:DB:05:F0:CD:E2:EF:86:D6:37:CA:F4:FD:5F X509v3 Authority Key Identifier: keyid:CF:B0:7A:E5:DD:00:A9:27:14:DB:35:A7:21:04:5D:9D:2E:B8:E3:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:da:1d:a0:a9:b2:42:03:f1:6f:a0:63:83:42:de:0c:18:60: 99:d8:5a:95:cc:25:9d:88:c2:07:44:e8:52:5a:c5:1a:cc:90: 61:50:d8:4c:53:a5:b4:29:39:ff:e6:3a:f7:92:5b:84:88:32: 79:22:57:55:a0:e4:2c:f0:8b:ef:b2:b7:54:ff:0b:4d:a2:73: 96:1d:0c:cc:f3:6f:56:21:e0:c5:9b:33:c7:77:08:ef:c9:69: 7a:5b:f1:15:85:31:6a:dd:ee:b0:47:ad:01:ea:29:54:94:34: 55:d5:ef:83:8d:c8:b1:57:f8:ad:a4:3c:a9:7b:8d:aa:f7:2d: 33:65:30:9b:7f:63:3c:87:d4:f4:1b:4e:ae:f1:57:0e:a8:d3: e4:c4:89:a7:5b:fa:13:a7:c3:d1:5a:df:f8:b2:7d:2f:19:ae: 66:2c:f5:26:82:cb:9c:3e:5d:90:f9:b1:c2:4d:1b:d4:4b:60: e9:06:96:62:5b:40:21:2b:85:ef:66:6a:80:56:89:c2:43:10: 1f:81:2c:5e:3b:b0:d4:f5:4b:dc:2d:8c:ac:8f:58:59:71:1a: d5:a1:05:92:ba:54:9d:3b:62:42:5f:8c:ad:45:36:a9:eb:aa: f0:75:f4:2b:2c:ef:aa:16:a8:26:b2:a5:f2:2c:d3:b7:a3:36: 33:f3:eb:79 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlBOUYxMTAvBgNVBAUTKENGQjA3QUU1REQwMEE5MjcxNERCMzVBNzIxMDQ1RDlE MkVCOEUzMTcwHhcNMjYwMzAxMDA1ODI5WhcNMjYwMzA4MDA1ODI5WjAYMRYwFAYD VQQDDA02OWEzOGYzNi1mYmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqojrWMioPtSU4F6Fl0NIDLP9GJzhvU1grQyBj2twHJO0Z4w0ba08UBTSKP6l Su2Ga84Qp62VrAVzOqcfNN8w7Z6EkhROxeE7Gfy2xLHvKtUPzsSBoqmbAhqTouDP XVDIMR0GYhjPDCOoDGQzbqHOGzNHrN9tILQPjiuTA8PYGipv9vg4BiCx7LVHksdy fdksP3Tr8A3FYgCuCB2ocnLGrM2dwp71qdnBnaEI8RjNZMRLijs/jt1LH3de/IHZ N+sZkk5eFOeJGoZOiNzsKOZpvn0IvEP8v+F+2HN/t/TiAxeOxfv99GqBX3m3KXw6 XDJiw2i/24uMbPkJHFfsgqI9IQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFNK2zhrU hJHbBfDN4u+G1jfK9P1fMB8GA1UdIwQYMBaAFM+weuXdAKknFNs1pyEEXZ0uuOMX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUE5Ri84MDU2QkE1NjhB OTAxMUVDOEMxQjBEMjJDNEY5QUUwMi96N0I2NWQwQXFTY1UyelduSVFSZG5TNjQ0 eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o3QjY1ZDBBcVNjVTJ6V25JUVJkblM2NDR4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUE5Ri84MDU2QkE1NjhBOTAxMUVDOEMxQjBEMjJDNEY5QUUwMi96N0I2NWQwQXFT Y1UyelduSVFSZG5TNjQ0eGMubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAX9odoKmyQgPxb6Bjg0LeDBhgmdhalcwlnYjCB0ToUlrFGsyQYVDYTFOltCk5 /+Y695JbhIgyeSJXVaDkLPCL77K3VP8LTaJzlh0MzPNvViHgxZszx3cI78lpelvx FYUxat3usEetAeopVJQ0VdXvg43IsVf4raQ8qXuNqvctM2Uwm39jPIfU9BtOrvFX DqjT5MSJp1v6E6fD0Vrf+LJ9LxmuZiz1JoLLnD5dkPmxwk0b1Etg6QaWYltAISuF 72ZqgFaJwkMQH4EsXjuw1PVL3C2MrI9YWXEa1aEFkrpUnTtiQl+MrUU2qeuq8HX0 KyzvqhaoJrKl8izTt6M2M/PreQ== -----END CERTIFICATE-----Generated at Sun Mar 1 20:56:05 2026 by rpki-client